hxxps://www[.]mediafire[.]com/file/xvu76li5548r3tb/Lightcord+With+BD[.]rar

Resubmissions

07/06/2024, 18:33

240607-w7fdfsch87 7

07/06/2024, 18:14

240607-wvtqbacg67 1

07/06/2024, 18:07

240607-wqka3sbf71 6

Analysis

max time kernel
418s
max time network
423s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
07/06/2024, 18:07

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://www.mediafire.com/file/xvu76li5548r3tb/Lightcord+With+BD.rar

Score

6^/10

Malware Config

Signatures

Legitimate hosting services abused for malware hosting/C2 1 TTPs 3 IoCs

Web Service

T1102

flow	ioc
612	discord.com
613	discord.com
614	discord.com

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133622572927694901"	chrome.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-3808065738-1666277613-1125846146-1000\{47FA8128-E96E-4973-8460-07202F24F5AD}	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
2456	chrome.exe
2456	chrome.exe
5620	chrome.exe
5620	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 64 IoCs

pid	Process
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe
Token: SeShutdownPrivilege	2456	chrome.exe
Token: SeCreatePagefilePrivilege	2456	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe
2456	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2456 wrote to memory of 568	2456	chrome.exe	90
PID 2456 wrote to memory of 568	2456	chrome.exe	90
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 3840	2456	chrome.exe	92
PID 2456 wrote to memory of 2216	2456	chrome.exe	93
PID 2456 wrote to memory of 2216	2456	chrome.exe	93
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94
PID 2456 wrote to memory of 4604	2456	chrome.exe	94

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://www.mediafire.com/file/xvu76li5548r3tb/Lightcord+With+BD.rar
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2456
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffa45ee9758,0x7ffa45ee9768,0x7ffa45ee9778
  2⤵
  PID:568
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1624 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:2
  2⤵
  PID:3840
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2140 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:8
  2⤵
  PID:2216
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2236 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:8
  2⤵
  PID:4604
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2976 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:3276
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2988 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:3720
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4032 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:2228
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=4900 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5036
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=5216 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5060
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=4804 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:4364
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=6212 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:3548
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5748 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:8
  2⤵
  PID:3464
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6104 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:8
  2⤵
  PID:4188
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6128 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:8
  2⤵
  PID:4632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5476 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:8
  2⤵
  PID:3696
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=6412 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:2908
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=6112 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5344
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=6488 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5488
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=7004 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5756
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=6880 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6128
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=7160 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:1860
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=6200 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:2204
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=4668 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:1716
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4984 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:5620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=6884 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5652
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=5428 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5728
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=984 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5548
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=6188 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:1176
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=3664 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:2100
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=7248 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5416
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=7184 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:2332
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=7560 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:2620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=7736 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:2984
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=7592 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6036
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=8096 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:1376
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=8108 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6108
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=8412 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5204
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=7940 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:1360
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=8560 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:2452
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=8756 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5436
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=8880 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:8
  2⤵
  PID:5412
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=9048 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:8
  2⤵
  PID:1020
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=7588 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5448
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=9376 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5216
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=9612 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6172
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=7948 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6300
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=9472 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6332
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=9848 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6440
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4764 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:8
  2⤵
  PID:7052
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=10020 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:8
  2⤵
  - Modifies registry class
  PID:6680
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=9256 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:2064
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=10248 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6600
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=10288 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6608
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=10420 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6792
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=7588 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6856
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=4904 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:260
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=8700 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:4244
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=8652 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:2660
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=8916 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6776
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=8948 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:3552
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=8900 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5024
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=8672 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:1160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=8736 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:4820
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=8944 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6772
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=11004 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6716
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=10196 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:7204
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=10984 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:7292
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=10100 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:7300
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=11640 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:7444
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=11796 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:7452
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=12020 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:8016
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=12044 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:8024
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=12052 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:8032
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --mojo-platform-channel-handle=11904 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:8040
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=11908 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:8048
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --mojo-platform-channel-handle=12104 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:8056
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=12112 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:8064
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --mojo-platform-channel-handle=10820 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:8072
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=11272 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:8080
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=10500 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:8
  2⤵
  PID:7532
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=10476 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:8
  2⤵
  PID:5636
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --mojo-platform-channel-handle=2552 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:8092
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --mojo-platform-channel-handle=1124 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:4920
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --mojo-platform-channel-handle=11296 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:60
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --mojo-platform-channel-handle=10384 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6764
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --mojo-platform-channel-handle=11884 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6604
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --mojo-platform-channel-handle=11940 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:6308
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --mojo-platform-channel-handle=5480 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:3580
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --mojo-platform-channel-handle=6180 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:5340
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --mojo-platform-channel-handle=5440 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:2928
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --mojo-platform-channel-handle=4628 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:1
  2⤵
  PID:7916
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=11188 --field-trial-handle=1912,i,10365708201598518933,16466869359940613392,131072 /prefetch:8
  2⤵
  PID:5324

