Malware Analysis Report

2025-08-11 05:15

Sample ID 240505-drzs2sgc46
Target Untitled.png
SHA256 1e58f3cbc07dd4661396c19b9468af33e9736368ccd97a1861a11fce4fa8e71e
Tags
score
5/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral4

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral5

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
5/10

SHA256

1e58f3cbc07dd4661396c19b9468af33e9736368ccd97a1861a11fce4fa8e71e

Threat Level: Likely benign

The file Untitled.png was found to be: Likely benign.

Malicious Activity Summary


Drops file in System32 directory

Drops file in Windows directory

Enumerates physical storage devices

Enumerates system info in registry

Modifies data under HKEY_USERS

Suspicious behavior: EnumeratesProcesses

Suspicious use of FindShellTrayWindow

Suspicious use of WriteProcessMemory

Checks SCSI registry key(s)

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of AdjustPrivilegeToken

Suspicious use of SendNotifyMessage

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-05-05 03:15

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-05-05 03:15

Reported

2024-05-05 03:18

Platform

win11-20240419-en

Max time kernel

149s

Max time network

153s

Command Line

cmd /c C:\Users\Admin\AppData\Local\Temp\Untitled.png

Signatures

Drops file in System32 directory

Description Indicator Process Target
File created C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_01cf530faf2f1752\display.PNF C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File created \??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_01cf530faf2f1752\display.PNF C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Drops file in Windows directory

Description Indicator Process Target
File opened for modification C:\Windows\SystemTemp C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Enumerates physical storage devices

Checks SCSI registry key(s)

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\ConfigFlags C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_QEMU&PROD_QEMU_DVD-ROM\4&215468A5&0&010000 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\ConfigFlags C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_DADY&PROD_HARDDISK\4&215468A5&0&000000 C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133593525685690223" C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 4592 wrote to memory of 3768 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 3768 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4420 wrote to memory of 2752 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4420 wrote to memory of 2752 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 2724 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 4208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 4208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4592 wrote to memory of 1524 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Windows\system32\cmd.exe

cmd /c C:\Users\Admin\AppData\Local\Temp\Untitled.png

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.106 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffb0fc2cc40,0x7ffb0fc2cc4c,0x7ffb0fc2cc58

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.106 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffb0fc2cc40,0x7ffb0fc2cc4c,0x7ffb0fc2cc58

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1748,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=1704 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2100,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=2112 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2184,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=2200 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3084,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3152 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3156,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3208 /prefetch:1

C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=3704,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3076 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4620,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4592 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4748,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4760 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4900,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4896 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5028,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5040 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4960,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4300 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4944,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4744 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=3712,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4256 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=212,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3860 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=3316,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3280 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=4564,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4528 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=5092,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5084 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=3412,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3260 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5168,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5444 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=4328,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4592 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=3152,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5036 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=4528,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3540 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=3720,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3188 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=872,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4508 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5588,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5436 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4536,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4636 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=5332,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=1492 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=3820,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5172 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=3280,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3176 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=4412,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3700 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5876,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3492 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=5896,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5476 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=3456,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5504 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=5572,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5812 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=4504,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5388 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --field-trial-handle=5936,i,14819345428284857472,16175818165933106924,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5988 /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004D0 0x00000000000004CC

