Analysis Overview
SHA256
eef18c81faeee1877aa9cd8d8aef18b643a434fd3da221cc724070ec863e5fcd
Threat Level: Known bad
The file test.exe was found to be: Known bad.
Malicious Activity Summary
Xenorat family
XenorRat
Downloads MZ/PE file
Executes dropped EXE
Legitimate hosting services abused for malware hosting/C2
Unsigned PE
Suspicious behavior: EnumeratesProcesses
Suspicious use of FindShellTrayWindow
Suspicious use of AdjustPrivilegeToken
Checks processor information in registry
Enumerates system info in registry
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
Modifies data under HKEY_USERS
Modifies Internet Explorer settings
Modifies registry class
Suspicious behavior: AddClipboardFormatListener
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of SendNotifyMessage
MITRE ATT&CK Matrix V13
Analysis: static1
Detonation Overview
Reported
2024-05-15 18:53
Signatures
Xenorat family
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-05-15 18:53
Reported
2024-05-15 18:56
Platform
win7-20240508-en
Max time kernel
149s
Max time network
124s
Command Line
Signatures
XenorRat
Processes
C:\Users\Admin\AppData\Local\Temp\test.exe
"C:\Users\Admin\AppData\Local\Temp\test.exe"
Network
| Country | Destination | Domain | Proto |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp |
Files
memory/2424-0-0x0000000073FEE000-0x0000000073FEF000-memory.dmp
memory/2424-1-0x0000000000390000-0x00000000003A2000-memory.dmp
memory/2424-2-0x0000000073FE0000-0x00000000746CE000-memory.dmp
memory/2424-3-0x0000000073FE0000-0x00000000746CE000-memory.dmp
Analysis: behavioral2
Detonation Overview
Submitted
2024-05-15 18:53
Reported
2024-05-15 18:59
Platform
win10v2004-20240508-en
Max time kernel
360s
Max time network
362s
Command Line
Signatures
XenorRat
Downloads MZ/PE file
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\test.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\test.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\test.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\test.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\test.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\test.exe | N/A |
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | mediafire.com | N/A | N/A |
| N/A | mediafire.com | N/A | N/A |
| N/A | mediafire.com | N/A | N/A |
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemFamily | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\Hardware\Description\System\BIOS | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemSKU | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Set value (data) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb0100000078f1237f04e5404da848d5bad8ef8626000000000200000000001066000000010000200000009c9fd71c78e7f0f75f8a624c97629310b44beed0c2cc540e572cb69fb8d65a83000000000e8000000002000020000000be89f048f4d2ae6144a8b233042873fd2e642988455d248662831e43aa9f013420000000788e3a97150339cfe4c26675d0a8c6be05efa03859d6c84ddac0a4416fd6f17b40000000c22e51b5a829beefe5282d8f95f8a1039039fae5ec1e9c668dc687121d5ec3b2a2b9f99751608f55d7f8ed2bdbd2ad4f93df6626eb2c8db590c932fedb8d7811 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\VersionManager\LastUpdateHighDateTime = "31106809" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\VersionManager\LastCheckForUpdateLowDateTime = "2592564252" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FullScreen = "no" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\MINIE\TabBandWidth = "500" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\Software\Microsoft\Internet Explorer\MINIE | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\VersionManager\LastTTLLowDateTime = "1251635200" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\VersionManager\LastCheckForUpdateHighDateTime = "31106809" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\Software\Microsoft\Internet Explorer\GPU | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\IESettingSync\SlowSettingTypesChanged = "2" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 60b3599df9a6da01 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\VersionManager\LastUpdateLowDateTime = "2592564252" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb0100000078f1237f04e5404da848d5bad8ef862600000000020000000000106600000001000020000000d7fac6f851df7fa43cbf7c2c2293bf80ebea6fc93ee7730c190a88280887f4c6000000000e8000000002000020000000c9ecfe8c1f27c1aa9453783ff6ce3d20d0104e33a4a4d4a45c5dd0b16a24b1b7200000004c97be69fa23e2d646d64ce0b1d2577f7a7c6e186b81beb7ffe6ad7087d2a0d440000000799024803c993984c8c7b7246ace05f5ed65d76d21553e5d12f2bec354d4ccce7e8c0a27a89ea444f7f10ca829c0713fe728e0216323aa9a4dd101ea017436b6 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\Software\Microsoft\Internet Explorer\VersionManager | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\VersionManager\LastTTLHighDateTime = "50" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\Software\Microsoft\Internet Explorer\IESettingSync | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\Recovery\AdminActive\{C62BDC60-12EC-11EF-9519-EAA3B7AF2FC1} = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\GPU\AdapterInfo = "vendorId=\"0x10de\",deviceID=\"0x8c\",subSysID=\"0x0\",revision=\"0x0\",version=\"10.0.19041.546\"hypervisor=\"No Hypervisor (No SLAT)\"" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 5050639df9a6da01 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000\SOFTWARE\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentColorMenu = "4292311040" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\AccentColor = "4292311040" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColor = "3288365271" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglowBalance = "10" | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (data) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentPalette = a6d8ff0076b9ed00429ce3000078d700005a9e000042750000264200f7630c00 | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History\AutoColor = "0" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\StartColorMenu = "4288567808" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglow = "3288365271" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133602728382285207" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationBlurBalance = "1" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\EnableWindowColorization = "217" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColorBalance = "89" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationGlassAttribute = "1" | C:\Windows\system32\LogonUI.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-4124900551-4068476067-3491212533-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: AddClipboardFormatListener
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
| N/A | N/A | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
| N/A | N/A | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
| N/A | N/A | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
| N/A | N/A | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
| N/A | N/A | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
