1540642c05b45a54ec461bc1f91d4bc04feffca11d9d3572a1c21d9daeed5a75

Analysis

max time kernel
187s
max time network
188s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
03-06-2024 13:00

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

spoofer.exe
Size

8.6MB
MD5

933ffe953c699fe6370a2a3c408f8acb
SHA1

9c76b9fd64bc1917aa050fce19ce6b37240a5650
SHA256

1540642c05b45a54ec461bc1f91d4bc04feffca11d9d3572a1c21d9daeed5a75
SHA512

91d75266cdd5f31bb0ae9f2b398adb6de6ead2665875733cf544870c6abe7fbb7420e1a74a96048b4cf298adfd0cc1b92d208f01f84babc55fc7c65781ab6074
SSDEEP

196608:pUfMldE0lscfAzFXZNTB/0tJcbN+/daMiRQNO5lHc8kfuSn+Q8:puu4zHNYdFe0Or884uS+p

Score

8^/10

themida

Malware Config

Signatures

Downloads MZ/PE file

Executes dropped EXE 5 IoCs

pid	Process
2468	spoofer.exe
3848	spoofer.exe
5552	spoofer.exe
2120	spoofer.exe
3128	spoofer.exe

Themida packer 1 IoCs

Detects Themida, an advanced Windows software protection system.

themida

resource	yara_rule
behavioral2/files/0x0002000000021fbe-116.dat	themida

Checks SCSI registry key(s) 3 TTPs 3 IoCs

SCSI information is often read in order to detect sandboxing environments.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000	taskmgr.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A	taskmgr.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName	taskmgr.exe

Checks processor information in registry 2 TTPs 2 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	taskmgr.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString	taskmgr.exe

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe

Modifies data under HKEY_USERS 3 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133618933518162792"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000_Classes\Local Settings	chrome.exe

Suspicious behavior: EnumeratesProcesses 19 IoCs

pid	Process
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
2464	chrome.exe
2464	chrome.exe
3224	chrome.exe
3224	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 35 IoCs

pid	Process
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeDebugPrivilege	3220	taskmgr.exe
Token: SeSystemProfilePrivilege	3220	taskmgr.exe
Token: SeCreateGlobalPrivilege	3220	taskmgr.exe
Token: 33	3220	taskmgr.exe
Token: SeIncBasePriorityPrivilege	3220	taskmgr.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	2464	chrome.exe
Token: SeCreatePagefilePrivilege	2464	chrome.exe
Token: SeShutdownPrivilege	3224	chrome.exe
Token: SeCreatePagefilePrivilege	3224	chrome.exe
Token: SeShutdownPrivilege	3224	chrome.exe
Token: SeCreatePagefilePrivilege	3224	chrome.exe
Token: SeShutdownPrivilege	3224	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe

Suspicious use of SendNotifyMessage 64 IoCs

pid	Process
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
3220	taskmgr.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
2464	chrome.exe
3224	chrome.exe
3224	chrome.exe
3224	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2464 wrote to memory of 1084	2464	chrome.exe	100
PID 2464 wrote to memory of 1084	2464	chrome.exe	100
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 3924	2464	chrome.exe	101
PID 2464 wrote to memory of 1132	2464	chrome.exe	102
PID 2464 wrote to memory of 1132	2464	chrome.exe	102
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103
PID 2464 wrote to memory of 3760	2464	chrome.exe	103

C:\Users\Admin\AppData\Local\Temp\spoofer.exe
"C:\Users\Admin\AppData\Local\Temp\spoofer.exe"
1⤵
PID:5056

C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /4
1⤵
- Checks SCSI registry key(s)
- Checks processor information in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:3220

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2464
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffec0faab58,0x7ffec0faab68,0x7ffec0faab78
  2⤵
  PID:1084
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1724 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:2
  2⤵
  PID:3924
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1880 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:8
  2⤵
  PID:1132
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2264 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:8
  2⤵
  PID:3760
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2960 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:1
  2⤵
  PID:2560
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2980 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:1
  2⤵
  PID:1876
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4380 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:1
  2⤵
  PID:4808
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3948 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:8
  2⤵
  PID:3832
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4560 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:8
  2⤵
  PID:1320
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4768 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:8
  2⤵
  PID:2204
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4864 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:8
  2⤵
  PID:4464
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4880 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:8
  2⤵
  PID:3220
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4912 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:1
  2⤵
  PID:2088
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4636 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:1
  2⤵
  PID:1264
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4904 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:1
  2⤵
  PID:3920
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4356 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:8
  2⤵
  PID:2476
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4672 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:8
  2⤵
  PID:4160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=1704 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:8
  2⤵
  PID:2244
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5184 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:8
  2⤵
  PID:1892
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5472 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:8
  2⤵
  PID:916
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5444 --field-trial-handle=2012,i,4652547045007366787,12720272372259464366,131072 /prefetch:8
  2⤵
  PID:3496

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:4844

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:704

C:\Users\Admin\Downloads\spoofer.exe
"C:\Users\Admin\Downloads\spoofer.exe"
1⤵
- Executes dropped EXE
PID:2468

C:\Users\Admin\Downloads\spoofer.exe
"C:\Users\Admin\Downloads\spoofer.exe"
1⤵
- Executes dropped EXE
PID:3848

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of SendNotifyMessage
PID:3224
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xe4,0x108,0x7ffec0faab58,0x7ffec0faab68,0x7ffec0faab78
  2⤵
  PID:4896
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1676 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:2
  2⤵
  PID:2040
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1940 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:8
  2⤵
  PID:2824
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2276 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:8
  2⤵
  PID:976
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3028 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:4240
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3036 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:64
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4408 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:4556
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4512 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:8
  2⤵
  PID:4908
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4548 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:8
  2⤵
  PID:4372
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4576 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:8
  2⤵
  PID:3996
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5040 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:8
  2⤵
  PID:3716
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=5060 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:4972
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=3968 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:4804
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5044 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:916
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=3032 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:3996
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=3128 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:4840
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=3184 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:1396
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=3148 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:2396
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=5196 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:3528
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5768 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:3160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5992 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:1876
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=6020 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:4980
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=6340 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:4372
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6500 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:8
  2⤵
  PID:1092
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6636 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:8
  2⤵
  PID:5144
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=6860 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:5364
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=7056 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:5564
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=5264 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:5128
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=6212 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:5140
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5200 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:8
  2⤵
  PID:5340
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5748 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:8
  2⤵
  PID:2252
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=2908 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:5460
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=3484 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:4724
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5232 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:8
  2⤵
  PID:2188
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5700 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:8
  2⤵
  PID:4824
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=6152 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:5312
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=6328 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:5744
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=5308 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:5732
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=5992 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:4360
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=6676 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:5144
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=3084 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:5148
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6428 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:8
  2⤵
  PID:3976
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7384 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:8
  2⤵
  PID:5328
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=5756 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:4664
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=6264 --field-trial-handle=2016,i,4046862667482321984,11963697226042689067,131072 /prefetch:1
  2⤵
  PID:5704

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:4868

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x418 0x4f4
1⤵
PID:3800

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalService -p -s fdPHost
1⤵
PID:5564

C:\Users\Admin\Downloads\spoofer.exe
"C:\Users\Admin\Downloads\spoofer.exe"
1⤵
- Executes dropped EXE
PID:5552

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k SDRSVC
1⤵
PID:5664

C:\Users\Admin\Downloads\spoofer.exe
"C:\Users\Admin\Downloads\spoofer.exe"
1⤵
- Executes dropped EXE
PID:2120

