hxxp://hier-im-netz[.]de

Analysis

max time kernel
149s
max time network
146s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
24/04/2024, 05:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

http://hier-im-netz.de

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133584100648655458"	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
1892	chrome.exe
1892	chrome.exe
2992	chrome.exe
2992	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 7 IoCs

pid	Process
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe
Token: SeShutdownPrivilege	1892	chrome.exe
Token: SeCreatePagefilePrivilege	1892	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe
1892	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1892 wrote to memory of 1396	1892	chrome.exe	84
PID 1892 wrote to memory of 1396	1892	chrome.exe	84
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 2440	1892	chrome.exe	85
PID 1892 wrote to memory of 1464	1892	chrome.exe	86
PID 1892 wrote to memory of 1464	1892	chrome.exe	86
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87
PID 1892 wrote to memory of 408	1892	chrome.exe	87

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://hier-im-netz.de
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1892
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff8c657ab58,0x7ff8c657ab68,0x7ff8c657ab78
  2⤵
  PID:1396
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1716 --field-trial-handle=1900,i,14102876228718070622,1378383508855389158,131072 /prefetch:2
  2⤵
  PID:2440
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2160 --field-trial-handle=1900,i,14102876228718070622,1378383508855389158,131072 /prefetch:8
  2⤵
  PID:1464
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2204 --field-trial-handle=1900,i,14102876228718070622,1378383508855389158,131072 /prefetch:8
  2⤵
  PID:408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2996 --field-trial-handle=1900,i,14102876228718070622,1378383508855389158,131072 /prefetch:1
  2⤵
  PID:5092
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3016 --field-trial-handle=1900,i,14102876228718070622,1378383508855389158,131072 /prefetch:1
  2⤵
  PID:4876
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4252 --field-trial-handle=1900,i,14102876228718070622,1378383508855389158,131072 /prefetch:1
  2⤵
  PID:3744
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4540 --field-trial-handle=1900,i,14102876228718070622,1378383508855389158,131072 /prefetch:8
  2⤵
  PID:4828
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4040 --field-trial-handle=1900,i,14102876228718070622,1378383508855389158,131072 /prefetch:8
  2⤵
  PID:3104
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=4260 --field-trial-handle=1900,i,14102876228718070622,1378383508855389158,131072 /prefetch:1
  2⤵
  PID:3188
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=4692 --field-trial-handle=1900,i,14102876228718070622,1378383508855389158,131072 /prefetch:1
  2⤵
  PID:4332
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4568 --field-trial-handle=1900,i,14102876228718070622,1378383508855389158,131072 /prefetch:1
  2⤵
  PID:4964
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=2468 --field-trial-handle=1900,i,14102876228718070622,1378383508855389158,131072 /prefetch:1
  2⤵
  PID:4512
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1004 --field-trial-handle=1900,i,14102876228718070622,1378383508855389158,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2992

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:1240

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
1641818a942d84ba94c0e68b51778772

SHA1
f8d4b78594711a1adf9f64c61f92702f012196e3

SHA256
81dffad459efb6545c7881b76e6246aa4b432437e9940125b75f849e32fe7088

SHA512
1528622109a18805139386284473418adc119c9c05b10c541a24b5532c18b173a39e83a81f6e3e359e99f73d9f236bdff23ac05abf3f0a60a90989fabc26773a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
408B

MD5
1af444f424d445eaf4d273893224255d

SHA1
c63c99066ca4ce6474aba050962e275b33bbc5cf

SHA256
2e9f1dd68a8695f242d630a00556fc077928babc4d113edbafd29bab997515a5

SHA512
af4ce4d7b3ff91e7539a9fa2c92f52f12c23c123850a5c2fe570e42669b8445aea143a586c56cc285faf74c4a585d85e1844a16d5b7b7e993e081cc0e5a71bfb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
65fa90b863d75c083d406b7993b9ea4a

SHA1
add98cfbc10899914bbc0cec0d538240a60972be

SHA256
d8eb7c3aa8c6ce6b3b5706c5a08a6e44491f24aa472a1ded306d2e8c8f694745

SHA512
17947e0a274033f06ae932f604d49756b42f5e73e763dd7eb78036c3dd741d624084e5ab9cb16ddec1865272c19418b4f6ec199a8d025e82434a474c4f9f1853

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
eaf5a35136380d7c230e9c5f847cdb70