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:2156

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=1328 --field-trial-handle=3060,i,1774866140584649235,8085848018931772189,262144 --variations-seed-version /prefetch:8
1⤵
PID:6024

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x2f8 0x2f4
1⤵
PID:6072

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
85cfc13b6779a099d53221876df3b9e0

SHA1
08becf601c986c2e9f979f9143bbbcb7b48540ed

SHA256
bd34434d117b9572216229cb2ab703b5e98d588f5f6dfe072188bd3d6b3022f3

SHA512
b248162930702450893a112987e96ea70569ac35e14ef5eb6973238e426428272d1c930ce30552f19dd2d8d7754dc1f7f667ecd18f2c857b165b7873f4c03a48

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003c

Filesize
19KB

MD5
ce1093c800c0933d7c9674eda75790d8

SHA1
371c2dcde092f51b18852e2617bc6c0c176f5873

SHA256
57781a723db9a2483067bcbc89d1f30f7e2f22ae2d18aab1e45ad894d8cdab89

SHA512
fdbb31c607cc9a4bd75c42cbc552fb40d82e53804d156244ed2daa124c75e1680b908589f7a3ad8888b9b03ebfd1f4b3e83e19f84e3a746cf210d0b8a1678533

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000049

Filesize
64KB

MD5
8b37bb42b1577b08892393df19f534c8

SHA1
e12eaa944bff9ccd0687ac54811a3ada4a5d21e9

SHA256
6cc9e87df3ba27d6dd288a0593a4f70a17ecb0bf5cac0a591ff72f355a9f454b

SHA512
9dba0d070832cecab4c2aa922bd07395b7493845926a5bed5c5f86d61c3b2fff1f6fa12069b7b7abe4f15cd58775ffa238aa36c47e100d7ca544abb3bc1a29b7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c0

Filesize
20KB

MD5
87e8230a9ca3f0c5ccfa56f70276e2f2

SHA1
eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7

SHA256
e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9

SHA512
37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

Filesize
2KB

MD5
f0792463216145012022c02467d3866f

SHA1
7a1117da2954ce4113785d1a9aa40aa2affee99f

SHA256
8abae960b8e10084646fe02a19c2bb9f1cbac5e292a70cfc3c7852d1a33ead58

SHA512
3a0b33f0fb71e8bc81b60dbfba0550d07b8cea53c28cb6c4abefaa2eee806921db0149c3a41cafb52fd0146950c64436d6304d823093c4970bffa53b2ec855bb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
5KB

MD5
f45e24929389f39a358ea1e672646d54

SHA1
42777efcd2913bd27e0bfececa4e508851bff19a

SHA256
260d8ab88fd1c76785b1fdfdab1253acf5d3bd1720a92244e7c8985918a52f46

SHA512
9579489f4f9fa5b163d20160134d54f217860521066fc83c5dc2c542eed808dee611263d0067e20b53ccf5629dbfc6c00925df1c5ac3a72151b863fef02d5843

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
4KB

MD5
fa8b63ec79742aceb8aa84c8d4c0355c

SHA1
ae1b1d01f6dd088b8a1e9cab97c26b846308f6c2

SHA256
b9398aeb722bb11454909d7b82d33b18de07faf3e121e6359134aff3942abc7f

SHA512
5f460ff6f572685ae5eb386b3e449c988542ec942f26dbfefb1307e9eb34e99c103202d86e686ec09352c9b929aef20f87bdf214d4b731b2a3df6d80c6f764fe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
6KB

MD5
e75e7eac7837989f0351817181e94d5f

SHA1
89be0c2fb64d63f076643168f0caf33464823ba7

SHA256
809df03520c85f334857a2f79a2e1ba70906d4ee015e498b5eaeabd7826e1c51

SHA512
9a973666be4ec2c9797711297613118b796eb09d28efa84db484e11f6685beb98f858e816c967f60910ce1ad50c8cd08cfeebf7fc134113fdc956862d105863c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
4KB

MD5
acd24b9866c6dd3fa95d82469b3ae6f6

SHA1
53d934d038adb592e7761da25acfb9cd17b23d7e

SHA256
a38401dc497c7c4f231f99170d0deaf7b9f55593864fcaa1ca5753ef3a3686ca

SHA512
b274fb6f71c7d7e2e8c0eea49ea56cb0695fa1767162beaad87360adfda32a8b78cfff37e1489a98b4bed3cbe24207f10a55267d9bae9cd7dc40eb5339382897

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\Paths\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\42c5a25c-2fae-4d68-bbf4-61f3127f0025.tmp