| N/A | N/A | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
| N/A | N/A | C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE | N/A |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Windows\system32\LogonUI.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Users\Admin\AppData\Local\Temp\test.exe
"C:\Users\Admin\AppData\Local\Temp\test.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff8f3aaab58,0x7ff8f3aaab68,0x7ff8f3aaab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1712 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2180 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2236 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3020 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3028 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4292 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4508 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4504 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4608 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4504 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4968 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4880 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=3056 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=3040 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=3216 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5164 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5316 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5448 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=2312 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4316 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=5456 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5388 --field-trial-handle=1928,i,11957360533599643613,14298736218885689740,131072 /prefetch:8
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE
"C:\Program Files\Microsoft Office\Root\Office16\WINWORD.EXE" /n "C:\Users\Admin\Documents\Are.docx" /o ""
C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" -nohome
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1012 CREDAT:17410 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xdc,0x108,0x7ff8f3aaab58,0x7ff8f3aaab68,0x7ff8f3aaab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1672 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1848 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2276 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3056 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3064 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4368 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4488 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4500 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4788 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4940 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5100 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5028 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3828 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4980 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4788 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5200 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4336 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5268 --field-trial-handle=1932,i,2180495745072516720,5234985398170644445,131072 /prefetch:8
C:\Users\Admin\Downloads\test.exe
"C:\Users\Admin\Downloads\test.exe"
C:\Users\Admin\Downloads\test.exe
"C:\Users\Admin\Downloads\test.exe"
C:\Users\Admin\Downloads\test.exe
"C:\Users\Admin\Downloads\test.exe"
C:\Users\Admin\Downloads\test.exe
"C:\Users\Admin\Downloads\test.exe"
C:\Users\Admin\Downloads\test.exe
"C:\Users\Admin\Downloads\test.exe"
C:\Users\Admin\Downloads\test.exe
"C:\Users\Admin\Downloads\test.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff8f3aaab58,0x7ff8f3aaab68,0x7ff8f3aaab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff8f3aaab58,0x7ff8f3aaab68,0x7ff8f3aaab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1612 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2140 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2220 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2944 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2952 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=3864 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4516 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4636 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4816 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4956 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4676 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5088 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5008 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --disable-databases --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4940 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --disable-databases --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5156 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --disable-databases --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=4872 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=5660 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=5848 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5236 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=4084 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=5824 --field-trial-handle=1920,i,12140860447710221969,12292854708421997167,131072 /prefetch:1
C:\Windows\system32\LogonUI.exe
"LogonUI.exe" /flags:0x4 /state0:0xa38d8855 /state1:0x41c64e6d
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 71.31.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| BE | 2.17.196.152:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 79.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 57.169.31.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.196.17.2.in-addr.arpa | udp |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 142.250.178.132:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 227.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 170.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| FR | 142.250.179.78:443 | play.google.com | udp |
| FR | 142.250.179.78:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | 78.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| FR | 142.250.178.142:443 | clients2.google.com | udp |
| FR | 142.250.178.142:443 | clients2.google.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 142.178.250.142.in-addr.arpa | udp |
| N/A | 127.0.0.1:4444 | tcp | |
| US | 8.8.8.8:53 | 183.59.114.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.164.165.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 32.251.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | consent.google.com | udp |
| FR | 142.250.178.142:443 | consent.google.com | tcp |
| US | 8.8.8.8:53 | www.pornhub.com | udp |
| US | 66.254.114.41:443 | www.pornhub.com | tcp |
| US | 66.254.114.41:443 | www.pornhub.com | tcp |
| US | 8.8.8.8:53 | static.trafficjunky.com | udp |
| US | 8.8.8.8:53 | ei.phncdn.com | udp |
| GB | 64.210.156.22:443 | ei.phncdn.com | tcp |