C:\Users\Admin\Downloads\spoofer.exe
"C:\Users\Admin\Downloads\spoofer.exe"
1⤵
- Executes dropped EXE
PID:3128

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
ecca8993047150870094c763386eb4e0

SHA1
e77376a1868359b6270fe9924477d645bd5d7d1d

SHA256
bc2822a5efb199dcc655254b162e8e690280697a639ba9b6901133798470dafc

SHA512
28eee493fd526ef4227665583b28d600954d71babf027c2aa6bc8d72684d4ebe8b84436dd75a7fe29b6d17c8fd91f27a08e4d9deb53e8460a518bd7c09ca297c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\7b062d76-5d3a-4ef2-bdac-c2aa3173b8df.tmp

Filesize
7KB

MD5
921b5f5b83fd08407b5e06e6fefb208f

SHA1
a02fc69718b7a7d69b246bc08ed527d2483619be

SHA256
3ee9e8cd275ccf7dd26c7ae89b9ca4da5cb3f5c8a9f99c8b581a5821a5c363ca

SHA512
65b09286d23c0f5bcb2ab4a4609426b4515296149eafbd25e63d239be2f89eedb6dcd9081abf5992a7af07e4474ed385d0a827d838a896d962c21e699c64b187

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0

Filesize
44KB

MD5
da4a4982470ef63013757cb2f5d8af13

SHA1
52ca52f61a033b3aea6e1b370e8c7308059c0307

SHA256
d02cc7d922d6c2a9f2f953777808f282176ddbb351255c8ce138c4491ea384c9

SHA512
006935c86a88dae1bb11a13ff2d54c4b1eb4a75bc664c947dfea36c05b564c8d7570d3948c039836250fea6c073f0260e2845c3cae2a3da013ffbf075aa8ac87

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1

Filesize
264KB

MD5
572c9aec50110be38e5bba284059ee2d

SHA1
8e78025b0947358468d06eb1bf0a12cabcc3bafb

SHA256
31ab3e5a7e8ea82fc2eadbccce6f8d3557b743124f3c107affea80cb5948cb27

SHA512
888d9ff19ae6a2964d0ac0ef6ecea34f90a444e110cd2f418f39f6172a7d50bc4f798a0c3072993b879437d120a7fe42994e27d7ae8a97c1e2dec890107996a5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2

Filesize
1.0MB

MD5
3db538e0f2083d982c80c6dcef35bdad

SHA1
d6de73ab7367f1da46e7c377f7fe8ed8072bd7d3

SHA256
07027e22b2f80df48e93f3ddee908a37806d57a738861dcceef8bfa2e4cd015d

SHA512
940e8a012a72814afd5caac6a225fc1965756053204c759de79c0c5bedec585406c3a67eb01d9b055ec0cc8834563b35f6455002aacfc4b07d0c108de188fd16

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3

Filesize
4.0MB

MD5
06a36aacaf336d3106c2110db2483cd0

SHA1
dd84aef103199f1ce84a124dd5f03227df8f8934

SHA256
4788b6634625606ffc3a13d4aae31cf15a46488f88ce77f10c8b3e4213b69ced

SHA512
5052c469200d84677e2c06dcd5b36619f629d25f79fae955fc1878950c44dff5d34698e1bbfc15dd5639a8c2fa0de56d4f8e52c8ac1da555adb883b1d0eac904

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

Filesize
34KB

MD5
1b8a01d288f1bcdf1c17f8861cf00935

SHA1
25093abb0aba870c32a81f85ebdb94322b71195e

SHA256
2968182a758471defbf6155552ae4d69401879c77d39c24c77c30a3097aef2c3

SHA512
58bca6e3098118e5d6e7b84e6b545d1e2119d2f9549eb9b80b2398c4f027bbfd823899a616328fb3f36fbb372c568f28ce4d1601572e0d9369f026ccbeaa6ee9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

Filesize
59KB

MD5
33d2dcc9ccf87d6ed728ab0c46235369

SHA1
249e080a07601d8537b242546067229f49a4aca1

SHA256
a455f1cebb519dc1861af1646224fb2cff08843469c0f346d93efb6745615c4c

SHA512
754e230d5ed0a578559702f43312b2cb2b282676a95218ec3213efb566fed6ca02034bc6dc7ba124afee6f9b766a0680a8e51ea377b998eb2a10d0b7de67f7cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

Filesize
40KB

MD5
aa12ea792026e66caab5841d4d0b9bab

SHA1
47beeba1239050999e8c98ded40f02ce82a78d3f

SHA256
65fe153a832452e97f5d484440a7047e314d3a83cb61ad2508fed48a820e1de1

SHA512
0b2b1bb8851c60c9d4ab1d039b990a4de5799c97c50b45f64e36a21849c14e785f69196f674ac225b1419d7f501338054074cab6203d041361a4fa1ed8802b27

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

Filesize
36KB

MD5
6e0dfe11e95944da94e70a99c169c81e

SHA1
f8cd534a059869e65a5e800ed4ff693539c7bd65

SHA256
72863be7491063b6198044605fae19e03c2bf5ca0f3282dcba49e0adff86b900

SHA512
f51ddb326f3fd0b898f29b0759b0f40d1490af0e374b50a323523ddbbb8336c08e832992274a45610bc09361f2883f8f95c67c29d5a9bc7b4a77d18e100913d4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

Filesize
27KB

MD5
ba77edb25c67040b1961099f0dfaaaf3

SHA1
84d9ab804b43e8dba35e7329bd53f04216bf4017

SHA256
75afaf1bb05f94df47802c73de396234f07d508d33fc33afbb0ddae235a29706

SHA512
02b4b9ba243b8f89947e7f13b0619142d78ec337f9ffe5958ae7a1cca4a3ddbe837d5519a7c8f85aa2d0235b5832ffa9bdf33fd17dcd47feabb0ab272de6fb2e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

Filesize
16KB

MD5
5bb848123396170c4b5ccb9f1148a2a6

SHA1
0178442b22482efc1d7018284b4b18ddfff9f948

SHA256
08ccf9d267093d4e59a5a5633e2019dfe70e001088143fedbf1f02c74849db60

SHA512
e2d78eb5f2950dd2214b27abc2600ae97dfb3a3133d5cf6ffb49a26493fc77047a37a988248113c19af70a77a1727dcd053e3a1572029cc418df1db560831852

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

Filesize
39KB

MD5
2b0137600fdc5875830b51a9ad6e8256

SHA1
20c6bd524096c9e8672a6c570cb1273ac6a7e18e

SHA256
81e8d0bbbe902acbc02b695d1e68d327431a5f34f1beb99585d6a277acb78546

SHA512
643b5d6ef6083e4fd71928b8f4132657b55a39d3f386058dd3538634ff2afc69932636ef3fd825446c30af6fc4a3006c9ef1a15c2f1a3451df146325a1e69c9b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

Filesize
52KB

MD5
dc10c5ab31c044a5cb85216c6ce42b41

SHA1
dfd6b948378dd9524aeb8113c406be30d5597a8d

SHA256
0256e73e4f5018fd11becfb2339f8dcc66274e9dcec7a6711ee1bc9b5d02cd54

SHA512
8892c10e27ced7a9b2354a382ceaf4df627c8aa02f8721c187aceec3e191518d788a6f5ab55a2a99e010cb24c459a903fc800f8dab885c0a28010ad6b9258277

