b004c0684a3609f4fc2c7bf6ffe393a84ca5f429db06946b7b1ba5df9f9ee7bd

Analysis

max time kernel
164s
max time network
168s
platform
windows11-21h2_x64
resource
win11-20240419-en
resource tags

arch:x64arch:x86image:win11-20240419-enlocale:en-usos:windows11-21h2-x64system
submitted
28/05/2024, 22:05

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

rc2.exe
Size

153KB
MD5

100413b6e46ea24ae41309be5fa6cc69
SHA1

9f19824fb26d6d64e1514be73d82e30327a5ae27
SHA256

b004c0684a3609f4fc2c7bf6ffe393a84ca5f429db06946b7b1ba5df9f9ee7bd
SHA512

aefb10961566176d676d7720a9c31697c0b8e8a311f657ea8597f6133a418dc16b9a7feac39b7ee7df7c8adf2505d25079be447e7c5964c0f469f6962a951b7b
SSDEEP

3072:qv6OT5AKet1dYoy62wReZ4QAKgx3cjjLmoWv8prhN:DOWrt1dYoyJwpQAR6WoWkT

Score

7^/10

Malware Config

Signatures

Executes dropped EXE 5 IoCs

pid	Process
6772	rc2.exe
1360	rc2.exe
6596	rbxcompile.exe
6520	rbxcompile.exe
7144	rc2.exe

Legitimate hosting services abused for malware hosting/C2 1 TTPs 3 IoCs

Web Service

T1102

flow	ioc
3	mediafire.com
18	mediafire.com
19	mediafire.com

Drops file in System32 directory 2 IoCs

description	ioc	Process
File created	C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_01cf530faf2f1752\display.PNF	chrome.exe
File created	\??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_01cf530faf2f1752\display.PNF	chrome.exe

Drops file in Windows directory 1 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SystemTemp	chrome.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133614075842082979"	chrome.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-1474490143-3221292397-4168103503-1000_Classes\Local Settings	chrome.exe

NTFS ADS 1 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\Release.7z:Zone.Identifier	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
2628	chrome.exe
2628	chrome.exe
5772	chrome.exe
5772	chrome.exe
5772	chrome.exe
5772	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 61 IoCs

pid	Process
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe
Token: SeShutdownPrivilege	2628	chrome.exe
Token: SeCreatePagefilePrivilege	2628	chrome.exe

Suspicious use of FindShellTrayWindow 39 IoCs

pid	Process
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2808	7zG.exe

Suspicious use of SendNotifyMessage 12 IoCs

pid	Process
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe
2628	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2628 wrote to memory of 2544	2628	chrome.exe	83
PID 2628 wrote to memory of 2544	2628	chrome.exe	83
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 1804	2628	chrome.exe	84
PID 2628 wrote to memory of 4800	2628	chrome.exe	85
PID 2628 wrote to memory of 4800	2628	chrome.exe	85
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86
PID 2628 wrote to memory of 1452	2628	chrome.exe	86

C:\Users\Admin\AppData\Local\Temp\rc2.exe
"C:\Users\Admin\AppData\Local\Temp\rc2.exe"
1⤵
PID:3116

