hxxps://github[.]com

max time kernel
263s
max time network
263s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
09-05-2024 08:52

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://github.com

Score

1^/10

Malware Config

Signatures

Checks SCSI registry key(s) 3 TTPs 3 IoCs

SCSI information is often read in order to detect sandboxing environments.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000	taskmgr.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A	taskmgr.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName	taskmgr.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-3558294865-3673844354-2255444939-1000\{6546CD52-102D-4618-A62A-0909FDA90A48}	chrome.exe

Suspicious behavior: EnumeratesProcesses 11 IoCs

pid	Process
2200	chrome.exe
2200	chrome.exe
2528	chrome.exe
2528	chrome.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 8 IoCs

pid	Process
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe
Token: SeShutdownPrivilege	2200	chrome.exe
Token: SeCreatePagefilePrivilege	2200	chrome.exe

Suspicious use of FindShellTrayWindow 59 IoCs

pid	Process
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe

Suspicious use of SendNotifyMessage 57 IoCs

pid	Process
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
2200	chrome.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe
3944	taskmgr.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2200 wrote to memory of 2880	2200	chrome.exe	80
PID 2200 wrote to memory of 2880	2200	chrome.exe	80
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 3396	2200	chrome.exe	83
PID 2200 wrote to memory of 4808	2200	chrome.exe	84
PID 2200 wrote to memory of 4808	2200	chrome.exe	84
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85
PID 2200 wrote to memory of 4628	2200	chrome.exe	85

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://github.com
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2200
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7fffc6a1ab58,0x7fffc6a1ab68,0x7fffc6a1ab78
  2⤵
  PID:2880
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1732 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:2
  2⤵
  PID:3396
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2132 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:8
  2⤵
  PID:4808
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2208 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:8
  2⤵
  PID:4628
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3024 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:1
  2⤵
  PID:3660
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3032 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:1
  2⤵
  PID:4632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4092 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:8
  2⤵
  PID:3180
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4068 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:8
  2⤵
  PID:4320
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4548 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:8
  2⤵
  PID:2504
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2388 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2528
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=1540 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:1
  2⤵
  PID:1588
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4652 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:1
  2⤵
  PID:2172
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4804 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:8
  2⤵
  PID:3808
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4976 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:8
  2⤵
  PID:5020
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5104 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:1
  2⤵
  PID:2408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4280 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:1
  2⤵
  PID:4508
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4816 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:8
  2⤵
  PID:3116
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2372 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:8
  2⤵
  - Modifies registry class
  PID:4432
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5136 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:8
  2⤵
  PID:4572
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5296 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:1
  2⤵
  PID:1336
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=3432 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:1
  2⤵
  PID:1768
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5868 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:8
  2⤵
  PID:4436
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5424 --field-trial-handle=1828,i,16540382320622911275,16395785089363413528,131072 /prefetch:8
  2⤵
  PID:1496

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:1056

C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /4
1⤵
- Checks SCSI registry key(s)
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:3944

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x494 0x300
1⤵
PID:1872

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b

Filesize
219KB

MD5
a54050eb2a6184f1e703165402a429eb

SHA1
7c273ee43cd614151ee628cf156c13b30080d220

SHA256
c26715c4c1141af371f114277c53d744b9dcc7c610ddf2e9a39fe70ee13f14a6

SHA512
3831f5b61af37d719d19a11707450d647f728f2e24a918e428c7a5621719dfc7cb526ca9835ecea3791b47e0a655e5d581338bf670de2c1a474fea13992607ff

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001e

Filesize
20KB

MD5
f218c31d967d7d050e360b26b39df4c3

SHA1
3a03e2ae75080ef0755bf1a1131640e3ed773d1d

SHA256
791410a89899725c497f590cb9138f238713dcf1b318340c18cf0682d52b63aa

SHA512
f97d6fa798fbfa27b3578777d938c327a0b1ea1379c4e0d50d640e4682fdd88dc210d30432320140d5ebdfb6ef721f0b844801a81305c877cba1d3e05d0097c3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001f