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

Filesize
80KB

MD5
c07e058ba0a0c6a179a791870baff7d8

SHA1
ed7f77508ae64ae30979a22be039881391eb5e5a

SHA256
8552f049ba68d96f341f68e95e2d28ddd50a68fab0dda76d361ad3a52460d6ee

SHA512
ea3e40878fec6f595e17c5d37e9094bb0cbaca60e00caf0d843ef3429cd59cc69f5f5e852020f5b599151fd2f7cd6468c18bfed94737ed7634a2cdd2f641f492

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

Filesize
118KB

MD5
7f477633ddd12f84284654f2a2e89b8a

SHA1
17dad0776899ad1beadabd061c34e2a22b2cde74

SHA256
966620f9e3bec428663687f9e8d67a6b8e35d79adebf6fb204e9b139eada7599

SHA512
b46baa2a3ea38512f8b539774c751004cc866d085a9739f4c25f2ade9d97c10d6f4b20cf87dcbb6a003e0df0ca2df200f9036a4c76a013f24c57d365981f6e00

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019

Filesize
122KB

MD5
a8baea40ac6ad8cc7ab6930256c95420

SHA1
1e4221c6c7219c4bee3da8dc2dfc529ea276ef80

SHA256
89e208cdc8e2af3dadcc1a62d115d25ce3db66e3292ac71b5a006ea025aac1b9

SHA512
1ea9a4aa54ec95d5a7259b36f681492d05f34df3c4a2bfe43cf6c632c34d13c27c5f628aa6f6963ff8684052ba78da4f58799d00383273527521b91688548b61

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a

Filesize
29KB

MD5
4ae540714475aa934955496d990ab15f

SHA1
b7724c4d72a422b86f5dc06571ff4bc86f0308a3

SHA256
ca0222f8799d862ca8c427d6c612878f47043c9445ad0e1567f1f80e83c965e2

SHA512
1f2b02e49a469b6aef11aec3bf2409d672d8e5f07572d98767389cf13fa8af9b04ab6f77151cfbe01b0c5383cc2bf9728907b73723a526f635e24b58109c4222

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b

Filesize
62KB

MD5
d42e0db378c3b7ae639f482be65ca7e0

SHA1
febb6ba0cb20fbf345e42afbb194f557de4fdb3b

SHA256
9a978650fc7920f6ce184b5febda53dfadb49086ee56326e0f7ca999b7e802ef

SHA512
2031173e0dbdec727a93739a44a54496c3eb068871afffe4cebd2f57e8e9c45ad016c3fcc0030fb871b86fd5619b1285a16ac7dd593c305e886d55d4d4575a6a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001d

Filesize
20KB

MD5
87e8230a9ca3f0c5ccfa56f70276e2f2

SHA1
eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7

SHA256
e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9

SHA512
37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001e

Filesize
169KB

MD5
3ad73bcf569769ab811601942c5ac75e

SHA1
7b278be00907fac1fd81b39206d714cfad04ccb8

SHA256
6b1ae0fe7cf8b5bfe8d844a7b71df667aa74a77ec9fcf46235a3cd815b092b06

SHA512
625c08828b39b688b1c42128c2147b810bf0dd2de9c2005a11a4618328f1bc42fcbfc1f3efc9b34b98616d6db95effd30359cddc377ae4e3555c7b34b6cac5f7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001f

Filesize
29KB

MD5
6d37b7d08002105b046fa1043e9433bf

SHA1
e8d8b6cd9e368965d59a17f073d3696194e76c1b

SHA256
a41e73fd9e59b195d5c7ce4bbd3c11e49890242e863cdf36116fb571a018d7f9

SHA512
67f81a145f78b67ff902734315a815a4883b47b006ff4fd84d70fe787ceab526a76348168879c7183da19ce89b1554d3c5a636eb8da99701c42150528c2a3806

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000020

Filesize
34KB

MD5
9cfd71aecc11d1f63e9aaf1494a0555c

SHA1
685499749239f70a829a079e1d680f388cad438d

SHA256
d795757ce25b4145d0ade36a9d658c9eef377adf9829427bc4fdad0ba209ce86

SHA512
cd6cc715bc05ac972a0e3406fb3c078c98e2c42df7ed906f02edbd8e51ddaa65ea84e17c83a832d0bc20549c2af296eb11863ad3020f7d83b958720c3bb1e2d2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000021

Filesize
95KB

MD5
f6dd923253bebfc7b8c3d404b0762b9e

SHA1
bf299747a92208b60344e3d1fa1fc0a06133c4a6

SHA256
74a2ca20de033d2edc753a2198ae387b17043b633d775d7dab8414e1b4fa87ac

SHA512
7e31f74923a13fc307df5d29e9da86e8ffb490a3d56a8d89b420d7cbfddea03fc1af4a35b1cdffcca7d3b9654f41f4c875f945558937025affbb78e74e291279

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000022

Filesize
16KB

MD5
838b97534fade84cda11153a70c55b4f

SHA1
8f9f0a0c8c91e67e13c9c067faae53b58d1e9eec

SHA256
39cb80fb714faee8596a32cf9d0737cd0da7b9140013fa848d62ecf89fb3dddc

SHA512
c65686b3712c812601c314a6eab456678dbec4b63f7d1fad3c7c329f7bf6c5f381ef2125dcc040b82e534aed521e3f584186b639a73562cee4c669b0cff4398f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000023

Filesize
151KB

MD5
95e15ed575952aac83558c460243b630

SHA1
eb9bd9a1226a21249843595784fbaafbe97601b4

SHA256
816e156a34a5fbd887d917f70d85b7d838d5b98825d70908aa00cede73691c4e

SHA512
2f11be0eb5858ad0362841cc91e7d2d31f4193a746992990415b570a22c7719f57214e89adf277c829ed64bf6a6cefbcfc56130635270c5c57c584e261d564fc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000024

Filesize
141KB

MD5
e70e65ec4f5beddfdeb18c27947ef6c0

SHA1
a3cba8ef92c7a06d204417276372389eb97c77b9

SHA256
d5f2dfac315c92bbd505bd53028fd406e82308fb114ebb75d47cee9a00654b0b

SHA512
db6ea2a26ecbe55e8eaf9ad11bab315970a53d1402b7639cdab70ed51ec7a7d63c421ed558ffd59729f95248fb30b364ec1a7e71686a482f58523e255fe32112

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000025

Filesize
89KB

MD5
554d4590a08f0d859ec734572a79625e

SHA1
a9d2f9f0bd2a7ae78b1cc9772c06eedd5711e8dc

SHA256
ad50f68e6b4b7190b0f4797788c878f11e5c8f63f6f2c55c2a407e7c2ddbd786

SHA512
83942427dc1997b6c3f488834d701885bc03771d049b9981d9bbb898c423af6bd27756856094407505c9e89d7de2033551d8c9ff20f82defaa58046cb50a2ee9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002a

Filesize
75KB

MD5
7719a292221dfa8321356643673fe919

SHA1
6663b0fba95b3cf880c54ba56ae8dc0784011597

SHA256
11e337cfa8e160bd512aba36192ee396298340ec6ff3616738e6c31a380ea45b

SHA512
283b65ed92ac7df8493c3e9cce466d1070aa62ba2d7c7270bfe1c83df3aed4072e7852b59064dc0620b1acea42490db7038316345235e8878a632400df4c7153

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002c

Filesize
54KB

MD5
4583cc051db19401f2ea09cf2b7d5a91

SHA1
0c5bd411a2ae1ff94f8f72140059e87431ef5039

SHA256
23ec53f60596a964c896d39d5eb65dd1528803c8abb35edb2aaf2088ca8bd48e

SHA512
f31057d34715c9d8b91f2640451a964726c9bc3578860a21260dac82a694503b35001bcd599f14c97c405a029a740e8dae7cb1137dca0990da4e220cfa69baa0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002d

