2d6eb433e813b2a938e494408091a0a5453248214951e548140f199f3e8c60cb

Resubmissions

14-05-2024 16:25

240514-txchpsef38 3

14-05-2024 16:20

240514-ts6wraeb5s 3

09-05-2024 18:00

240509-wldmqsfa5x 10

Analysis

max time kernel
299s
max time network
295s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
14-05-2024 16:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

sorry your not sigma.jpg
Size

309KB
MD5

fab5851613dff70a9c68608ee9dc4764
SHA1

83c97e70aa1f83554fa80e6b425ceea5b653f877
SHA256

2d6eb433e813b2a938e494408091a0a5453248214951e548140f199f3e8c60cb
SHA512

6afbb1fb0343bb9b6b672a3bab68b00e4a90ce3d5156806ca41affd5e392ab79e90de681d0fb4d3bb0523a7b1a1d3439ea65393bff09fcd55907bc8ef3f6ac4f
SSDEEP

6144:HyTONaEEn4ykLsUHgEQ3FCbv0/AjRkKjNNSF9dP2+cqhhuCYz+i0M7m1RtYViKj0:HyTTEcVk4Uq1YIAeKjrSFDPhckuz+nh5

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133601772562424680"	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
1584	chrome.exe
1584	chrome.exe
1484	chrome.exe
1484	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 4 IoCs

pid	Process
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe
Token: SeShutdownPrivilege	1584	chrome.exe
Token: SeCreatePagefilePrivilege	1584	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe
1584	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1584 wrote to memory of 2944	1584	chrome.exe	93
PID 1584 wrote to memory of 2944	1584	chrome.exe	93
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 2948	1584	chrome.exe	94
PID 1584 wrote to memory of 3212	1584	chrome.exe	95
PID 1584 wrote to memory of 3212	1584	chrome.exe	95
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96
PID 1584 wrote to memory of 1152	1584	chrome.exe	96

C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\sorry your not sigma.jpg"
1⤵
PID:4072

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1584
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7fff67a0ab58,0x7fff67a0ab68,0x7fff67a0ab78
  2⤵
  PID:2944
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1732 --field-trial-handle=2056,i,2634867549952719966,4561340767151637634,131072 /prefetch:2
  2⤵
  PID:2948
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2088 --field-trial-handle=2056,i,2634867549952719966,4561340767151637634,131072 /prefetch:8
  2⤵
  PID:3212
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2168 --field-trial-handle=2056,i,2634867549952719966,4561340767151637634,131072 /prefetch:8
  2⤵
  PID:1152
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2992 --field-trial-handle=2056,i,2634867549952719966,4561340767151637634,131072 /prefetch:1
  2⤵
  PID:4044
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3000 --field-trial-handle=2056,i,2634867549952719966,4561340767151637634,131072 /prefetch:1
  2⤵
  PID:1988
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4232 --field-trial-handle=2056,i,2634867549952719966,4561340767151637634,131072 /prefetch:1
  2⤵
  PID:1032
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4432 --field-trial-handle=2056,i,2634867549952719966,4561340767151637634,131072 /prefetch:8
  2⤵
  PID:952
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4580 --field-trial-handle=2056,i,2634867549952719966,4561340767151637634,131072 /prefetch:8
  2⤵
  PID:4796
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4536 --field-trial-handle=2056,i,2634867549952719966,4561340767151637634,131072 /prefetch:8
  2⤵
  PID:4916
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4460 --field-trial-handle=2056,i,2634867549952719966,4561340767151637634,131072 /prefetch:8
  2⤵
  PID:3768
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4884 --field-trial-handle=2056,i,2634867549952719966,4561340767151637634,131072 /prefetch:8
  2⤵
  PID:3316
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4784 --field-trial-handle=2056,i,2634867549952719966,4561340767151637634,131072 /prefetch:1
  2⤵
  PID:4308
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3368 --field-trial-handle=2056,i,2634867549952719966,4561340767151637634,131072 /prefetch:8
  2⤵
  PID:2024
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1852 --field-trial-handle=2056,i,2634867549952719966,4561340767151637634,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1484

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:2900

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
88a72fb349918366df81b79ab9b33e6b

SHA1
4b1d3d8cc8c61da247e52915ca408973b5331241

SHA256
4c60bdab910338986181459a6b2f714538f8f95d4e88f23b6914f50a864c4a63

SHA512
df021b2aee49200fc84b9d0a65a2af4038e457de7dce695aca2649894b7113323bd322dad7a49aadd653c7151dbd21ce5df782f6214a5e38d3cccca97d707a42

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
1bb1d033988de28082612700452e8b4c

SHA1
0354eab88a54978bc53ed8ad02f4ac2a8ca99eaf

SHA256
9ca9854e9acecf6ac2786571ba55ecc89992693935a1e0b423971a98aa352ce3

SHA512
e165d424f89fd7d41672eb1a6c6dde6f9d245765373ca1d6385201cf0f82a180be82373cafd1320c832390021671f1b4fc5713c64fbc020e067cd2081077e59a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
46477a2f79885852054127eef7312b0a

SHA1
472334b21be056a320147379630f4dcc099e8e4e

SHA256
4da25dd1f84b9d20a0d9eac64845c3477d1bf5f5f0bdc88826b0b86565c0fc82

SHA512
0b12df191c932a35545ba5d7326d945b55d4997e53ac8c8cc176dda7c6d615750d6a20e5c111666fcae58e1d067f0f130bb4c2df177dcef5559f4adb6f9cbaf5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
845d8fb293db0e660a581dc2ad685008