Filesize
46KB

MD5
ac83857f0497a4a0e7669329827cf228

SHA1
18ea483c966969e43a654fcadea9719a8aca370c

SHA256
43337a1354f376890cdb73f3dbaf95a8027761c574c30cdecb321096be485d3e

SHA512
6a35c50764d31d4bac07ddbec2329238cd04f2c58c00629e523ae7fc2a7d6be5d1226f8fb6c3c1043b215c38c47951a66fa8a9d4f4d6ddce7664bd1d011db2aa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000020

Filesize
794KB

MD5
337b62fb0ea258fddda5ee65d3947b78

SHA1
7fd3a54169790a17dcfef9dcebe43e73a5dfb0a6

SHA256
82ff291326ee92b651f96e3d2d423f877ccae3a4bfa48357d090c3b680ebae6f

SHA512
c1ef1e65288798f49d3c77aff666a12c88c2f436609b3dcbc879eccdf828ad18dd3f341e05c29b0d313219edf29c53b3d5cf863f552b160c2c6e247fcf8fded4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000021

Filesize
32KB

MD5
775f45010dbc42a5d5e58236c4010151

SHA1
3d0f4c8575969bdfba1da39f9b33298a25d54c36

SHA256
71e98dc894f0eaee03d7d0028f25ed4f0c86a2f64e01e3748bdb522933eade8b

SHA512
f5dd651cfd1120f2d48636dea2544f1d94ab8ab90aa297c725bb1645baf6e5d4ee74e792c3621f0bf2edfb3f8875e1ba4e23e872bf019108a28aebaa27af551e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000022

Filesize
32KB

MD5
66301e63b3bb488b5eadd7831f4d03c4

SHA1
b70a38218bf14ca53c46289a7a31d268923b4493

SHA256
acacf083064c0ba06aeeede1a15d139c3000dce7c8b418cc811c9ab45e83cf18

SHA512
474dad6ccc63fea8fa44dd225714e8e596882e209ef845a4b898f973dfcab91e36b9a18b35ae113f12a1aca27d992a708261ef37868069969684a01728de8184

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

Filesize
2KB

MD5
b9f65ed5ee5164949cd1ad2da77864af

SHA1
0288963d5be862fcefc2c190af2ca62e0608c2b3

SHA256
3c92706e93f372564f52736d191e3bf95c59b029af5659acf63da10db8001a01

SHA512
dc872c9ba8aaef6e6256d566bbdfbb49bb2cf3db93da6499686fa2d75e0885a7fa3261b5ca4cea1e12de6ba2133b86cb9bdc45139253db1b9cc6b2ea8a6679c3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
a58fdeb1d24df03f06ed66bbedc5b8cf

SHA1
41dbfbb53cc20043a1f5ecc4d5fa8badd38bdb12

SHA256
11e931d676afd4f12295c710bdbdb448c5b9d552eb21bd59aadf9d2b5b3cc482

SHA512
bca90d16724609a59f24aad41abf97ab7c908042a7f8fc7f9fd812a9221363882d5db8b8d24d3e1e8ed00a94afca9a98f72a42ce433a519e98b48f308e67fd82

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
e3304cf050c3bf7e517db288a70a485b

SHA1
8a1556a88faf2289c88ba3213b54afbc39a20213

SHA256
3c946ec9f5daaa4046575fd4aa7e53898922a7805eb322fb39c49c39e2e774a9

SHA512
3ff0e1f20c1204ea412bab448a54a376270841c7799a51e9f068cd08ffe5d8e5b1cffbf29f32815d153b7e117c23e6b91f24f3ac352832a8e147a384f640081f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
3f1cf1cdc88943ac11f015c549f7aedc

SHA1
5fdda114fdf75564175133c15a5b11c95c9c4ea3

SHA256
7aa0ad0f1311aba12121227097f7f25c6b374f776839c03eb220dfe36e54700f

SHA512
98317b9fd99584e1b5896010d0d31139fe7ee05aa57f757168d8f18e2e23bfa0625ddfd29cda425619e74420aa0ebca41c2276fa508767a4381b3c3da49453f8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
e64aceb149b63951f9e933114c2782ac