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc

Network

Country Destination Domain Proto
GB 172.217.16.228:443 www.google.com udp
GB 172.217.16.228:443 www.google.com tcp
US 8.8.8.8:53 228.16.217.172.in-addr.arpa udp
GB 216.58.201.110:443 apis.google.com udp
GB 172.217.16.238:443 clients2.google.com udp
GB 172.217.16.238:443 clients2.google.com tcp
N/A 224.0.0.251:5353 udp
GB 142.250.200.14:443 ogs.google.com tcp
GB 142.250.180.3:443 ssl.gstatic.com tcp
US 8.8.8.8:53 227.212.58.216.in-addr.arpa udp
GB 142.250.187.206:443 play.google.com tcp
GB 142.250.187.206:443 play.google.com udp
GB 172.217.16.228:443 www.google.com udp
GB 172.217.16.238:443 www.adsensecustomsearchads.com tcp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.200.3:443 id.google.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 142.250.179.238:443 www.youtube.com udp
GB 142.250.179.238:443 www.youtube.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 142.250.179.238:443 www.youtube.com udp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
GB 142.250.180.6:443 static.doubleclick.net tcp
GB 142.250.178.10:443 jnn-pa.googleapis.com tcp
GB 142.250.178.10:443 jnn-pa.googleapis.com udp
GB 216.58.201.98:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 10.178.250.142.in-addr.arpa udp
GB 142.250.187.206:443 play.google.com tcp
DE 64.190.63.222:443 hianime.com tcp
DE 64.190.63.222:80 hianime.com tcp
DE 64.190.63.222:80 hianime.com tcp
GB 172.217.16.228:443 www.google.com tcp
US 205.234.175.175:443 img.sedoparking.com tcp
GB 172.217.16.238:443 www.adsensecustomsearchads.com tcp
GB 142.250.200.34:443 partner.googleadservices.com tcp
GB 172.217.16.238:443 www.adsensecustomsearchads.com tcp
GB 172.217.16.238:443 www.adsensecustomsearchads.com tcp
GB 172.217.16.238:443 www.adsensecustomsearchads.com udp
GB 216.58.201.97:443 afs.googleusercontent.com tcp
GB 216.58.201.97:443 afs.googleusercontent.com tcp
GB 172.217.16.238:443 www.adsensecustomsearchads.com udp
GB 172.217.16.228:443 www.google.com udp
US 172.67.128.56:443 hianime.to tcp
US 172.67.128.56:80 hianime.to tcp
US 172.67.128.56:80 hianime.to tcp
US 172.67.128.56:443 hianime.to udp
US 8.8.8.8:53 ajax.googleapis.com udp
US 8.8.8.8:53 maxcdn.bootstrapcdn.com udp
US 8.8.8.8:53 platform-api.sharethis.com udp
US 104.18.11.207:443 maxcdn.bootstrapcdn.com tcp
US 104.21.27.152:443 use.fontawesome.com tcp
US 104.18.11.207:443 maxcdn.bootstrapcdn.com tcp
US 104.21.11.161:443 cdn.noitatnemucod.net tcp
US 104.21.11.161:443 cdn.noitatnemucod.net tcp
US 104.21.11.161:443 cdn.noitatnemucod.net tcp
US 104.21.11.161:443 cdn.noitatnemucod.net tcp
US 104.21.11.161:443 cdn.noitatnemucod.net tcp
US 104.21.11.161:443 cdn.noitatnemucod.net tcp
GB 3.162.20.32:443 platform-api.sharethis.com tcp
US 104.21.27.152:443 use.fontawesome.com udp
GB 18.165.160.124:443 buttons-config.sharethis.com tcp
US 216.239.32.36:443 region1.google-analytics.com tcp
IE 52.213.211.222:443 l.sharethis.com tcp
NL 139.45.197.166:443 jxpwmowtjjn.com tcp
GB 3.162.20.13:443 count-server.sharethis.com tcp
GB 13.224.81.93:443 platform-cdn.sharethis.com tcp
GB 13.224.81.93:443 platform-cdn.sharethis.com tcp
GB 13.224.81.93:443 platform-cdn.sharethis.com tcp
GB 13.224.81.93:443 platform-cdn.sharethis.com tcp
GB 13.224.81.93:443 platform-cdn.sharethis.com tcp
US 104.21.27.152:443 use.fontawesome.com tcp
NL 139.45.197.245:443 waisheph.com tcp
NL 139.45.195.8:443 my.rtmark.net tcp
NL 139.45.197.236:443 yonmewon.com tcp
US 8.8.8.8:53 74.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 124.160.165.18.in-addr.arpa udp
US 8.8.8.8:53 222.211.213.52.in-addr.arpa udp
US 8.8.8.8:53 36.32.239.216.in-addr.arpa udp
US 8.8.8.8:53 166.197.45.139.in-addr.arpa udp
US 8.8.8.8:53 93.81.224.13.in-addr.arpa udp
US 8.8.8.8:53 245.197.45.139.in-addr.arpa udp
US 8.8.8.8:53 13.20.162.3.in-addr.arpa udp
US 172.67.128.56:443 hianime.to udp
NL 212.117.190.201:443 sr7pv7n5x.com tcp
US 172.67.193.52:443 tzegilo.com tcp
NL 139.45.197.245:443 waisheph.com tcp
NL 139.45.197.245:443 waisheph.com tcp
NL 139.45.195.254:443 flerap.com tcp
NL 139.45.195.254:443 flerap.com tcp
NL 139.45.197.236:443 yonmewon.com tcp
NL 139.45.195.8:443 my.rtmark.net tcp
NL 37.48.68.71:443 datatechonert.com tcp
BE 104.68.85.7:443 s.click.aliexpress.com tcp
BE 104.68.85.7:443 s.click.aliexpress.com tcp
BE 104.68.85.7:443 s.click.aliexpress.com tcp
BE 104.68.85.7:443 s.click.aliexpress.com tcp
BE 23.55.96.141:443 s.go-mpulse.net tcp
BE 23.55.96.141:443 s.go-mpulse.net tcp
US 163.181.154.244:443 bottom.campaign.aliexpress.com tcp
SG 47.246.110.43:443 ae.mmstat.com tcp
BE 23.55.96.49:443 ae01.alicdn.com tcp
BE 23.55.96.49:443 ae01.alicdn.com tcp
BE 23.55.96.49:443 ae01.alicdn.com tcp
BE 23.55.96.49:443 ae01.alicdn.com tcp
BE 23.55.96.49:443 ae01.alicdn.com tcp
SG 47.246.110.43:443 ae.mmstat.com tcp
US 163.181.154.233:443 g.alicdn.com tcp
US 2.18.190.70:443 time-ae.akamaized.net tcp
DE 47.246.146.202:443 acs.aliexpress.com tcp
GB 79.133.176.250:443 img.alicdn.com tcp
US 104.18.11.207:443 maxcdn.bootstrapcdn.com udp
US 216.239.32.36:443 region1.google-analytics.com udp
GB 172.217.16.228:443 www.google.com tcp
US 151.101.1.229:443 cdn.jsdelivr.net tcp
US 104.21.235.70:443 iili.io tcp
GB 3.162.20.89:443 cdn.socket.io tcp
US 104.21.11.161:443 cdn.noitatnemucod.net udp
GB 172.217.16.228:443 www.google.com tcp
GB 172.217.16.228:443 www.google.com tcp
GB 172.217.16.228:443 www.google.com tcp
GB 172.217.16.228:443 www.google.com tcp
GB 172.217.16.228:443 www.google.com tcp
GB 172.217.16.228:443 www.google.com udp
NL 212.117.190.201:443 sr7pv7n5x.com tcp
US 104.21.52.33:443 ggbet-online.net tcp
US 104.21.52.33:443 ggbet-online.net tcp
US 104.21.52.33:443 ggbet-online.net tcp
US 104.21.52.33:443 ggbet-online.net udp
US 216.239.32.36:443 region1.google-analytics.com tcp
US 104.21.52.33:443 ggbet-online.net udp
US 216.239.32.36:443 region1.google-analytics.com udp
US 151.101.1.229:443 cdn.jsdelivr.net udp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 172.217.16.228:443 www.google.com udp
GB 3.162.20.89:443 cdn.socket.io tcp
US 104.21.235.70:443 iili.io udp
US 104.21.33.77:443 megacloud.tv tcp
US 104.21.33.77:443 megacloud.tv udp
US 151.101.2.114:443 ssl.p.jwpcdn.com tcp
US 151.101.2.114:443 ssl.p.jwpcdn.com tcp
US 151.101.2.114:443 ssl.p.jwpcdn.com tcp
US 172.67.173.153:443 s.megastatics.com tcp
US 172.67.173.153:443 s.megastatics.com tcp
US 172.67.173.153:443 s.megastatics.com udp
US 104.21.11.238:443 fds.biananset.net tcp
US 104.21.11.238:443 fds.biananset.net udp
US 104.22.34.239:443 r23.lacinhcet.com tcp
GB 13.224.81.124:443 prd.jwpltx.com tcp