Filesize
28KB

MD5
213ee0fb15c15f4d60668f76eb6ce849

SHA1
10724af05228b412a607b9da530b32ebd3ed63b8

SHA256
32e6af6526aecb416f3d3e74bf4add4becb3eedf7bd98e4c245df72f57e42478

SHA512
4ea2dd06222c2c4caa4ef4b3046e1a7d7bd05aabaf15dba55d17b186dd5c61c1a1d956f3ecc439c99b0945c3dce55f2136f949b8049e1b377aba649c9904f82f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002f

Filesize
19KB

MD5
bcc4b91575004b43a8d8784b3ce12385

SHA1
d3248f3bdaea64ee97ba0196051000c31abffa38

SHA256
ccaebf2f7e94b54ccd54438896cc4c3867be5dc986527cc71f57a9404d07af41

SHA512
a1c3dc049ca0252a442cd9fcd7ca4786c43b9d0086b6a1273c224c476e613c53f4966c88b6c5350e026da1e27ec977e3ee6a9b53d33eea9995480d4b41e7e98e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000030

Filesize
16KB

MD5
89a574ff00e6b0ec61d995d059ce6e65

SHA1
aea09e96808ab77165ffa712eaa58b8f056d0bb6

SHA256
e5c29c139842fd487473d0824f2c01b374680fb35d22fa929686d17896602a44

SHA512
30d0d40bd680e61968273155b740901cdfa66670fc2af6f23e44c6b998b67cc1fcd0b51bd5f9470f209f188e75d071355e592b2a7c97f4bfd15d07d455e0909d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000031

Filesize
16KB

MD5
cfa2ab4f9278c82c01d2320d480258fe

SHA1
ba1468b2006b74fe48be560d3e87f181e8d8ba77

SHA256
d64d90cc9fa9be071a5e067a068d8afda2819b6e9926560dd0f8c2aaabeca22e

SHA512
4016e27b20442a84ea9550501eded854f84c632eeced46b594bcd4fc388de8e6a3fbfe3c1c4dbd05f870a2379034893bfd6fd73ac39ef4a85cbf280ab8d44979

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000032

Filesize
26KB

MD5
a18c7bcddfe92565761e7a1dc0f5f467

SHA1
18981394ca7b5a0890d612a5bfa009878c7329d7

SHA256
dd728e2bc3a090b2a4047609b49a73f7fa8f2ae4ca1ff0dce1bf688d8b881bf4

SHA512
9d550f02b63ea19220117467102356bb645cfc19e93988f770efe4df91c7df2c65d67e83da8214b62916a385d157c0159c3c90b1e0c9454e5b4018cc8bbe7db1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000033

Filesize
65KB

MD5
f3dc36eb8d102c5b65b1a457ea739ef0

SHA1
b18742e75723d4379811ec5cd6a714d5841878e1

SHA256
7b8db0f76ae02660aeb9294c337153d4365ea193c2e9c0ddd4ca2a54fe7457c2

SHA512
db56010e8d7b5f831d64c4daa8ccdeb21deba6ce5b4594f065eb942d551c56c6174a306ee17b3359cb7260f512dfdd645ce0b62bff992bf0d2a96e9771bdbce0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000035

Filesize
27KB

MD5
c984007d060766e41c7822ba1429658b

SHA1
b016cc7dd0f8243422b7bd3636c6f45426edc234

SHA256
1a5ce05e4a177d78ac9565c1104e1fd113c41aa5deb202442e48c102d22955d9

SHA512
7720ac3ab724bafaaaadd5892fafe526fef0d4cf9618453a5df6dfcebc35173a980aaa52f7ccff7afea99cdc39fe81ab7fed4cd2baa5dca89d07b8befa3480ab

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000036

Filesize
40KB

MD5
8f890c8faebacd431dba6ea8d944acab

SHA1
0429a72f45cebb9dce545467a2f1de211e37ac96

SHA256
d9c3417659e7cba66b0edebd30a54f89df857d674082f7790b09ef17cb4c5db8

SHA512
4663cd13d669217d26b2843aadd8b2101001d02a8eb973dc0c32831a0f7ced4e2e281e2110c6ccca59ceb02a25d116a649c9ea4a12914b8f57746f375edd36e5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003d

Filesize
137KB

MD5
9d4dd717cffdc65d1e22ef5fd3555948

SHA1
c510e23b98ad2fe52aa40ef2d6f552b89f6dca1a

SHA256
6510d92f89e333b06086a999412e29690376f7dc5190bd43337c15cfc8b83eb1

SHA512
348a59c4d39b85d7f1eb24f9433c3ac30e175efd0a53d9da075674c0c77d8d7b256b6669cd1de91150e416db9d858a01de553da5fd40fcf2a69c41b51794821b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003f

Filesize
33KB

MD5
1aca735014a6bb648f468ee476680d5b

SHA1
6d28e3ae6e42784769199948211e3aa0806fa62c

SHA256
e563f60814c73c0f4261067bd14c15f2c7f72ed2906670ed4076ebe0d6e9244a

SHA512
808aa9af5a3164f31466af4bac25c8a8c3f19910579cf176033359500c8e26f0a96cdc68ccf8808b65937dc87c121238c1c1b0be296d4306d5d197a1e4c38e86

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000040

Filesize
65KB

MD5
8a42ba5472aa4afa3d3ac12f31d47408

SHA1
2add574424ac47c1e83b0b7fae5d040c46ac38a7

SHA256
759bfec59bce5ddea7751b7f93408074a8c27cb2c387b08b6b9f4aa111266ec4

SHA512
3e1081a6e1c29f6dae28ab997c551a6d107d4f4b7e0981a19ba81a30a4e420dee1791321dca8f4b500c9e7e4a41c5e5c75013a72e5a5cde3f7e6c50393eb10b0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000041

Filesize
248KB

MD5
a6fc0e89b7ad808e9fe0d1c01d89a887

SHA1
ddc5de84f804d34f3fbf2d72e89be24a62700e2e

SHA256
c28c4065de6b63b84d30472b9db90ef7772f2880dfe505be05ec75eab295b261

SHA512
a76a3745b2e5d0e8befb127fee74716c064fccd32deaec9d2799f89e6ffb57af575197e9c615946ea2ae5473c5e9acf759d20a9f079be8dcfc1ffce3106f2ac3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000043

Filesize
16KB

MD5
49295de6ccd23cf80b6418a2d209868f

SHA1
42a955b4560bb22cb9b5b39577f7a691ea345018

SHA256
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa

SHA512
2954ab185fd84a08933bb6e79d91e301021fce4e632b477e765c172cacf72913561e101ed2f7e66bfbdc5946b35f2b63eb2b6f878e0afc9d26ffe71ee112a1c0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000045

Filesize
1024KB

MD5
4fd24580965c1ec17ccc7ebd3a700d53

SHA1
764950322d6cc718086eaf41c645c2b66deff60e

SHA256
67d709060c6f77c0f68df2de662f8ebb60a3e193e3945eb40c51f69aeab40671

SHA512
ee66f2e28c877ef3a97b44331a928582c81a83285f340fdf4fc710c08af12e959f676479f9ab4dad6eb7b5a68a88dc04f82b426d13bfc29fdfd66219e16f8948