Filesize
1KB

MD5
eb581381a2abcc38256a79ddd4354561

SHA1
722878db2a9c44a01e16f07785807be37ec4c03b

SHA256
a08b210ed70311e4acfcd40889073c58df89dad99f5778be02b28cde7c17f5e1

SHA512
fe5323bc5b66f484d4e4e0597f46a85c4d71c9556b45e7a96868244a8685afd95843b564d98312eda04abfd8eef831b9ef8089408667ba68f4dc494569740503

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
15KB

MD5
f40c2e1e40195ebca4130eb2f268eb20

SHA1
3d57cb71348c0d6537e73a40ed752bb7588194d2

SHA256
a4da594345feb93b5d0be83a9f6d383a870ae9cfe8a5360890879576e82665b9

SHA512
35e2c28ec490857ba2736add22bf04f92beccbe91853760a6a3ac7e6ad55d87e21478c973a3d1d251d6dc13f88ecf61a52740bb9cd1f23ff67014c55c9811f13

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
11KB

MD5
27fb8cd1ad8df0da92646d51e1d5230a

SHA1
c16e55baf10c56774964722e32928d74db4fc6fb

SHA256
8c13164e9187af6a6bbff8e3315a34e3e9a9f93830492feeeb9e3063b51e0013

SHA512
18eb4765327b8b0005421b5da7e6c7a06460dd8cc09ed99dde3b3a8a040706302254321ec8c3f3881ecc12cacf8e6cbf8c5ac26bdd211b64e3b1e8cc6230d9e7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
28KB

MD5
7ebd8a300aba902b5989b7d634d801b0

SHA1
acd41280ec1a7996b5842289e08d171f47f58b6f

SHA256
c8949d68fce174a91ff64672d73be719537d2f8d24cdc1cde5105b9aa39b8939

SHA512
b65526dbe00c81132ecb34e89e425128d5bb25c49b44bb4b2aa35c7690a909ff5217def93c5137c3a455c3de76b6c07b014474926e7b899ecf07fe52ebf85d0f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
22KB

MD5
df1cc6d71173171a21e697e74462051c

SHA1
8bed87f2d4409c8cdcdb305b07ff0bfb3198c70d

SHA256
118224d1acc3b82ff035f6736d124e6e7130bbf1fd2211d6f80c61cca7df7ad5

SHA512
8ade345296c4f0ad5982c229cbfc3ed4c0b126e447cebc74273727d6f11aa801a5992ea661dbffa37591d97ae25f1e694e5a348bd84280c3a67a9f11bd389848

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
791b48c0ac86a64e67027e4ff114a407

SHA1
6d0c4502f01de545ea67e28ff786b6015719e056

SHA256
a2c473d4bfa66187f3eb1e97cfd70697923f2a173aab782598a3464ef95d6960

SHA512
facff4f8f81a23ddbecc9f35a9a8cf7a8d35db27c0344c24f8ee6bd02df9de5d762a37435dc6e838c9260cfdb7bbede8e0044c6359767907d788f3f2d46f2422

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
8KB

MD5
5a48c276cff95b4fda6017973ff9cf4d

SHA1
3f5f2473e8413e26f31893a719e4cc7aa960e2cf

SHA256
aece3118f0db2ea71f29ffb0a880634ed010aa72a49d28336e5b32cedc1e1618

SHA512
08f2c164dd9498ff2cd9a06a15a548594cb91105ba187f3333180664718f9befff199f68e13c7daad04d59939ef968ecdebe51e633082ae95eb2d5dc821effa1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
508e69fa1efce7ee57585fec8a92961c

SHA1
1ddb77489b9de74b41c61ea4af7f682bf9f4c9da

SHA256
2651558b3d4a541eb28a3a159da7db330873699a4df65a87c10adb9b3788459f

SHA512
88cb6a288f00e2dcfd5457e8cfcd7b131a3501b9e39dc31c33c562d560d010a922a153bc18a80a6f03dbba4a49f8c126f924362612b8b20f40c61a18063435b3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
6f7a95964435b5eec38bd1dda579fc06

SHA1
fb5e2e7c3fb689e411c66a9520eccf6e3dc06091

SHA256
887481c8ada30d1a16bc32ddbc74f271d5acce9a6892285491b95e1804215532

SHA512
919a49fcdb9a4f01da29f5066babfd9106cdee3aa4fad25824c323b23fedad9d1f67efb8e5399f9fdc4e8b4eef8d243c253a08ae07526520d9f8ef4ec8c3a126

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
7accc69f04655490f1233d34f51e1dc3

SHA1
12b48bc9730b8b91bcc9673fdff85fedb487a856

SHA256
92733ab75a1061c1ea9007a8b97dd3bb042ed7ea96d14f7a9bd8006e424f808c

SHA512
01ece76372f0634cf3eb38495ac197e1de4316beda619acfcdcb72e1316b920db9baed6d4bc0767f95889596cc52e5ea879f40915776a95b9ddc99426c0ec660

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
d3d35525104d17ce34cd923ec5645fe0