Files

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

MD5 28ba20b20ca1c456d31d9d2ea559f7be
SHA1 ea7716ba0ffc9c16e45fb429c015665721b7a6ea
SHA256 a950559606eae8f9d226871c25aaa3aaf28390e69608044aa1fa2a9a0aceafaf
SHA512 2ff32047b708c5d0ed7e297431c4e1887e16d7b6234ca8ac50bbac5be64c73182cb3f422ace7efee310db34e4bd4ff047e70c93363ef670abc1b93d992c83b7a

\??\pipe\crashpad_4592_ZPLVOYDGLEXVWWIH

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

MD5 5819d5d0dcdb0cc1e9bf0781b3f88be5
SHA1 9002ff23585621b74f451a907e9614c9ba7e580d
SHA256 41d2232d6098dffd79af8da16b5a8e3f71b4184712d90da9e2856f363634b2f4
SHA512 c51d0736014f47b4fe103678f0ff2d91e89ae53f9799a6612914d7e9ea153bf6c2ad4a4167f7bcc20a8aa1199c0b79373013a59b392534025a3125778117614b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 6133926fce97142c57e1d94a1c23ee1e
SHA1 572ac9e210155204b3b867dca86278df58903c5c
SHA256 b0eb593790bdbadc9115364674f738410743dee422c31e138c25b22b6959ecf4
SHA512 4549a6c16ef6a23d1659823a1479cb5a6355480f9b836ae65bdb00e14cf98e09336f88a3835da30aae3eba5b5c1a40404fc5f66f0cab6864c855923407879020

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f8b2172ec3235945a6a932ffb5a20930
SHA1 4f4f55ca650ba3f13afb54e938a67ea6655513d0
SHA256 966de67f0e39090a49b66a066e66c492d1697972d2b679eb02b2eba8849a8215
SHA512 45651975241ee4ce908b2afed278555837985de52432db4e313436a08fcdc0114c98672b02282593712266fd8d1fb250094e0db001a6b6a558266d0e1ce25e16

