hxxps://www[.]mediafire[.]com/file/82puqdtfj3byjnn/Lightcord_(FREE)[.]rar/file

Analysis

max time kernel
60s
max time network
61s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
24-05-2024 08:46

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://www.mediafire.com/file/82puqdtfj3byjnn/Lightcord_(FREE).rar/file

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

Processes:

chrome.exe

description	ioc	process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

Processes:

chrome.exe

description	ioc	process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133610140292350891"	chrome.exe

Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes:

chrome.exe

pid process

1884 chrome.exe
1884 chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 64 IoCs

Processes:

chrome.exe

pid	process
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

Processes:

chrome.exe

description	pid	process
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe
Token: SeShutdownPrivilege	1884	chrome.exe
Token: SeCreatePagefilePrivilege	1884	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

Processes:

chrome.exe

pid	process
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

Processes:

chrome.exe

pid	process
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe
1884	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

Processes:

chrome.exe

description	pid	process	target process
PID 1884 wrote to memory of 2440	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 2440	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3628	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 4720	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 4720	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe
PID 1884 wrote to memory of 3712	1884	chrome.exe	chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://www.mediafire.com/file/82puqdtfj3byjnn/Lightcord_(FREE).rar/file
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1884

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7fff935dab58,0x7fff935dab68,0x7fff935dab78
2⤵
PID:2440

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1592 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:2
2⤵
PID:3628

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2012 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:8
2⤵
PID:4720

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2224 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:8
2⤵
PID:3712

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3008 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:2004

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3016 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:2856

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4640 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:3976

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4464 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:8
2⤵
PID:3888

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4416 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:8
2⤵
PID:3760

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=4464 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:4540

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5000 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:3888

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=5176 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:2492

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5400 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:5332

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5568 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:5484

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4488 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:5616

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=3608 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:5624

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5964 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:5632

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=6124 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:5660

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=6128 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:5668

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=6300 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:5676

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=6256 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:5684

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=6688 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:5692

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=6708 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:5700

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=6112 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:5316

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=7380 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:4996

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=7528 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:3224

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=7720 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:1864

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=7716 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:6156

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=8100 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:6316

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=8256 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:6400

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=8396 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:6632

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=8560 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:6640

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=8216 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:6788

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=8904 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:7052

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=9020 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:7088

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=9132 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:7096

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=8884 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:6476

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=9332 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:6488

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=9476 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:6532

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=9788 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:3896

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=9932 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:1432

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=8000 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:7316

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=10192 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:7392

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=10200 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:7400

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=9612 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:7580

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=10528 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:7592

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=10176 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:7736

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=10180 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:7744

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=10188 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:7896

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=10928 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:7976

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=11112 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:7992

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=11156 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:8136

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=11176 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:8148

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=11488 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:8248

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=11852 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:8324

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=11652 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:8444

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=11664 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:8452

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=12128 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:8600

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=12484 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:8608

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=12692 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:8760

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=12840 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:8768

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=11312 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:8848

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=12708 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:9000

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=13204 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:9080

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=13316 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:9096

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=13528 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:8376

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=13636 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:8392

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=13776 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:9324

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=12508 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:9500

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=13468 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:9532

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=14112 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:9584

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=14280 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:9612

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=13504 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:9732

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --mojo-platform-channel-handle=14296 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:9804

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=14464 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:9880

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --mojo-platform-channel-handle=14816 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:9924

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=14792 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:10028

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --mojo-platform-channel-handle=14800 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:10036

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=14152 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:10188

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --mojo-platform-channel-handle=14744 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:10204

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --mojo-platform-channel-handle=1568 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:10860

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=12188 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:8
2⤵
PID:10952

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --mojo-platform-channel-handle=14036 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:11008

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --mojo-platform-channel-handle=14024 --field-trial-handle=380,i,216150356880596460,6820062386299292823,131072 /prefetch:1
2⤵
PID:11152

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:1272

Network

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
Filesize
6KB

MD5
b8c9b43f19f968d42924f12ebc590770

SHA1
f7b9ea9651588c7f8e7aa18e04809d6757308d3e

SHA256
1494b2908e8ed6758eff5a930619d9fc51dac5417b4e61f537ba3cfd03a223a1

SHA512
cf67c56e53e2528c936e62b76dabb95199d8923f78f20e5d243880cb1e66c01c1e26f09710c9b5fbc581b4e5bc23dca2eec4b74eebe563e882f297cce8dcb2c6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
Filesize
1KB