SHA1
185ca8e8bad805317faa775af18a073f2eb0ce21

SHA256
f8a8a0479471d99e0f06118792749e38202aba640e559298a5b5664d9e8ef06a

SHA512
dae2ff8a6848dfc67eed02a2168fb3e463cb1f3f9d98ca75d4e97b19714d5cbd865ef6953c8a5c0b8d3ab4effa1647b360091e94a61f62eba7c9dd97f4d8b985

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
a8ed0147b2a3d7ace7ecf0927555dd9a

SHA1
597b439b0eb328385364295c55eeb4e0aa62e739

SHA256
2e0f5dd0cd4dadc0b4aabdec9f5eb9ce0cbda58c3b457ffa58093c962114e754

SHA512
d2dececf5c7adfff246260735b51e56c023069effe8199fd0f06d9f67640e41eea984daded7db9952dd9a77c44477a3ae41998bd19630d45d9589bfdba115ff4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
1e3ea2600807aa390f5675c02555dfba

SHA1
9240308ef0145fcce8aaa4c1846a54ea395a0df4

SHA256
4aacce4cfec9330e3491ff7a7202625b5933dd12aa7d6a4439456df49eba8215

SHA512
44de9a76a20e2246daf3a3981a1270139aeb489f9dea1e28b262bb9e2e7788206b3fc0aafc4b3141d607d994223bb03b8abaace7e3680d9dedc581725e86a644

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
03869e31813890194aa87511311ebc2e

SHA1
079f6909675544779d53c3cc631b2bae4ee0ecd7

SHA256
ea787cbc3d0ebbb94f9e12720da5aaa00d1630d998283049ee5fc9b2853352cb

SHA512
52064387445629afbc5577952c8d76e398aad15ba84fb223caab7786252141a21d9fbc2d4630b9ec54d7874a3a0686c2a59452ccfc01b22902f99cef76281ec0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
8f421b2c6cd5da83e73fefdc13e59a81

SHA1
8a1c445580ff6c4c546a00745eb10c473e1762ea

SHA256
5354382c34c2bff73d14890fd64ef72641e40481e799f2c5e7868b5e221e4b4f

SHA512
43f4b5be31784efff510b3f2ddbff86c054842e77e1c193d5ab128eb4c6d078695dcb158ae0f4c4298e33004ce810195ef8cb7292ab3b500594d12a75eec67d5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
14aca9cc4b37e1d94a3b84954a359d0a

SHA1
b213c9352f6190b59499de0b898d349809b67947

SHA256
8bfc81363ba0c00755c85d30dd3872d845605641228112c356189b668197e6b5

SHA512
a936823afca3e470bbb9f0c8f779eb7e7676be796f0500837374f0bce0dc7c4c1c5e2e43fc5f3a1986dfd92ad402b8462fb028a6f8e8d72af8e27efa605cf076

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
cdae9100e8b272174f443d34051f6b4a

SHA1
f9f949fab5af2986d9fca6f54c347fcf7c80c8ea

SHA256
0b858ba7a1c4e01e3692ba36ea3e0dbd93ae586df01ad78ee6394922b7317ab4

SHA512
9aa081df0d66d6fb1373b6c0137aad4a4ff7813696ff45e7e367cc49140a908168330743f052dbe73d32bdc773cb67461a070eb9ca9379d00a70e27729e2c587

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
8KB

MD5
e9d3211849ee8110c202f62dca02b510

SHA1
498b534b31a510267daf4d529d8286e291f77143

SHA256
e4698445aef4af09b70d2bf6958e68857fc6fc8760adaec9de385060ffd6da0f

SHA512
3b1d5cb9eb077a9b08ac2971e7ce60d49ce0ff929aef1b0ff8e8c488248c7e9707be62fe87d77bea492171c342840b7c7fec8451e5ab84639df35148c1db031b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
9KB

MD5
905161325af8342cb4016228baa797b8

SHA1
a893ea9b8359edc5fe4afbdc31451c3fbcde6ce8

SHA256
ac6d18307bad9190443e9892437d25d2811ea68e056545e2b514a93138e9f634

SHA512
52449e38eec982c0735337b86c5204ab0a78ca994bf25241c5ab1e0f3e493a8276373940c2a9fed32b61b831b9f7565548b73b893c1c871ba7b3d19062eb6e7e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
9KB

MD5
66fd82c313ad95116c2cd90bf039788b

SHA1
3822950748cbcd373701959e95bc3ca226417264

SHA256
0df5006c7669349456a0cecec5883cb1f0a0bf205b17df1b36f325a436d089a7

SHA512
b56d386c2612fbfdc29d24f2a59d01120bd43123471374db091406901ee09b653963dfc6f793c55ff7ad47949954c4a5265f2e7695c949d45f634669a9eed3a0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
defdaa1c4052e829834f8051c3db6353