SHA1
237b7d6f95a11573c3418b782eaddcc55f0ec933

SHA256
d7ecea7c262d248825c66e6282a34bbd51c6fe31acbab4f006a507b83ef75286

SHA512
b5acca749582f1bd00b56f2afce913e0037431a3217e0ff9fca7dd1aa5767c4700d901bba5b241b6d5db6b853b58f3df570e3cf28130055c419c0797e87ceaad

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
90fd9cdc55e0d265eacdc76313264f3f

SHA1
50add88e335f0a77e2fed2b030e60f99807271a4

SHA256
5ad518cc743e0c09cc4441dbecb7c093291d46d4655a15ec9717e59949a306e9

SHA512
54ce19ef81cd09c6a4e3b76f56f6d603fdb8196716ddc13f63dc25921950c03ec92bc8b74ed4760ee7d43b66ecb375b8037737af75a4d3f0aaaf842cd80f2c49

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
7d6311b9f0e13caac727c1223ba7108a

SHA1
a77388b4d8d465f32308c67caec13c6632d2db9e

SHA256
9955cd5250e574becf6e243b96ee37cd3141f3a6551fd5399de8a67dc2dc5ad1

SHA512
94768c88223a9effd09a40b0596062f03ecfdb99317e753cd7c37647045385b17cf34cdfe41e249733f40843c411e5de8abb8dc76d3ba41a254fc256cdfa129d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
17baf1c46591289420b0f2d98bcd7cdc

SHA1
e7421303b480b8b5205368476832fe87c66b41f9

SHA256
6e2776271f8f8baf2a43a2e24de054b215e81344ad3aec3fbd462ca0dc6b0dad

SHA512
f8fd965156d607ab1c1654e2c6617c76902a4f0723ceac7892d502eda36736262964b46aa8c2d73551cb14fb3dd90cc1c88db5b151916f040cabbb3bd6657d09

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
f026f8eb8f36c0602baada72f11968b3

SHA1
17380fb050e9e2b68a0e23276dad923134474508

SHA256
7118edc9ec7499fd3c2813d2b5830b78a432557d381142623c190139216bbf04

SHA512
35578b0b205adab826a1023f720e515f19b4a74e241a5e94cc596730d116440d1b79e3cbfe80cdcc69b3b5e2dcf2ac02898785078b7fe59009c58a5ace7a93ac

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
d1ddd9a3468518d63f6155475246be1c

SHA1
c2a87d7f18fdddef5b9544cef46320239ac31c4b

SHA256
26aa44493b0667cbfa4e6aa253e8055e088e8d2f08e32580067cc0aeaaae3ee7

SHA512
86f8b326f1eec0a143cd7041ab48f2c10b810f82a4cbbf341278cb8e42b2c1ee7e7e7087ef895f0ef05e6c88b8de717d69a9d33c9ccace61698c6f4fadff5100

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
7c49fdc644e4d2e052b049dbffcc8e20

SHA1
e152848f47868c0ce3660b623aa6ed1760383d73

SHA256
0f16153eab2e2e67149009b40ed6088e283400058daf47fb4fa9fd88b2be47bf

SHA512
44577a245df1de6a7bbbcbc810636ee49ea6a2a874e71e860ff7ff2df3571b4ee0c00bf987558b658e34507cc1f559531d84196da79ba24d0423b4121de6f9b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
ecbe77b77b16dcfece4f3f3c6e091921

SHA1
12e098c094dba45d387c40207119916b3b8ca0d9

SHA256
42af550f64ec5c307fb1d377810e21489117ce3a2b4c992c6b1bf91c65154668

SHA512
3e7c39e30c6514bccb718989f3db366a300b05bece5ff8b257b593b3c4d1e7924cedf6e2243fc01f828eaf922ebfa4681cb3ce6bad12332e93a72502cc8a5a01

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
5f0ea93729750aba6b5b35e8b7de29c4

