hxxps://epicgames[.]com

Analysis

max time kernel
83s
max time network
84s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
01/06/2024, 02:37

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://epicgames.com

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133616830823420644"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 9 IoCs

pid	Process
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe
Token: SeShutdownPrivilege	2212	chrome.exe
Token: SeCreatePagefilePrivilege	2212	chrome.exe

Suspicious use of FindShellTrayWindow 27 IoCs

pid	Process
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe
2212	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2212 wrote to memory of 2480	2212	chrome.exe	82
PID 2212 wrote to memory of 2480	2212	chrome.exe	82
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3448	2212	chrome.exe	83
PID 2212 wrote to memory of 3928	2212	chrome.exe	84
PID 2212 wrote to memory of 3928	2212	chrome.exe	84
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85
PID 2212 wrote to memory of 3408	2212	chrome.exe	85

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://epicgames.com
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2212
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffaa4b0ab58,0x7ffaa4b0ab68,0x7ffaa4b0ab78
  2⤵
  PID:2480
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1676 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:2
  2⤵
  PID:3448
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2100 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:8
  2⤵
  PID:3928
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2212 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:8
  2⤵
  PID:3408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2988 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:1
  2⤵
  PID:1200
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2980 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:1
  2⤵
  PID:3016
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4688 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:1
  2⤵
  PID:2312
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=4868 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:1
  2⤵
  PID:1420
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5048 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:8
  2⤵
  PID:1588
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5188 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:8
  2⤵
  PID:4128
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5224 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:8
  2⤵
  PID:452
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4608 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:8
  2⤵
  PID:4876
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4036 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:8
  2⤵
  PID:4832
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4604 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:8
  2⤵
  PID:3240
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4492 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:8
  2⤵
  PID:5084
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4424 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:1
  2⤵
  PID:5004
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5228 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:1
  2⤵
  PID:4588
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=4792 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:1
  2⤵
  PID:4832
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=4960 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:1
  2⤵
  PID:1048
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=1624 --field-trial-handle=1920,i,10429954015822706981,10663619570453065551,131072 /prefetch:1
  2⤵
  PID:752

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:2820

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
312B

MD5
dec42f987c24579f871d7afe168dd015

SHA1
b4dc5ce2e0257c82d85246549bec9801c555e98d

SHA256
fa62544491b7108f4226c794d1716fbb57ab634441e5c35b0ef271ebdb81a0c6

SHA512
c77990c28ee101ba99172056408051d3866db79d22780a42119ba6b2029b55c0fe598bc86c572cb6a0779b5b15d6cba289d9059ea05f48e092edddc51a3764c4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
456B

MD5
23c186989d102d11baa9595d6d183806

SHA1
72101443720ed8cd812cd68589e857bec39be27f

SHA256
0de7f7fba7763d5f2284cd20ed6d09bbe991e7afad744029ddf1ae83df49a8f2

SHA512
5fcf5880a9979238a70852cd01d6e9c9127abf2740edfae5844689dd683bb7270942e1d3ca3e7f8bf0c88812347d38019e5f2cf8febfdac7b964195186867743

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
f3fc1d83f6350602e9d061f6effafa80

SHA1
77705b03dcc5bf3f1b1701c405dc7b639ed2120a

SHA256
813fb2298aaf2a4c8792d0dc76a1780d30733ad12768366e5f7c094242232561

SHA512
950951c7b71c7520661b90f6f5d3b70120d53e24a342fd6d9cbc351e05670f306f687e96b0428e0a4825006a19f5a568699121054ce3f905e459ce05c829ce9b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
3KB

MD5
1f8c91e4f0fa7a06082b6e135af457df

SHA1
9d63076482df34452802276d51f6b18820c9c013

SHA256
6077e2d046dd951fd78ce22abee2c4850d0b84eb3a3a11bd10de5470fdb16573

SHA512
1277a01a8a0b564039b689a9e47f2aa072f9d9c8e7777824389c25d2e2f2ef17ec9bb5344cf9d8d374087bb5c72196b8100800948650eb11883aece3162f7c29

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
619ab3b3245f5a44afdbdcfeec268242

SHA1
4603cb5e7e2f254b3b71e79ea7bd5f5ad7703e3b

SHA256
3f6b515f97664e031be5beff5a06659e4e4969055b62fc57d73fa1741b1bc6aa

SHA512
6a42710d6ecaa4f76b462584d6d4e186ed33e80522e0f42b5149a5fcbc989884970af7b3d2cdebafd46b83e640c42b2079b9a6f6e5b652e67c14ae955098c91b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
c0dc8af364e220b791b17684a8457bd7

SHA1
e165bba398c658b24ee9b2e90aa4d3adcdf86958

SHA256
1e5b724d8034257d2145b0a0edf2e5e41b03687bc48aad2f714d4af680671c49

SHA512
444e88db605b665b40611b71d334b9d2acdb55b7cd7c8d7d3835ce7bb5f91250f9519ba4b3ed294c4fa9aac2dcdd6524c22f2a8a385fa721afeca735104bf3c7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
5b1b4625413fe29f9750f4735a82c02b

SHA1
40155594643901261095471f1cb3e4f649528602

SHA256
e91a75df5222721362e3eb222dfc6c8f00410d368473246bd4469232b80a20ba

SHA512
c04bef451f79aa385a6244eb5423ce55157c563155e927c8fcbcacf5d9d0a29f1ccf13be44589902ecc21aab8dff2cfd944e3243b2d57a88483f13537cfa1b3f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
a5b4c91c66fd1d4ecbe20c52bfca3138

SHA1
b3f7712db7fe0ed66044bc4c63dd67f4c3838c1a

SHA256
a53225211057c946cc3242e111cee5597727e6dbf26421e159d224f5cf12b51c

SHA512
83e566b3f9e931e3a4864c3933ed60a5ec60ad8a67774a91d55ae06c781f9de03d5e59a80ef781d28712efa9864e6ef4620a6610229bb32a4d57c9beb0ad299b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
ea7553b862eee42b1ecabadf09878f47

SHA1
102b2896cb07fb4352c810f41705034b58b044dc

SHA256
746e0a62fd4acabf92e4927a2b26a75beaff25bbe7885f52f6be2e99b99a598b

SHA512
d49e260323e38a682003a66fd538952269050eea7b2f2c16d8681ddc729884f7682a366bd60cd457e651566d759b2bf2878c9bb98a41ecc6a17185ed2792ff26

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
0e94540b3223f97d76a2849cbf339abd

SHA1
990ebd3d3234432befdea383eabea163970d268d

SHA256
2b661a7439fda8ed803ef04dfa8d0243b54c48a823478ce16da51a1c112fd2d9

SHA512
36669f42ae4660766388b72cef70904ac989f481b20276706e611ff3d4598b85ae13cf0d1d2a74cef54664a0945db462c794112e9108b014cd9e5fd5adc5b4bd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\1182b646fe1b7c2fb535f6df1b863e7a17f43db5\3f527b99-32d7-424d-ba33-b7e08ade832a\index-dir\the-real-index

Filesize
1008B

MD5
c035de308ff4559b0dd61174192efabe

SHA1
7ff2318c770a2dcbf70de786d21db0308ed924ca

SHA256
962a69039a8a2d082a603b15eeb4368a18f408b42aaa588675eb6db3b141b7a4

SHA512
c5a58cfea68f06af74911f0d044a6196fe641c62bc9e399d2077d767ee087b6d1420627ba425d987f26165f8d857e0eb351986fa37381f3ec0f2f4280562c741

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\1182b646fe1b7c2fb535f6df1b863e7a17f43db5\3f527b99-32d7-424d-ba33-b7e08ade832a\index-dir\the-real-index~RFe57a76b.TMP

Filesize
48B

MD5
c50b3dec726b34d1c8344d3d02cab2d4

SHA1
0247622b1262ff890d43ba02cb5eaa2c454b92b1

SHA256
dbd499b13c3f097cf3cd4b56644319895e90486048faaaa1b207dc6a1a0b24b6

SHA512
546aeb157c8564f5d318df23b92a7543b7b49fd6238ac6047fba1929d26450377e7a635b0ff4bdc3f2c14dfb6eb54b53005fce73f8b04806289b3a66f865ccaa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\1182b646fe1b7c2fb535f6df1b863e7a17f43db5\b8c37d1e-4175-4359-b0ea-5d4e8eb563d4\index-dir\the-real-index

Filesize
72B

MD5
62a91701ec4ec2dd012d931dbf3caaee

SHA1
ed698762afb56f9239b38b0b26135044b9048325

SHA256
bca6721fde31bd3b082d90be2a25a7f081b1119701a38765e645fcab32567463

SHA512
466202d2005e0246cf908040de3ab6b23f32925f32d2e4c85ca6b8a43e10ce782600f3abbb1ff1119f42af731c6bcafb207a62025686db5793fe6fd5f252515c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\1182b646fe1b7c2fb535f6df1b863e7a17f43db5\b8c37d1e-4175-4359-b0ea-5d4e8eb563d4\index-dir\the-real-index~RFe5797fa.TMP

Filesize
48B

MD5
adbfae7ca94361adf2fdb35997a84ca7

SHA1
508926e48e70405645a937ca868c17b4d4f58d6f

SHA256
923f5b9c9e9b5e8ef83c64a11682df3afaa76ad36640b10310f32d0a04e5f2f2

SHA512
8219ddda5718da7ca479dc1f9a561f36c2c20463c6fbb63def5317d6e0441034398d55cfe55757283712e85f5801c9856049f8275d50f99b10fe81fbf159cc83

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\1182b646fe1b7c2fb535f6df1b863e7a17f43db5\index.txt

Filesize
227B

MD5
517807db5eeb2baf899f89797c633ce1

SHA1
f391d2c9abd10ce9ce7b5cfa9d7b4a709ce72adb

SHA256
bcae8035b892b6a2d0ea200a0e07514dab83838b28d94b0a744dcd88c4b01bc7

SHA512
60d2a23f2671752902fb1c5eec38be2231fd75960e5f3ea57d4c8f9cc1a70cf979c3245bcf54b356d08f989761668c512d8d86eba47c13d9aaed534810c49950

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\1182b646fe1b7c2fb535f6df1b863e7a17f43db5\index.txt

Filesize
225B

MD5
1088a9f910b376900f02af618081df34

SHA1
906ead81b437fa4c6ef752e4f22a94adc654f5f0

SHA256
efd11740a8c2666b0b2daec79e5b3283f75d0593ec4bd4b452b744014b4a1db6

SHA512
27b004355fe39316be46e81f6c34c17fc4942c67974899e5d9c3154bd1b57a4714bb30224bab0ba7d278468e30aa73fef75ea9b8198b1e3c22c5a8213f418ec4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\1182b646fe1b7c2fb535f6df1b863e7a17f43db5\index.txt~RFe5747d6.TMP

Filesize
131B

MD5
81d18a8049cc40b0213c64623076ec40

SHA1
4534f69b1ae63c2466fb62d7bd35a492702fe7e6

SHA256
a339c06524695264af5eac3e25dabd8ee26ff8ed81de52f533ed173824a6679c

SHA512
be32fdddcd94d1e144b758503918aafba3d86a193d33152cb424e8f1db2efe76fa7c5eb94a5d5d4c4037b402ef45dd53e8fb6055e35cb3e0eade6e47e141f290