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Drops file in Windows directory
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2628
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.106 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7fff14d0cc40,0x7fff14d0cc4c,0x7fff14d0cc58
  2⤵
  PID:2544
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1832,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=1828 /prefetch:2
  2⤵
  PID:1804
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2116,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=2108 /prefetch:3
  2⤵
  PID:4800
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2200,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=2208 /prefetch:8
  2⤵
  PID:1452
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3112,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3148 /prefetch:1
  2⤵
  PID:2148
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3152,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3336 /prefetch:1
  2⤵
  PID:2928
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4424,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4420 /prefetch:1
  2⤵
  PID:4100
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4632,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4620 /prefetch:8
  2⤵
  PID:5088
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4612,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4740 /prefetch:8
  2⤵
  PID:4580
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4700,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4780 /prefetch:8
  2⤵
  PID:2580
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4624,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4880 /prefetch:8
  2⤵
  PID:456
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=4848,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4616 /prefetch:1
  2⤵
  PID:1716
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=4384,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4388 /prefetch:1
  2⤵
  PID:436
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=4476,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4420 /prefetch:1
  2⤵
  PID:1412
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4976,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4992 /prefetch:8
  2⤵
  - NTFS ADS
  PID:4952
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5232,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5212 /prefetch:1
  2⤵
  PID:2600
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=4968,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5456 /prefetch:1
  2⤵
  PID:1876
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=5504,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5612 /prefetch:1
  2⤵
  PID:4344
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=5604,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5768 /prefetch:1
  2⤵
  PID:2352
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=5908,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5932 /prefetch:1
  2⤵
  PID:2992
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=3472,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3500 /prefetch:1
  2⤵
  PID:2232
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=6140,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6336 /prefetch:1
  2⤵
  PID:396
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=3460,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6472 /prefetch:1
  2⤵
  PID:4732
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=6108,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6600 /prefetch:1
  2⤵
  PID:4872
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=4900,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6772 /prefetch:1
  2⤵
  PID:3820
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=3576,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6916 /prefetch:1
  2⤵
  PID:3080
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=4388,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7056 /prefetch:1
  2⤵
  PID:3272
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=4992,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7200 /prefetch:1
  2⤵
  PID:2908
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=5244,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7488 /prefetch:1
  2⤵
  PID:1248
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=6180,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7864 /prefetch:1
  2⤵
  PID:404
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=6204,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8096 /prefetch:1
  2⤵
  PID:2304
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=6212,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8244 /prefetch:1
  2⤵
  PID:3276
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=7240,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6216 /prefetch:1
  2⤵
  PID:1068
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=7248,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8528 /prefetch:1
  2⤵
  PID:4452
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=7296,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7308 /prefetch:1
  2⤵
  PID:1484
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=7292,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8760 /prefetch:1
  2⤵
  PID:436
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=6816,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8896 /prefetch:1
  2⤵
  PID:5032
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=7356,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9036 /prefetch:1
  2⤵
  PID:4516
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=7380,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9168 /prefetch:1
  2⤵
  PID:3184
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=7364,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9332 /prefetch:1
  2⤵
  PID:5412
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=4448,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9408 /prefetch:1
  2⤵
  PID:5480
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=7560,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9572 /prefetch:1
  2⤵
  PID:5500
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=7568,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9704 /prefetch:1
  2⤵
  PID:5508
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=7608,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9832 /prefetch:1
  2⤵
  PID:5560
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=7612,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9964 /prefetch:1
  2⤵
  PID:5568
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=7552,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7624 /prefetch:1
  2⤵
  PID:5644
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=7664,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10236 /prefetch:1
  2⤵
  PID:5776
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --field-trial-handle=6384,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10368 /prefetch:1
  2⤵
  PID:5784
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --field-trial-handle=7712,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10624 /prefetch:1
  2⤵
  PID:5848
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --field-trial-handle=7716,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10716 /prefetch:1
  2⤵
  PID:5856
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=7724,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10740 /prefetch:1
  2⤵
  PID:5864
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --field-trial-handle=7732,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10992 /prefetch:1
  2⤵
  PID:5884
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --field-trial-handle=6632,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11336 /prefetch:1
  2⤵
  PID:5956
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --field-trial-handle=7756,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11388 /prefetch:1
  2⤵
  PID:6140
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=7772,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11512 /prefetch:1
  2⤵
  PID:5216
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=7792,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11748 /prefetch:1
  2⤵
  PID:5244
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=10388,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9580 /prefetch:1
  2⤵
  PID:6796
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=10412,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10404 /prefetch:1
  2⤵
  PID:6804
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --field-trial-handle=10444,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8948 /prefetch:1
  2⤵
  PID:6812
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --field-trial-handle=12436,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11940 /prefetch:1
  2⤵
  PID:6908
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --field-trial-handle=12308,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6364 /prefetch:1
  2⤵
  PID:6932
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --field-trial-handle=12452,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6388 /prefetch:1
  2⤵
  PID:6976
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --field-trial-handle=12456,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=12136 /prefetch:1
  2⤵
  PID:6996
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --field-trial-handle=12464,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10800 /prefetch:1
  2⤵
  PID:7004
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --field-trial-handle=9972,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11932 /prefetch:1
  2⤵
  PID:7012
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --field-trial-handle=11132,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10996 /prefetch:1
  2⤵
  PID:6388
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --field-trial-handle=12544,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11876 /prefetch:1
  2⤵
  PID:6408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --field-trial-handle=10708,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7564 /prefetch:1
  2⤵
  PID:6436
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --field-trial-handle=11156,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10464 /prefetch:1
  2⤵
  PID:6528
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --field-trial-handle=10416,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11140 /prefetch:1
  2⤵
  PID:6556
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5124,i,14806902805085180355,17455551732159605188,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3548 /prefetch:8
  2⤵
  - Drops file in System32 directory
  - Suspicious behavior: EnumeratesProcesses
  PID:5772