SHA1
a4d37ccd184d8b49fb51791bf7864f131babd57f

SHA256
7df539310e8ac5d116b79641706d1ebbe5e47e8763aac457001cc18ba1d8294a

SHA512
e3a1e714247d39fc965768c49e02c058f0be8c613c08885ae21187916dcf2fe8c8d60178f3f77e4d06ab6851a32bfda5df008898c1d07c9f3e4c58c2c08cf3dc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
585fa6645914c1e33acd2302395cbf4c

SHA1
1c9eab62f47ad40ec5ca151397b2dc3d14c51dbb

SHA256
6d632d6502789111742c27c0612e0b1f74ea837015c44b6c9a6686c6e32307bd

SHA512
0273e5b5acdd2c6ca063424fe0fe80721d9ad8a3b928ade991a94a00f84eacba68aa1f9f9563e830411405df021a41578edf5b530d0a04e3fbd820e881dd52c4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
ddcf169e422ee3516f960ae92d61183f

SHA1
be8de644bb161f669a1909d2acb73d83edb70806

SHA256
2160d6ee64981bf154f345e7ee16e57013663e005722d29073fb3f8eaac25411

SHA512
ccae1d12112d203bd723282f2a35534a43594e5cb9aa3c14bd6945504ee11f4cb5a8ab6231ca7a4516c8fefcebec5553e754e0a3ccc0b513397a8adacd4d07c3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1077c623-def4-49f5-8a3a-67007a21a27f\5b46be7f929401ed_0

Filesize
2KB

MD5
26487544a7a45edf13866a5c21f91905

SHA1
6f32241d3eb4c83efa584e845816c477bfa62516

SHA256
6ef73a5b36d9932b84f80a35263e5e4cfce6d450413b89f6ae955bd9906670c6

SHA512
f5bbb0cf85be2f90dee5efa0577db0a205dde8aa48b71d26270dc3bae25f709de5f1f6748122ea0ffd8020b7de36110938e7340ff33beb32e225a8e5d53be4d7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1077c623-def4-49f5-8a3a-67007a21a27f\index-dir\the-real-index

Filesize
624B

MD5
5816fedcba5f0209a69d6cc1f8e05826

SHA1
7eefdabf5d1fa6b300ba1fbe565bf0765c0826b8

SHA256
40e3b9a1d0bad19a98b5d4ee8e5cbeb9aeb8ec190fca8a42557fc058fc239ca0

SHA512
88e959f6c938776c55a1da2fcfc3f426dc1be5c8d370fc2ea5b6f36561aa05f3ecc4debfa1299148f818180256c8aa097ed4aa5cb9eaf27aca785282ee0fbcf9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1077c623-def4-49f5-8a3a-67007a21a27f\index-dir\the-real-index~RFe5a5ae3.TMP

Filesize
48B

MD5
181c8dd9d173c92b96f05bc2753963ea

SHA1
d2d4f977884ce587768ed9fe9680a3e4982d76c9

SHA256
f2f49ae59e5800dbcefe392b9088ab485eb49c463438a6711cd85035fd0a86ce

SHA512
1cc7bc9dd3947d718e067c884ba3091015faf94a14c60423b47c3552159ce6bc77508e8e922ab4b763c0fef599463ab077908ad2078bec915a34fa1611794043

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\b13cb56c-f9ad-4292-9e7c-b9e33e985222\index

Filesize
24B

MD5
54cb446f628b2ea4a5bce5769910512e

SHA1
c27ca848427fe87f5cf4d0e0e3cd57151b0d820d

SHA256
fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d

SHA512
8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\ce1b2996-35d7-4ec1-a976-9e074291cdb7\index-dir\the-real-index

Filesize
2KB

MD5
22be0cdcbe7abdda6e1a433c00577fb7

SHA1
72478af0e00c88677aa60cae8230cdceb310c16e

SHA256
6ab6b80babe91ec170e3ff14ebc2f95717e5b10f01a801c596378a8c2d1e91cb

SHA512
6da8e5809907f0d9eabea99afd3b8367a92eec234e39362d922565252b5ad289a1cd9a9bb51d07daecbee7f7876d845ef7ad3140b18af2a2a48d4eeca618e11d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\ce1b2996-35d7-4ec1-a976-9e074291cdb7\index-dir\the-real-index