| GB | 64.210.156.22:443 | ei.phncdn.com | tcp |
| GB | 64.210.156.17:443 | ei.phncdn.com | tcp |
| GB | 64.210.156.17:443 | ei.phncdn.com | tcp |
| GB | 64.210.156.17:443 | ei.phncdn.com | tcp |
| GB | 64.210.156.17:443 | ei.phncdn.com | tcp |
| GB | 64.210.156.17:443 | ei.phncdn.com | tcp |
| GB | 64.210.156.17:443 | ei.phncdn.com | tcp |
| GB | 64.210.156.22:443 | ei.phncdn.com | tcp |
| US | 8.8.8.8:53 | media.trafficjunky.net | udp |
| US | 8.8.8.8:53 | prvc.io | udp |
| US | 8.8.8.8:53 | cdn1-smallimg.phncdn.com | udp |
| US | 66.254.114.156:443 | cdn1-smallimg.phncdn.com | tcp |
| US | 104.21.56.52:443 | prvc.io | tcp |
| US | 8.8.8.8:53 | 22.156.210.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 17.156.210.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.114.254.66.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 41.114.254.66.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 52.56.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.20.217.172.in-addr.arpa | udp |
| GB | 64.210.156.23:443 | media.trafficjunky.net | tcp |
| GB | 64.210.156.23:443 | media.trafficjunky.net | tcp |
| US | 8.8.8.8:53 | unpkg.com | udp |
| US | 104.17.249.203:443 | unpkg.com | tcp |
| GB | 64.210.156.17:443 | media.trafficjunky.net | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | ss.phncdn.com | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| FR | 142.250.201.170:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | ht-cdn.trafficjunky.net | udp |
| US | 8.8.8.8:53 | 23.156.210.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.249.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.34.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 170.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | a.adtng.com | udp |
| US | 66.254.114.171:443 | a.adtng.com | tcp |
| US | 8.8.8.8:53 | ht-cdn2.adtng.com | udp |
| GB | 64.210.156.21:443 | ht-cdn2.adtng.com | tcp |
| GB | 64.210.156.21:443 | ht-cdn2.adtng.com | tcp |
| GB | 64.210.156.21:443 | ht-cdn2.adtng.com | tcp |
| US | 8.8.8.8:53 | hw-cdn2.adtng.com | udp |
| GB | 64.210.156.3:443 | hw-cdn2.adtng.com | tcp |
| US | 8.8.8.8:53 | 21.156.210.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.114.254.66.in-addr.arpa | udp |
| US | 8.8.8.8:53 | storage.googleapis.com | udp |
| FR | 142.250.75.251:443 | storage.googleapis.com | tcp |
| US | 216.239.34.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| BE | 64.233.167.155:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 3.156.210.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.167.233.64.in-addr.arpa | udp |
| N/A | 127.0.0.1:4444 | tcp | |
| US | 8.8.8.8:53 | ew.phncdn.com | udp |
| N/A | 127.0.0.1:4444 | tcp | |
| US | 8.8.8.8:53 | 77.190.18.2.in-addr.arpa | udp |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| US | 8.8.8.8:53 | mediafire.com | udp |
| US | 104.16.114.74:443 | mediafire.com | tcp |
| US | 104.16.114.74:443 | mediafire.com | tcp |
| US | 8.8.8.8:53 | www.mediafire.com | udp |
| US | 8.8.8.8:53 | 43.229.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.114.16.104.in-addr.arpa | udp |
| US | 104.16.113.74:443 | www.mediafire.com | udp |
| US | 8.8.8.8:53 | ajax.googleapis.com | udp |
| FR | 216.58.215.42:443 | ajax.googleapis.com | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| FR | 142.250.201.163:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 8.8.8.8:53 | translate.google.com | udp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| FR | 142.250.201.174:443 | translate.google.com | tcp |
| US | 8.8.8.8:53 | translate.googleapis.com | udp |
| US | 8.8.8.8:53 | 74.113.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 138.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 42.215.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.80.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.201.250.142.in-addr.arpa | udp |
| FR | 142.250.179.106:443 | translate.googleapis.com | tcp |
| US | 8.8.8.8:53 | translate-pa.googleapis.com | udp |
| FR | 142.250.201.170:443 | translate-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 106.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| N/A | 127.0.0.1:4444 | tcp | |
| FR | 142.250.179.106:443 | translate-pa.googleapis.com | udp |
| FR | 142.250.179.106:443 | translate-pa.googleapis.com | tcp |
| FR | 142.250.201.163:443 | beacons.gcp.gvt2.com | udp |
| N/A | 127.0.0.1:4444 | tcp | |
| FR | 142.250.179.106:443 | translate-pa.googleapis.com | udp |
| N/A | 127.0.0.1:4444 | tcp | |
| US | 8.8.8.8:53 | roaming.officeapps.live.com | udp |
| US | 8.8.8.8:53 | 46.28.109.52.in-addr.arpa | udp |
| NL | 52.109.89.19:443 | roaming.officeapps.live.com | tcp |
| US | 8.8.8.8:53 | 19.89.109.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.179.89.13.in-addr.arpa | udp |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| US | 8.8.8.8:53 | 161.19.199.152.in-addr.arpa | udp |
| N/A | 127.0.0.1:4444 | tcp | |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 142.250.178.132:443 | www.google.com | udp |
| FR | 142.250.178.132:443 | www.google.com | tcp |
| FR | 142.250.179.78:443 | play.google.com | udp |
| FR | 142.250.179.78:443 | play.google.com | tcp |
| FR | 142.250.178.142:443 | consent.google.com | udp |
| FR | 142.250.178.142:443 | consent.google.com | tcp |
| N/A | 127.0.0.1:4444 | tcp | |
| US | 8.8.8.8:53 | filetransfer.io | udp |
| US | 188.114.97.2:443 | filetransfer.io | tcp |
| US | 188.114.97.2:443 | filetransfer.io | tcp |
| US | 8.8.8.8:53 | 2.97.114.188.in-addr.arpa | udp |
| US | 188.114.97.2:443 | filetransfer.io | udp |
| US | 8.8.8.8:53 | d1f8f9xcsvx3ha.cloudfront.net | udp |
| GB | 13.224.78.18:443 | d1f8f9xcsvx3ha.cloudfront.net | tcp |
| US | 8.8.8.8:53 | filetransfer.onfastspring.com | udp |
| US | 3.224.123.226:443 | filetransfer.onfastspring.com | tcp |
| US | 216.239.34.36:443 | region1.analytics.google.com | udp |
| US | 216.239.34.36:443 | region1.analytics.google.com | tcp |
| US | 8.8.8.8:53 | 18.78.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.123.224.3.in-addr.arpa | udp |
| BE | 64.233.167.155:443 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | s25.filetransfer.io | udp |
| US | 172.67.200.96:443 | s25.filetransfer.io | tcp |
| US | 172.67.200.96:443 | s25.filetransfer.io | tcp |
| US | 8.8.8.8:53 | 96.200.67.172.in-addr.arpa | udp |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| FR | 142.250.178.132:443 | www.google.com | udp |
| FR | 142.250.178.132:443 | www.google.com | tcp |
| FR | 142.250.179.78:443 | play.google.com | udp |
| FR | 142.250.179.78:443 | play.google.com | tcp |
| FR | 142.250.178.142:443 | consent.google.com | udp |
| FR | 142.250.178.142:443 | consent.google.com | tcp |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| US | 8.8.8.8:53 | id.google.com | udp |
| FR | 142.250.179.67:443 | id.google.com | tcp |
| US | 8.8.8.8:53 | 67.179.250.142.in-addr.arpa | udp |
| N/A | 127.0.0.1:4444 | tcp | |
| FR | 142.250.179.67:443 | id.google.com | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| FR | 216.58.214.182:443 | i.ytimg.com | tcp |
| FR | 216.58.214.182:443 | i.ytimg.com | tcp |