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000046

Filesize
138KB

MD5
71980416bbe5a7d1c6629cfdcf7032da

SHA1
8031ca573734bd056bd911f1375ea1e86d4252c3

SHA256
a7f40d3ac01c008f421dd402564bd0299ed6732c6fd39d4478cef34556eb9e00

SHA512
8f05725473bd3887c9c7d80f52a7d522907f64e260d4c9fe8a08a1cc68ec6b09f7c6097364d8921931e0c55bc64ad90e4550dbc45b2e4748b19ccf51c55966eb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000048

Filesize
16KB

MD5
9c6b5ce6b3452e98573e6409c34dd73c

SHA1
de607fadef62e36945a409a838eb8fc36d819b42

SHA256
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc

SHA512
4cfd6cc6e7af1e1c300a363a9be2c973d1797d2cd9b9009d9e1389b418dde76f5f976a6b4c2bf7ad075d784b5459f46420677370d72a0aaacd0bd477b251b8d7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004b

Filesize
140KB

MD5
765936842b5dce2101babb5e972e2798

SHA1
f03945f2342182fd75b163b056953b703b4c4781

SHA256
70737f4077ae6dd8fb84ab31a52352107fea491fc64c08de4cc8678538d58082

SHA512
41ec54a62dab58403f7ec70d281b8fa5e7a33004b3df37e8cce05652a4be0bc60440a5ea24aa2af42903c74a54b3e8b714bea1ec4d19455d83724dcfe25343da

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000062

Filesize
1024KB

MD5
99061db4beb29630a3e16b22e0388d53

SHA1
2fd6132716a4bd805a1d001c0e5c4ad165b152a1

SHA256
218ff417f830c79ec7a8a4dc9bae7cc728f6e6b7602b06f289a2d5bb24d8466b

SHA512
fe5a69e1d95d76f0ab99496bb86152ffd48e271c72ea6fe2c7858d85a5f5df9968dc8c1374386146895fba8e88928c96f555eca9edac7a16881a9b5b7318a369

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0c480c18bb43f33d_0

Filesize
277B

MD5
eebf70cbb8c4ab407338c217b30dd75b

SHA1
84ba3be7e56715f436bea9be555ac4225235d28a

SHA256
735b4b257dc40a65c2f7027e5980e57b0884e1e6e9e9265da74900d0cb496bab

SHA512
bc52e1330ee89a9adf85f31e4166cccc118a14ab84e2076841bf72938ec4ea70bfe1c8dc6368a7f9bdbc7e28ef419be22d5f53000938d9001094b2a490750a8f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1f4870763d2fa82b_0

Filesize
277B

MD5
20d62719b0a88014b735905ec5b7245e

SHA1
49ef345d67d4af5ad17511d1d33b96330abf56b0

SHA256
11007fbdbf96f73fab248c08e7f57d4866209b2d2e4cf14da0141c1d0d09be62

SHA512
cb906d20e580548e47cc2b1c2979a3d0c10105159ecdf47f97c1a1ffc20e4b9d8e0dab668ecbb1f6c5f9b1d1c670b79c48e2b68791e1a1b585ce88e2b380ee2f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\27b60c4a82da2066_0

Filesize
38KB

MD5
2820fc37177a7e7ef1a9e646fc3df939

SHA1
78a4656942a75763bd43062b36d10a8f956c34e7

SHA256
429f49288d338435cf8d34dc828fd9c800b1be2e8058d7ad84fc2861304ff4c2

SHA512
25683d8f2a20444849dc21154fb405177825f2697decbaea6170820ceb191670cd77a09723ca8f9b6b4cb9d8f6a594d497d1db2856b2f88bd8f2152023c697fb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\300cc653119c99fe_0

Filesize
18KB

MD5
874ffebf8810679b586b8fc737de3b83

SHA1
8d5141e5cee5f4aaefb5307dfeba66b5646a2244

SHA256
da1505b9df0803953697af34a15047d44d4615b4e3bbf80ae7c03c3bb0dafec0

SHA512
f6f9a1aaf4ea5bf46e37729b9992960c5db7afdbe529052710b16ebc1fe70b28e77917b65d6e844d8e5232340690c3560f63358d5dce44175948279f94b68baa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\432d9a0226d8776c_0

Filesize
269B

MD5
83eb87712183914ae0d78a5423ccbdcd

SHA1
17b6b8f40776436a66332969a6345344eee0d02f

SHA256
4ac2182b25873238feda06c68f35ab06eafbd5ca6c03dee0a2bd0951ca13a049

SHA512
8559875d70a57a1397659dec23cdea4c61107a85a19a9b45b3a4fbb303879b8365ac960f0d97d7573295a03c61512cfa690f402808c9d23253dc5d89715b8fa1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5615844e3957a05c_0

Filesize
11KB

MD5
7634eca79642e8aa00a4ebc99576b33d

SHA1
0e62f5384f5e4ee4645bacde99e90c82b33ffd6a

SHA256
8418b3b32d2e9fa863f5972f912530db6c73f1c9ba7bb91187f86fe5462fabcd

SHA512
61f788552bd31185d9ce4991684f3c8db779270287b0e8193b386cb6fb4bcb016866afbb1713c79dcd77b7e72b5e3e41fadede8a44cda0a457ea5f01cebd5f44

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\65e70cd61bf070a3_0

Filesize
274B

MD5
cb847182146b0efae293265bfcd3367a

SHA1
ff3b04a3f3359a8fe43517fae853d97fd34a5a71

SHA256
b41140b8879080665803fd2a925293d4e5c3c63ce605dc81dfbc85bc30676de1

SHA512
3112aa7ac01234ac257f6be1b8c6cb928e648110904ed37ca14b219652b36a7ceaf1c671e4b3ed2c6637e989e0fa3c62f8df34acfcf0d61f6ade543823181558

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\75b4fea444cc9bad_0

Filesize
279B

MD5
3c74559c7bb16ddb3f93777efcedb97a

SHA1
6b6a507270628e177d93799d2ddd2cac5446f2a6

SHA256
e22100ae99861ae4845d171a7b7e5b301d2249b7791d95267e2c3b71693b5f63

SHA512
119719442911d19aa0456ae618b1b492c12ae566bb2736e71f9559dd5e8f27527d88064c540d7ea4c61f5be88670c651ab6ddb65dfc2612043e1199d909419e0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\78d8f80cb3630c48_0

Filesize
275KB

MD5
258f770e24258af0cc1e3f1a8695c5fa

SHA1
938aacad178cb114e1228f08cfc90fa5d5280422

SHA256
83a5e84f26b295c5cc2aea1de577e0f16b62bf6725c559ba6472b403a5f24516

SHA512
4d5d29860134b0f4979d56d9a1b28573b5c9301627cc264581031c4ec77db6141fbcd5227e483e72cc982f22cee073c04256cf54f05b82f1ece28f782491fe2a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\dbfa563ee5d6f1c4_0

Filesize
137KB

MD5
83cd91aee84352e2581867a65e89f212

SHA1
86cdddaa2c7e2d83f027c2b9941ad1a860ad1747

SHA256
98d35b16b55da2dce0b7808df849d7549ca95c48542724c5ee4040dbb016829a

SHA512
e527e871b6c22482c131dfaee301929a014016f043f4b1b22a1921ceeb765c22aaf8374f1b14f93690c0aedc58b43967c62d87bac42cc16375e4f54a27803ac5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\dfe4172ddcaebc97_0

Filesize
46KB

MD5
4cc629eb19f2d49d6920340c0abb1f13

SHA1
41592db33f93c354972ef9c3adca7283dc8bb65a

SHA256
dee19108e8261aa6d2217b4e26ca87440c630178b796e0bc0d7aa694b5e0fbc6

SHA512
6db275aa4c9fafb6a71a370f445e57a2030831ccf68974757ab441eebcac1b945ac7c19139ca2c8d4213d0f9db902fc32ed7928493d961f310d6c32547e0df01