C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe"
1⤵
PID:572

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:1664

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:5000

C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\Release\" -ad -an -ai#7zMap52:74:7zEvent20564
1⤵
- Suspicious use of FindShellTrayWindow
PID:2808

C:\Users\Admin\Downloads\Release\Release\rc2.exe
"C:\Users\Admin\Downloads\Release\Release\rc2.exe"
1⤵
- Executes dropped EXE
PID:6772

C:\Users\Admin\Downloads\Release\Release\rc2.exe
"C:\Users\Admin\Downloads\Release\Release\rc2.exe"
1⤵
- Executes dropped EXE
PID:1360

C:\Users\Admin\Downloads\Release\Release\rbxcompile.exe
"C:\Users\Admin\Downloads\Release\Release\rbxcompile.exe"
1⤵
- Executes dropped EXE
PID:6596

C:\Users\Admin\Downloads\Release\Release\rbxcompile.exe
"C:\Users\Admin\Downloads\Release\Release\rbxcompile.exe"
1⤵
- Executes dropped EXE
PID:6520

C:\Users\Admin\Downloads\Release\Release\rc2.exe
"C:\Users\Admin\Downloads\Release\Release\rc2.exe"
1⤵
- Executes dropped EXE
PID:7144

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

Filesize
64KB

MD5
b5ad5caaaee00cb8cf445427975ae66c

SHA1
dcde6527290a326e048f9c3a85280d3fa71e1e22

SHA256
b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8

SHA512
92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

Download Submit
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

Filesize
4B

MD5
f49655f856acb8884cc0ace29216f511

SHA1
cb0f1f87ec0455ec349aaa950c600475ac7b7b6b

SHA256
7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba

SHA512
599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

Download Submit
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

Filesize
1008B

MD5
d222b77a61527f2c177b0869e7babc24

SHA1
3f23acb984307a4aeba41ebbb70439c97ad1f268

SHA256
80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747

SHA512
d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
6e5f64ae128eb7a3d89f1af3495527fc

SHA1
4897d28333385228422d001b7015d186a68e995f

SHA256
0f1a217a01904f882dd534fc78f80dd9655ae72fc78bc0a0c160b9aa2a628add

SHA512
7581a7b71ba49e77ad261081c1a96e66d6be9baca08cd73ec4704e9d8978c621f348f1ae29d5a1bb826b973b9d5f39824b1a88a62ebdfb4ea7e367a6dbe8101b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
8333deccc3dc20921429dd53cce750c8

SHA1
149a9301d6d21bf59a8986e16148e93cd648f83c

SHA256
9d23a31031de52e2f5b48aa4da4b2bde8cac1f424408102d129eb714165545e6

SHA512
c677ffc3abd73f812acef4502d0d01fdb2b103f7a15b76caced25d23cfbeb8b3fe9fb293d79e7719e229e26eb2ccd4a67669a95c95c5f819a607590b835cc2d4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
b0d1f8ea0a10611191eb52311ae01693

