Analysis Overview
Threat Level: No (potentially) malicious behavior was detected
The file http://kaspersky-lab.com was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
Modifies data under HKEY_USERS
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Enumerates system info in registry
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-03 08:04
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-03 08:04
Reported
2024-06-03 08:07
Platform
win10v2004-20240508-en
Max time kernel
149s
Max time network
151s
Command Line
Signatures
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133618754809045601" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://kaspersky-lab.com
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffedb2cab58,0x7ffedb2cab68,0x7ffedb2cab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1624 --field-trial-handle=1908,i,12267053020454350509,5253428128254270717,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2168 --field-trial-handle=1908,i,12267053020454350509,5253428128254270717,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2244 --field-trial-handle=1908,i,12267053020454350509,5253428128254270717,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2980 --field-trial-handle=1908,i,12267053020454350509,5253428128254270717,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3000 --field-trial-handle=1908,i,12267053020454350509,5253428128254270717,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4388 --field-trial-handle=1908,i,12267053020454350509,5253428128254270717,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4112 --field-trial-handle=1908,i,12267053020454350509,5253428128254270717,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=4804 --field-trial-handle=1908,i,12267053020454350509,5253428128254270717,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4816 --field-trial-handle=1908,i,12267053020454350509,5253428128254270717,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4832 --field-trial-handle=1908,i,12267053020454350509,5253428128254270717,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4296 --field-trial-handle=1908,i,12267053020454350509,5253428128254270717,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1856 --field-trial-handle=1908,i,12267053020454350509,5253428128254270717,131072 /prefetch:2
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.168.11.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | kaspersky-lab.com | udp |
| US | 208.91.196.152:80 | kaspersky-lab.com | tcp |
| US | 208.91.196.152:80 | kaspersky-lab.com | tcp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.196.91.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | delivery.consentmanager.net | udp |
| US | 8.8.8.8:53 | cdn.consentmanager.net | udp |
| DE | 87.230.98.78:443 | delivery.consentmanager.net | tcp |
| GB | 89.187.167.8:443 | cdn.consentmanager.net | tcp |
| US | 8.8.8.8:53 | a.delivery.consentmanager.net | udp |
| DE | 87.230.98.78:443 | a.delivery.consentmanager.net | tcp |
| US | 208.91.196.152:80 | kaspersky-lab.com | tcp |
| US | 8.8.8.8:53 | i3.cdn-image.com | udp |
| US | 208.91.196.253:80 | i3.cdn-image.com | tcp |
| US | 8.8.8.8:53 | g.bing.com | udp |
| US | 204.79.197.237:443 | g.bing.com | tcp |
| US | 8.8.8.8:53 | 8.167.187.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.98.230.87.in-addr.arpa | udp |
| US | 208.91.196.253:80 | i3.cdn-image.com | tcp |
| NL | 23.62.61.115:443 | www.bing.com | tcp |
| US | 208.91.196.253:80 | i3.cdn-image.com | tcp |
| US | 208.91.196.253:80 | i3.cdn-image.com | tcp |
| US | 8.8.8.8:53 | inquirygrid.com | udp |
| US | 8.8.8.8:53 | skenzo.com | udp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 115.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.196.91.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.35.223.20.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 149.220.183.52.in-addr.arpa | udp |