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e4904def4e5f06f3_0

Filesize
252B

MD5
36102a75041e6b0ad6ebe45a2abfb5ea

SHA1
8b953769b1ab76ca081243150086d9774b9c6874

SHA256
342d055a81384e4bd884a5b64460a358482b931b4a05266294ea508b711805f8

SHA512
88fd72fe3fd182d48fe1eca2bafcbf7a40c8392d9051f9f9c36c03ee48ca211a99f79c49e972d92eb7700e57b04de103f101b85d4519f4656c4b4185dbb41087

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
9c9417d569cde56fb8105cb335352581

SHA1
f38c0d6386701bc1fe7e6ab97d4b76b5fd21643d

SHA256
3c2962fa52a713102e60c1af17b289cabe4584869490959de5952b3dc4d19692

SHA512
98cd9ba94e09383fb7297e84e12c18dc13bee8dd89f74e252ae97a7f79c52226cc5ed8eea64270693237b4a4bbbcb691ec1e8391ce7221519237809ffd176995

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
288B

MD5
36c2f9eaace97b926026e1e45811106a

SHA1
f95e415e90c9504cf17eb4abe46c16e8d50eef03

SHA256
580ae50873cafbe33fa5248a5198b5de3d6efda8e5938a307e9033b7cbe6119f

SHA512
1c4bcffbce752300c0be43acadbe7522cff9ade05b709a109a0e7214a5c18d5d0ba2a76ed8d6e33d31362b5e226db10fc5f9a17dfc9e19559630ca500508f80a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Favicons

Filesize
20KB

MD5
0f014efbaaba26053195bee1bf76c916

SHA1
69e7a229de8f6c621276357cd5227b6e376e1efe

SHA256
9fe6773e83b46283d3b680b78c338e8d4c62072ed7f46f667ac5152be0dc17b3

SHA512
f3d093f7d882309c56612ed694c252e1eed099e081e1dc97af08393e7f9d6873b3f0632d7feb0a61d58a74964b0b6541949af884c30fd291a351723a943d94fe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History

Filesize
152KB

MD5
6cbee01ab5f09508f9e5672e889a48c9

SHA1
d3e5ab9f67b829073ac617ba518301c6e17da4e1

SHA256
a1b84113f26300aeb7319383bf55a69e375495eed8260ca8a0229661838b2adc

SHA512
dacc6f5b10974e01fdcbccb366c4f3b857b750656cf371117e8534ee701b3f90eeb43fa5562f78aa34660a7e46aa59cc622e494e10f06bd48e197ac092f7f3f4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Cookies

Filesize
20KB

MD5
ee1bc721e3b667c3a91178adfa100f2a

SHA1
d8725f853e279a7d3c7c32e19c89ff0479e7191a

SHA256
a019b5930a20c7dc57124822014eb6dcb4154624097a60712b5ce8adcef89139

SHA512
a46ec0e559ab489e9ac98f60d0cdd6d104865d4b404df9c56819308355b1dd13d4e4e5e29e0b9900b4ede7a6b58fc4e81249187d7121fb293fb70b437b8ae642

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
9eaa200e603168bd6a946144f89b4b78

SHA1
630b8c01a555f8eca9fd10779a68e45a38b8e512

SHA256
ad0d7d2db748bafa7d2fbf3968bf6c0479932741f62f187535ef0335b9dff990

SHA512
9522260bca35da6f84e2d2c828ce44567c03293762ea16e58aeb25824fca016d26d2e2af8fa0dec585a7eb9a37591874b33690d4c24543a48df1997d54ab7596

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Reporting and NEL

Filesize
36KB

MD5
1a637cbb2be4b56cd98857d36940526f

SHA1
01712012c43d5988e2801088770b577a4da74717

SHA256
b10ff9a1576cab7a78b89c024e322906c6c5e172e975784117431f72c40aea1a

SHA512
fb041e279564f7dd1916ee30e2b9338396d763a0855d09cf461e726f2f3e5f799a21610c7cc4b85073232cbf489d93683f3d68e8be69b3b03fe6cc6d3c70d752

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
690B

MD5
bd3f6652a4121982f4cf4cc452afb62e

SHA1
51426400c625f6752246391bfe7d07d6ec0a85a7

SHA256
f02d3d6e76de97d11379bf2dff19af9361a0f1e35a7bf1e6de87d09982acbf36

SHA512
a34b2b2663b4720800cfdc1d6819a288894cc5a95dd040a8c58ef90ecac7a215f10ff85f7a50b814ad6720f7a1b2e33a21b970396cea604efd34ccfb7a1ccb88

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
690B

MD5
b94635af9148d40307ea43681e94b7da

SHA1
1fa05c3d4c9f91e352cd1cb85d7324c0cd8244f4

SHA256
b7a5b605b38b6208419cad74cb63d2128274b8a3c54a13f21c3309296820e09d

SHA512
cba18456ca2e64fa495ee9dc920f48b9d04115449ed28e7b5e3055bdb2d45bc247a2b3865123965b1eab3bb07e07a1bf5598a15cc7d5fdf7d1a50bedecbf5dd3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
f9a06a6d60376e68447d08f5e7f01855

SHA1
fc43e68ee325e34f57f803c3a2ef0bba39672ceb

SHA256
c1ce47c102c4351134150fe168b67be13ac56809437fd581a842b3a2d56553eb

SHA512
a6b7521c35249965ace97244f8c0b88a2ccffb9d2146ac7740469f64077df20ed6d857ff92ecff32dc9a29e4a76253fbca7b30c05cae9b8deb0cc501ec9409dd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
356B

MD5
482633de921220fc38d995a2c9f57892

SHA1
cafff59dfb812bc3973866e7b3aa7bd66ac2aee6

SHA256
474f5dab445b8a8bf298088722add5a8c63e36d49652cbaebc75fb25981d691f

SHA512
3b033137a3fc854af1b72cf7d6f440150bd1301e4f866016456bd299cc7ed072aa900d90dc57827418b8869b5aefc44eb7e4e54b223f81f65b30de9b97e5cb35

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
ccd0102dabdd5db1d3494f756a5260c0

SHA1
98bc4748562669b1d6fcfd97282a0e7061147133

SHA256
df78ba2c513dbcbb049878a14dff0ca729d3e4bcf7b31f2c0044b9997f213df9

SHA512
06f9cad2f54a916869d22e77faceba3117cdcd1fdc80361f26fb836258288834852cf3214beec6ad95eb3700c4c3cea66ff3a850eb05418adfc0af89d5424cef

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
3a1de46abce703928124266ee0fac96f

SHA1
099ad7f2d2c96e44470d788a5442c9c1c85f3cd9

SHA256
051c3168aa9aeea7f152fa25f060e85c602e91a99afbebea732edd5a1d084d10

SHA512
61213b52f1bca5b7854f92b4bd50d42435c21be9d6c7a42b3ce0cdce876ed16530a199f5f2657e9a100ca09f7fdfe7cd47a9b75175e10cca11d10b61eae84d62

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
e3ab08a4bfe89310703a42248a3933d3

SHA1
e4d3ad1b0a34b2e6648e92bca63951d631c91733

SHA256
a72510b7fa1d00d2184ba15f75b81b1047596d7716a99d8d893e6725c085c592

SHA512
42f1f8218b2a9c93d116523199457607427b1367cd21b03dd15f11ff54d5c51e093a5cc380a1efda5a7993b063c0f4e26d5db02996a978059cba885677736e71