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 03ab0897977de64ba1a5556be07fbb99
SHA1 f35ce00f563884f5cf39a20b5fbbdecb614d77f7
SHA256 a49a6744999530b56c3387f94dc9f118b3fc4544546bc9047288ea3678fe0d68
SHA512 281a2312feae0c9278c5ebc31a496c50d2f7cb5edb2548cc4bfe7c77016fb3392f36b37c4a5b77c96b27eaa074c8505e87a607e16177bd0ec92e7bb930c73da0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 9be98abdbc8ab49dae0f3a439bc624a8
SHA1 b5e04b1a5ef4c399ddbae4cf10cd40151c4ea78d
SHA256 16b62ab7aa461103dbdcde5c05031d2b72f028119f282608029bb5190adfaba8
SHA512 73789897627f0e76dfdf2b830627cf1b434193522679bb57d37b536b27d17b55b962bf89540782dfb82954a21dee599fe6484d9f9f17197e2bc09ef22de6d32f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2db7abaddfc3c31e5ab25918ebdb0127
SHA1 e651baf359a76a626eea14b531896020c74b4763
SHA256 d6b3039c158e20af67bab0a3c885aca7a2318bd13b860ad949d8806ae65fafbc
SHA512 15afbd43c957416c1ca577eab8d180679c4818658929e178d97b4535ec75288fd8217bfbc502360285b86c7e3039dcb63f3558dc6721a4272b59f080424934a5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 01cf0b26c0ac6d09ae956da3d7dd2da6
SHA1 d495f85d1253216dec6f8a03f0cd3f85fc840d41
SHA256 3d847df57f8f35d9dfbec5f65b45c08a743142f42a419e89f39bfabb09fa908c
SHA512 e06e837dea6b2683780bfcb6eb471648006bc7f247bc5969c8c527fd6230d8a717ea466416fbc01f8101904afe4419b3f35c2ddabf6552947950ee1c4dc5a9ae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e18dafc3e23edf8f20be9feddee6ff26
SHA1 03353e1c057ba1ae1724b44a608282b0d774ffca
SHA256 aa5b8727ac0eb9c3ca0654ffc8d5f5cf2648d7a1fe8f52da7de6dcb653ea475e
SHA512 6fc437bf526a8416cf874b1b0f35f871c795842184bfee7dd6d0fbf6653a452cf4b166a4ce3336866ff7d652309008c092139f24e68b99013759403aa169157c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 1cbee1cac1377bca0dcc1295ec8f335b
SHA1 b211872da2df2868c3e0308af9dd484857199861
SHA256 82208f75df4b676fa92e27ce91cd85e0f028d0ff43ba5ffa1c16d52dfb5d759f
SHA512 6e78be01b44fe6f71743dd2427200971028ca04dbb582dea68953e616976ab399e333e0d9742593b774ac0bc7d950d3dcfb5d88abb86425f0dd0655948c6786d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0f5b903ea1f5c85717575f1917ef0ef8
SHA1 9010a9da57c4f7e56291a01e5e35321f1f922eef
SHA256 fbb09c916bdd124863c13523c1109634c0e6afe702a5568a852f08adbc9f00a1
SHA512 6238b2cf4e6fcb63a6de37a722c289f9f2806a56988e4e4e8ba451280e70d4516aaa9b8264e464bf00ec9f128dcafe8573923839341a7f71da72f208f7014597

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 1ac293b1037da426fbffd5366d2e3ce0
SHA1 e43a56cae3fc831cd98d5b8eba0b42f481a5544b
SHA256 8fab29e106ab7b00cdc7a2c127b7547d396acca69e118502d16996cde05556ff
SHA512 de23bb189a931e4c57823d4f6c45b27df3e52c3a8253c4ea4cd11d9a122f75bd68dd91ebf79f294a8503d44246a8f69060c45fc333280b6dd2ced04b254911e1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 95c1edf84bcfa21dd776bf34231e4a3a
SHA1 e1f701b6871b2bb1c10d7325b3d0b5dbb960c2e0
SHA256 5a2f1706c94744f8baac1db3d54157e08a8950004915a8c3a819b743812be4f5
SHA512 5e37e477492fd41b9d2ef9f7d5f15676ff7ae2225b2edb317644342014bc1bdf0e70f8845e2afd2d273539cd4f1d889abc379dd4b5f7fb5dcc93b34728589784

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7e90a223fc5db48a73feeae5a8e8256d
SHA1 e4162446550723f6bf2feb41fff488ba9ffc8271
SHA256 98e91b70377d66c29e2716af904500db8d17fc8ddd3afbca7ec7c411514486d7
SHA512 43dc1684316275b56775fdc5a613951917a1e342fe491592de5a7a89cd85739e1e807be76a1374d6cb5bb2226ea6f3b7abc0d17ed08319c521af09d4e637bd8b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 94ed9e88130af093af0283518cd3df9d
SHA1 d50dbced29ef31b05928c6b056bc058eeb1d9fbd
SHA256 912bf43e8a3f9f29945e5ecec3f4ec8b134d9d9e901ab31cda1eb259d9c41a73
SHA512 99c00aa2cd17c8092c46a14b94cf3a32b10f9b3d663c33eb28407c5d31a5319baa467fe9514b47390069b85a84e986388a2cbc912ac323e8e28a244ff5ecf5a1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\2\CacheStorage\index.txt~RFe58a97a.TMP

MD5 113b271196a83976df110d2f5f054cd1
SHA1 c963befbf8991528da4aea53be06f20c1a4bef77
SHA256 83d3a67380fcec2f612aebe64cf5dbf22797d9d05a67dc889069713f621e6938
SHA512 2a454ea1cce5450efc1effa66242d7eb497255b7b1292b179b2d3d6657ad889db90c3056c40a09400994e5a24aeaca35edac4993172f4691f66d0e7fbe2ed727

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\2\CacheStorage\index.txt

MD5 a7a2f6dbe4e14a9267f786d0d5e06097
SHA1 5513aebb0bda58551acacbfc338d903316851a7b
SHA256 dd9045ea2f3beaf0282320db70fdf395854071bf212ad747e8765837ec390cbc
SHA512 aa5d81e7ee3a646afec55aee5435dc84fe06d84d3e7e1c45c934f258292c0c4dc2f2853a13d2f2b37a98fe2f1dcc7639eacf51b09e7dcccb2e29c2cbd3ba1835

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

MD5 bc8ec6d0e3f746a78c43cf4f98312a02
SHA1 22a3fdaf7f8e3176fbcd24c760214736e78ac8dd
SHA256 bfd346deaeb1162c3c5d895c452e104f3824cc8e4d737ca78a4800d0f1c74b21
SHA512 5598235c508347c310348c3fabed174c39f639e4ba3513f4419332aa5d4fa4e925945eeb0f4b56bed923b84504d3aed5d5f5d70e27406a194fdbdb3f5c10cfc4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 bc4826690c7b108290ea953e579cc9ac
SHA1 ce5d4fd56b74b3d5e8ae01d474b4a3b22e72d5bf
SHA256 4b1c9c4c3b76e0bf7bfeb16a48a706faf215b69b9268e87f4e8801bbb27d4328
SHA512 19cde43e225c8fa33601df4c05a186c1cb0b9a9fa077e153599a0088baf90558357f7500041b3f7d6c3fbe29101b4d3dde71d6f6454e7701d9640756fdd69cc5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 62489086ac5ca6dede1c71b082823413
SHA1 53fe7ff40ebb060d588dce9f9cc9fb566e68f686
SHA256 b341853e4c4a68dfb33481fd0d26bb1aec8ddbeec84fb3fd57efc3476ab8d3b0
SHA512 8719c97e77a0744ac666cf2207fa431670bc12651b66c7d5f592f0049d8235f8281613e2851004667015cd50d0c82b05d3a57a7c0d03cee5d5cd21922a12fa61

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 386466346c38811ffe2d5aac5797a426
SHA1 829f73a190bd0d516f3dc07a3515302327b1659a
SHA256 6cb5a05b1cdf44312e0386b4c58b825261610b2944942c4088b093fce503f2fd
SHA512 cf45ff4a45a6d6208f9fcbbe2cfd83589ee046548284ee89c465d2cdf952a9f3339a85c8d700edf6ca5f830f5604553c99e16136a2f33990b5d80060798d766d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 ceed6bc74e1227b0c918a132c83f7f13
SHA1 f28639a588cb0a5a6e86b660a1441adfd1761336
SHA256 ec234f05df922f2409ee94dae1733c18ceb06171f9d56b57179276974077ff07
SHA512 4f752937d4729e4eaed5f0855c2d3a9c31c391d10614789d05ffc0823e94887490ab348529fcc556124859fb4c6e4bee2e9918b2d6a19a5e27fdb236a1c796ca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4a37241965e5305082f1daab80248664
SHA1 ee735726683a8e5c3b9c41cd965e17a264165811
SHA256 d8bdd346a9e0605d5f7be72d5d4e5e3c7e49d85cff1b999c1f5f64ad483a264c
SHA512 52ea92fd4fc95bebce494cd6a7edb402a90f31b51faeedd8f7d307dbf4aec84d4653cc90331be59e0c030643a58a38e5d169ff0586d61439fad8ae02314c2b91

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 b1be3e4783183ba29aeaad4cf62f8bd4
SHA1 d5a0bd35b37d62deed0256acbda8c7c42ec69308
SHA256 c688883815d4dcb36792f8cd09ec780a0c176101962e0278e1522d0d8b8aa1e6
SHA512 3d158f4ac0fd3e5ed6d1803ae1ee3622ce7a0dc1c518e429e4c67a7e6e5d640d6d342b0db1bfce279cf7d3756c8eb8dbddc81c2ce26fc6ca2de1e73abc2190c9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4485c495ec33225877d9525ee0a7bef8
SHA1 abe32ca8e450c8f02d22d34ad27714e699e421bc
SHA256 1156879cf0aee9553338988d90f348b215f47b1193f3e77da099712eeb32876d
SHA512 472a00e9ee3c65a120a9bc896289d83943bf664b3881d675a04bf0f0a79816abe3b4d8c62a316fee14d569c76b95380f5618528a3a942a4837fed584cc01006e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