SHA1
d4e0270203b486b79018291f520e1c42d7f98b80

SHA256
3e8a227a72e05c5a6ead5df66707232e9bb287a783bb53466c4abd92c52a6cbc

SHA512
2cd1fca4e045da0ffc02c27edd2df7d53b2cd87be9e7cb7307f28d7c9619c28def7ee7b9df7c178775e5a1d5f9af2302703a7828e65df0d7667da491e0849d30

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
abfe58f18783c2c6ce8c9abc0c153b2c

SHA1
1bf50b8ff06c31905a571906cec09f50b6d73a66

SHA256
b7441d2e4306b850624ee6dfda12f03deef1221111c9a3d6f9460613acddce87

SHA512
dd213d7f54c0412532a24c1752ec2636172405a5e2127becd40f1bc1154dd4bef16c94d1be635bea19c1d388ed6a7a961604918ea3e1277cfb0f3a77d8c8f7dc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
356B

MD5
2f41ec4f236776d645d2c8895ce14865

SHA1
f01edaf77a918c15f63d8f957ddbd104ce7d5055

SHA256
9fa39e97e17c56f596fa44abe71c97bbeba079c41f89612b0afec9bf88bcaad4

SHA512
56ae81045c6b4de546b2e846c23bbfc2c0149a2633c600085f51eb92d4b1a11905c8fab40cf255a8a4ccdd57bcbc7200ddede8635ffad54398d41bed698fa3bb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
767a6402603b804dbe128586a733213d

SHA1
e013e2dd8125a30e4d12003daa701911b31babd4

SHA256
8c79b4ba30882869420a65773a949ddc0646fabe6ee36c620c5f14d89aafecb2

SHA512
4775c1204bc99e2f93668700ae8d9049645112f58671d2fbada0438847b5ae7cd866df4b9fcd17ca387726574f287c4bab9d825248d4ffc96c8a756a266e400b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
bc3d84aef19e26a207f92ca451b77289

SHA1
cb4f03b0ff2739daaa6e015ccb9342b827bf24d3

SHA256
73b5bd99880a4500aa9a98e7db20d8a434563cfd1311b5df12a3b397e19c195b

SHA512
25d1cacdacb4955d73c14c0a3c9ba409e6a926f35fca324bee4125e6e5bd7fe180951c23bd8b2c4bf74491bf865a96e1b2cd08216c6aed573636b9ad6cff8d92

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
706b56c15aae91d9751cdfb72cd6df93

SHA1
6fcbdb0a124495c32df64d2ec89ad2bb7cb78b57

SHA256
a79f33f2575aba6cf60a7173c73b60b14b0a5d265ca6d717a802b0fbc2f6d82c

SHA512
3c37173f5b20ca9528f1e917ca6b9c5b0f876e500794a302245d7fcdc5624c488c71212664a5e673e8f8d34533a14b0f4ca0e60346462345bddf5b4bff470fb3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
10dcc5680203cb2ae56bb1b81a453c4b

SHA1
de060542f00add9db7d08049a7d336cb30c3ac5d

SHA256
0501cbc5d31c8f9f869f670e0f472cf078eb47f9f95afab29ae2bfb6e2d82c3a

SHA512
1d8b54c97b23c648941520b6bd65a8f33a594bfd354d625a455fd95ac9ca8c8f909e625c75168d4c323a544b04de5e82a1961cdc9166c0fc2e0b1987259d23ff

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
b13b87e4c19608a13a9ef7f989056626

SHA1
f3e7f5ad0a4aada4ddfef29a2518132a0d47ed9e

SHA256
567eb332890eb0c2e63b5d01f85345f862e715b4d80538d698c3aa2f67bdd0df

SHA512
4d6e835f67b82a87c9f51c8d7e4596595ee64ecfcca1867a79798889992d174dd1a79e7275b0602d2acc469c3023a995c3f2455a81808563e9ec9128c9022ad6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
305de025dcaf8569ad6081e95a801b57

SHA1
e6095cc501d8ea8eb048ac85459d0eaffe5d201f

SHA256
325f29ead45858d24927253b414e7908eea58b7da1463b8b4537e797554bc51b

SHA512
cd35b2a8498e7fe31685526cadcc47783d9197116c33469975cf7526335e534b4b6c8e5499a22c7ad0aa66aa0314eddb72d8051ea63d099e1406009f961daac1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
16KB

MD5
2411ae8943a405d60d78964bf7da69d7

SHA1
248415f66dcb1d7bd830f68445cc441d6537cf5f

SHA256
7257c4c50f1f9762d7dea878f3c6edbf798ea5e3ffec8a17ab9633935d000326

SHA512
6357e9a61f6f6f3ddc86d149a604e52bc3a0ed7a3cfcf1ac872ab0842e97808f9badadfccc0dd628c703f8770aa166ccde84951c5aee71db77d955dbd04e270d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
257KB

MD5
d2614d7e4271beee39fef92b30d884b5

SHA1
28f7f3fa7280dd3aa6a8fac569e9d86bee117bc7

SHA256
e6d149449399f3bcded3149bbaaae50abe4ff8511555d414d33fdb8995c8300e

SHA512
874abe1da6bb2f82a9120a56076165ffc24d0589b42c2b340410a0b6dfeba44f72bcb9c765ec1d6e5e4bd8639df61b56f383807e8a1c2188f5690acf34d49f98

Download Submit