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
c3e6b4d2ed7255835f6df03ee1a028b0

SHA1
fcc90d6b30723dc832ad60529d427f69687b7ac0

SHA256
ce205b0eafa97486b3cf17b0ce2a20a75a786da03d94fcf6b282639546037348

SHA512
63b5ba9eff10ac7947bc77402e73534cb8f229c2c02a2a113f32a37c6c48639e0fce5457a4fc86c2b4f6820898eeab91d5499f4c70c89478abd79440fac45f2b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\c66e9e88-741e-4b1b-8665-e1de79df4130.tmp

Filesize
15KB

MD5
facaefb75f04e4aa963b5b09ea9aeb08

SHA1
70affa265dbab3f319167d959d3f9b5e63f34e92

SHA256
87731e8d964ce8eda5aecc0318e68cb6d32194b503ed5c5bde67d14ce88bb604

SHA512
4be921fe961a2bb9c5b4c3906fa338d855bfb401f880f7dfc044e435eb9b7c63e8f545859da6416655850c28711a98b3497612cd27910fb292f79a12240d2b94

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
2cbdd537d700cec119f137c05bfd793b

SHA1
d37b20bf8267422d8fb4413b22056317e3823223

SHA256
749a2c00c69dc0ac5a1f65b630fb13427326f27601223ad692c62de8d1a8c8bd

SHA512
9b9a1735b90f570dd5a432300108c1fa562f2cff333fc50ee8fff9832e3cfffe718cd5388b4bea46a1fee84b63faeee2932ba3cea7d49e1e15588f32e1fbc4c2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
a38c56ea1bba44cf455d0f22b3dde882

SHA1
1f4551720e58d37afb5bc796466c1af980e5415e

SHA256
42d4fb919da3c90d617b135be8b4396fce0c58072a789d6043554e3042ab4668

SHA512
489f464c9115f068ba530d2012484f5ed574772c8a30c39e8148e33c73fa57958505c3ece1a0d28a57e8b86f02d5c2e26106fd7d0fe309061939240d67d421f0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
c6b3648bf18e778d60ae388addc09ef2

SHA1
4ecd1327a42419076192f3c6979cb3b92af241d4

SHA256
151e6f6f0a49bb4fff80894dc42d81876b0f0db8066513645490c794cc95e036

SHA512
01bfc57251db4760565ea99f1cec2ef71699473340c8f6e00efdd5996f5026173595ba79d15c9ecddf089d72ef34ca0db2c6ecfd916c0550be8673d4a14f4264

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
1cc8fc255f08e3be865426585f608339

SHA1
b60c5ff32844c92898a4a789137b99659253afd0

SHA256
e41a19ebc7eff6b2c4f6f0f1e94e79e73998b78dbddc1dc475b8fb966addc560

SHA512
8c1b00a357b13f38c795629f287cfb61844503fc35b0ee2c87f222d6e05f9bb03fd8e9dad8b2b4211c7429540d193e5304e822cbb2da4eca0ac14dc4f3846795

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
77f60c944b80364098679b50a4c1ee6b

SHA1
1798c94ae31d4006eab20d8fe354367b7b246fa0

SHA256
f058717ea4da30c81fdcd0d442acedbcbbbcf2ce070e19a306addddaed2facdb

SHA512
41b71ca779897984616997bc654b46c1aa75f89d0b656c3e2f96f2c17194b0b4adaeb19d2246608be7a1fc70a3978cd7a3591dababf4965de5e47175ac614dd0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
d5948a76750ffd757ec6030a285c66c5

SHA1
696ef3bebdd381beea40c52ff7dff143667b4fc3

SHA256
56dae082b5dbdc915c738b20124371c04dfff6269105e8be91a59032e32fc05c

SHA512
a6a7cfb165f2bb39ad09d35afb72ea4e9859cdb67e96e0c7e33c0f2a83bbcf8b5be4597ec622f93f76338894a073a0055e8d87bb274b23698f8024921316a05e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
16KB

MD5
f8387ac7f9a976a8827f07fcc1af8e74

SHA1
d0daa7e7fabaf236045c93c32fd8ea2e6db01456

SHA256
265337571321a322d48594eb07beac5b8c4d3ed4282cee2a313cce22a055e53e

SHA512
d88c10e06aba0094a4b8404c751b66ea9730a45cde111d439ffc177bd4fef9d39d94df4b4ef41c7f502745f4ea6799f4a9f89261436ca5fc32f893870cc201cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sessions\Tabs_13361893375914757

Filesize
3KB

MD5
6dec6c689f26237ddb8eba4c5b9c6c72

SHA1
cc02e7fe9b1a77bf1074fc8c8dc454c446b01784

SHA256
3adcf2a0d6c48d6e0c357439021e6d9e8242ae1aeab2fdb4f2db1f8fd8ceba80

SHA512
f1c955d846b6c1b10c6167c8ebcec1a316425e8e886650f4f59a4e4bce5e586bb409f7ad426bf923dcfab3c01d9626aaa64b6e87fae7b086660fcf273fcc98aa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\000003.log

Filesize
112B

MD5
f1715083d84ea60812256b1f77a14597

SHA1
251ec811b00b6a280491397361bc22badb47c4c2

SHA256
94b6b5b4a3542867c4a2b563abf0cac119f80620a2d385cf416c3128258df9c9

SHA512
b8e2a7cf3b2af610c084703487794ba46665d3ac1d84897ab7527f7cfde53dfd0b1a5e0276dddd53418c928041f6ceb7c94747dc1d04a078fc40631839a5eec7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG

Filesize
345B

MD5
b2380ff427756a6dd51f7733165c4fce

SHA1
f1b8bb4a9bd0815fb2748a054b5b025dd0536d80

SHA256
7e2083c2f9b1c03fe2d63fc2c675731f759036a785db8664462a8ad9608c384e

SHA512
c352bf542f0484a05360a049de39fd3c30f3f433376abea422c220a59f6c3a86bc4284b287b8f157514702b985cfa0c1c260fd73fbe38fae589a94445c325486

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log

Filesize
15KB

MD5
fc2a3ec5e27528bb0565bbba127f450f

SHA1
ad4ac1bb7fa694843724007665dfe8813f180efa

SHA256
65c793338a049eb7194faf1ea2a9900581fb7448579f0fa234bd059074676f3e

SHA512
73d0d3b242ae259f17147b853e7890d20ec6ec5bbe7bdfdcac7b4ba82b1dd2df08d3b992e9ed5d80650a55cf2f8b714c5717b35be631c8176199b746fa317db3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG

Filesize
321B

MD5
3c02ee87aa85edbea2a27c980f9552ab

SHA1
5ee990a720652623083c8ae108a13f0b39ba88f1

SHA256
43e25ba46d6829d4a7d8b9212514e01d1bfc4acd7e5778b606807342ad33f87c

SHA512
116844ae7cc9bcdf702b00add40b2d62da60b23b3f91216d04673cbda2e54014c937713b4e43f9cfff06cd9374788444b61b8b2b63649c70056adb9d6fc18844

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Visited Links

Filesize
128KB

MD5
5f5979c77437433cf96aeba758c61982

SHA1
027b5cd245bd8a06f649491252e8d4ef640eed9a

SHA256
fdc2fbac9066d8d3b4fce7b09f19a510b7ccf694a97e6f38f66c901a3a0c9f3f

SHA512
14540e0895faf8fb4be3b9392d9ec03b851aa16ae5c736f89e064379f6437ad97451d77e4e56aad55dba7e0c9bdd93b99158d40763902da8dbd5d4a28befc3ce