Filesize
2KB

MD5
7bba087950521281017b189b0d2300c3

SHA1
6915864b4a1c50c087f140784b2f5d2697b27fbe

SHA256
15dc1bf8f6e69050be3472d173cee4f81d24ecacec81f66c4440fe9e84ce05e1

SHA512
8d3ac57bd375d3a503834786605cc8d0f3e3e27b6b85f6d39a391e64f71a6016ab7dad394815b56240017ea492d8fc085ee42613aa88af4b27f94222e841f1f8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\ce1b2996-35d7-4ec1-a976-9e074291cdb7\index-dir\the-real-index~RFe59ffd2.TMP

Filesize
48B

MD5
3ca37fd74721537b68b15500f1531013

SHA1
29465fc11ef3e154cf9fa2c01cbd557bf9b03516

SHA256
90043b8c05ec451e0c37de817ef5879b2c49cdc7aa4d2d0e21e4c4babc48ee86

SHA512
0c20ddf70138f4990e5ca3cb987037c0126c3b5e7e4e8a7e7b821622c8969769bbd1fbc422f44fdbdc3a6e703379bb14807d6e08a25ca2c6f8a1281294933b20

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
176B

MD5
b2cc6c78b3505b8d34352dcabdf482ce

SHA1
af8195a0e45d2fe9e84c3a9d77f76fd899193aa8

SHA256
88095901c87532d8f519b4964c80ad79a464bb64d38edd82e03137b4389881e6

SHA512
860f54c2958b8b8f2b4d80de9a5ef5b5aa47af0a347106211f4a66bffcb93013353bfd5e11d9bde0390f3f0a877f041144ad0dc44bbcf39735110869d128481e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
178B

MD5
a2cb74b6df1e618fc33ef52682563f37

SHA1
3fade49f3c01cf3b3dae69cd874a19a966baf087

SHA256
e14c5ce31088529a945a1c63b659cea5804f43e333d7641b1df9815994de849c

SHA512
246a686a74cada929ab77f43a215d885ec5a62f4d848cc53f7a8e5a0858dd1931b280453c268d9cbf32483265e37edaa513cd6c0b40ba88dd8d6dc3c35a7b350

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
187B

MD5
4d72815a948a9b9b1e4fc04403da27d1

SHA1
5b5c2dc987a73169d0c7c86eca45c4b12aeaf798

SHA256
3a6a8636c4bb2749e8628bce64564819f3594c79bd8fc64ca3846a20aa35146a

SHA512
7dd1b6fa6d0692ecfd8ad03d93fab712a40f1fe6250937048f0ce40131a11be6ea776bf92f02a2375942468294b70e593dca1e40c543651d08cb161c07e84bf1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
247B

MD5
aa2f4a4adcc87891fcb0da41557d8512

SHA1
8d29dc26ccb46a39abd6720441a6c6271651176d

SHA256
b1f66f4a8f92bd997b30519812e37c1fbe318cb5d2191c52bc29e311de33da5d

SHA512
68331a6fe22e7c25b16c80791b6f489a8bee87b4ad3dae7408d4227b862a574add771c9d78a9242bce2847c069c6496738b0461137f44150221f46f5f9a2e182

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
112B

MD5
1a244277a9fe6d0174425d5f6fb7c518

SHA1
0b1a0e0d2d41ad44be70e68c89bbcb854112c69b

SHA256
d0488d43c094ed91cd1f8f436b59da8f6ca4e68e09502a0dc74d1a5963ac525d

SHA512
789392ce8a357d36301de5c4b7407eb7ec27b6a682e418efc6a12c087e46de53cd19989bdb8fc03778bb245944979f21f7de130360b52c969c4482d603474c3e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
183B