SHA1
50f9e04b6c27e2bf2cb078739c8c635e6976033c

SHA256
43473d2dfc55b09e852be4b275f6c4bd1acaec07abf7bd0984dad32211df2ec2

SHA512
4b1a935a4379f71b99b497d68c60eefea57ca33f55d8159a1b1d828d79526cbd2880ea854d7da0c28ebbcfd33053810c2c885db217f0a641d13e0f56f215ae82

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
4bb830af71c7673c380e341f091a2dbd

SHA1
98d10e5b506b167e6dcd3ec89a7c0844084ff080

SHA256
18cd4c23a972bd656ff916f59978323ae4fdeb9fa89132c9bb74698d10580b74

SHA512
2a714606578e2608e69a9ddc8facef9cf71beb548f4f1d9914db20b843c2d07401651d7ed3bf2d794b4bd534fadd89cd32470c9d715b2a52723c555981ea08e5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
5f5a4cfc3482cd9494e727075ea7e5cc

SHA1
5e8afb300a07f030ab9b9ebd62f78c8f40f171f8

SHA256
147d1131ce92ee8efabffce9a7e0579545680e8c94b9af9260b9b39aaa266e15

SHA512
61730826ca08e3470465e7499d0395d57bfcee7c90b1fba1af6332f49b02bfe2b4b1c396e9eaccb8dbf6640aa1c70ca36ef378dd515b4cbb76def2956ca0947c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
32KB

MD5
6f3159bcf39289697ddbfa0e22ad9165

SHA1
cdcb4f142066bf535d9936137e6e62d6635cf933

SHA256
60b2460dc4adfb49a985992a81d1cf86635eed1b763b9665a0d377827edb1d32

SHA512
492df2e1b64298d8760d81384d7cb012b1065cc6e9b75d8f7509081e83a5f49019549c539cea72838addf065445af776d85c1bc9b83ab39b053fd402bb868b4e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
356B

MD5
233e6e027df7a2e99dc8c8b1d5742743

SHA1
63bf3f6d5c0cc988113c941a4d0dc07cf25bc020

SHA256
fa40155177d92366c0847fa34a7366b5db1de5b5075504c1c882bee267f6e417

SHA512
04e32bcaac7a4cb66b66616e5217ec4b908cb03fa24b0476b88d31a0acd6e60682b4db0a7ff471961dd3c928a97443a1ce4bbbcc89e926b5a6caf200994a186c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
a7f0f5b6848841c53859d205a399aee2

SHA1
c6d9f247c36ff22da1e7847a428b82ccfdb13ccf

SHA256
95dcd92108c8b6c53375f258b9b85777ba8a0b09081b17be92906300d4c0e9b9

SHA512
b8b3a48de55a82340a20a4581cd37f91f48073d5654f2422bc71eb9f0d951dff59212f0a2ae686f288af66c66d3c1103bf44bb2a787aec59b964ac5fdf0b6740

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
a7d0ae7fd83f4ef9bbbe020559c9b96b

SHA1
90b50c7e846720e7b2a5bcde00afe61de80005ef

SHA256
5547aa88dd19d7177d7b76d78ac8c5d2e895ad500f683c2ece102a1dd1a898b8

SHA512
6e3f3fa84455165dd956ada0517ec2a1b9410eaddaf8fffc93f599823675d6aa79358bc0fc7f3d757d7859b9a66d4b57c8803264ee6b8157be6e2dc7c153ffe5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
5a6ab50276967cab3500cba5d2cb3c99

SHA1
51863c833540cf6f76a96d26995986670db8ac21

SHA256
0e17b4d91a34f78633414a114f112cbba528634c5a67eb997ec18abb33e2c647

SHA512
bde3d4458f300e01b6081b12a0e5f4d4ef280fdb5af946b908c1c308545a2062091a399ec8e0a248734a48f0599c17151b25b57be830a42a9c31310565918f56

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
7afed0b497a11a3927e5acd21d1bd507