MD5 5ce7bdeeea547dc5e395554f1de0b179
SHA1 3dba53fa4da7c828a468d17abc09b265b664078a
SHA256 675cd5fdfe3c14504b7af2d1012c921ab0b5af2ab93bf4dfbfe6505cae8b79a9
SHA512 0bf3e39c11cfefbd4de7ec60f2adaacfba14eac0a4bf8e4d2bc80c4cf1e9d173035c068d8488436c4cf9840ae5c7cfccbefddf9d184e60cab78d1043dc3b9c4e

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 5ff45c3248082b203e6b8599958acb9b
SHA1 2d91fbe96a0558cc7c76ea8349d24cbf906bbefc
SHA256 e0713f813963ba7234d56247d0861a867752dcd904dc6219ca448bb5ba838b66
SHA512 c2e43187e786f447b41719ac5012a26b1879775cb6b0f69f6a109886c57f3c9d3a82c17479e3b31d011967f66f623617856d49c16ba9a5751b94237ccbbf5086

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 44a6bbb09758f123658fb6577232f4c9
SHA1 bcfc8bf3da933e3e0fa59a9da1672642ad77ae5f
SHA256 a8da9babc45dc53d6b5c5b8f298c3c0f194ac912657400baeb33bbb0a7a30e25
SHA512 5feb8cf161dc63ddf1c03c4d6bc0b5c65aa8b9e3244a996810eb7e0524c7bb623b09f69e9066a12962511c3f32be418cf6f6400224d3d8a2b7a8224f53425848

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c91fcbb1007921ec08de28958fa9c2c8
SHA1 e29a3f6b695df77da6b388615ea6049dae59d476
SHA256 256dccced122799accb2ed81bb5f356a07bb33ca1fd082c904bbf9b15ec8d59b
SHA512 11f042d492e34911e56a872c31d9e5f2ab065e4c0c4a15b5c5c523a4196b28df8d5b7fa5253bf60b8ca339322e1436e68c1735c1f2aac58793f438be0c3492ca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 6cef1512f57ad01cae8f84a5a531e2e8
SHA1 60e3aac6b8396f73759a78def5b23beb8e38fe9a
SHA256 75e5f980dd36c0d592d76c20407b71e5d958c7c339c8c8f2144436c64a77a19f
SHA512 3682905c57b92bdd8edd5b516e5b5af766983341ce40d15ee841fe6bc8e9685adadfe1ef57136b3825398855a3a7b41db6fe8a88e091a9e793cf427f5cc968d1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fa2e9d809533e01450e2b43dfed0c495
SHA1 5ebe3017949ae9eef701cf5503ec30efbe15a716
SHA256 54a73125c7779afed7753b9f71e5c3b1d1d132409deca9118032d5c2a639a31f
SHA512 6f3f97ce297e936e0bac09ec04749d6a2ca753042c92d23db7bd5178c1646f7843972ca5df765236c54d5a48c0f1b8dc9558006dc390245be55ffd7da572ba08

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 2c8e4c195bb67993fdad8f9f70fb46d9
SHA1 d8a07a066ccc2e0da499bbd47a9cfe2677de0a70
SHA256 49f809473da191b28cf10d1e344b1beff41beaa169dc656b9d676c43178c8401
SHA512 ace62758010781b37b4d287ae4de1ec5fa1ed2e795b223205a956c0aab5e365ec53b236bdf027dc6c2790fdc054858c9590f0dc610c249cf586335207e19f830

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a7b1a3090ad73a287d7d19b5ddf77c39
SHA1 ac5953ef6c1c8ae9ac198857e80c44e88d553cb9
SHA256 a6519a47dde2fdb630e451eff9e4513091919d245cc3081cea010ffd0c0964a3
SHA512 faaffa70554f02ad3418a2ec8e5508d90b7ce77597cb096575cd8a4f1ee3352a2e6ab9e4ce0d7c4208bfae0e568f020faafaa28bbaad4096525ecb54983fd7b7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004b

MD5 a484f2f3418f65b8214cbcd3e4a31057
SHA1 5c002c51b67db40f88b6895a5d5caa67608a65ce
SHA256 79cbe928773386d07f0127f256f383debed5ccea5ff230465bf46ec7c87319d6
SHA512 0be1bb8db08f6e6041a85cfee90cd36a5b595afbca34d52a125465454fc806b4bb7ae569eaf4c882922fb1b962b6060534e597791cd0ad23483be5981d9be85c

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

MD5 f49655f856acb8884cc0ace29216f511
SHA1 cb0f1f87ec0455ec349aaa950c600475ac7b7b6b
SHA256 7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba
SHA512 599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

MD5 b5ad5caaaee00cb8cf445427975ae66c
SHA1 dcde6527290a326e048f9c3a85280d3fa71e1e22
SHA256 b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8
SHA512 92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