MD5
fa2888927eee92929ee572e2372d4a2c

SHA1
fb747f767ff281dfb5bad5387510acca51ff352f

SHA256
61a2ebb0ca969abce341d52b51daad53a7725ef1dd9e9e0d5429ab957d95aff1

SHA512
d22b3b2386fe6ddb92e4d145a54c6ec448eebe7d580d169ef87f6c93c8368a89705497c50c60f993e11f68253cff87d1b568a4adebe6b9aa8929ebee2e3ae613

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
114B

MD5
e3f18624e8bdccde323131a8bfab9cd2

SHA1
c167e0b57eccdafafaf8365172beab5ab7529a60

SHA256
e29ab699dfd85c03c2451137b6a287c36af61f40762ab0d529fe0baf33ea7b8b

SHA512
4f70bc3860ef3dc808b92f5d77bf023c3e26122e02d83c2674029091c12fbd30d03ca3da5e35991a4fe309327a0de94dc8acdba21f0f68d57d9ea7fd0da899dc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
183B

MD5
16e2224569e38c978af3faa0f804cb3b

SHA1
a3929e05225e696e6cec0e0c401fc7edc273f44d

SHA256
6c9738bf92680b6ecee5f7727fb34ed6cb91e0951c0d821cc0c4cff27ff1c815

SHA512
8f0138ba398d729cccf6f22f8af9798a79c2ff723b09d5c598295f1ac1ced800592cfe56b156fc799bb36fc220bcda27c924f34711ec3148da764ff738df735a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe59e7b6.TMP

Filesize
119B

MD5
9301f289768c0b94e8acb3e26a56b86b

SHA1
23f021ec422cbb50e3164e0ed2906685bfe398e7

SHA256
17746abb609c458eb1f3a261911d15cda740d0253f4c5bd3757d80b6d0f29b2a

SHA512
adc0255311941bea6ab520d0f68c07b4ce08f7382717cb521b00b2725f1aeb6a3e1fd70cfda46a3290f134f9599745c3f00656e434c35a0e2ac3c3978764d882

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
96B

MD5
017093d7617d79e1ff10db2baf43e4ea

SHA1
085e44b569c31050bcf30a0a408217ab69ea801a

SHA256
fadc5ec50c5ae37ecf925ed4d6c4aa0c5a34a06a9bd58f87a2b1aca0aab33bb6

SHA512
f2bd7c570544024e3330d42b23e2489d08d2b4a3373c5de53d6b092d9d8baaf895295a012a0985f6256d91bfa5ebfae6e4048c2908ed2331a955ec28ddd37d4e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5a5371.TMP

Filesize
48B

MD5
7416aeffd598df651e015c1f92d0c073

SHA1
74948415e2241ca68f02fa5323b48c71f67d10ae

SHA256
7087eb47c9e0950d81e31ccc50e481c86c05fafe14f65d3563d64909a13bc744

SHA512
1efa5a9b73f343eefcc7470dab624de21f04f9a05c387ceb9bb03d69cd1d77d7549b92bb65aae931359345aaf317d197533be3c6e7e9662ed9ba2d690e628140

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
129KB

MD5
fbbb687674e88b9c3ecede3822f08dbf

SHA1
20dc3a69d1560f70605d7748568fca8fa948f858

SHA256
ddf2b4a74883e6fb0e79f3037a15d2ad161a9e7e29f558744efa5821735adee9

SHA512
2ee1cccb7bccc8500dc41a713bc11bf2b349260ac6bf20dcfb4eb837317c77f4309dd0f1ca265ec89c4c573e667be5fe848aedd1d5d5f8692479ce2394df7ee0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
129KB

MD5
a119fad067679a76f52362542659623e

SHA1
9933de107490c9a954d9d8ae81e7995315c155da

SHA256
84bd069f3cea1abc42d6c9e8b0a068db3ec152ee7d4dc64c276d0605483c510b

SHA512
5645accc54cf290c1c5d82fec0589e831284e0670a2d0ade947c8baa5e3c3976f318713dfb895c2b33390e6dadf62b4439ea8bc4ad99d22ead825dd64b5a13d1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
129KB