| FR | 216.58.214.182:443 | i.ytimg.com | tcp |
| FR | 216.58.214.182:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| FR | 142.250.75.238:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | 238.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 182.214.58.216.in-addr.arpa | udp |
| FR | 216.58.214.182:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | encrypted-vtbn0.gstatic.com | udp |
| FR | 142.250.179.110:443 | encrypted-vtbn0.gstatic.com | tcp |
| FR | 142.250.179.110:443 | encrypted-vtbn0.gstatic.com | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| FR | 216.58.214.66:443 | googleads.g.doubleclick.net | tcp |
| FR | 172.217.20.198:443 | static.doubleclick.net | tcp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| FR | 172.217.18.202:443 | jnn-pa.googleapis.com | tcp |
| FR | 172.217.18.202:443 | jnn-pa.googleapis.com | udp |
| FR | 216.58.214.66:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 110.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 170.253.116.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.18.217.172.in-addr.arpa | udp |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| US | 8.8.8.8:53 | en.wikipedia.org | udp |
| NL | 185.15.59.224:443 | en.wikipedia.org | tcp |
| NL | 185.15.59.224:443 | en.wikipedia.org | tcp |
| US | 8.8.8.8:53 | upload.wikimedia.org | udp |
| US | 8.8.8.8:53 | meta.wikimedia.org | udp |
| US | 8.8.8.8:53 | login.wikimedia.org | udp |
| NL | 185.15.59.240:443 | upload.wikimedia.org | tcp |
| NL | 185.15.59.240:443 | upload.wikimedia.org | tcp |
| NL | 185.15.59.240:443 | upload.wikimedia.org | tcp |
| NL | 185.15.59.240:443 | upload.wikimedia.org | tcp |
| NL | 185.15.59.240:443 | upload.wikimedia.org | tcp |
| NL | 185.15.59.240:443 | upload.wikimedia.org | tcp |
| US | 8.8.8.8:53 | 224.59.15.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | 240.59.15.185.in-addr.arpa | udp |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp | |
| N/A | 127.0.0.1:4444 | tcp |
Files
memory/4660-0-0x000000007532E000-0x000000007532F000-memory.dmp
memory/4660-1-0x0000000000030000-0x0000000000042000-memory.dmp
memory/4660-2-0x0000000075320000-0x0000000075AD0000-memory.dmp
\??\pipe\crashpad_5024_DOAMSWTMFXFKHXEO
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
memory/4660-17-0x000000007532E000-0x000000007532F000-memory.dmp
memory/4660-35-0x0000000075320000-0x0000000075AD0000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 377407e0e6736040dfbd5be7590e235b |
| SHA1 | 73d351c24b46b5e2fdd8cf8f4b747f241e5b504b |
| SHA256 | 97f6523c7a9cc9fc64d4782e2aa990c9d4bc2ab308d0613bc778782efd51a3c5 |
| SHA512 | 0f92e20a880f8174aa0f163869cfde562429362be69a23009e054ec2978ab2896f52d54fb9fa72b4e6bf57615994fbec4778b659e4888a99217ec9661415dfe7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 0b0ae2442460338d47cb1c8ecb039082 |
| SHA1 | 1b0f61efdc29241d34107d496e3f5e09116508e0 |
| SHA256 | 983fe773410f9de8169a174d6f389e8c592f36ebae7d09a5e8f8a78f2a5b3de7 |
| SHA512 | d7ee2df91114415a3239657fdf24b1988fd600b31ce308e8e86feb3709606fba0f7618a920b1b4e2a467b1a27b79ec42ead04b28f6e7b450aae86721126faf21 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 099efc68bda0956df9ce92ef907293cb |
| SHA1 | 23d04aa8b39569bdf0f6c03b5a6a67f7562d053d |
| SHA256 | 621e4c1d6dcaa8bd1cb6f78aa3714fb34c6b6ea6d729765e8198b6569b8dc790 |
| SHA512 | 306b455088fb7922c17bb02dca82107d01d5e7262969ef611187336a0b0d5420d56c6fb69a82314c71f9ffed07b180fdb5748ad3ac07c2fadcaaa43a47de9054 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | e4b66435ff7ddf8039bc4efe832dd58b |
| SHA1 | dca11ad07e037b476f70f1490bf89784fc790258 |
| SHA256 | bbe28d155416af804a383cf42f5cee1233c8e0a661f3cbfb69a809bf16b48d1b |
| SHA512 | 1cdace37ea94f20b08f52e14fc5760bae6baa7dd65d7b30ee8bebe3ddd7ac276647d221d55ab3372787e6b4fe0e1dcfdf8f607b217ff0a941bd3c757bb327f6e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8e3149a41b06e77eaa4adba7866048a1 |
| SHA1 | a4a32872f06e562e0390d14eca52b896011e48e5 |
| SHA256 | cb05f91941e05075d505229ba74a77e344a7feb3c846abf067d8f8ddd486575c |
| SHA512 | 5c9a259629e7742f667ca7c069fbf9caea0b39630525a670b3f9892d0a7cccc74b57e6cb713e5f47ed20db24ef026788ded31afd746d8e962fff437fad8c7a43 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 7b5f0ea2ea92bd05fb01ef36004f51d2 |
| SHA1 | e44f6ed9db0bfa6925d0701a18770d92bb4624b7 |
| SHA256 | af2f64a6821471f95f5f74c051ebc1496940ed8bfcc6696e14610033c6f6182b |
| SHA512 | 088a5ab16a988569dff7665481bf8ddf3e4d128b255425a8f961181324a68154fe4191b4f700f3216f27a17dd00e2240a41d5721c7318c09600dfeeaea8e5b5d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f7955936bd028ad3b4fd2c20e367c9b1 |
| SHA1 | 032505bd9df4ffcdde60aed266c47b357778f34f |
| SHA256 | c9e0806d01136b85255905bc4045749338159f2d7368bdabed303114e502adc7 |
| SHA512 | 9c8257f248dcfacafd945141cb3f9f43834e02b74aa82e163d0281e35454d55b8e8491e8ee87f0b34f50553bd05519acb8b6bf451740e5144ba5a29292c6d703 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | d66887ab4b931bf48cee9ac48ea850da |
| SHA1 | bfed62ac0dbe715927836c2bc7baba00918936d0 |
| SHA256 | 6e1b8a04c6873fb4a0ed5223a96dc10cbbde7e4edd50f4ae379632f4bba41d73 |
| SHA512 | 07af44e715710f467e1f6d5f7dc92d5b3d9077217a91e3d24eea09e8f405520c33dbf7b30015ac7cd281d1b506ee2f08d83c11298dabd4427997660a1d68213c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe583505.TMP
| MD5 | 91d99069c992e34e1803bd00a66759e8 |
| SHA1 | 1dc633e2126ffa28f6149774345f008dddb2a1f0 |
| SHA256 | 5707b2f77619e9619dc480af1d2b869db44ba4fa2686a7f65ce093c45e5e32e1 |
| SHA512 | f0ae7b8742a3430ebd91f9a1afbb02ba77fec7ffeccae098eaa094103b89423a94976351bfd294039b62e573b45dca07664755ce9a78952a93c0add7a01d29ff |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | f92b4969db74313585b873fdf38ec449 |
| SHA1 | 1b31d86fd215a04bbea55ba8c4e6353ae928348e |
| SHA256 | 9b4b81762b1c71d93164d0a0c515090c7720ffbde17bd9258e46d18b183a36e8 |
| SHA512 | cd3a809acdf4b8ddb4be5aae5f822ae460a2d390c6ddf559f1e6d648deeef9a91c00f9f213183832520688c1825dd7cb9daec3df7ed6fbe70247b47d15255409 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 6f5630c4a4df6ebb9b53d00829db1025 |
| SHA1 | a96e5ef08a0ac1efcb9a80bfa3e776cf99086bd5 |
| SHA256 | 7bf3bc44a7833a159cfc475539660830823a5858870c9bf3709840f3dfea7a07 |
| SHA512 | ffca1aff0a2e60bfd189a20620225a238ea5df3140ef8a0734ccbf03ac00f1b0d3ae4fbf8e280488e54403222ca3a3957cf1fbda555991fa097add323d0cb9e1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ad33c0bafef9a578cfd86d3d9080f1ab |
| SHA1 | ee02571412f6f5a27438220a66d8b485dddc4653 |
| SHA256 | eef75fe17f1f67832b842b79aabceeced14c27c965998f38501f1d28af8ced33 |
| SHA512 | 3414a72dd7c4bc37906453fc8c05feb98d1f993e1cc3473ff277d1bde3cbfaee00b397e7beb526053f05ef1f21f09162255c16a0ebe003d196fd0613b0b8a1c1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2fd8d90804e0dbe628101ba7e2eda412 |
| SHA1 | 1852f984e8e2f0c7ae0e638ccc89cab8554d066b |
| SHA256 | 809bcf66b5acdbcfb0dd96fe0297600397968300df89f3d18a32346ba206069b |
| SHA512 | cc8fb3536b938bfc2da32b1d97830ae51005316b3187b1d4d9b8645fc1473e380691b7c9af576b47fd55a389eb639095ea12ebe1f916950accdffa6d5767ac98 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | a4d1037b1860cd7c04ab56bc3f215a9a |
