hxxp://Google[.]com

Analysis

max time kernel
1807s
max time network
1803s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
18/04/2024, 18:34

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

http://Google.com

Score

6^/10

Malware Config

Signatures

Legitimate hosting services abused for malware hosting/C2 1 TTPs 1 IoCs

Web Service

T1102

flow	ioc
127	raw.githubusercontent.com

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133579389168910692"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
2068	chrome.exe
2068	chrome.exe
3220	chrome.exe
3220	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 4 IoCs

pid	Process
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe
Token: SeShutdownPrivilege	2068	chrome.exe
Token: SeCreatePagefilePrivilege	2068	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2068 wrote to memory of 4072	2068	chrome.exe	90
PID 2068 wrote to memory of 4072	2068	chrome.exe	90
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1220	2068	chrome.exe	93
PID 2068 wrote to memory of 1540	2068	chrome.exe	94
PID 2068 wrote to memory of 1540	2068	chrome.exe	94
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95
PID 2068 wrote to memory of 3304	2068	chrome.exe	95

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://Google.com
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2068
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffe8017ab58,0x7ffe8017ab68,0x7ffe8017ab78
  2⤵
  PID:4072
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1648 --field-trial-handle=1912,i,13688049764317148787,2554303471773978664,131072 /prefetch:2
  2⤵
  PID:1220
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2152 --field-trial-handle=1912,i,13688049764317148787,2554303471773978664,131072 /prefetch:8
  2⤵
  PID:1540
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2204 --field-trial-handle=1912,i,13688049764317148787,2554303471773978664,131072 /prefetch:8
  2⤵
  PID:3304
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2952 --field-trial-handle=1912,i,13688049764317148787,2554303471773978664,131072 /prefetch:1
  2⤵
  PID:4988
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2960 --field-trial-handle=1912,i,13688049764317148787,2554303471773978664,131072 /prefetch:1
  2⤵
  PID:2180
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=3588 --field-trial-handle=1912,i,13688049764317148787,2554303471773978664,131072 /prefetch:1
  2⤵
  PID:4348
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3256 --field-trial-handle=1912,i,13688049764317148787,2554303471773978664,131072 /prefetch:8
  2⤵
  PID:4768
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4120 --field-trial-handle=1912,i,13688049764317148787,2554303471773978664,131072 /prefetch:8
  2⤵
  PID:232
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=2940 --field-trial-handle=1912,i,13688049764317148787,2554303471773978664,131072 /prefetch:1
  2⤵
  PID:5524
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1528 --field-trial-handle=1912,i,13688049764317148787,2554303471773978664,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3220

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:1972

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=1416,i,7593277344190429033,13055212002259797845,262144 --variations-seed-version --mojo-platform-channel-handle=1300 /prefetch:8
1⤵
PID:5672

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000031

Filesize
572KB

MD5
4047316854307766ee35ea2c556dce11

SHA1
11db673b34deeb335df8856c64722597109c8760

SHA256
0af2dc54d7b396e9e5c9be2a59591b21f5a1ebf28f322187ef36366b5cf69950

SHA512
8aa8b105577413a7ee897096f2387afd90dffd99165b785e8571ba5c81d1eceb85d19bcdaef61df85d492da5890e3b34f7cffea7b47dcf06e57786a5a911e7a8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
0d614582e1757ba759b718f317403ca0

SHA1
9a4665e8179f024aaadecedf8e419074baebcb1d

SHA256
106fb5cff9ad5371895d47128316de65134c4a831be371367664e538cea34f2d

SHA512
6dabeb74034004e2e28b7517a22f099350e31a45d11196c5c8812b2d5f2bfd79f0df970211a82329385b44ebab160ce5b4d58fae7c419ab054597cec012bc12f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
72216b84f71b331992e8837d0fd49eee

SHA1
baf1c89192c8799137bef1b942db95aded9c8ab6

SHA256
59a79380852911034abd77a9f354ad5cf59b7ba93986f04ec4a32eb2b35e22d5

SHA512
6d11e7282d6cf2838f84a827ece4664cf0d09f7b9a2e4c20e1d7fafc0390d6ebbcf29719675a00565f11cb0917f30ad68b592f8930df27ddbcf0af8600642bc9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
3KB

MD5
824ab2f26b32b00cd383fc9f9f26aa4d

SHA1
0123596767197692ed6108a7380def4d9b408e96

SHA256
4d50ece1634df56b4f033ab17a173fd4389b9dd42012c9c3952dcd6f388f943a

SHA512
56556ae729dd83e6760596efb43784a43503e0365ba88c1b9af20e36f823962f935da56d7275ba29b0ed3e4989458a65fcebcfdaf4875405ce8361b6772e7079

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
12842843181e01027b803a2ce4d8a3a4