| DE | 87.230.98.78:443 | a.delivery.consentmanager.net | tcp |
| US | 8.8.8.8:53 | r.search.yahoo.com | udp |
| IE | 212.82.100.137:443 | r.search.yahoo.com | tcp |
| NL | 23.62.61.115:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 137.100.82.212.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10bestantivirusproviders.com | udp |
| US | 18.245.199.14:443 | 10bestantivirusproviders.com | tcp |
| US | 8.8.8.8:53 | resizer.valuetrackbi.com | udp |
| US | 8.8.8.8:53 | 9ws7e6a4z8.execute-api.eu-west-2.amazonaws.com | udp |
| US | 8.8.8.8:53 | logs.browser-intake-us3-datadoghq.com | udp |
| FR | 52.222.169.22:443 | resizer.valuetrackbi.com | tcp |
| FR | 99.86.91.28:443 | 9ws7e6a4z8.execute-api.eu-west-2.amazonaws.com | tcp |
| US | 20.69.148.152:443 | logs.browser-intake-us3-datadoghq.com | tcp |
| US | 8.8.8.8:53 | cdn.speedcurve.com | udp |
| US | 151.101.2.217:443 | cdn.speedcurve.com | tcp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 8.8.8.8:53 | www.datadoghq-browser-agent.com | udp |
| US | 3.165.111.23:443 | www.datadoghq-browser-agent.com | tcp |
| US | 13.107.253.64:443 | www.clarity.ms | tcp |
| US | 8.8.8.8:53 | 14.199.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.169.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 28.91.86.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.148.69.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.111.165.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.253.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | c.clarity.ms | udp |
| IE | 68.219.88.97:443 | c.clarity.ms | tcp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| US | 52.224.31.34:443 | h.clarity.ms | tcp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 204.79.197.237:443 | c.bing.com | tcp |
| US | 8.8.8.8:53 | 97.88.219.68.in-addr.arpa | udp |
| US | 8.8.8.8:53 | geo.cookie-script.com | udp |
| NL | 188.226.136.4:443 | geo.cookie-script.com | tcp |
| US | 8.8.8.8:53 | browser.sentry-cdn.com | udp |
| US | 151.101.194.217:443 | browser.sentry-cdn.com | tcp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| BE | 74.125.71.157:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | onesignal.com | udp |
| US | 8.8.8.8:53 | 34.31.224.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.136.226.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.194.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 223.111.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 157.71.125.74.in-addr.arpa | udp |
| FR | 99.86.91.28:443 | 9ws7e6a4z8.execute-api.eu-west-2.amazonaws.com | tcp |
| US | 8.8.8.8:53 | 171.39.242.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.59.114.20.in-addr.arpa | udp |
| DE | 87.230.98.78:443 | a.delivery.consentmanager.net | tcp |
| US | 8.8.8.8:53 | i1.cdn-image.com | udp |
| US | 208.91.196.253:80 | i1.cdn-image.com | tcp |
| US | 208.91.196.253:80 | i1.cdn-image.com | tcp |
| US | 208.91.196.253:80 | i1.cdn-image.com | tcp |
| US | 208.91.196.253:80 | i1.cdn-image.com | tcp |
| US | 208.91.196.253:80 | i1.cdn-image.com | tcp |
| US | 52.224.31.34:443 | h.clarity.ms | tcp |
| DE | 87.230.98.78:443 | a.delivery.consentmanager.net | tcp |
| US | 8.8.8.8:53 | i4.cdn-image.com | udp |
| US | 208.91.196.253:80 | i4.cdn-image.com | tcp |
| US | 208.91.196.253:80 | i4.cdn-image.com | tcp |
| US | 208.91.196.253:80 | i4.cdn-image.com | tcp |
| US | 208.91.196.253:80 | i4.cdn-image.com | tcp |
| US | 208.91.196.253:80 | i4.cdn-image.com | tcp |
| US | 8.8.8.8:53 | 3.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | delivery.consentmanager.net | udp |