SHA1
aade36b21a53a6e5360cc069f25a7bd22bfaed8c

SHA256
fb12208a5f8adb6afd0631c94c4767c27c5466fd4a996445d0c254788358dc93

SHA512
966977f960ed5f0160872316a052d3e3461c32119287f228ce73e7d537edd51befa25d4359f6122b2236b643dfd46dd9f5fbdb6668646b184ba0afa1d51d6cfa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
3f4be51def770f19b531b89021c0c4ef

SHA1
ae89e752fe42d9e319db080a520409834e63f554

SHA256
cf9a3dcc0824dbb6aba47f3e616c43896922fe0b26709614d679d0d723d6a7dd

SHA512
99f5fcbf774eec8d762d1ce4d8ce53e185b8913cdcb70b4a3bdb5f6228b5f17a8d6aaf95c1a3d7202075fb4cb9fc03f63683613a2950652d340235d3c1c764ff

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
0af973d2f952ad0f7215e03179404eb3

SHA1
70439cc0bc8eec921a86381948af9c03a7cfaabd

SHA256
c4c066ca8a09f196f838a8f4079cab4a11e5c913239a5d493a0ae9edc0b42bcd

SHA512
26234d71ca97629cd1e64cc72a43f233fa9091a69deab7efc9fcf9279923b541b1ff12278ce530f77a3de5a38140432afe726688e9f06fb065278fb95eb67806

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
9KB

MD5
459f811f7533d91f1e1ce6ebb4be7765

SHA1
960d4fd4f7066e3931654c2a49fb9eca1e222f9f

SHA256
b5293c0e8113b43d06ee2d046260c6a58f6b191ac02453ddbea1815bb97c104c

SHA512
d32809bab786f8b805f53a208af0d42b82d1e4175909a5cf8f1e63b989bde38799fb452a542cb2d6bb588ce895e7760e5436b5cdc84a4b62e69590b7ddf142ac

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
b015871f25abc9a44889b392fef2bb17

SHA1
d4995f6d854ef79fc6c82ae9fedf3c9c59d804f7

SHA256
5bfd0c4eb3f7a5f928d625dff4c09c0c15898e6b415b6d58ed04ceb70af8c2ff

SHA512
be1652128df01c9721928cacd990c4aeb9e517e9938c15009f8b2e2bc0aa43a886cc62f3ce01c0cdd227ba319d9265717c7f12fa4895e45d49c11872aed26108

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
8076d8e03e37ab28b8fc5e57a374814b

SHA1
4a72f30fc7b489671d45ffe5bc8b600738a8fa68

SHA256
39dc7497920f4c74ee5ea1b8e78fbb269d3d9bfc94c14470ae0ebb183e396a81

SHA512
828188f8b1e5b92bcb339814ff3c68dd76b2d4f985af3f848c005f806425344447d10f4bac00123b136b31ea9fe7f6ebaeac95cc549e172901a1c5d75f0c7892

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
08198f5f6510080cad4a27aabd3bf78a

SHA1
8e84f9ba3274e1b786ed7ad0420a24b49cfe9f2b

SHA256
bd5947af8914a22964916b6e13e92ebaad8d94d5f380a7e0be8e3ab89109b63e

SHA512
56f4c5a30764e9145da1d0015dc1f89f0c4712e0cba50a4bac4a4b4df0e409ba53838f4d438e384aa1c7a0e43be0254de10e3797ed97862764fac4b042533160

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
14ae605bd3d1a1ba150ca8eedab3707a

SHA1
bb7592c56601b360671c2b3a320f878220e4020f

SHA256
d235f57460d019c29803574bddc3ea245ea1d4eaede6d5770209b7f43c0e41fd

SHA512
93c486fc968cb6a297ad4e0498b1fef3315efec95dc03ccae56bd2251404338f542c9a0acd23f67b047f1d7fdf3d54883a839068a68b4560a12c20d72a13c4b1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
206df8d108e030ce6844f17919b46af2

SHA1
56f89ccb0656a2c4cb55b61056e4a6e131442779

SHA256
082150efd6dd6b91f667cb12f75ba45236942e56e136f46be70f1b7be34054ee

SHA512
c65ab919ace4bd1e0e2793f58b306328454d24137643cc47bd87c847fe94e9807f4b39a7fd43887fc8bb119be070ca4016d06e02f2f6e4c6d29d43a135d873bd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
565fce38687112958cafc6606d7be80c

SHA1
77aef68f2d229cd1dcd68e9f6322399ab7f13e5e

SHA256
e2cfbb49920cf080dff6f76c17646cfb6f97869410869980be07ffc98c2491be

SHA512
ba5d6ab2e740bfc641c6e49d79d0251ea0f70e038fd64bef88277c0e57d78ca2c7bbccd5bc6516598d9ac17997502441a0862e858f11949f8744d9246e2a5cfb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
36293155cbec5b3de0d4ea0caa0bffbf