SHA1
f5b0f5ef61f16f496485bcde5d1fa1573141dc75

SHA256
aab891feb22270ec8247e8badef3c9a1bfd23b7edf3726c85d1184d2fe6d07ad

SHA512
5d96752ed47fabe42d3365738da9b334a80e08b9e61e678f08d4b98e78b0fea89bc5868588e762cd6eac0da85e4c5bb6770dd08cd7686a0d2bf03862ef559cbe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
261a117e4c7dc0a68936aa3ba8e10f87

SHA1
eb2aa93c88c124a36054dfcac15d8bd1db418ea7

SHA256
4f9f71bdd9e45702cd18edae985b32a0a4cb1b097e6c313f4183af1f055301ba

SHA512
88f3793394069173b0c6f183ad814adf0c4902af2dd4cf892a21326fa455d9e136c9c9bc4513077dcf29c82333a64b5751e981b7198c83f3fe8c701a00009522

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
71c81a1157a5f3f0a91c3f933fea574b

SHA1
6049ab6546439ae80766c5ee886c0f5956d33b52

SHA256
630615ac79eaadc689c9c7f25a0bf0fc0a5529ce66d5acae44876c98147e7e57

SHA512
0c722d209ce8ea3f6b393d16c31b2adcf677a3ba9e128bfdcd72eca228d38729e46b6c700289514ed8f364e23c7a5e02d6440e79b3c1a69db208e4a153f4b19d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
88a309f3f6350f860a57ae092d50afa2

SHA1
47a11582bd3e92ad45e87d6e6515ee8c42763de5

SHA256
f20e6de95810a930d1f3adb50d38f62af254760c5f7f75ffad4f1b5c235d9e97

SHA512
cfec5ab8446c0d49143abb5d7dacde3d5dfcf0ee81550348e38a0b05060cc3e3e029325888f4ad953e732acc59ff96c541e26a5e01129bed17c9a6b66477ab5b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
3686b361f217e5303902c6fe413ee472

SHA1
9f1e2d0dec5463cc26be1a5aa43ba4195bd8b1b3

SHA256
d39466551fbf92eda79d29dea50a7894752c6faf49beb5330d46a2108cd79fa1

SHA512
8b98c1b6fc41d1797ab53bef298ae9e8521d08eb59fe3242b8b9246cfdca93b4356669864cfb2308619e913aacab757262887735eca270785a0d767e5e6bfc77

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
58901e730948bb3c5e86332cabc8d2a2

SHA1
12fdf529ab0d348fe4ada1474a58d478562f4d03

SHA256
1a33043978ceacc418833f1cb5e5ffc9581c4ad33fbf7b5aff374fc64a619480

SHA512
e765fa918a49ba7f21f3eed1220519c858eea201fca9c169d7cfa526a1bc0c23dec04baadebf7996ce311a35887dd596e793e5a1b875718a22cd2fe68023e7d1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
7a8eaf0ee61560c12832291d6f3dd582

SHA1
3488fa683a5003a14284c5d6497c6d0baca3a221

SHA256
c5fa0a18147c0ceb65b93e15c506919fb832e2820d14fa8f782b351e88f0b9ef

SHA512
d1d01374fa78ed3719dc00d585560765af7121e4cc207bd5acb9eb04ce093362b433f1b9d17829c4047b562712bbade9edc329bcc41ca0b438aa6fbcc309e105

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
5c4a430a74650cc3627e70b565989133

SHA1
1b383562600b47b29083a1ee9160c3db5351efa2

SHA256
f2139fcccb43a181c30364aaee8287d9212062abb8a3ea42570db7be8f897c50

SHA512
0831ad942e708e9620f34ffc10a984639a2f3993938ac09cbf6ee8d3dbf8039f5a7981f40ab9e91d1c3686a77221f2bf2a1403d53d491b9ee1fc7ac4605eef86

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
d4cc3475cebf1efe3fba175f76ca5a8f