| SHA1 | 2653cc877094384e0ef4b352e55a91019966d0b8 |
| SHA256 | 00c3c2a9bb0bb6a35d4a38939ee3131510d41d32cee6c640c4e054b9410967e2 |
| SHA512 | 0813ab04f3937e5b293033cfd9bbe4b710f62742a213cd9f05c451c89db44360f4442dd584c33f5d62df499b873b17e411c6d0d6ec8c2a274415b004fb716fb7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ae9093fb9712ab74eac3e59ead93a03f |
| SHA1 | 92b59f5e61bfb80629fb2c63a08f61e05a018d28 |
| SHA256 | e0d22b9430bae39dfe050f4be5a537275978c50020c2630b279c6c355ce72b79 |
| SHA512 | 0d338ddfac4aa2b6c159c906236293fdc8d5b9d08ae070cd27f15157eac582c2ac29d3c2732386fb839b7ee1f69415381b745a706bc79abc8434ef394983eca0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 1996a77a64b8a65379d70e98b1ce34f1 |
| SHA1 | 0c6c12c6c84dfd3ba1bf9b958e9abc785784642f |
| SHA256 | 13abe713ff787c26263984d03d5a5bd24dff0dba017704fd9e7b8f49e030eaa5 |
| SHA512 | d1982350fded9c3b05687c303661edad6006978601dc7dec1583e16cc74d2aab723542239b8bd88e5750154aa439e0e795783716e9532c14a132e2bda0ccd7a5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe58e29b.TMP
| MD5 | aacdd39477d6fba19b5f52b645e586b1 |
| SHA1 | 465ee0e65c8dbce66bd9d32b6e3acb31eae02c5e |
| SHA256 | ffa574661674d19dabea7b3aa0472c708d31f0a0beb3dcb9e7d0f6fa69c7afd1 |
| SHA512 | ab077c96aab47ec268255399bc7ba6b550279d7fd654c5eb0f3ef3dfdb08ae70166239b99436527ac1c93a6bd8bd7e9deffd84fe5a9053df310cfebc951fe504 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | d60c8b009e93bc9647db1c1607b9dedc |
| SHA1 | 805eca0de00bbe3c1f23f1fe4946f2275a4470a6 |
| SHA256 | fec7ad08997042eeb3a1f6575b9a7f29122ba9003b20afb67f203bbcaa265c98 |
| SHA512 | 39c65531f82efd495462ea0802a0c2a7f863afb1675d16d30435863dad240722afb9b633c0b13ef2c8dadcf93a6b19d575af8a76a20b75739595c39f46026dcd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | fbf9f79036ea0497d2f2da358670ac6c |
| SHA1 | 8bc8286b673b2e7952d5f2383c26ccf65ceb24ce |
| SHA256 | 4a24ad58fc578107e18db3ac5e1533d33d5dea75d1a3ef82d6e66f7092872692 |
| SHA512 | e2ae8a51b03fcf86e8bf9bab8ad2d6575415aae2e5e040782e688116b7ce2b410389bd307a6422e33b5811d66a6a2e9804b9656e5a2dc098b892b3649a5a4914 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 9a04b3e945d62aa12159c81e6fdd067c |
| SHA1 | c1827aa009731603ea187ea22b1ff21b21dd6063 |
| SHA256 | 1e606170d4a48d6a60ecf6719af1e4cdba56e0dad0e519a1ffbe07e51e80dc8d |
| SHA512 | ed462b891780f8c25e8801deb5ce87dfa8e034aa08e47a02ecde69888e132f2bef4c42a66b1c1c8e1f7c43ca21605fbf1a266188a7514576e784eefaeca671ad |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | c4a0d7074090c1d7ed5acbd92a425c27 |
| SHA1 | edd0fc53e96f64759d1eaea222649df47aaea219 |
| SHA256 | e84dd430d7c46956ca3d97dbb5959245a937b9f7d746a3d430f10ad58e25e598 |
| SHA512 | d201b383cf626e1f3379d28f152f96ab2731d18828164273da833146db2e6cbe8bd2ea0a8d08468777a95b45339580dff00d7e0e4fc83281b3adbcb38f9bd4cc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
| MD5 | 37db60775d8743bb8711f567be774727 |
| SHA1 | be6fa6506e08916f5dae810a472837cc58618d0f |
| SHA256 | 44dd0028a633316b451c6104ce4885efd10b32e2009a0d3f394c929482c9bdb2 |
| SHA512 | 3772e2bf6d68cb96c454791f50410a5f30bc191efe3b56c7c48847390a408877d6982af5b6660bb72aa84221e56a2551d8e616fc1c6159fdf939d1a617388652 |
memory/1152-475-0x00007FF8C2950000-0x00007FF8C2960000-memory.dmp
memory/1152-476-0x00007FF8C2950000-0x00007FF8C2960000-memory.dmp
memory/1152-477-0x00007FF8C2950000-0x00007FF8C2960000-memory.dmp
memory/1152-478-0x00007FF8C2950000-0x00007FF8C2960000-memory.dmp
memory/1152-479-0x00007FF8C2950000-0x00007FF8C2960000-memory.dmp
memory/1152-480-0x00007FF90296D000-0x00007FF90296E000-memory.dmp
memory/1152-481-0x00007FF9028D0000-0x00007FF902AC5000-memory.dmp
memory/1152-482-0x00007FF9028D0000-0x00007FF902AC5000-memory.dmp
memory/1152-486-0x00007FF9028D0000-0x00007FF902AC5000-memory.dmp
memory/1152-485-0x00007FF9028D0000-0x00007FF902AC5000-memory.dmp
memory/1152-487-0x00007FF9028D0000-0x00007FF902AC5000-memory.dmp
memory/1152-488-0x00007FF9028D0000-0x00007FF902AC5000-memory.dmp
memory/1152-484-0x00007FF9028D0000-0x00007FF902AC5000-memory.dmp
memory/1152-483-0x00007FF9028D0000-0x00007FF902AC5000-memory.dmp
memory/1152-489-0x00007FF8C0600000-0x00007FF8C0610000-memory.dmp
memory/1152-490-0x00007FF8C0600000-0x00007FF8C0610000-memory.dmp
C:\Users\Admin\AppData\Roaming\Microsoft\Office\Recent\index.dat
| MD5 | add56ec49f8f478e84a934606effef1c |
| SHA1 | 1262ae87ef755e40752740df90d21352d5fc81ec |
| SHA256 | 22e509cf2b7202fc6b04c3d9a1b137477f11471d58a48c1f9514f89450217327 |
| SHA512 | c095f193d221696f3b087c3f224a559ad0efe4852a5392c8a3ab03f80183beec2a8327892aa481c85f1bf8165b76a029555f250e0dd5f396c823feacff4c06f1 |
memory/1152-534-0x00007FF8C2950000-0x00007FF8C2960000-memory.dmp
memory/1152-533-0x00007FF8C2950000-0x00007FF8C2960000-memory.dmp
memory/1152-532-0x00007FF8C2950000-0x00007FF8C2960000-memory.dmp
memory/1152-531-0x00007FF8C2950000-0x00007FF8C2960000-memory.dmp
memory/1152-535-0x00007FF9028D0000-0x00007FF902AC5000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
| MD5 | 23e6ef5a90e33c22bae14f76f2684f3a |
| SHA1 | 77c72b67f257c2dde499789fd62a0dc0503f3f21 |
| SHA256 | 62d7beeb501a1dcd8ce49a2f96b3346f4a7823c6f5c47dac0e6dc6e486801790 |
| SHA512 | 23be0240146ba8d857fc8d37d77eb722066065877d1f698f0d3e185fcdae3daf9e1b2580a1db839c1356a45b599996d5acc83fda2af36840d3a8748684df5122 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations
| MD5 | 961e3604f228b0d10541ebf921500c86 |
| SHA1 | 6e00570d9f78d9cfebe67d4da5efe546543949a7 |
| SHA256 | f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed |
| SHA512 | 535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version
| MD5 | 009b9a2ee7afbf6dd0b9617fc8f8ecba |
| SHA1 | c97ed0652e731fc412e3b7bdfca2994b7cc206a7 |
| SHA256 | de607a2c68f52e15a104ead9ecbaa3e6862fdb11eac080e408ba4d69f1f7a915 |
| SHA512 | 6161dd952ae140a8fb8aa5e33f06bc65fdc15ce3fbfe4c576dc2668c86bce4a1d5c1112caee014e5efa3698547faad3bc80ec253eedb43148e36e1a02ce89910 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1
| MD5 | 78b1738b76042d3a48138f516c564d81 |
| SHA1 | af24eeafbb8e2dfbd3266c0a55e0d3267150c60e |
| SHA256 | 581708a7724c829f4f891be27397a50c14de9b4af73d743f93b2e5437ebb38cd |
| SHA512 | e0d2288eef8893b78ab094389eeeb9eba9d0bf401603604a637e3531d43930dc91e53ae70d0b73a61abc8023960bdb1d22f7e24f017595009a9b5906d9550e02 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000023
| MD5 | 5d061b791a1d025de117a04d1a88f391 |
| SHA1 | 22bf0eac711cb8a1748a6f68b30e0b9e50ea3d69 |
| SHA256 | 4b285731dab9dd9e7e3b0c694653a6a74bccc16fe34c96d0516bf8960b5689bc |
| SHA512 | 1ff46597d3f01cd28aa8539f2bc2871746485de11f5d7995c90014e0b0ad647fb402a54f835db9a90f29c3446171a6870c24f44fb8bbb1f85b88e3ade9e0360e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000022
| MD5 | f85e85276ba5f87111add53684ec3fcb |
| SHA1 | ecaf9aa3c5dd50eca0b83f1fb9effad801336441 |
| SHA256 | 4b0beec41cb9785652a4a3172a4badbdaa200b5e0b17a7bcc81af25afd9b2432 |
| SHA512 | 1915a2d4218ee2dbb73c490b1acac722a35f7864b7d488a791c96a16889cd86eee965174b59498295b3491a9783facce5660d719133e9c5fb3b96df47dde7a53 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000021