SHA1
cfb0a6e75a7ecc9c8655121c872b6f7c701258ca

SHA256
dd1e214c63ae2e288c15413a30f98e33dbce9855c98dbaa8095805fa3c6d33c8

SHA512
08d51270b1cecf8131b5d9376a5fe0fb02901ff9077f40b0fd1e7e9f99df807eaeb31c9e44e80ef6982e90b9f624ad7b7aba347be70a19b228005fd515f18e68

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
138c8094e71b9013a47da886c0a9d145

SHA1
0db6b8f9bec6a2e305e30e6e0f574efe947cf046

SHA256
f4e62716162b19d59d7be2802296f99eb45a7e4d152dc3fdefe9034ffef78e9f

SHA512
2d6fa8e29a344a58fa4ce530af6938ba506d6189fc0d74224621256bc9c1e0c32728de8bfc52db26d340ac16d24b32f7ea3e5f31be22f7f589559f955da5c8aa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
aab4ec7f272acdaedb2645a0692c96b2

SHA1
a86a7b4a298e244f5e447eb7fb977d5beded4ce3

SHA256
db57977105163121e7c65ebfb33ffebf44318bc02ea3af9ec9eae3a5ef198e1f

SHA512
77ae2e0c0b7ab317f74bed5df37d050cc4cc4afd56df99e3809e4d44610654fcf12a16b06d7c7e4f27706eb8815c41604722f870a16c213bf1556b46c052998f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
a9d73a67508ebf55f6e63f320ebeb9c2

SHA1
0817e55f0e4f402759f48f8054c50039e0a9e10a

SHA256
7e075c877010e5ba7959a52dc24c215eab87fc2fa6a578889db75eae7cee7ef9

SHA512
08d3dec6920d5648d284e83521bcad2e2d949729f2e8b2604a479b1abe40450d29130cf2f050abfab3b3de653a78ceecca7bd0387221a1a96b689294b8ebcfa2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
7450ee2f980646cf45f610cd87c451a9

SHA1
32c49d084407311dfde3de60b298fb116aea92d1

SHA256
d14a1cede4215c39ed6c7f63d602d6cb2fed4a35f0f4b5385e1532743c131256

SHA512
5ff11a4fcf6aed586f4919a5879c2c98b66451a4b08ef12e6acd7c759013d8ce4d12787f82a4da496418c3e9b70b2d891022ca3770f24fc7f5b9056dedce352a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
dd21a61eff480d3b3c5c5b86ccdaf96f

SHA1
738c9ef1163e6f4448b4009f1f6f9efd07990fae

SHA256
e0feba50512aace9f71f0f261cfc93cef8f22f05646cef82b7538f7b841261c6

SHA512
b75c2f87c9abf42d87e239e7c42950fc0a14ac8bd766560ce4d410f7665101f68b21c6442330bd55e6a9e33fe4a44da9569581a5e4853c4a47622523f08c02a3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
f44f1dcac7fe1b490d71cfba2ffc256b

SHA1
81382b75f26cef96b87c41a7ed1f9bace7bdb6fc

SHA256
2807e287a9157baaa0baeb525a2d47b02821fe6c56325fe4cfad34d57b39f7e7

SHA512
17d5cf263c42b28e8cff66d72195f49c49fe817db5736ee3e4640f6661bb179e04a3fb74f7c3ddd6be464cbec6c4a16efc67b009fa56d584bff7d1a8e544685a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
9239c7333a08ae49e05af54509811c5f

SHA1
2d8ad8929e3cececcba3cc582316692422899c6e

SHA256
86d6b9ef6589c26c209fb3d17762930618fb7c1906b5c1cadc8b44dceb763054

SHA512
6c2649154e4cc0135b51e38a8edc388f52867dabe9f75209686b56f84430080b182a089c91d3ed8f6efc60a8af2739995c8281d86ef468892bbf1c18c308209f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\4304b4b8964d2f8e7e857ad412f4b56a755400fb\b340883a-1b9f-489c-9852-f571e6b07185\index-dir\the-real-index

Filesize
192B

MD5
4a3f3bba97572c78f524bdfe5073be39

SHA1
048e7158609b97610dd780ce70817eb0bf90ae65

SHA256
9260dd960d029981483adb5ae70cea49109b2b0ee9d326b7caad2af4668f8f49

SHA512
99860a71677d7061af2da71bcbfb0287fc5ca56ee6f82be562ce21e17dcc0b34b6f4841fb5afbacba562b1a8828d4dd3cc24475d98f7639fdea6d2b47f850a1d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\4304b4b8964d2f8e7e857ad412f4b56a755400fb\b340883a-1b9f-489c-9852-f571e6b07185\index-dir\the-real-index~RFe5decd4.TMP