| US | 8.8.8.8:53 | cdn.consentmanager.net | udp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| US | 52.224.31.34:443 | h.clarity.ms | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 192.178.49.195:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 195.49.178.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.227.111.52.in-addr.arpa | udp |
| US | 52.224.31.34:443 | h.clarity.ms | tcp |
| US | 52.224.31.34:443 | h.clarity.ms | tcp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 8.8.8.8:53 | 200.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.117.168.52.in-addr.arpa | udp |
Files
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | cb10bc97f6e714f8a7bd7706edb0f97e |
| SHA1 | 22ef096d68c887c6127d2c3f18e95406d8137ab1 |
| SHA256 | ef3b774f5c6daddf53613a71a9ae75526029ff06b242090d1225d3f57d241732 |
| SHA512 | d8901dcf07a4a9213886bffdf21d945e4a270b5eb7a50dd09176ebe6ff4fc4bdac30da659779b9b884e2c0fc2676673e4de5db2da5fc2d93b45d68108c8f5f81 |
\??\pipe\crashpad_576_PXVVLWWUQZRVCCFD
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 31795d38836c7dde49f8381e46a32f87 |
| SHA1 | 81c4808dd00620204c13ae1fd3e8de002f20c685 |
| SHA256 | 332b0e1217f035972f70ac8dd4e2c8196a2c2d7c178ba78a360146010724b6f9 |
| SHA512 | b722a24be92d6708cc6c8f911cdf63e9304d657a0a2142ea0d40da4e288266916adc70928e095f4d3fe0aa690177f32de5e28576b80f3f708587819c032b1dbb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f0c0b8d64e2285123970bcf0f263ce1e |
| SHA1 | 2617db9a1b21e78654f54fc08523aef81687579e |
| SHA256 | c25b20c4a32ad60b9c771b3f22c3ce946b1795df62261ef53b751aa5fe8d63b4 |
| SHA512 | d6cfc06b1930612f176bfe2d86b665cdb36a2aa3f53675870ddf5711352252ca2edbb278afe8921a66ea880cd7490daf29e745f64ece8dc5d40cf2d8db288a3a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 959eb7a67241b8d0b44c77c4875fe6ca |
| SHA1 | dfba6b11834af9aaca3b8cc9354b28ec12d4a875 |
| SHA256 | 41d44df397925b755d903ed384014d32d0eee1bae6bc5c93422ab148847ddaa9 |
| SHA512 | 11b0ec208053f3904d0154fdce71c19798af44768525950bf5c88abb9c9fe67a7753aabb166921f94a1f6c45303d7c84903cb3c5df02af81eb2a5fbe30845688 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006
| MD5 | fccf56fee226e70394405f149d47dc25 |
| SHA1 | 98fd8e2175f199df78af4d0f7cdec58f3b60a48e |
| SHA256 | 9c1fe88e6d5ade24809f42d6a98d69afacd9914c2fca924e8547eddb5778fe3b |
| SHA512 | 4c20ec35a5c3bf43583c449b50f0b00ac73250b7d12df556742ea2cc17bd0f9cbfbceba561358d04151067eff1c7b108f435616a391d484227a509e79f020a1f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 2de4346f16da946173b0df0591034046 |
| SHA1 | 0ad234f957c3ea9c0af4b9fc458bf07fd72f2e88 |
| SHA256 | 6f8f830a8542071f2c61220cabcf2393223c76e81058b7941030d8575a762e90 |
| SHA512 | 888afc752f3224c2d3014400380ac75deaa7542f5378ddbdc3bb80368bbf60f823d9cebe74594926533b7c034f8b3ca07fef21b95d3c33c64d4ad13e6a34964b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2bc9484efa89ae61a199bd0af62f9b77 |
| SHA1 | 144cba5a691c84559e156872d4df98fad4ac294a |
| SHA256 | aff5d0c6cf001b4ce041c76daf6b2bc25e341bef35fbe51267325ac13c315b8b |
| SHA512 | 689719e306cc270f1e7f9718148fa54c78f3c3c041f813ec0419d14a9a03f0c7d3642ec67285558875ca4398332a6f4560cbcb85a0b13c45fdcca6ceb07df7b4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | e7a2c29c5f9bf17245d724f078dc8bab |
| SHA1 | 89844205415f6dbcd593ba0db1762a453d4174d5 |
| SHA256 | 74ecbab63e942bfb625721ce811cb290f9db807120dacc080e064b7d574a6d06 |
| SHA512 | c1064e66ad8f1bd4e39de08e08ad63db10b92afb57eccf75babcafdb1b7f6c36de15a32f5ec455ccecd323c5c8fbc6123e36041fd2d9254bf1cae94ac163e6f6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe57e772.TMP
| MD5 | 006c2097c73b6ceeff3e3ef0952adb89 |
| SHA1 | aa44a5e80830d4f9084ee043104acbeb8052764c |
| SHA256 | 93bc4851bca4c1ac73ca9ca9afd56b913905ba145ec339b8b1f3b725d9b98fce |
| SHA512 | 183f6602756f23fde86cb5a1d30456126a537be0e4713f1cfe39ce460137773e772129005cece72832790ad8577f31518b2b2b70ffd898209e64abcdd4108b0e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000023
| MD5 | 825ccd29ac102fcadaf92b2343d5917b |
| SHA1 | 24472e766cfac5b82a73b219796556a0a3702bd6 |
| SHA256 | 0878fb2875c0ad852de8fb3e8f443afdf3064890f1443b3feccc274382f913cd |
| SHA512 | 71b8e7c0813227f5efa4b4e0561978b13672f46ee441bc222ad77aa46a32f0f44a5dab3ef038bb3418190e69dced597a79e77566da01a259f1cd6b5298a08662 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000024
| MD5 | 0a550368742e4b4063c90c6f73eaa16a |
| SHA1 | 74a970f23b23ec1208b39db0515579906f2b8d89 |
| SHA256 | d73f9ecedf37c51dac037842250d8ad1fb6cc64bdfb16b6902caa6782866c06a |
| SHA512 | 20e8682427700fa55b4b8f085f15ce836b5783ebb8956853fd833e321028ae85e86246b5558d14248de7a31faf3aacd24dac6030645954930a009bf1cce7068f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000026
| MD5 | a43b107861b42ce1335e41e43d4e4d00 |
| SHA1 | 99bdb1cec4a68ebe29249c46fefefb6880d009e5 |
| SHA256 | a6542dc92d71eb412bac89d8fb06c70f15be74a64b1b4ef1633288b78f4f2ff2 |
| SHA512 | 151d1d3865b24940962476cd6824232eeabfaed92a90439ed5d467d1c7156f7b03bde91d0303d15648ba13441b8750060066bedbdefa0eb930c43a16cbbcfdf9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000025
| MD5 | bebe201d813feaad85a3e66607d0da3a |
| SHA1 | 28b049502afa8e9db5340c1a92400591b39870e8 |
| SHA256 | 58bb75322beb862803b0d156e1a1d01fb1e7fde82ee93c929b08bf5aea9fc55b |
| SHA512 | 2c83376edcb92f471c458f6c5f316dd24639fcbb88aec93b2c2690a596cc129860d0d46a2fe1fb4d71af8ae5856ee48f19ebb17dad38dde918af76c3abf7441b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007
| MD5 | e4e52d6976e5b1c5a7d2d22b85efaca2 |
| SHA1 | 96a8049f33256c34a95864d5c6a32d82a1963acb |
| SHA256 | 2610f9253717d26a87375d1ed74bfad29782710ff409d16f314e554f9c5f0ef2 |
| SHA512 | b6c840ae3387f34f9c93624ec0bf34af549513ffc2020c620995e74041beb82100378707dc51e9117fd3b579630ee9402422352305677bc64f72bc947b2854d4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005
| MD5 | cd6616b016252d347fcb72db81ca0db1 |
| SHA1 | b3b219f8ee3cc0aec799f0dde19529efeb782ad4 |
| SHA256 | 6ea5f424c727df49821a4e21340b9f334e31a01278a9b41ca84d22a0151ef348 |
| SHA512 | 3c8fefa84c8d6c1ec2b900e2166a96b1d458f55ec8f4829950db3777a36274a9fe0a13e01af96cffc4f71c80a51e00dc9598ecbf11894d45aa0d2b8a1a38f69a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 4c2ff483e0cbd76cd221ec692cdd52e2 |
| SHA1 | 9950dc7f59309547df2ee2756c9983e1a5ebf613 |
| SHA256 | a7faf270bfdba06b92bbd0b076b16fd21f853b64027c7e6e77d094cde140645e |
| SHA512 | 6f4f06d4635acc50d42d9bab9e0d0a634ea2133ad87ed5415e00d6a665a6dde15081827bf7d21ccb8431402527b57ec41881d884abebfc1b49db04471b2f5bd8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 42569222519e57dfca8b3dc469f0ae5e |
| SHA1 | 9e457e08f4e333849835e058c28f263ba67da482 |
| SHA256 | abfcf7f341702c1b36df1d56923ae81dd5060c57c67fb6d80ac843a82828d233 |
| SHA512 | 50f28f9c3d3766f878c9ba1b4a6ad97f4a195a5d49f7db67430df768f3303e778fc0a36f7f22cb7f023ab769a7c1c0f12a4ff7e70878fb28f6754c25e6601fa3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | c5ff8df299ba26005fcf5226f5f7703d |
| SHA1 | 5b491af9787e977cb6b67c0121a8fb51e8c42726 |
| SHA256 | c94c5456ec892e253aaf0960cfba1e3951ef18ea402afa05ea618145b949f9f2 |
| SHA512 | 9d3a277d0c516c6e28ad45bf8b5bca3306430af4ffaf797fc0aec77621ac0b860a1a178f483ca696c97923524b69cb91ef748c2c1e419d8a5523497635b3bfc3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 3885da78e9ec1b6e08b9966c92b1ca42 |
| SHA1 | 5055f800ce6369febe6d064551471309c5901b6d |
| SHA256 | cb5774a3cbf4f614ea8cb80f6271ce729970d4ba431e53cc16d4410d0a673ee5 |
| SHA512 | 79a946bbf869c16f3933d05e2a83fcfb0a1970b6ad9b7a7b21b6491feb566fd501afaa003f971fecb6f19e974ed6fb683dbf94e0e00b74854d73eca26f418761 |