| MD5 | 48c80c7c28b5b00a8b4ff94a22b72fe3 |
| SHA1 | d57303c2ad2fd5cedc5cb20f264a6965a7819cee |
| SHA256 | 6e9be773031b3234fb9c2d6cf3d9740db1208f4351beca325ec34f76fd38f356 |
| SHA512 | c7381e462c72900fdbb82b5c365080efa009287273eb5109ef25c8d0a5df33dd07664fd1aed6eb0d132fa6a3cb6a3ff6b784bffeeca9a2313b1e6eb6e32ab658 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000020
| MD5 | c7e843d9eaa6b2130c3caa3ba45fd52d |
| SHA1 | fccb6d8e223457007179918f7898d101ceae8f19 |
| SHA256 | 536fe8c5b1199b1dbd858daaf43a81121d6455cef7e11c1e5ff7c6ed29680680 |
| SHA512 | 95c2224933212ef02bfa644415b3ea4457c89d73da9883589e0c620c918f9dd9519196c0c38e494a4c3117f1d01b8557fcf23653cb977f45c447f09fc8bbe228 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001f
| MD5 | cc7371bdd52e9419ceca16e201569a74 |
| SHA1 | a80a6cf32cec87ca783c2af0fd59cba6b38a9903 |
| SHA256 | bc61769b1a3434654fb17607b1f7e51c5e5f42589161b841c8517edda7286987 |
| SHA512 | f3eb76094085bb7ba08459ea3ca8a393d9c08dfe5ebc6ec0dbd978a53a5c020f548d0f86bd86bf6a80130f16ae683bc86764b35278ee7f205cc4c09aa219177f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001e
| MD5 | eebdac88fbd336cce6eebae7346109a3 |
| SHA1 | 8accdaf0121a9510b6aae5bb961563c4c9865783 |
| SHA256 | 56c4b1511c0ebabb9d768880288c4c3dd2acce8c3716b8cdb2405f6cad4385eb |
| SHA512 | 987f308759ad1df8147e283da75ba1793cb44b5e9db1724063b7697bb7d98c028723de949eee1a7a5856cbd19963490d9dd90fad979efe13b12c6aee885bcbdb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001d
| MD5 | b862190bd130549af2bfe5862d47c735 |
| SHA1 | 63609dce58dfebc8a8850f69e4481e95fc88b276 |
| SHA256 | 755295a01bbf2fa0e2918afd0522c7005f0e3a8bffd35e07b1f9270c624f7e40 |
| SHA512 | 6da6fc84b9bfb2163f2143d0c9f89467acd86b192d1372414d895a3c37d3ef05ce11fdbfd70235147da7d50fb5e45ca61d4a59aca1b8776665d2f6cf9a571821 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001c
| MD5 | c595c894866b6e63f74c8a9fbeddfff0 |
| SHA1 | b81b8483e0641efc26b03125a58b86ba10b84146 |
| SHA256 | 2cd1db4ac345108dd351472c49d5599758108c026cabf7bafd39255d595ed39a |
| SHA512 | 5916224ed85ced78729dc055925d8823bc49dd4b27faa6d1040f68a058f4dcaae505d46fb0e9c2c973269d08096fccead3e4df69b21d29fc46f9273e78ef2c16 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b
| MD5 | 6fa2cdae6036b2c24a2468987d21b682 |
| SHA1 | a23d6064ed395204210a7382eeb3b6e4f78071a7 |
| SHA256 | e8ef7a2d8ee9e4de649586c92d99e4c2adcf7f8d6314dcc634a7ef33cbcc535a |
| SHA512 | f1e3063cba80029ce14abb68b0053f981d292d993b920b1af4cf658625316f472f923cafa6a671531a909ab0cfc9d398c9992ee0886221364b15ff6e27a9ca41 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a
| MD5 | 1f741cffdfa596599f954a712e07828a |
| SHA1 | 2724162dc0f5fde12bc7ecd6631b0e5814efb173 |
| SHA256 | c75b9d88c2df55a4861bc6578951913f10163a2b5776c8fe1ec85f29bf2cbc77 |
| SHA512 | c1a2464cb8ed6f48e253864c54fd88c49d88df53e64272b8a91704c8a426a4f18fd60ab22dd80a5a6b4521b981852ec5713103cd207d2d878ebf011f05a53e52 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019
| MD5 | bb699760c6b909315f7d98f0af45bfd0 |
| SHA1 | 59c5f92fb130838d7e00c55ecce9ab4557929fa8 |
| SHA256 | 2dff5b49bba1c3a3d9034c35ca62e5ce834dddadd15e58b78584c4ded7cf0537 |
| SHA512 | 6d5f717df2a60e43b3a1b575bf39da351ada744721bbcde0e48fc6b9a9f34c25e7515520b2b576820108ae9247a4381af4487dd16b702b141cbfe602f5febad2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018
| MD5 | fc3e786079d6f0aedd664d5e52cde82c |
| SHA1 | d5dfdb261bb08add9c71c5720fc25f59397da8dd |
| SHA256 | af5df8a27362101438cb3be0c0612950c470087823d07e03546e705a27852ff7 |
| SHA512 | d96de81bf8c75cf372bb5a6c70c059218b3882c8cd93e1a136c446209c111f09fa0baf5072527527370ef04979c51bce2147fccda67888cf84f66e0274ae3e2c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017
| MD5 | 815d20fe66d2f9cf043d1eb914cd3490 |
| SHA1 | cdee5511e4e1e04cff952976deab3158096e8c09 |
| SHA256 | 825b2e51c206b73e15a269e42da7100ec60da3f61eaa22928b3393bb11277784 |
| SHA512 | 385a3cd016ff707ed5cbd70a44346edb7ee59639dbacbe6bca936c8904d47fc054140cf43cead4011791b60da39a5b34547270c88d3cc50ce7ce0807e6943e59 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016
| MD5 | 8057e3c1fe1436a4653ae75fd15ce36b |
| SHA1 | 8d7fb7d66094cf0f94fc6e1935a134edf30222a0 |
| SHA256 | 7647f952c310febc9104fd75e7f7a4e576d74ccdf119c85fbc0942bd5ff2a3a7 |
| SHA512 | d5e632763760d682dfb0af62bd70960f325bc4073448d0d779b3e6d018e8aa29ac5132419d57d4d60680a09e4d87dd201b89c88109089bc819a74d3c815d2222 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015
| MD5 | cf776b128a74f76a26e70ddd68b46b61 |
| SHA1 | 24c15fb603cd4028483a5efb1aecb5a78b004a97 |
| SHA256 | 346cbe6774bf3bf9f3a5aacf287f859103045b0dcd4a32839b00be9f391259fc |
| SHA512 | 20751f34d1a3a63e580581d36902928c7780dde70fafa75b87e406965f2dde501b9821cd45c824584d1ece21566eb5fa501d1effdfafff0b2e27ec806bce8f32 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014
| MD5 | fe531991c7b253f676f8d489c530fe70 |
| SHA1 | dc9de5100d5a98cfde4481d30a288d06c4a0d488 |
| SHA256 | fafd15a586a1361db2eb9ea860421462abc7243f6e8e326809de68589c58e775 |
| SHA512 | 89a37b588bedb9dcecbdee1b085e79f9249cb5c5929bc35573244aa3d0c7cef91219dfc96f36c1dfdb5ef63d916d4debca381aa08b34e69d7d0c745aed23058d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013
| MD5 | 33e919cba82f59cbfcfba6a20a0c12c2 |
| SHA1 | 8f658c7f7975efb2f0c5c8a1e308c9eb5ea7874f |
| SHA256 | 947ed42a54d7bf20cf30d2c1291d6bb4c5a2773e032e2a4180200421c8cbb720 |
| SHA512 | 985292f5cdbeeaf3e049548735dc7a1926937185aa72095d05f95328ebf4283875e7b96890ac4ebf2f54080360cd63f283d8782e876241a6c31a6eb79b8a783f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012
| MD5 | f876142bd70a0997d9b134e741c0a77f |
| SHA1 | 19f6a31c0ab69f307eb5f743ee2c769dcb76decd |
| SHA256 | 60912d2d5eee424cb458a9f897a1b4a2aa60743e6189b741d19f155fab2f06f8 |
| SHA512 | 01a682b3a29f2021af024eb5380ebebc3e397290075b0f413573eba1ca01b00c0ac9f8faa6b8c0cf821815d5d36714ea2bf7434d2549c1a5c345b7741ee7f320 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011
| MD5 | 87e8230a9ca3f0c5ccfa56f70276e2f2 |
| SHA1 | eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7 |
| SHA256 | e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9 |
| SHA512 | 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010
| MD5 | c5f3e3eb6f23b67b0edada18156c487f |
| SHA1 | a63aa98f3396b08eea066ebd9bf102cf2253602b |
| SHA256 | 0519e8dfe9cd403182050c3d30d063ce0deeee7135fcd3911bd7a3a39a78468a |
| SHA512 | b161c18061a5f374c169e7c84ba2b3b9139ab693274e4cc780df36789220a4dac9e27b1f415a137bd59ac97538e72ddb37f66ab766aaf71c4cce033255244fb5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f
| MD5 | 7f8a4f124f314e0f1a6d26a2ad2606f9 |
| SHA1 | b10bfb19db2d40eb4ac17735c385493e7dd04c48 |
| SHA256 | 7bb5dd5ba2a9a34556880c1a064625644803bc44e86914e0185ba6004e917676 |
| SHA512 | 217479bdba2eff0c329faba1f3c90cb287a716d50c1270617231efd40fc554ff9867875582222dbe0120d0f0325730fa4e43ba76683faea1cb8868e10e0f13f5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e
| MD5 | 3785f9a48b56f8252ee4c2384bb140ae |
| SHA1 | 0bd316629b932a7dc5bf321d85b50484adeffa6b |
| SHA256 | 45c3a79e6352d6bc2a878b6455ff8da028401c4aeede181c80fdf2eadcc781b6 |