MD5
e0d7f36c905d41a9dd9d2951fc9d18f1

SHA1
fa555ebd66a194906b7f0e970fd7bd7b03339b92

SHA256
09b91d0731e3730d5799d34910363bd03080fbd9625fb5ec4c12157cfc3c1ffe

SHA512
ebc63873d1e961bb27dd062871efcb0d59e45373aed8e974097404a4854ce4f487c09fbd95dcbf75efd7f10c5d5faf78340c2f1c376546d7aee1cc7508cf636b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
129KB

MD5
1cc5e948e79007f7a391710bd1feb420

SHA1
de1d9c9ae221ef5aa3f32835394f155570181942

SHA256
c3b49c19fee4aeb81fef5b23b39c21a23052d13e13b6b55f15d2ee39f0c9895f

SHA512
92ae3f080ed73bf15e07fc71799c4a58bf657900e01cb3e36dfe07eee85bddd129d7e1a0de621594f20291a9358c5d94d26e9ccf724792d9191a43f3adda8024

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
96KB

MD5
ed21183407e7745eafb239ebe821a52c

SHA1
39c46130d8f5de6b23070b4303e7753a46f58f17

SHA256
8cce360984b2ac4abba6f50994149ded59bd69d7c31f6c8aa91fa9c4c3fa9916

SHA512
e89cacbf0bb4987e7c22a45129ba4aac8098a6cf3e0bf8425938cb0b651ed65aef344db64f2fd9f5fdfa512bf965ea4454716a00c7e82aadd0176fe3360bd20c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
89KB

MD5
d75ee912c05671adfe8a097ab0f5ea52

SHA1
134c132f20be20a72b7079491f7afccffae99b25

SHA256
779b05c1afcc3a07086c3192102058a204ffe272e5846f1b34f7cfe99a5bfb90

SHA512
788f007780b099abeef3a61735a864d0342a4636c98f2911c2a516762dc71c39a079939e50d0f73da4086a865718b0e20802e526a666e1ef5876b8c0e1bfdaae

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe5a86f4.TMP

Filesize
88KB

MD5
0c8e8280f53ae5265da618415d112ed7

SHA1
c0c3c911284d535ae3acb6992a4c0ba7bff1c217

SHA256
4e3712115c6257f301a5964de45870fc710f51e9b3e4b4cf51e88c3f7c51ecc4

SHA512
38823238e86c42eb50f23bb21a993f59627d29c0f9d0dd72ac0e251f120c64fed189888b318dd74f4cf585f53ac343a1b72298b36da01658fb86a0a3bab16665

Download Submit
memory/3944-203-0x000001ACC7EE0000-0x000001ACC7EE1000-memory.dmp

Filesize
4KB

Download
memory/3944-204-0x000001ACC7EE0000-0x000001ACC7EE1000-memory.dmp

Filesize
4KB

Download
memory/3944-202-0x000001ACC7EE0000-0x000001ACC7EE1000-memory.dmp

Filesize
4KB

Download
memory/3944-207-0x000001ACC7EE0000-0x000001ACC7EE1000-memory.dmp

Filesize
4KB

Download
memory/3944-195-0x000001ACC7EE0000-0x000001ACC7EE1000-memory.dmp

Filesize
4KB

Download
memory/3944-196-0x000001ACC7EE0000-0x000001ACC7EE1000-memory.dmp

Filesize
4KB

Download
memory/3944-206-0x000001ACC7EE0000-0x000001ACC7EE1000-memory.dmp

Filesize
4KB

Download
memory/3944-205-0x000001ACC7EE0000-0x000001ACC7EE1000-memory.dmp

Filesize
4KB

Download
memory/3944-197-0x000001ACC7EE0000-0x000001ACC7EE1000-memory.dmp

Filesize
4KB

Download
memory/3944-201-0x000001ACC7EE0000-0x000001ACC7EE1000-memory.dmp

Filesize
4KB

Download