Analysis Overview
Threat Level: Known bad
The file https://www.ahinsashoes-polska.com/ was found to be: Known bad.
Malicious Activity Summary
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Enumerates system info in registry
Modifies data under HKEY_USERS
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-05-29 21:15
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-05-29 21:15
Reported
2024-05-29 21:57
Platform
win10v2004-20240508-es
Max time kernel
1799s
Max time network
1685s
Command Line
Signatures
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133614916499631259" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://www.ahinsashoes-polska.com/
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xe0,0xe4,0xd8,0xdc,0x108,0x7ff9c13eab58,0x7ff9c13eab68,0x7ff9c13eab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1716 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2180 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=1888 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3044 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3048 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4392 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4528 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4404 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4560 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4580 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4068 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4400 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4824 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4976 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5112 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5268 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1892 --field-trial-handle=1912,i,864459047269658559,11545002631608879640,131072 /prefetch:2
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 133.211.185.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.ahinsashoes-polska.com | udp |
| ES | 196.245.53.58:443 | www.ahinsashoes-polska.com | tcp |
| ES | 196.245.53.58:443 | www.ahinsashoes-polska.com | tcp |
| ES | 196.245.53.58:443 | www.ahinsashoes-polska.com | tcp |
| ES | 196.245.53.58:443 | www.ahinsashoes-polska.com | tcp |
| ES | 196.245.53.58:443 | www.ahinsashoes-polska.com | tcp |
| ES | 196.245.53.58:443 | www.ahinsashoes-polska.com | tcp |
| US | 8.8.8.8:53 | 99.58.20.217.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.53.245.196.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| ES | 196.245.53.58:443 | www.ahinsashoes-polska.com | tcp |
| US | 8.8.8.8:53 | 28.118.140.52.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| ES | 196.245.53.58:443 | www.ahinsashoes-polska.com | tcp |
| ES | 196.245.53.58:443 | www.ahinsashoes-polska.com | tcp |
| US | 8.8.8.8:53 | 196.249.167.52.in-addr.arpa | udp |
| ES | 196.245.53.58:443 | www.ahinsashoes-polska.com | tcp |
| ES | 196.245.53.58:443 | www.ahinsashoes-polska.com | tcp |
| ES | 196.245.53.58:443 | www.ahinsashoes-polska.com | tcp |
| ES | 196.245.53.58:443 | www.ahinsashoes-polska.com | tcp |
| US | 8.8.8.8:53 | 26.165.165.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.31.95.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.126.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| GB | 142.250.200.14:443 | apis.google.com | udp |
| US | 8.8.8.8:53 | 14.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 142.250.179.238:443 | play.google.com | udp |
| US | 8.8.8.8:53 | 14.227.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.150.79.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 43.58.199.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.31.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 8.8.8.8:53 | 55.36.223.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.197.79.204.in-addr.arpa | udp |
Files
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | cbbfc7d5a404bd3ef3205ed65352623e |
| SHA1 | 0d7f440080b72a77d4143fee6bc20a5b1d32ad6b |
| SHA256 | 299883912b0e2ef67154d92dfd4db0653cee7667b834cd0ff24f2954c4507c6e |
| SHA512 | 21c6999ce85e97e89409e50dc3270a05d8a4a65d14693bd795a9b4314da6102351b81dc2df660e52dbc8619752f33c05fc8cb67c1ba80e53ed1f91d2c5b3dd6b |
\??\pipe\crashpad_952_HYJVATJVRDKPCZHV
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | f6a1149c2627c5f3c946204e9331f956 |
| SHA1 | 6d7efc47949a83cd274f44fde18b1ea8c47f5c81 |
| SHA256 | 6a562a94877d9b762a9edafdd4d7ea979e859f83e2e7bbb9a832520e7ee7cb52 |