| SHA512 | cbbe2912a44fe892b1d008ff34e37db83bbfd586adb8464884006456294161c69a75fc013b5ae8e0c34639ac2fa8da0ff492335a0f2c895629430d651d2e72b7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d
| MD5 | 75f1d5724eddb6c481e2e87727c0a19d |
| SHA1 | 3cfe079018e25b2646f23e0744bc5af2114ee256 |
| SHA256 | 751f9ea75e28033193df30031bf3d33e0553e1644ccbaecb26fe7d3bda21b78c |
| SHA512 | a52fade9a438e7896f12afb5b8cccf05ab2cdd71dcc8683ba80001e74800d0c6a6d446d162e75eff573ccfc7106c1beb6f91bdd41753b81a6f5b7510c7c36b4a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c
| MD5 | 1dc57814ab4d32ca89696a607fd95b3d |
| SHA1 | e0d3699163d2e308a5622d5b74b687493911b0e0 |
| SHA256 | 1dea773520f20a8b8f247be3186b4f441fee08a0d2b670a1600aaab0eac61077 |
| SHA512 | 1530e3905bbe99b2b852779e0240aae27713557fee62a8602c8f12a4ed95d52d20ab10474050e3dc6840e407aa7f7c5dbbf136c994d1cd62715a5a68e6d68a6f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b
| MD5 | 178eb0d907971c65f772e8d46fdd3fda |
| SHA1 | 61929d00069c2428809b2eed1def10c01d197119 |
| SHA256 | 95e5d41ffb3debf537d54dc7f4a0a4d1ae18ffba7fc4a2262023f7c0adf43a37 |
| SHA512 | 706dee5bc918682191f244408fb369a397dbb182fe8f21f05d426ffc739a0c8dde11ccfbb9a2fa0f21024e9448048cf443a06c0004bf0ae15ef6ec38d361b547 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a
| MD5 | a906721a8bcd58014d9cfed08fa03365 |
| SHA1 | d7aada883604e71e9b9cf14912b2952faadf0313 |
| SHA256 | b9d5bd8e1f3a46993d49b05828f23ec715e862104fb2bad0f1283dba2c868909 |
| SHA512 | 8df25f8d64bf1f1e085e201040ffebfb0d86a308cd2316a0e1ac18ff7e7bf590c078b231ffba65a2de63d12d496a0239559bdb355f0ce907efe1825ad14daf49 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009
| MD5 | 744485eb958a35fca0f0a8badba6e742 |
| SHA1 | d4dc4393e93b4c37ef673771f159f8da65a8917c |
| SHA256 | 9369b45242a8796c87970d56ebacd31da0616b17b57db292670208b1ea44993b |
| SHA512 | cfbbf99808afdf8bcd9d364952764593cf5e8aa17b73620e14389363d968684432038ea0e70a07fdecdb11b8e5663953f479ce91bdeaee5ad03e458231316bc3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008
| MD5 | 1aca9c8ab59e04077226bd0725f3fcaf |
| SHA1 | 64797498f2ec2270a489aff3ea9de0f461640aa0 |
| SHA256 | d79727a3a88e8ec88df6c42d9bb621a9c3780639c71b28297957ada492949971 |
| SHA512 | d63ebb8d19e6cbe9714603688bc29eda4e347e1bf0bb9b0b7816225220263781b84966413a946feb4ae27750371de01e03092dacc4051116073c518d6217fe65 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007
| MD5 | 87c2b09a983584b04a63f3ff44064d64 |
| SHA1 | 8796d5ef1ad1196309ef582cecef3ab95db27043 |
| SHA256 | d4a4a801c412a8324a19f21511a7880815b373628e66016bc1785a5a85e0afb0 |
| SHA512 | df1f0d6f5f53306887b0b16364651bda9cdc28b8ea74b2d46b2530c6772a724422b33bbdcd7c33d724d2fd4a973e1e9dbc4b654c9c53981386c341620c337067 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006
| MD5 | fc89fc506594e185d8f044a93dbbb452 |
| SHA1 | 3daa10e3e0c8a9449a55d019d5b7a25e1313786c |
| SHA256 | 9961ce0611cf9c67987890bec828b8958e7b6641e51dc58431018abdf6dbe1af |
| SHA512 | c9f86857a29dc251ab7a187e1af6664600ae4cd3c45caa09f8e09af5b1dae64c57c5b97e7ec5db4a3f7cfded90984f35c3b0a480bb6ba69c58357135f13c48a7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3
| MD5 | d81e95f6049288a3288a2b1ef82b991d |
| SHA1 | e07559787d764cee00a4a81bf020635ffa343e66 |
| SHA256 | b69d817e83561d505f7af145c4509c1fa39328bd9c9a6531d528ca517ea18ff4 |
| SHA512 | 18a6b4082d0bd365c87615ec2c55ea5e93002452abfb9fc13aefdf015e002fac5b8645d994fb197736dea043656f81d7120c949dd6d373f7b18f5675e402fcdc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2
| MD5 | 765af9093fffc22d068d3417df94b84d |
| SHA1 | aa56adeece4d91917079adc2aae7c91735973aef |
| SHA256 | 7f74f207b3e5f29d560788238a58a3d7d34380d28bbe9ec3730ecf9286d89c9c |
| SHA512 | f1198bff0732aac8806b13de9e6759e5b515ea7e1138688077a8bbf1fff40800346d2a2c19db0429c1431ecf3324136f9be7eba9266f635d8f81a38a1a48be1f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1
| MD5 | ce9375e79b7fba7ac7c497751ebe4662 |
| SHA1 | a285603428efac1d2fa36306db1beb8c8bbef956 |
| SHA256 | 1366cc4614bee9b29b19990d9be77eba12444126ac64734c13ab49654ee00802 |
| SHA512 | 7d2dab632a7b0406d9d8a7c9a83f57afa334953f7a9f1e65dfebb1bac4888d1cc281c8a96b0e081440c6c4709fe387ea5365b0fa5027118fdf45b9b31c896a34 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0
| MD5 | 300569ffb76675ffc9debcd124e0f1e0 |
| SHA1 | 4ddeb281c3cee2e740390e5088d0ae10735b7d32 |
| SHA256 | a3f39834007830d38e01d7de31d8ca3f4e314a12dc5dd36d4b5faf52d3af11df |
| SHA512 | 6f43b867ec30d6c322bf0c927b4b80fd0e477560911b024e774a9e7a57f61afa8d6baf70f85b98a374152c2657d85b2e4d2b448bc4abef83fb239e638f40c8ea |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 07ebaff1ce2770e278ce19d3d023b8f1 |
| SHA1 | 81543a972c10cd0d72e28f660bc7f967f9df4565 |
| SHA256 | 4b60ff35b15f8b4e2143aa46e51bfda9065e4a3cba46de54d8c28ca53c0dde4e |
| SHA512 | 3a76a9330701f4ba36333f0ec1001b8444f5f379cc16fd0c27185fcdb33a8ce1766c31c174bdaa49854fc3e5a1eb387fef25f27d1468e0771df804d6b1b1ccc9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 353f7e60f1c22e04c0ca880b49dd1e07 |
| SHA1 | 37074ab99e21e8a8f272951f1fb6a3a4ee164272 |
| SHA256 | 9136a0d3b128501fde9f9210536feec617d7357e7c353a6cd0b163ddee338d63 |
| SHA512 | 715925449c90361ba2553ce3326c6b31d6866e0131326ac4759f49a5140f79785d8f24d1b2953ca5317637989944ce2552454a22b42e64df08a13f45135216c9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 39208bfe0aec157f218a7fda831ea0f7 |
| SHA1 | 17ba7b96f9991fadb1f3a243e8f7746b5bfbf3dc |
| SHA256 | 8aa4e182c9cfb0e71a14f40b38e460dc0c7aad017c548a95def4d946cf793faa |
| SHA512 | 92ffa3e9d4c9aa71c7c0e599a9462994f6f58fa0c20f8d3d3bb84a4835b02c855e3971ea759884dfd9fbf9facfd4a31ebb44a94a67e837e89bcf197c28c5b01d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | d1c49a5cb8c3459cba4c1f8473a314a9 |
| SHA1 | 03248c7eadf08091f21ed98b2526afb5dc84743e |
| SHA256 | 2a40ddb633499d6ff7bcbbaad7da10bceb7775687aab0fe1be9f693b9abb7f9c |
| SHA512 | 379b577a4fe44d8e1b2d4ae143e5e8d1ab1881aba6ab9808c623ec64af5e22d00ab32ff4a51d5ca533b5f433518bd8fc10b4839e0bfc3ef6b62e66d7780891ce |
C:\Users\Admin\Downloads\test.exe
| MD5 | 42faf67435979c1245010683d8e916b5 |
| SHA1 | b93b780736398c6e4001c150276ccb24982ed67f |
| SHA256 | eef18c81faeee1877aa9cd8d8aef18b643a434fd3da221cc724070ec863e5fcd |
| SHA512 | ff0fd19b423da9c89a6729790f5f39bac4e2dd03d62ad8c8fcf9628afb7e57a58b0a4700ee8811ba6c6191390c7cf3816342852fb90fc583ba261fd4637fcd86 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 13381dc22bf72720b06a0421981fd719 |
| SHA1 | 755f421b51a82c9d1d416f94f8cb389936e3b985 |
| SHA256 | a1982428b7d989649e8ef7fb95752871acd760a54abec1b8d639cdc29dae61ce |
| SHA512 | fbb6b2ab2030ea302b8450d4af6ac2a0ca49bb16781e83c56a138dae8bdd979aac540357cce44d71efe23f97a1d61a90189d27172741681d0b0d8c17b9aed059 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ea1889126f7dc2fc4168192b30f3f8f4 |
| SHA1 | e69ca062effe23fb471025e91bbdaff221d63a36 |
| SHA256 | f7e8b2a40dbf258eaf9d88546d2ee7644205a388ca1373ca2740366b2c38f5e6 |
| SHA512 | d4bac28747f6f22e65f1ec8b73f279a672e967b4dad1677cd01b05a05d7d49dd02a4f0ab808ecdb82a08dbb32f5caf6a06894c6e5281ec885d774b5a8072b103 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | fc7c5621ec2bff48d6a7bb87e7620de3 |
| SHA1 | ca5ef376306d7eb7b083de086565348a24a3c64f |