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
240B

MD5
f9c022f8c2a9489a3738aec6c0f45d15

SHA1
ae1d593519451281d5062036c2b02bef4d149a1c

SHA256
a80a5f3d4df3a307cc8e1cf7bc0e8b3466cbb1c55c136acc2cd644388fcef5fd

SHA512
63cf41d83501cb638001b0801dfff399278748b7fed6a10d2ebf13be7967b9f5ab7069625b2d578bd793bc6e4c56c9b1f202f57ed40d164c48d3716d54efa129

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
184KB

MD5
5109104beb8960c7f7c0cd9cd13636ce

SHA1
0cba9807e6bf39f437729223223a567e2ed481d5

SHA256
8012d1fa9ef5ce48918983fdd1d61c7fe5444295365418a31eb05d3b7ea21d1d

SHA512
00152ca139407d727db43d71674036d2729a2976e6284fd3518a3a1c63b68c92f677b43b1bae8990b434e26f6b9f530e0eb7eac65ccb8fa53dd2e55548d5ba9c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
131KB

MD5
9130769f5a1066821f3011eef5e5c282

SHA1
4424f31f78d18379c45b1ed78ac76c4ac8fb6b29

SHA256
d2d755575acc92bd5d4c14b6bcb01f13bdb6ec40485500f78f5267b046231b08

SHA512
50e8a6c715f440ab9e3655f15ed989bb3b5ba35d6176462c41341e45b83b93ddd0c3df72fdeb6cd478e781f40e16976372681ada6aa812e0ef72c8cddd1f92d8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
140KB

MD5
56dbea1164f79a806025b904c563e712

SHA1
081511980587982e762d44cd765fa89a29b6261c

SHA256
043e899bf95cbc5fec3b9209429eb31b876137f88ad52418f7ad83994070bb22

SHA512
284347d8176b6b283ae04dd2cce052e61cec1815e6427b87caec8cf78cf5560580b4b6eb4eafd10513aaede28255517007a5fa16de027266f871e230f2528b07

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
131KB

MD5
b8d5a65009e06ac31ee8d3d4f1c99b6a

SHA1
ae1446072b8ce27b905f8ab8d92e6767baac3a5d

SHA256
4ee0d501f8b0eede9e2c593a6020f0a966f2c5f257c5cbc283e72e849183ec21

SHA512
184a6c301a4786e20aeb920e420a2138e5120ec75dbfcb11d9e91ac312aa40a5316f815d143cae9afbc9001f51ec30f9b09fad169bfe56f935870d8056ec7512

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
132KB

MD5
1b73970bae826ddc1be56b187188c1f3

SHA1
575c4defb93e8469b2737398c77e96089d7aea67

SHA256
6ff0322562de71b8ecafeb962caf1ab37e083fea63d8f8d0810287c099cbcd1b

SHA512
e2181bb91db95d00ba4c755d3a9afc78527de677b1d93e005b85ab07960bcf9c7fd850639290bd82a801a6a4c89882a8e314dbdbaf78130d09bca32c0d607a09

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
94KB

MD5
7c985c59eb5b9b73c0ca48125de5bc1b

SHA1
d4d529a178ac5b4ed45961d9b0de49aa1d966ef0

SHA256
8aa8791a5922b1a75faf4cecf442a810d93f765fcceff02303453e1308924b0b

SHA512
e43a1e6e325e037ceba47eef31f0b55a68395c87983dac1e62a6044a02f1269881e2c6c2aa677c38c6a95d7b799a2874df3a6bf2d09e5640206e6d9bf34df79c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe57cc68.TMP

Filesize
91KB

MD5
18f37826739e7f10db657ee8b9cbad81

SHA1
20e40e5681b374cd96afa092fd32ea2c482f28f3

SHA256
d1629aadcaa833fe6c1d5af651fc0377b8b6e2615cda1903c88707f416723d53

SHA512
7cb616c7db7eb00bfc286226a0d119da2467d13312906f4947a78e48f5194ff7454e92a30619c6daa3f228fe29c275076ca28b51da86ddfbe69d70b6a366f7b8

Download Submit