SHA1
efc4eec250e8087a4b8cc07dcb350f9458c47434

SHA256
450cc64f5fe64e8f3f71a9231a856672e3f0ad9eae8f706fa2c0b4588e3f5cdf

SHA512
16cce319844d9488bee4d7fee878aef89fb88443bb1c6328092c0af16c3b2f135c99604d22650fa015e54fbd5ba49b939458d0a5998ca81db05d70ee217c5301

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
3KB

MD5
0b8463b35e86fa0e15168755267a0e40

SHA1
0fc885b59a625182a0e1787d8278e1370ca156a2

SHA256
baa8fb27104144b742b86abcaaded9c7bfa56cb5d70c9bcaad5d913a69eefd3e

SHA512
42c8e6f8674afd20ca9bc7034e62cf33a72d1b2cef6beb2baffe89de67768c2725c98dc9d97152e1aa027b5c798af3906736701eb1b81e5a387a23f2823f162a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
2547024535a0ec79624d5ad72dd81582

SHA1
8bcf902cdda954fb734f1035e689afab35a74eef

SHA256
28ebd59281d2f53d4fafb75874dd52671a1490ef89a141a016a91ffdfcce970e

SHA512
c8ae0fd495f84eb808d1c049aeca5017d5bb5f4b73833936c98056af7ef7e32fd245cd44c332146c6b79c6266fc934bc5387799241858f0c929cbdf4fa661fee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
6c282e82116e4295bf2016e540e2dcfb

SHA1
be92c06b3e77239a84dd36c339a25ac12ceb3db5

SHA256
6222ecdb7baae87840060b6f5f90590eb5c64d2156ce83b22017dbdd3e20318c

SHA512
e478239942b945e718e7f926e10183c9f7dd753ad103a12bcde08dd7f3a5b324823f42f9761be058d0333602350bc55da10dc10a6ebfa6a59da49d9f0758aaee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
524B

MD5
661c318dcb2a20e937c3b7b50c684933

SHA1
66b67fcceee9d83e04a2f51998729830606b8444

SHA256
d200d4373e17d412ead12ee1d64b8703d181b39a8240dea09d0ea500de2dde1d

SHA512
44046552a0127e8b13b58f9a88c641beeaf88bec06f1ad93b43afe45438e98e9af88d80154acee098571e6b697f43196792a3e485eb00494dd94584800e7e4da

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
840520ea545900298ad3ad381f841adb

SHA1
d9656153a6649cc07a8e43be15c92b3d1ba09c7c

SHA256
1fc3c0c35283450cd990c9ed3092dd53324b3e3f2fd46d5bc12677a5ba18873c

SHA512
8c8e43ede816bf93f5a2a370737d6d9a5ebd96eb970ff4139e94c46be1e678e59a4966149dad6a48f840750994349227d3ba431382adbb064b1ebbecf6d10648

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
46ef638e9144842e79d40af869b4b2dc

SHA1
e64ed83f22a9e4ce624d57d3f57e853f89ad2204

SHA256
b2dfd8f24a6871c8ade7dc531c60b5030dd6de00b3086760d9dd1e55cd00776b

SHA512
bb87c4f39ecf1ca6ae8f6c9e455f16be1b4e80878d7661c9679a257b2ea45af6b63c499ae6278565f324b7639300414597de03d2bb1e7d3a510fbf4fd970ce6b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
dd5b540d4e232b25a10b42ca32f392bb

SHA1
f0c1432cafd42cc0b5ac57781d120002de12e295

SHA256
9cff5e28c9cee88aa4b81dce826d0962acd7df7ebc916cfb8ff98be3dd5d0dbb

SHA512
5f4ee3af27ca5b8e9afb3a86313a2b2827e39553be1267bc458eae656c5f3ab048067c6dad92b58998fed6b7d1eaf74d7f6742ee551016466b16c4638ae242e2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
bd007a3b1f5adfa1ff592e488ca4d3cd

SHA1
c52bbb4474c55284528073d63ffadf98252d4c50

SHA256
fcb9f4107213abc260419a9837e0a7a998f04498fd93a544f884a70e591db2c7

SHA512
02c324592023ba29e0792b0fd3618132fa998cd19d1d20686b43b2dd084ea689d41d22030b2ce1d0fabeec5828d7e81a8aa72e96ed2030c1afc670546c9b778f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
127KB

MD5
4b5881df3edb0a96d5f1c7ac819c185d

SHA1
fd88d0f27ed3e71f6d2dfc1c0a48b14f5826a11f

SHA256
4e2814500e0b9f7a2bb09258db561565da1a73a1ab2e8f942f00747c5d2d5666

SHA512
e347e07849b89dc480e2c5e3604ad2ab0fafaa152ec8faa8c214a1344217cce91c2ff3b7b1ae42e0b7064e366e83d6c10640e36a06e739b5eed16dc67e7bad31

Download Submit