| SHA512 | a7fc9ee10e1ac3ba83b09fd95c74db7807a7c129bc370eded5469ab4da00ca44230cd9b249c0eda7e1a20e8f8ac43829c0b02ce2c451d3bd8ab35378828b70c0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ab4a5c8cf089b104def0d795d6f02910 |
| SHA1 | 0c9c595a45873ae2d7b8113500d9240a643d368b |
| SHA256 | d40286b0e4d583e0649b0557fabba690a39ca885886c79a02beaa3f69feaf189 |
| SHA512 | 4a907ee38073c1932e515046c8db4d496d01820847636711d9a6c63e437d0adb1142beb4df11244982ed19de53744504f9bccf7003d3e7c9dd35fb466c3297cd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b271bb86521f178c54e1bf21c4468c3f |
| SHA1 | c03db0cfc7456e4915abdd1ce6e30e8d9fc8156a |
| SHA256 | 34edf341a4c6ce7dfbbc3bfccc656211874cf88be59fe91d4361498dac541599 |
| SHA512 | a02ea477cacef7a53d1a1d74ac014884128cc0c792ee86015070c4639168d8bbb65acf2230954653214723cf33eb471132c6696f3fe4ca246b6e54114f5e6f6e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 0747cc2f24abfd7239359ee732c15c25 |
| SHA1 | 099c8a84a1172b78d5585f62467de1b5fc2603ad |
| SHA256 | a17fe46ffd31c0ef522f96fce7398ce8add9891cbfae65b1bb1fdb0c271662de |
| SHA512 | 0275d838e2f5115f691d76712a76787b284473eb105c025525ba39fedd115830f59e528b80e3f5fa9812c45bcca793681ca172e31666fdcc18743560410819ad |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 62945699c8e890b23d770f01d1d83ec7 |
| SHA1 | 9aba450f3b34ffad0060928ed974798170f8616b |
| SHA256 | 2c120d0f4451362cd2a35acb2463800af69cdc3ea7b9604224b5286d48eb5a17 |
| SHA512 | cb7a6484473d2692f776e4204aaa0b7d5e9b50224a4f02601b40acf33808e5dae16da5d9dd7863ae003bf9dbd17e546cd502854d6f8feb301f3e275a76067470 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 1ec45a9a5cabcc74e84080a367b3c593 |
| SHA1 | 3fbc53c00f68e94666da6a40d11f92426af425df |
| SHA256 | 5769da63a3fdb1b4fa9011063baeeb5d98e110c1c0768d6a01131d668dc4c52f |
| SHA512 | 6d1bee7e79ffe9d988fec4119ef2a7d1ecf50f03b6254887a68630eb9323288c70fdda03071d6a92fafbb1b0dd5b1c3a61bcd950a1730c4404d46db5760e4173 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe57da33.TMP
| MD5 | b76f82180a91f05effb08b075b87f550 |
| SHA1 | bfceb71d1b76aa82a7285217cc3f51c9f198dad4 |
| SHA256 | d96c82e24e5ad9546fee4c440acc53a0d0527fe25fb4f610db89c0aac9b229be |
| SHA512 | 4b37fbbf1c689146d55691d609aa45a3b5d47b88846483053b847864e222fa5b5cc1fb5cbf7b8129d4fa02028045e514e84c9b4fb3cf74231c7b2a3e85c9f201 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 49c5c448f4a68319e8560a50b05bf54e |
| SHA1 | 2992bd744c154ef237e42b019e0ab4cfd6e827d3 |
| SHA256 | 52350157b427a6c61c880a78d8962977c628bd5188e44c5083daf00a14856c65 |
| SHA512 | 967f7f4f11964eae2ddeef8712fa2e29a114bb929fa89502422ac3d35db1d8bfd65bfb4f83393dac21df266f4dfcca692d1b568b7a852b1c7d9e238a1fadee5b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 4672b9d50f421ce0ea03f82cad2259c0 |
| SHA1 | a61bdadc2f939269edbfb1a215631f3f842edcf0 |
| SHA256 | 4b2b53a3470529683456ea272f3250d21ce4be46d68b11882d3c51b8390e29b3 |
| SHA512 | 5fc30f446f30e406b3f6416493253583429553913242694ebeb21c6917049dbcf057c9bf8c72722b50f4356bf60ecb7d596bc6d8857a72eb276f41a4c7dd281e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 115a59cda3458d78cf2f51e09a3650df |
| SHA1 | 172f8880c4c0c62e62b853e472c69d85d059c4c8 |
| SHA256 | ba5bc0d05bec0d1e119cd54d5f2640d22bee24581a921f8f60e8d0c3be814fed |
| SHA512 | 6d6069f0d29500db5f8312dd6d4446d2244ba069b7323d51b83e679c426d03f7fb0eb81995f1fc500200e55114e5edf823e0a5d5d5ce77a70ef7eb95651c3460 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8c2a5dda84f5f6d12e3bf313d4905d05 |
| SHA1 | 99c07c24b57d2c8b1f9ab905f19c98ebba27ce53 |
| SHA256 | d9783e233a04621a27d8d022c9b6e353ce5afb40e8586644796aefa3c984103a |
| SHA512 | cc77b5049278d94e4ac2325ddc4abe646203067196319a7d75a8758e055f8a7549dd1385efba15b570145c44875f56c0234deb384f256194928b38dbbd80cbb3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 0456032e810f1931b6bd4ccfeba97e49 |
| SHA1 | 32eb92c4b334766fd2e00c4dae6e7cc148492521 |
| SHA256 | 9c0f13b67efd1fc1d078b06f574092946a603cf98ccea3b40bb4c1fe7bfbc191 |
| SHA512 | 21390114084e76c930ff1455dd7a26a741b07e34c6301f5e63e2ef51f472a1db1728f65f5d8771fd4ba7eb3d85c197dc2711d0ad947a86f2e9a16b0cf5bf63ed |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 7609f38769edb9005afed2bc164cddf9 |
| SHA1 | 6b5c23455bc4280f99836568f1f226a128cf55c0 |
| SHA256 | 19f07bed35fbf5bc7f891d7f550f570de60deb644e6e2cf6929747ce6ad17393 |
| SHA512 | f82bceca8d83978f598bf2ad086d4c005e66477bce9fb8b00878cf3cf85f7c56274565ce52bffdbad5e4631bc55e2d461195150d02472bd6ed4644fe032f26ce |