MD5 d222b77a61527f2c177b0869e7babc24
SHA1 3f23acb984307a4aeba41ebbb70439c97ad1f268
SHA256 80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747
SHA512 d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 97a68e472ec8a2b598fc5c49216e91bf
SHA1 2a5aea67c3b45ea71a0eb9072da51bb0b3ca5b64
SHA256 861a9a3bdae580207369f13e0fbdf0b6bab132405e20845afda2e9b599b02835
SHA512 136ae7f0f2a90974af3d890b6df8123ec4e21f4ef0c61a4a030505c83ce1809e7e6a0277c0698f103cedc20f9a6133fd1284683841e9a094f440b9bbf9e5b484

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000068

MD5 87e8230a9ca3f0c5ccfa56f70276e2f2
SHA1 eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7
SHA256 e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9
SHA512 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000030

MD5 7e158a4297d8474b73a154787a9beb86
SHA1 0e62ca7eb32e15c914dc268ba920c451f536b528
SHA256 0947b3dffeb84b44173120cb1671610aebd3b43d5fe3f7574c9c6312c5b7fb99
SHA512 d756d856c13b2cca6ae0a30cf9d3bf73b84fddd55858edbfeb29550e5b78e03fc807904d2d0ca41290574d99b2332daecf6cd0578913db52f8a81193d0d0baaf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002f

MD5 f95a0faf6629fe55dba24478808491ac
SHA1 c91fbfa760c6642f522038a7e90b9445cf8c762f
SHA256 3401a6c618e31c817b75f603ff2ecfd83b8b75e4309aa09007cad5e98878f1f9
SHA512 06f2e5329db17deb104bd106cfc84ea2b321a4ddf64d6d4acf37462cc0d898530b3d913f2c48c7cc29063bb22430e9d12ebd6c9f8e32a2e980cd985a40923673

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002d

MD5 59b2a08dbe983864b1282169ed44d587
SHA1 55a4b388951aa496c790ed2c264c6ea8bdcdf49f
SHA256 643254f9ea3311ad024ae0ed83c78be1c62776024fae5bb4bb129ba552f775c2
SHA512 912fe26ddee336dd8df63609131ae9de79cefee3355c31eee1928d170d939c7f78465835fa600e3e090e9ee37263fc501477f65c5e669823c20b072375f32d8b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000031

MD5 82a4afd7ba011f633c64d632b38b08d9
SHA1 0d1a2475224a30a82d52dff900b84120437be14d
SHA256 d5cdc3675647abeaff7e4305d3018bf46b8ffac3b13baad154286d800159c188
SHA512 5549ba861ef45e0465af6150c2c8c0988907d66b6f0429938541b8bd1af2f67f0a3172f8c0bb54b7ab302686169ae8265691e439e5d71ff91fb72a40fcbc4d8a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5c65ca1b9bad091c_0

MD5 727a8db2a704ef7f536a8e7d204de86c
SHA1 dcdff5007380a38806ee32b8913c917e1601665e
SHA256 eda8ebba76192cfb5143c4fff6b6950fdee3365c02c4909104c7fd9f762ae039
SHA512 65aef40a305a256e2f10a97c04f83523774305545d84d9602fdb9466eba257846dc8d09ef402d012394aaf2ae0a6006400faa852e83241700b180b903244e28c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 38a81e5ff560fe5521ee0c0baef21dde
SHA1 376ea41ea43025b605700c974d1229f27975ceff
SHA256 b8848fba4a83a9c89211fc382f323fee4353a1877a65f22a5523cb4fc7ba096d
SHA512 91e8eda9e2873d85c770ae3339de56389d85d4fa685420708652cf706370acb4cf199467c17f6545999b012d21a88666e9581009196448ea97ff88eab0bce73d

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 a5bf6bb1f7879321e3b1c7469f7441a8
SHA1 9f309450ee4b2a6f7110aa3a998520fd5bd14acb
SHA256 eae480a9a88b176adb523bec171f863e1b7a7e1d56e1dfb0a3b69d0bc967a186
SHA512 f092c3ecc4f52662c55d3266b3fb807f3926536c23ac732bcf225a4c14df7269f2771ea26c78e58fad9fee0c5bc92c8bcb146b6b0a97fe92899848908491dd64

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000034

MD5 a23d959420a7c744fbe933206a430c21
SHA1 d6889af9be8dffd896d5c511b3835ac3f64c8fba
SHA256 22e7ed7cf0d5f7ff5a21d6595baf1a4a80674ea584d059f84d32b5d1470fddeb
SHA512 dbb997135d3ed42c7d50c9f0553373e9d5e22defdcb5f9ff5bb9c91b0bbe6b6405c140724dceeac0e5f39945fa9c141b90233e04ec3322ba43c566442676cb07

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000041

MD5 ea50d873d307295aacd478aa8ebab916
SHA1 9e624e6b363550e7d67d9794671c506e1783f668
SHA256 52251fc05c18f26b8f2825265029f0765c41b0b561d5c957375bb79b05044168
SHA512 f4e60ee46521440729167be327aac9b2c238b25e4b7d6249410176b1bf8e9b946e51eaac3080508ed6d7cb20217f3cdaf63f9aec1bd6820ba1cf057e4e0819f9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5c65ca1b9bad091c_0