| SHA256 | 552561e600f809c612be19a7d4b66b682f4d7c5968ab43dc07e461ed15627eae |
| SHA512 | d2137f427bcb0c6fa8c7c309b8f3211fa1858c19002800a1b1b6b09a52e98fe41d7ccbe5c384df053f76e7fd24cfd63d01bd0ca9a06c211e8a5066a869b7f1ff |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 9e9faa90580643becc6e02c34ad08cca |
| SHA1 | e89dd3ed86cedbe5fdac5fb7d0563955af2546b0 |
| SHA256 | 99a72961708d3305baca17c85ae42360e5c8312e76e840c59a5a1ee48a1aa151 |
| SHA512 | 90f3eae529a82a3114dccb554856bb64be7a166a3fea80ce22f26b614b24412af1975f8653cca640bba6f83d42822960f8db255a81d562d817de2a658ba23dd5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | cfb0aa6b430b820d93178ff3c22d47fd |
| SHA1 | 6ab8b382c2f633f73ed804c7210ddf0ef3b2af2f |
| SHA256 | 0db3c06078de5bddf31e8df4adf600a18a96e3dd58075cb43b68c0c401d1648e |
| SHA512 | 700636510ee0395c6681eb511ef0d7bffcec710a0127151933f3b748932a0f63ac4137f3596f46c6237044d4d17cda48be070889922e3ac0a72483a3245097e7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 4e88f24063fc6424ad7c160266954ea5 |
| SHA1 | 04d2d22efe497041aa1f9409c035074f7307f23f |
| SHA256 | 13e79d59e60c122992c5c53c8716289a2247e10eb64194e1cbe599511c2e37b2 |
| SHA512 | 007ddc0c6592ba317a1df1ea019164b83c67706704a3335defa8917c92e12bdaf5f96f4b87288d18220e536cd148c498aed565a79fbc2fe8f76d7756b74ea969 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\96d3d96b-8b56-4edd-b4b1-e7bb7d2e6e8c.tmp
| MD5 | 5058f1af8388633f609cadb75a75dc9d |
| SHA1 | 3a52ce780950d4d969792a2559cd519d7ee8c727 |
| SHA256 | cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8 |
| SHA512 | 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Guest Profile\Site Characteristics Database\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Guest Profile\Extension Rules\MANIFEST-000001
| MD5 | 5af87dfd673ba2115e2fcf5cfdb727ab |
| SHA1 | d5b5bbf396dc291274584ef71f444f420b6056f1 |
| SHA256 | f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4 |
| SHA512 | de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Guest Profile\GPUCache\data_0
| MD5 | cf89d16bb9107c631daabf0c0ee58efb |
| SHA1 | 3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b |
| SHA256 | d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e |
| SHA512 | 8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Guest Profile\GPUCache\data_2
| MD5 | 0962291d6d367570bee5454721c17e11 |
| SHA1 | 59d10a893ef321a706a9255176761366115bedcb |
| SHA256 | ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7 |
| SHA512 | f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Guest Profile\GPUCache\data_3
| MD5 | 41876349cb12d6db992f1309f22df3f0 |
| SHA1 | 5cf26b3420fc0302cd0a71e8d029739b8765be27 |
| SHA256 | e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c |
| SHA512 | e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 07b38774ab22488fce1bc90f50f3fe36 |
| SHA1 | cf4d91a8fc50fa01fda08621b8243fe2e32c9dfd |
| SHA256 | 2899438e09e3cbc12e79db6bd39eaad638a94f6e4f261fbd547c7434cacf602e |
| SHA512 | ac773e2740f6805cff044bfa17548a842e8ae00810b3f12a258129a7f83f806d5bdc4491f3c7c6dad05cff8ac85d0b7a1b65adce3a9de764a77641c9756597fe |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f1af9b2d2589c5027d44caffd927614f |
| SHA1 | b13aa55f835c6ab4881cce896792e08b068d3c8c |
| SHA256 | 863f6a2177d38ac12217d2dac2d342a1b02f76fffc0c877d9227ab41decc4d41 |
| SHA512 | 69f7d6cd3f230918e093727a43327db47bbead4d5632c824e1420af473333f3c2962b8b1213cafc58b0750d417f9e26ed1f4b7d16bac8f0dcb48d4f4bccd00dd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 04a652c7af89f4590573d3119397b0c3 |
| SHA1 | 9f9c833e596aa245dc21306e6ec7cefc1d765beb |
| SHA256 | 4ccacf1d62560ea24d86b75d6cf6482adbff1658171eab65b29945278d573471 |
| SHA512 | 3be5d9919f6094b3fec387f4786b2ccd2765bf58daf9370e5cb998ff1a603696c3e62aae156aa8fefbf2c2715de8bf1d69df355b9331e6a2cec1706ca546be30 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 94275bde03760c160b707ba8806ef545 |
| SHA1 | aad8d87b0796de7baca00ab000b2b12a26427859 |
| SHA256 | c58cb79fa4a9ade48ed821dd9f98957b0adfda7c2d267e3d07951c2d371aa968 |
| SHA512 | 2aabd49bc9f0ed3a5c690773f48a92dbbbd60264090a0db2fe0f166f8c20c767a74d1e1d7cc6a46c34cfbd1587ddb565e791d494cd0d2ca375ab8cc11cd8f930 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe5c4609.TMP
| MD5 | 57b4377e3c1a2586ceb23c4fa41059fa |
| SHA1 | 5c8da3474a6ffce7133c35ec9442a9c28c749905 |
| SHA256 | 7ed0092387f9108504244845b32e962fc0897dd744aefc7859373266786b85a8 |
| SHA512 | 96194379c986e4c11a2f2aa7eaf3583790785ebcbc2a854ee308331f794b80b9f82c7cdc6c9c07a45bb40ac0d3db908abf4f27716857a8a6a66b7774db1e9043 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | caa8350a76825f4d3a60086d37f7f04d |
| SHA1 | 34a0eefba00b537b2702193812a0e7725a4d95e5 |
| SHA256 | 24a7b9f07ffa8fa14a7761be2a0915cc84807b82db5535f8c53f4ac8692c1af6 |
| SHA512 | bc7842fd145c18885d8dc5af0bf293b46db9818b611b2ae400ce6a5d0f83855a269ae37c300d3cf9f76396b200fd161f1a91398fe3bead386fe10105a8c360fc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 36f262fad1276cb3f3f9d6d016b900db |
| SHA1 | bfff5180c2dbeaf645c3f2d27e36914fc2493f6d |
| SHA256 | bf71f8418809f3980af01024cdecc05f917963a41465799998dea11c5f90fc14 |
| SHA512 | 5b695ba2b1b3ea23595e138783ea376e9a700b9b8157dc16135bb5f53e40d8ea1860e0283d110bb93157ee91704da8944948500bcaedc7fa170fd945fa1279b7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | cfb16116e9de4083ee545f2da69ad821 |
| SHA1 | 67deba811e7307e45d1c32976fadda0da3dde63d |
| SHA256 | 1a5d5faa21f3052f5fbddd9b13eafd53d3984df4f8934021b79e69467c679cb9 |
| SHA512 | 7b8242fa2d982a4d311cbd8e45c6c57c1d449c69d63ad6c2acbb56e322a5b3a8fd740d3afc15e36fc4d4c06882001f0433e83b6ccf5dadbca8286d612ac50678 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f869e5966a84c40c6258a4e25546ff92 |
| SHA1 | eb742bc6d9e6047b79e064baaba28a5fe6a3df86 |
| SHA256 | b5325b64fb0a105aee6c0b1f59ffb8b7d723f12db7abb9815696e76face6cfe3 |
| SHA512 | 431d7e97f7f67ff74195038cb8dd896a03fd0114606736aa36147a0a6df30f5b1ada5436667a796f8e48045f5321ed5ab5958f791b72837cbadcffb6b799205d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d5b27a49ed6d7b97cb166998b7e25643 |
| SHA1 | 6ab0e09dc1df85a448eab4bee79bb7349f8561fe |
| SHA256 | 1b5d978b863ad0ed24563c70e0dc84ed69c86ca373a295e22ae3f4acf31b49ab |
| SHA512 | 428555a1e56c690a33836621ba8b8f1f5b07aff4f2efd3e38d1049a50ca5a84b95cb453691e6fd549e2d786c501a93c051563277114616e6c6cd22f1c73da0f5 |
memory/4660-1351-0x0000000075320000-0x0000000075AD0000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 4a6b7e26ccde6785671c52c9e829cc07 |
| SHA1 | 66b4875645d0160ff41684da3aa899c2157aa641 |
| SHA256 | 2fec6e5c2e775ad7e858404f9fe5c7ab1790b1331cbb7a2c2383b16b56c52e88 |
| SHA512 | 0010aaed5160f70b0a1b111e83a92be76635d7c003ef2c402150a7009e840841ee8ab6ff760d12dcd490d99236838d0e3c3a025d2979e52221be6d3424cc8fa3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 9a4c58b613cc4fd0e5c205f6fb4e4547 |
| SHA1 | a213a6c0e946d57f0718a74f6e7cb1969de005c0 |
| SHA256 | 6ab47c0e2d78218135c0bfe786298b498560496b659726f978edad62895a036b |
| SHA512 | 7643d17f911ca69b0c34a248c678d36701c261bc1148bad5bd3064c670579242f14dafd8a6494030e87aac3707a141d3a08050b7f6a3813711c8b4fd80ed4599 |