Filesize
48B

MD5
3867941a07ab615f47e2a8d3907a1352

SHA1
2c4fdb274d9402b610be54914c395ff31058c6bb

SHA256
a3a8771c28c9a9ea054d486d75d7e2fad570fda6f403b2c0826158d7b018a76f

SHA512
8b064ef5253ecd60ad15f2d5cf7e52798cc72e58f994dd1915e683c0c42e25901c3899f57896d9cbd98eec84605ac381033c7f3f1364e1e4757280deea47e9cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\4304b4b8964d2f8e7e857ad412f4b56a755400fb\e578aed8-36ee-484f-8607-a4f6b238a591\index-dir\the-real-index

Filesize
72B

MD5
6bff884274cc86702d412ef14ea8ccda

SHA1
ed1be4cfd4c85518631b5f691134900142aa0e7a

SHA256
b8afee90b78cf92bf0fa2b5acf5df35388affb95f62eab9b9bc06db1d1038beb

SHA512
4193d0cd7b18fab31035180bbebebebcfc51e586f7a1aba8184de747ddd0891848a198ef1eda25642f3d998bcfbba43fbd4c563191fca54118cb178211dbc702

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\4304b4b8964d2f8e7e857ad412f4b56a755400fb\e578aed8-36ee-484f-8607-a4f6b238a591\index-dir\the-real-index~RFe5de12b.TMP

Filesize
48B

MD5
acab44f02f50c59ab4401547ad6ab2f4

SHA1
5a8887cc1f61e4ea3793c8a64db58b926484f3c5

SHA256
161d8dbb071ee8016760b2c63a01bc92761ed22b7cc42460f61e6eac26ab2b41

SHA512
e9afdc1c57cacdcf8ca1bd8e1d1395d5c37c60b13adc0fe4f251ca185014f0024226b5faa37e0c2745f3daf96a8cdf0d1a0c99855ec670e59f055477b2aed5b9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\4304b4b8964d2f8e7e857ad412f4b56a755400fb\index.txt

Filesize
233B

MD5
d10b6d2447ea498582e1e0d489b040e3

SHA1
6c2cae174b95d293bd988c44b92a6c8a2bffa9ac

SHA256
ba533f38620a2346eaa4dd9710cc3cf3d97d0fb2926b0af0423239b481a20086

SHA512
acf3f2019a95a83da5c02ac0586d98d68e03e35b05e3fd1348478539cc9f4d37a4304e07bce34ba2fe88adcade243595cc9067bc2a6d902a032b0cc0e76deacc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\4304b4b8964d2f8e7e857ad412f4b56a755400fb\index.txt

Filesize
228B

MD5
f15f1d3e28982b2c94de844b4cd5b776

SHA1
38abc05a4ab47daa70b68173ce79848fa9c9bd38

SHA256
41fb62c7229e9ad5d6da97c24ee05a06065896d77e5f20c78ebc5e3a683ad0e9

SHA512
7623522cd651fd779c85a5e8fca07ae92b3d0fb1970187f9b2ce5f3ef93429ca61469b62f2223a424dd2990c8eea66039961bb1d1070ab74867d3b65af3ebbbb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\4304b4b8964d2f8e7e857ad412f4b56a755400fb\index.txt~RFe5d95ca.TMP

Filesize
146B

MD5
53c47ebd15ba8843e071323ceca64ca0

SHA1
3e5e88c31db90ceb7a28586f592cad545178b78e

SHA256
2df06890d2dc6f4acb8bfe2c84ffadb9840960cc62429c5ec2ceda656f31c0b2

SHA512
6624642b638e65dbec3411120ca79a27f5f955582de82d4c36e5488a9ff7307b20c2b3767ecf2265cd78be8b0bf7e46ec11931412e46d7ad379684d82eb87f6d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\MANIFEST-000001

Filesize
41B

MD5
5af87dfd673ba2115e2fcf5cfdb727ab

SHA1
d5b5bbf396dc291274584ef71f444f420b6056f1

SHA256
f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4

SHA512
de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
192B

MD5
f7935248b46d70c683ea9abf44001adc

SHA1
935057690b7455cbf95cd07ffce40f23fdf97a93

SHA256
2229ecd6275b1544d4316d09c561cac0464ec6a767083abd4c2789b3ed745254

SHA512
9a5da65ccab0ed98601cfdadacc81913cd1ed6e6e72ad61117ecdde8b6fd6729edc245e721eeb8b789ea4137000d75ec48c1476f3afd7e612a0adfb300c95b5f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5ddd53.TMP

Filesize
48B

MD5
408adbbb4a1ceb65b67fe41752627cdf

SHA1
658ed6970922c5fe586fc38101ae2f2e559ee9c1

SHA256
3ec5e8296791ca37008b1ddb9e397251953e1a96c38e235f56a469fdd4b47586

SHA512
3579690955e86b70ac503e78db80d8ceee3654b2b9c0eb3bea61e30b5fd7a8cb839128717fd7fdc8408df0d2094100ac21f6d89aaaeb71b9d76f82367694be91