MD5 8edcc8c51e4f0e9f866aad38f31cbb18
SHA1 fa690baaf51c7bf68ce520738e50902cde639ebe
SHA256 3814e6b1e887506664e776c4330215aa4482b2f55428a10767cf8db2bb2129e5
SHA512 6f82aa3c5dab4dcaa20432b510b9cc98635cd748848804a4635774fdf5432636b6c7f7c5b78f25d87e762f5f782ca6d659e9d7c6990288cb0ac8874aa7c5ffff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\35a19f98ccc6c0b3_0

MD5 8e4539d843a51057a7dd2c70de489643
SHA1 9b190d42bcb99178e13e9d3a9a6e5deae4a0bbd1
SHA256 3713638ffc968ab96dc525a38f86db75bdb2aac77b544cdf31caa255f7989c0e
SHA512 b81ac7101f2cdefe4317f01033d4703f2cd48cf49c66f9ff0a46d6963958e2f258b3e570d0474821b3764d10fe40ab04475bf6eeb401ebf08c52a246e7fb6330

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0e11f77ba411c503f7666e519400e97a
SHA1 9996baafccb7631fd1bab95cca6e05ffc7e791ba
SHA256 f991474d45ce52d6c79e1616a9c3b5c018305e54a0b20dfa99fac480d253d8f8
SHA512 6241942aa79cf86eb8817d7f4a74ae9d9d1327061d2ecdd7c4aa704c97ad943bc21eb88173927314ada64cda2fa5b9bb89d8250973a5473396c6795615e09445

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 292a21a0bea7e308b9156187e1e2e232
SHA1 f8e15705fe60c90c8269647abe36c29f0f09bcf3
SHA256 63fa569526e432efded2f42f03274920554dd5efc0d7a4373b3fe5d5ad9a7570
SHA512 02aa0ff7a1aaffa460036a1a9a8a3a814680ed23aeddb04bbb7874bbc0f658efb01eb4aa9a26c3ad0bd65675d86ff2c9282cd52061794602e12d64baed08904e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\6e4e59e937917fe804c7977fe7d2c086ce91af4e\index.txt~RFe59a212.TMP

MD5 9be03ee784cc1eea67f13109d3971879
SHA1 9024439fc35886c185fee844ba6f2523b6aaeb2b
SHA256 ce881a9d814fb4e9db3bd20e33cdf68f594ea37a98c82a2d1b7829737de74828
SHA512 7f028443ffb6d283a186fbec38f69d8a85a71d1381301cd5791c96844ef42ec9259fc57a5c61f315935f5912cfa1718415b941c5c2f7fc1829dc176280632acb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\6e4e59e937917fe804c7977fe7d2c086ce91af4e\index.txt

MD5 2eb401b7cdafbaf99fce40956222a4d6
SHA1 e197a5ecae01938d7c4e734c2e9189884e147927
SHA256 d832c308924872f1c5f8224ddd8533603e73bec4c37cd9725bbaf733fd9c8724
SHA512 53a5fcbc7c6d347585bcaa4a86c3a6fa1a167eb910ad087f9ae09ac73d4e87fe9b276279d88014ecc7f80c28d43da501ff618a475e6fb681afc175cd59a1398f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 73b1bd14edfc4672775e0a86bc17bd07
SHA1 c503dd9ef7d6325c8e4fbeb407fe8b0a03481de9
SHA256 0b465486fe626adec6ad56c7ba8e840847c4219774504563c6b16adb503a84cf
SHA512 7ad05423e280696a667238076240aa4888a7a11eb27df50c4283d9e7b07834e24c915aa6d5d58e1af16720a653cdba63acdaed02fd080d459dc4657f201cf450

Analysis: behavioral2

Detonation Overview

Submitted

2024-05-05 03:15

Reported

2024-05-05 03:15

Platform

ubuntu1804-amd64-20240418-en

Max time kernel

0s

Max time network

1s

Command Line

[/tmp/Untitled.png]

Signatures

N/A

Processes

/tmp/Untitled.png

[/tmp/Untitled.png]

Network

Country Destination Domain Proto
US 151.101.194.49:443 tcp
GB 185.125.188.62:443 tcp
GB 185.125.188.62:443 tcp
US 151.101.193.91:443 tcp
US 151.101.193.91:443 tcp

Files

N/A

Analysis: behavioral3

Detonation Overview

Submitted

2024-05-05 03:15

Reported

2024-05-05 03:15

Platform

debian9-armhf-20240418-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A

Analysis: behavioral4

Detonation Overview

Submitted

2024-05-05 03:15

Reported

2024-05-05 03:15

Platform

debian9-mipsbe-20240226-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A

Analysis: behavioral5

Detonation Overview

Submitted

2024-05-05 03:15

Reported

2024-05-05 03:15

Platform

debian9-mipsel-20240226-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A