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version

Filesize
14B

MD5
009b9a2ee7afbf6dd0b9617fc8f8ecba

SHA1
c97ed0652e731fc412e3b7bdfca2994b7cc206a7

SHA256
de607a2c68f52e15a104ead9ecbaa3e6862fdb11eac080e408ba4d69f1f7a915

SHA512
6161dd952ae140a8fb8aa5e33f06bc65fdc15ce3fbfe4c576dc2668c86bce4a1d5c1112caee014e5efa3698547faad3bc80ec253eedb43148e36e1a02ce89910

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
259KB

MD5
ae04667e9e97de825e4e2e5de9a6e873

SHA1
b967cc042ebdacec299f94e65d503937982bab2a

SHA256
fe8685af6fafd65424556f2512d7ffba5a1e9c2b6b50b2a7295f99c9bac9036a

SHA512
d4c1fbe6389c11f3943d5b9f899e698c3213739c00f5fdfcf27e4e209cc5a807c9e9c72be9a8af99cbf2380ab1986b8570151d7e6a125ddb3d1f8d74927a62a6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
133KB

MD5
60cb45f9f722a2ad40343ad3e6e2f451

SHA1
eceb37681f9662d0b72d1f83947597c28b50f30b

SHA256
339effcbf3f051f9804ea14448bcdac4bea3a47e10de0305343e7ea14ea1b312

SHA512
fa4dcaf38c4812d7ddb0b358bd2f96c0641edb7e41574188c42bfd73d0d33c784344a596163d8b7dc7bdb3b613c6e20fc2930a73e950ad589424617592fcf2be

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
133KB

MD5
19fe14bb944beb4860af383a698b8b77

SHA1
3646304a90999b79107e98d1f3671fce98ba148f

SHA256
5388e7313ea12aa714dd9f900f2eac9b152312cc1b53791498ff16474852ef83

SHA512
136fd05e3322162119d5cbcdfad4759757f76c68ce5f5763dc92de1ac45acbb74229031321f624803314fbc1df62ec590d7e353f9ebbc470725d1697ae933d6e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
259KB

MD5
c8ebeee9a8f4d019260c61054cb88425

SHA1
c0cc3d008630da4a24e7aaea170db505d3e10a7b

SHA256
251c23f6cbefe79f180f814699aa83d0f8a752adac594ad0f76b8fa4ab4c9bce

SHA512
b8beab13684b209736b0de21040a5fd53e1ef21936a970ab48c045ed3eab0f278f32a8b4b60613ff240301deee44809a9947c2ec6ce71179741f0e3c4fd5b916

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
91KB

MD5
a2a948bbdf3eb94461e4d1ed3f8fccff

SHA1
302e38439324435ee0bb76044f0e34f83134b759

SHA256
b162ad7c380f9a1024def6eab6cb698066e7c13e1bc07d1c18abaeda922d27bd

SHA512
db474090765594459cf33ae466528cd89371242e369ef3b15348da3826fc86351c62373fc5ebdd72a25c4f520fd6989e8608623bbc5c6b941f74b7bbb448fb6c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
100KB

MD5
8ff529f2b4773eee893b69d16aba4ccc

SHA1
bc0f61465a06af47e11692ff68cc6446bf89ad5f

SHA256
71d8a9b5dbe4b183db87a50877a49134d6f2f0a7cac4af38efb0d71e246b5c2a

SHA512
bc653dabbaf7b99853cb76a363c92a1dc7ad98b66b944d198bd57dd52b5e95efc429d5a398fefc674d78c637ed4b251cf2da947dea5f4db5659c388dea81b714

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
100KB

MD5
004993cb5a4f6dd4c38f77072b7c020d

SHA1
030e212979bcd1e6ab8228309f578ee3d0b7ffa8

SHA256
5952452a0f8ab6ed5880f309d0632f7570231e1f8370eaab89a43553aaab3012

SHA512
6f316fd5d1591dc6dfff5eacb53e39d912b80744b0d00cf9cd5583ee37c25db4212facd05851e8e27ee7cd926da3430581b9d4435b6fbdce0717d197504b0fb8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

Filesize
86B

MD5
961e3604f228b0d10541ebf921500c86

SHA1
6e00570d9f78d9cfebe67d4da5efe546543949a7

SHA256
f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed

SHA512
535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472

Download Submit
C:\Users\Admin\Downloads\Unconfirmed 239549.crdownload

Filesize
8.6MB

MD5
933ffe953c699fe6370a2a3c408f8acb

SHA1
9c76b9fd64bc1917aa050fce19ce6b37240a5650

SHA256
1540642c05b45a54ec461bc1f91d4bc04feffca11d9d3572a1c21d9daeed5a75

SHA512
91d75266cdd5f31bb0ae9f2b398adb6de6ead2665875733cf544870c6abe7fbb7420e1a74a96048b4cf298adfd0cc1b92d208f01f84babc55fc7c65781ab6074

Download Submit
C:\Users\Admin\Downloads\d3dcompiler_43.zip.crdownload

Filesize
906KB

MD5
a389a8e84447749fabe9a6284116f608

SHA1
aec515a5970b09a7341a5366c6d10968ce6a9c76

SHA256
dca69bd5bb280aba14fc1dac35abe2dde2da74d11e89573f3cc7eb03114c48bf

SHA512
200fbc0f6ce79b9c8e3629bc4cc757632a0b51afdf9369636d01e5fc3a2ff104f4d35a34e55ea1847245f2eeeea71a50de24d1c753cc048b5d7a1d024bcbf623

Download Submit
C:\Users\Admin\Downloads\d3dx11_43.zip.crdownload

Filesize
100KB

MD5
6a9c3a02cd18e02c77a8d199e17470ed

SHA1
f6a690e9f6d9f7b01fb6a5eb4e70221b2f25e425

SHA256
404d6d4c57dbed76622d5cfbf95037e86714ab7d8533885f0944ac1de59cbdd6

SHA512
0fc25a80b0a4f407b7ecc51599c2620f342f6cc584301a257024d4b4331ee4c28342fd02b9f76d80254b732ec771bc8987ddfbe447c30264760defd15e259920

Download Submit
memory/3220-11-0x0000019F7E6F0000-0x0000019F7E6F1000-memory.dmp

Filesize
4KB

Download
memory/3220-6-0x0000019F7E6F0000-0x0000019F7E6F1000-memory.dmp

Filesize
4KB

Download
memory/3220-7-0x0000019F7E6F0000-0x0000019F7E6F1000-memory.dmp

Filesize
4KB

Download
memory/3220-8-0x0000019F7E6F0000-0x0000019F7E6F1000-memory.dmp

Filesize
4KB

Download
memory/3220-9-0x0000019F7E6F0000-0x0000019F7E6F1000-memory.dmp

Filesize
4KB

Download
memory/3220-10-0x0000019F7E6F0000-0x0000019F7E6F1000-memory.dmp

Filesize
4KB

Download
memory/3220-12-0x0000019F7E6F0000-0x0000019F7E6F1000-memory.dmp

Filesize
4KB

Download
memory/3220-2-0x0000019F7E6F0000-0x0000019F7E6F1000-memory.dmp

Filesize
4KB

Download
memory/3220-1-0x0000019F7E6F0000-0x0000019F7E6F1000-memory.dmp

Filesize
4KB

Download
memory/3220-0-0x0000019F7E6F0000-0x0000019F7E6F1000-memory.dmp

Filesize
4KB

Download