SHA1
199d5f6b1b658edcc0d043a26f6f7bc43272b76f

SHA256
6121fbedeb1cf6adadafc942c5d19674fe654c6b56a11e1e7e4e2c7bcc76203b

SHA512
a5bbafb7d5195fd4b3ae714ce4f508f36362147e5824e64a625b942d8d93bfbd1e7c4b88a82feb7393b6c6e3a3804699436d2ac388378a1f686bd639a9023722

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
ef083a5ba099840abbf17f82fa9f57aa

SHA1
e58bdb74d76d4756d5f7046c5288a18b4674736c

SHA256
cbb666205ca9785e42d086d7d2052859fb2d35503bd2e42f9e75b64fe4d45bb6

SHA512
3bcedc788b79a53c2c8eade5a9ab720e5bff7fbb4690d1e0b002c3073c9d347d67118ef8a2e9e6c75a875d0bd2b7f7afaa169b53b27217e36c801d5197c4d2a7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
e9bb59a2e799788d3d0bd6bc54da6a65

SHA1
fe033ca07aac33ae0a7dcd5964be7552cc414ab7

SHA256
508287aced72a3e99b69907a84689b2902c7bd374992c4856c41454f7efeecb3

SHA512
cf7a4c3f7d41379beeb0f3eb324df65315504c4fc04f018e2aa73efde003cddb549d89d120e685869464b66036651a1f0c7a3515ffad6d8b27c73ef78833d500

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1024B

MD5
86ac6de88806205af3b0771172ae4465

SHA1
16ecaa7d0b804e0f598b1ddc61e00fd9275bce7c

SHA256
71cf7e94a944e1d94d599e64996e06e3612e5c40725afc1d5d22f8e8bc1a5e30

SHA512
710ee631c25a059f6e41d5a671022388884d9cbc75c73db6b37deb104752e9fc265fb2afed7b6999f73789377d4f1ef83e50fd28f236613b8c3e52210096a7e2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
48a44fd71f2d6a4f45d67f767b8b3364

SHA1
a9c33e1ff60f689e15c038206b487d2cea816a44

SHA256
f257960401e322f8267858fd816d2b4913b1c739523d8d3a536baf8119a2e072

SHA512
e1822414ee2186e062b672ad912e3c07cbded6dc2b9c11eea53e8a29d1137b5b6ad06516fa2839030726e220686ab8b067591c6721f216ab65858706e1cd3bd3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
41f7f65454bab9d8642cd915955e8d37

SHA1
0844b20a83da5ff996575ec2a4c19dd067839fba

SHA256
f3ec3f2c096a7955249026ef4674d2c127ab75f9d4e35059a7f68e5a4f17814e

SHA512
27b6e25fb590f9116e19b0ad4e0d4545692d11866892b0f219f80f5083db85cdc164d1a0efc0d27bc7f0b0fbd0c06fbba9f29bc3c6dd24379984e2c43d6b12a5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
de15e172246327bbcd56a761af64023d

SHA1
fce5df3ba9713e61a9522cf02ca278f3985060a3

SHA256
07dfa5e8430dc63d9594f76f3b48aa4b6cb2804dfeebecae4e3a8aca21386ace

SHA512
1ec624ce700bf302a1c8c67619f43cebfe9a35b4adf1f700d856ded8fe62c7e98d98633ce9ac1cd65cd71e045d78227b74141a33a0f9f05cdaab1dd82f9c24d1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
510dc3258bad07aed2d55803204144c0

SHA1
da91d75412b53c5ca4dda3281c227abd289878b2

SHA256
6b16761b47bd901a25644f7eb2243e1ee787506c68df2f3f3ae413671b59840e

SHA512
cd9dc3749bd3e68f3a2cfb96ec18a68f41fd25414215c5c9e567c8ad0eabcf2bb65498a2c503afb75a2744b31feac1fcde3ad22707d33f89059e952e8cf09b80

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
127KB

MD5
3703e4260da3890d163276cb9854e64d

SHA1
421fbf04f3607cd39b86d92a67f9b1b0509bff1d

SHA256
4c610461375e3aecbe9b1ad7f41f41c5743f449b89a10e6fb9a7a1dec9da826e

SHA512
93f9f2896142198184ff98c3b389fb068bc620b4db38cfd638ccd89e93c5cd83401bbacb6688fcd05fe0a619d002ddbc4ffe5ab6e71e9c4cde578530a65efb0d

Download Submit