SHA1
e2a481e6318e378365bb62bd7837ab4bb425a649

SHA256
c667e3e81f453e6fdd023160d5fee01622b9832b4efd7bbfe4c63674e360a095

SHA512
1d8515b2290504daca1d37feb18bef943662a6b303947217a0a5219736d03c2b60fc32282ddb01f2ffd8a939a88d4a1274cbbc10bc543f2ef1a0100a1cacf177

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
bd0c26dea33f9d35f92920958b26ecc5

SHA1
eb33c37decbc4fc61fa7a4f6d5ed59e28db1f913

SHA256
91e34391e8d4a16b501676140522af2d3215e3d2b56463cce5790a3f888c8908

SHA512
1aed17b2c6c9d8625e851e50c1c579bd03ceb5e5273a48b9e366de1704076a4556e2467d230b248aa03ee295f1ecebc0acc2ed108fb9c4c1bef71b7a7303c44b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
3e079875be0139950fcb907cb6c3166d

SHA1
a654ee71e27785ef39ade778b6e84a7a748a20f7

SHA256
92cd150e4080e72537be974cdde34fc32cf3f5a3adac788950ec048731a0504a

SHA512
6671616f4d6ed38f999419dd424660d2d097fa0962eb90407d5bdef6a392f8f0e8ede882793a58cb314c9cddb1909bc529f22f7672bc8ffb7a5c1de405d3ebb8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
15KB

MD5
af327955c618602c6e17bd7dda3eae4e

SHA1
56efd8eaecf52eda728a8e4eb7c46cdad20a98f7

SHA256
369a72d72ab5ac1d602b676209008a10e0d910c7fd8527b17126a1b726f35235

SHA512
a2a35f98dc0ca7189c3cf6ea5312358fbb5da1857ad24df48b7825afbfaa8cd8ba3832eddfa89da7936eafa3e0cf278fa3cd4ba5cc031dfacdf09b23462b9b11

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
157KB

MD5
6b614c0e6e3ba2ca1af1a9d0b651b0c9

SHA1
cfff075bfebdd676b7ae3ec5e04674457a894f5d

SHA256
e22c1953a4ffa372240f0493afe51332dc0d53deb432862d521241d67fee86eb

SHA512
11c4d6a01c61ce674ddce5786c7146a21ae1bef5d85ee3083e85e859b8114e467650249d987fc7f8151cfb0f65a06ed15ea23fbacdebf1e5098b7dd35e49b78e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
157KB

MD5
86abaa5d1ae066a8f241b2f0851a3822

SHA1
d2cceeb80f18665af13e8cfc48ee2bd3c76a0185

SHA256
a536d306661039898dc576d3fc267d3f43c7131496d386b56881e7c11a383d46

SHA512
93e08f938e0805652e24a15fb15ec0f13ab332125d3a7f748c50b3b4fed31e66d7a6c4ed68663647e7e200f9afae1a5cecb989cc66f2e79e450ada7198eda475

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
157KB

MD5
96805bb529d0a2d3cd5e7a3c8eba51d0

SHA1
4524c9df4eab4d98960040586edf5175386c19a0

SHA256
e533229d1a1bf3564f602a87d6f2844a7ede88938b6d874b31e706bc9d4a3e72

SHA512
7d27f28d4b0894a0fe30dc3a16fd3739857e6c74174b981fde0023ab1d69b948b7790daebc885d2dceac70ba37a2a6f94b48aeb79c8b62d8e2a4198f90cc8ab0

Download Submit
C:\Users\Admin\Downloads\Release.7z:Zone.Identifier

Filesize
312B

MD5
09a5ef276a83068c3be715aefca13e53

SHA1
09f867b4655fe2706ed0ac7429031cf29862a741

SHA256
295802637531a77a7111ddbc681aa8f60defb51712b3746028818feafbf6c2d1

SHA512
f20a019783a8c53640b5d7fbb035ce9e154c15c85be6e1da6bd0f6f143ce2faa133b96da5c9d9b4dba1799141cc027cad93463c3985880ba43a2eb82674613b5

Download Submit