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
128KB

MD5
80b1270e5c39ec8f8127db718588cbe5

SHA1
d044a4a2fb5929ccadc8e985bd25ecc0d45806dc

SHA256
047a51cdd0ec288994276d8432115ff93e71295a58a8c83716b02c9f17fdaa24

SHA512
f2f013fb602746651de5b814c21059e0e1a0defc55148053730eeae1596a60e8cf171031e50496b3198e861ee72a661634e6bb3cba8190faa316a78094d741c8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
128KB

MD5
52f6eff6c981d2506adb610cb162898e

SHA1
6b45e7eb453ba52b30c6c9dd05b704cf0faf0431

SHA256
bb2fe74260b02f4f7d6e0ac7105131caa63aeb8f8ce5f510f42b6556e7f0b653

SHA512
4d14791ca049d50cdd054e21fb8074f746d1180ac9a5c583da6dc39639f9ff1df35ce0e569cbd2da37417c40120392e157420f136e4a23ee0c60f97b8dd59d73

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
128KB

MD5
d8e8b66934887da666bf63dbb01fb301

SHA1
1f9074204ffe860cd5760a34f281f587327cf461

SHA256
64607dd489d08bd6097a8fb170a9270d6c04199885490d64ed8fe6a46a4b8725

SHA512
3ea58fe98d70c4b4a55219707ca9c8b862600caa6e6a18eaaaadffd68aadf2f160adfa2139493ce36fd628857d2d79923e95f27bd1cffca19735fc2d99eecb53

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
128KB

MD5
a89f344a089ab6d139944de70837e902

SHA1
a23112094129cc572d8673125b48c2c1e76d0cba

SHA256
cb4c554a1072ee9984be1727b1c5f942ff20974f363a093662d818d2aa9ee812

SHA512
801f373018d55748ec9e2b3a706217a4b34fc0353b0dd9d4350006df2a61940c6b910c7c4b2d3850292f64193b98803371fba664eabe1355c6319c8efb8a41c5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
111KB

MD5
a848828c4b1239169651623014803861

SHA1
d7c3763ddf13b3eb43e0a110e67390cf346b8c21

SHA256
c411826dab3117d0d0584b0ed865936dff38f125e36b6f467813d3c64f701495

SHA512
7d9dd116e72558e5905ede39a14db83bbec21f4e287dd0ac84e80cc0371783b76d03316af36a45d0c0d2c6a93e4559b5801fff3696f8d6d536b78743f0d8bc16

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
116KB

MD5
e4ea26b7843a2afd532664f1cadfb7cc

SHA1
0aeaf4f42e36e260d5fbdc6ad5cfdfd4a934445c

SHA256
3384e133520f37eb9defcfc13a238c0f3b3b4698fe4b3d251a66da0cfbeb9005

SHA512
8287a9a4df4b9521e7510bced62b2840d21eb13149a37e1a2c9d88e3afacb21ea80c2f8d5e3e919e7799860b54569e58f1d475a4bbeabe6a43fe318b201ba00c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe5aa068.TMP

Filesize
110KB

MD5
4ac07594c963f14e763005c20dc6858e

SHA1
a085a80c2f88a97d3a2e3619ab62dbe8a7c13fd9

SHA256
11490afe56697c1eb670ef61f97423077fd1dfe9adb98e493467dc29aabbb6bd

SHA512
5e9c692b64d7a2d015257f2f4de76f85d779cb2dfb7add07d49cb04a1d018cbe8db62de628f7ce155bc0848f3ba597b25a875788db008dcd6c3da6df9ca29dc6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

Filesize
2B

MD5
f3b25701fe362ec84616a93a45ce9998

SHA1
d62636d8caec13f04e28442a0a6fa1afeb024bbb

SHA256
b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209

SHA512
98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

Filesize
8KB

MD5
d322aeb756053a8b515264ab065eb8fe

SHA1
0735b5e6f518f2a69f3cc4bc335b5e2daefadf52

SHA256
70f946e6d9efe68fb719721d48ade3cc191a0ca44583a977ed7aebc44613ac34

SHA512
a89fc9ed0eb39fa065ec9272a84093be2749770ab860857c7a06c1f92110b42d7f11f0d842e127d94fe16dc62afae9f965b96b19efbf401903623462ed5b057f

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

Filesize
10KB

MD5
e321767a4f8b85d332c181957b18b8e9

SHA1
a8a56975557780758dacb66dcb896df5a58c2e9f

SHA256
1051693051327430994ef8449433f8baaa8d1420cedc78cb0b6c9e4961a848e4

SHA512
111e412e92bbf01bb5b665737fc5b42dfd5be7790d348f9f66f7e964d7edf3fc92402dde230c203cb780fa2f9f429ca65c99aef8c2669741f4fa2e525c38aa43

Download Submit