MD5
fbd106b427b551a42ac217649c2cae7f

SHA1
c0b2ee158595ebd937f093a45045b84f2972c099

SHA256
01fbb1d8dd017dc8e6985c9725bb041ced7e1f7d2acc2a17f3f5f644d5560f51

SHA512
e329ede89d159fa269ced1d1934fd5187210698bf8ba8fdeee46d092a343a64fa392f56465d190ac71a921d93a85e84a2c38886a9e35b2d8d1f81910e838a081

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
Filesize
6KB

MD5
58db1a7f3f740a71f8520521027fdaa9

SHA1
b5232353eb45b958c21302add578ba588256eb3e

SHA256
a6ea6c3cf4f615b5b4b94a5f041b6775a4cd7291fa5163c97beaf57821f56c55

SHA512
97b7630718d621efa9a95601d353f791190d7052ce022255a6eef03aed955d5dca48efa5f016b2c4e94dd941e96ddd43a003001c5876e32b3bff9c57a1a73a36

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
Filesize
7KB

MD5
ebe9a0fa6fe594b2674b38c3d2a1c2c8

SHA1
fd11f390ce556981b022a972e1c0da42624a0503

SHA256
a3f5a03846a27fa8cdc457a3b52e22c5451b498e77857b3a82aa499963368863

SHA512
ed6b4a9d460849f2ad9f26de1e31c2f860f9e6b1f341747d5c7e9eb505cd9406cbb4f39e493fb5a5929c6964c9f634e1986db66354c8e8355c5be899255f3f39

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
Filesize
8KB

MD5
99cbeb12c233f946e631e519e6664048

SHA1
ea309265b49cb601a637e43bf06f5e6657e3dad2

SHA256
b85439669a624d8f1e684c573ce50b2f88ad670d16e11b1487dade2be40ec87d

SHA512
15296eb77e6ff995b9f836dc703c5fc30b0ed12a7a94da302a7517e9b3c659cfb8922ab488b195a13fcc28a5407b63b9f3fd2358304c124fb9921c667f8e6133

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
Filesize
7KB

MD5
3a2cfed4f6a541b13b6c3d7ae145ffd4

SHA1
419d2000178e41ca5df0b1dcc2d4ef5c989c51ad

SHA256
0d5ab52e04d6ee952dbef7e99c2286bc32f113a63dfbb71a79601ff38d968d4f

SHA512
5b7c84bd5790b093d60fe3a4dc190bc3f36a84c0927a9f7e64e195cf2dac84d24c0a0b7d3ec905e6c03453a6bff1e593b89f7e37ea495a42d825c394f2a63780

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
Filesize
130KB

MD5
4c097c9b8c7a822c6c5a451d4f7a75b3

SHA1
4290cd75c27ffbd3a81d6a1dbbc9470db881df38

SHA256
2e404e7e11058827943c0ad04d528b8e31134a3169841574f4b2034e8398c752

SHA512
8f5a79b1ab14df7a1ea8251cc99551084e958b08455899a0b2bdffeee4da1a85bcec25a0dec67815e49cf62b6bedf54ebabecf24d61824f9ae73da403b7edb1e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
Filesize
130KB

MD5
39bcc6198d7d4547232587e590c2aceb

SHA1
feb4deb7e8d357e42901ed8b8e02f56bf68d70c7

SHA256
3fb044bfb733ef19fb48c81e4f184afe50eb413b20e415dad401499b4271bab1

SHA512
ec654c8b81987bcc8ca4ebe7d119682440c706571da0774e73998e5e8d238f1efc62162c240216b95c6239b73c65f43ded14728a8da974015a984d1b17132100

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
Filesize
96KB

MD5
c7459fad8b39ebfb3295c851c82d050d

SHA1
f9c4de78da798944228b8b40d7cabaf98d19b15a

SHA256
5af05c524e4227d73a646048a5ed41dc17128e7115625c8d22508349a1652933

SHA512
f7ea2189cc66184c3337482c727dfa8e2087afe7de360e7b6083f2c68e42afe4cbe334f39abb46748d7628efc552352da07827fbe152cee4b1a7b558467b63a0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe583217.TMP
Filesize
91KB

MD5
dca8017750ac1730c1a2e7567ed5667c

SHA1
4b85ea54b2048c64634ea323f710aa24b79c148e

SHA256
befb018fcfa2c68f93fdc18c62dc8f9b70d19f6b827bb9401aedf0a79e1d3f7a

SHA512
63fdc02315ad8588c00ab9b87f00bf69444e8216ba8518f2c72078f0b8005dfc13cd9a4c72c5386e64826f37c2a8b21efe8f4187d41b2b8bbfa1773a4f94beb3

Download Submit
\??\pipe\crashpad_1884_DLZQCVQITCEUQIAK
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit