Analysis Overview
Threat Level: No (potentially) malicious behavior was detected
The file http://xn--b1addanloobuu4b.xn--p1ai was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Enumerates system info in registry
Modifies data under HKEY_USERS
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-03 12:42
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-03 12:42
Reported
2024-06-03 12:45
Platform
win11-20240508-en
Max time kernel
149s
Max time network
150s
Command Line
Signatures
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133618921620523623" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://xn--b1addanloobuu4b.xn--p1ai
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff80f7fab58,0x7ff80f7fab68,0x7ff80f7fab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1548 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1788 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2160 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2948 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2696 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4360 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4520 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=4648 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=4592 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4816 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4964 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4928 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4616 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4632 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4876 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5144 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=5396 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5360 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5244 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5268 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2488 --field-trial-handle=1916,i,13170681602380111438,558308168211458409,131072 /prefetch:2
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | xn--b1addanloobuu4b.xn--p1ai | udp |
| RU | 194.58.112.174:80 | xn--b1addanloobuu4b.xn--p1ai | tcp |
| RU | 194.58.112.174:80 | xn--b1addanloobuu4b.xn--p1ai | tcp |
| RU | 194.58.112.174:80 | xn--b1addanloobuu4b.xn--p1ai | tcp |
| RU | 194.58.112.174:80 | xn--b1addanloobuu4b.xn--p1ai | tcp |
| RU | 194.58.112.166:443 | parking.reg.ru | tcp |
| RU | 87.250.250.119:443 | mc.yandex.ru | tcp |
| US | 8.8.8.8:53 | www.reg.ru | udp |
| US | 8.8.8.8:53 | files.reg.ru | udp |
| RU | 194.67.72.33:443 | files.reg.ru | tcp |
| RU | 194.67.72.33:443 | files.reg.ru | tcp |
| US | 8.8.8.8:53 | 166.112.58.194.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.250.250.87.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.200.14:443 | apis.google.com | udp |
| GB | 172.217.169.46:443 | play.google.com | udp |
| GB | 142.250.178.14:443 | encrypted-tbn1.gstatic.com | tcp |
| BR | 142.251.135.35:443 | id.google.com | tcp |
| US | 104.26.12.118:443 | viewdns.info | tcp |
| US | 104.26.12.118:443 | viewdns.info | tcp |
| GB | 163.70.151.21:443 | connect.facebook.net | tcp |
| GB | 163.70.151.21:443 | connect.facebook.net | tcp |
| GB | 216.58.212.234:443 | content-autofill.googleapis.com | tcp |
| PL | 93.184.220.66:443 | platform.twitter.com | tcp |
| US | 216.239.32.181:443 | analytics.google.com | tcp |
| BE | 74.125.71.155:443 | stats.g.doubleclick.net | tcp |
| GB | 163.70.151.21:443 | connect.facebook.net | udp |
| GB | 163.70.151.21:443 | connect.facebook.net | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | tcp |
| US | 104.244.42.8:443 | syndication.twitter.com | tcp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 8.42.244.104.in-addr.arpa | udp |
| GB | 163.70.151.35:443 | www.facebook.com | udp |
| US | 216.239.32.181:443 | analytics.google.com | udp |
| GB | 216.58.212.234:443 | content-autofill.googleapis.com | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 35.186.193.173:443 | gcm.ctnsnet.com | tcp |
| DK | 37.157.4.29:443 | c1.adform.net | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 34.128.133.112:443 | ads.avads.net | tcp |
| US | 64.74.236.159:443 | b1sync.zemanta.com | tcp |
| GB | 172.217.16.226:443 | cm.g.doubleclick.net | tcp |
| NL | 35.214.168.80:443 | gtrace.mediago.io | tcp |
| DE | 91.228.74.200:443 | cms.quantserve.com | tcp |
| GB | 172.217.16.226:443 | cm.g.doubleclick.net | udp |
| US | 34.128.133.112:443 | ads.avads.net | udp |
| US | 8.8.8.8:53 | 159.236.74.64.in-addr.arpa | udp |
| GB | 142.250.178.14:443 | encrypted-tbn1.gstatic.com | tcp |
| US | 192.178.49.195:443 | beacons.gcp.gvt2.com | tcp |
| US | 192.178.49.195:443 | beacons.gcp.gvt2.com | tcp |
| GB | 172.217.169.3:443 | beacons.gvt2.com | tcp |
| GB | 172.217.169.3:443 | beacons.gvt2.com | udp |
Files
\??\pipe\crashpad_3032_DOVSEISOXWYSCRKA
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\Paths\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 430b10b912c69218d0af68761d6f3aea |
| SHA1 | a3aba95fb8055b4ddacdc3db3d207a1894ecf0ab |
| SHA256 | 94d5f013dfd570b15e19038bf6ec07a90afe38425b53b029cca29b135477325f |
| SHA512 | 4f97fcf9073af789fac7e5df1c837d1920c73c5985af6be42cf1c53a488d158f1c1c78cf6fff8825aa7fb29da3eff87e6e800c41e8646ec794d984019073cfcd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3b4229fed2b43c0dbc8c1606693ebbaa |
| SHA1 | ce0112b357d90c4185e717df888f3131cc32796e |
| SHA256 | 8c5e27beff4aab4033b0c5ac1ebece8690b4cf30519af7e3b8f82bb157d43293 |
| SHA512 | baf248d939b2cbcd2610ca306c031724c8fbb7b4d2bb29c1902ef127ec4db3ac9b29fd3ad572c37c372638513cf7825eb4b32ec1dd1342a3118e9680c70a73ff |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | bdfeb563c42969e494963dd163150c7f |
| SHA1 | a6e3e482124547db8b98ddb3a13244590b0e6631 |
| SHA256 | 7ce326dad6bc37acaf9d9d38061e7d0f62801ffcf0f1f53a998b19111920c9bc |
| SHA512 | 3e1bc78baeeb33cfcbbcfa008167a90b1877a9b01fa0efb4c872b2960d0bab3e50633be0236d5082c68c01089d774314ecf1a5d035c8a6e51b6afc60ddc8b119 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 51637c01d2514476fc98d25d2e15070f |
| SHA1 | 9a408676ed45e45bdcc689a81f89ab0104b093b7 |
| SHA256 | 5d580640abceb123ab79b540414079ebe6b86b9f10f15539fbf0c9c425157690 |
| SHA512 | cab43568c4489b9b0301737a4b45f676b2f8c21e16298e82e904aa7d1d27a87f41587070a23e84f58e75cc8f9a32d08a96c29fe075405b45bccb555100628270 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | bbbebca54634ddc2825561991edd0cb9 |
| SHA1 | f1cc79da920d1dd959461181e61fd1540dd038e9 |
| SHA256 | aade09768df57df2993a2dbdd25226e30db059b54fac2944e88790adb492e2f6 |
| SHA512 | bc3037a74c7b40c8887fc85c02a8d529a3ad3ff2eee4cd2a233aa7a1cf5dbd90f2f920a472e877635cef1e57e572d8ec01d1abe318e4dcdd680f4c6f2756b04a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | c757d315bbe541fca7991b9ab8195fbd |
| SHA1 | fbe90598ee80075d80dc327a282a90cbc3bf3b9a |
| SHA256 | 2b323746bdc295a0ece4b37b507ce9bb5dc0fef7f7b7cc850bcb1cd31df0ebfa |
| SHA512 | dd8607dcfbe55d91d36edd46a6204c0ed52cb7391289eeccb0664010539ef4d150660d83168debe7d548898e245a20c1c047a4aed1371ea9cf899db35124c45c |
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
| MD5 | f3b25701fe362ec84616a93a45ce9998 |
| SHA1 | d62636d8caec13f04e28442a0a6fa1afeb024bbb |
| SHA256 | b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209 |
| SHA512 | 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 91eda763cbc517a70bdfd138f6f42352 |
| SHA1 | 0eb961db86f02ef238da4395b18d6e816cf7f91b |
| SHA256 | 04b0f4fa19bab57418574fce0f616ac63359f75173286bd4fb7599bdd40c2c07 |
| SHA512 | 6a44983a58e37713d2859e0d295e3eaacafbad520750a189899cb4f9f18c94dc6f38cc07b958cae9d7aebedde3ae78170d6273934533494c76383537a281d1e4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe57ea8f.TMP
| MD5 | 7f370ad87ce6704ac712059023388605 |
| SHA1 | a679d338f079ba6bfd4afd8403e037f1e683edc2 |
| SHA256 | eab916978fa569ef710054f759170c3f157b1335e2d502af0616e70ae4f0679e |
| SHA512 | dfbcb392df94cde9b039cbb231271bd9f6a87f22427545774304cc3723037a0688164f9573a52edc61c1f36e02fb43bf5a7577935e05e55cd9e84eedb469532a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\6170960f-d595-4f5b-85c1-a9d77a399214.tmp
| MD5 | e391d191df27ae67215809838eb47ff1 |
| SHA1 | 67e84ac8ef10eda215b213cf5a637b8a8fe2e75d |
| SHA256 | a59240661c2f113c5087d110da7e65b12184f2ffe75b86d77a3273cabace6e1c |
| SHA512 | 18a371dea0ebb9866351772c5470464b2a2382063e05ac7a79036677fbed92d0c2b7f60fd7288aaa806921abf3151332f455a4a8fb4796a3ca375fd44f371367 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 53a1cd0f577c736fafe6972ebf4591a1 |
| SHA1 | 4f396b7e6c9b5a11db56db9373cf16db2ab55192 |
| SHA256 | 5baf2e90753f0f3c21f2f66254fa80d93e7cc0f011942a893eb7f0a06d99653d |
| SHA512 | 87ecbeb09e7511cba9d28a244f3f62e378d55ce709d5ef19dfe47b8546fdcf411baa7c3e307482ce81f2796ccfbc4d7f8d668919d577c87c976c74c5b93175d0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000023
| MD5 | bcc4b91575004b43a8d8784b3ce12385 |
| SHA1 | d3248f3bdaea64ee97ba0196051000c31abffa38 |
| SHA256 | ccaebf2f7e94b54ccd54438896cc4c3867be5dc986527cc71f57a9404d07af41 |
| SHA512 | a1c3dc049ca0252a442cd9fcd7ca4786c43b9d0086b6a1273c224c476e613c53f4966c88b6c5350e026da1e27ec977e3ee6a9b53d33eea9995480d4b41e7e98e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e3654da9ccd7312a3a2ea86d84efc5b9 |
| SHA1 | da02785995495133aec0f69106a56858f078677b |
| SHA256 | 7cff7b5e9790804b539d7183b3f08810ef58a16aa6c101243e01d2d715e99501 |
| SHA512 | c7f655b1228dbf64223aca2d58f0bfe44e1e0e51365ce80ee675014b5324d097618da6b0a4971475ff05f2999ab0404805e7612e4cc6863ab849d72be245ba57 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | eedbb3ed9b11447af9a09f630a72d273 |
| SHA1 | b61dbfc4fea136228c3ae950c76dd00fb7297fcd |
| SHA256 | 5105690f4789bbd354c9e03a2c90d081ad01ffcbc293130f454ed1f5ab43e7c7 |
| SHA512 | 34f49e8595f5a2fa680cef70cd80fa594a21a5b1684f7ce4b6150cc9f8e0dc4f509d9d1464079ee95dbc7b960048ffca82bcbd17ebded5168359704c676ec0de |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | e51cef8fd760df137032b24d67c3f169 |
| SHA1 | a66a0b00e372e8642f9a556703e25e9c144f52d9 |
| SHA256 | c337159b8b6b125fefd7e5d4969a64f3bfdf44332c826787153d7b38a2bd8124 |
| SHA512 | ccffe6467f593ba410350be45974a909d7fcb9d10849ba7f88ec1fa15d90c3b500ab42470f1fe1d81ac2655c60865425a83a0b44e7c922f4f347a8d46451882a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 88c74d9b1cf619befec39a3303d76149 |
| SHA1 | 839a0c3c63f45abe53024b4471141d528c6dfbc8 |
| SHA256 | 05df4ea9c4efdf8962b3f920b4eda71319b6e41a4a60beb1c0aa970287af56f8 |
| SHA512 | 6d2334dbd48967f40a0bfc155043fbab7ea71ab7cad56d65487f4680bae74f427b432ccab407df5e5db4d76c2bfb94ec0e7a3c07b975f945d26ca4f4d0eedc19 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 0f09ef063ace638c5c6ee6134f315de0 |
| SHA1 | dbc1a20a6936006245f0674f370b0bc0fa12dbff |
| SHA256 | 9d1635d239b12e3791219f1fe403f6cf0c1c921f139cbe039f19f96ea3fe1a82 |
| SHA512 | 221713abf5587eab7e45b578e3003285b765726d21cabea1b9e19faf907c1aa204f3e6c83fc520eecf5c2023579a7ff2cc5625a340c5bd0a2481a3bbb6ca8747 |