Analysis

  • max time kernel
    299s
  • max time network
    295s
  • platform
    windows10-1703_x64
  • resource
    win10-20240404-en
  • resource tags

    arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
  • submitted
    09/06/2024, 07:33

General

  • Target

    https://t.co/s2eVNBcg29

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Modifies data under HKEY_USERS 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 4 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 3 IoCs
  • Suspicious use of AdjustPrivilegeToken 64 IoCs
  • Suspicious use of FindShellTrayWindow 26 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://t.co/s2eVNBcg29
    1⤵
    • Enumerates system info in registry
    • Modifies data under HKEY_USERS
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:516
    • C:\Program Files\Google\Chrome\Application\chrome.exe
      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xcc,0xd0,0xd4,0xa8,0xd8,0x7ffffc2a9758,0x7ffffc2a9768,0x7ffffc2a9778
      2⤵
        PID:1896
      • C:\Program Files\Google\Chrome\Application\chrome.exe
        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1524 --field-trial-handle=1768,i,8634042058998141343,12558043702322119899,131072 /prefetch:2
        2⤵
          PID:4904
        • C:\Program Files\Google\Chrome\Application\chrome.exe
          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2016 --field-trial-handle=1768,i,8634042058998141343,12558043702322119899,131072 /prefetch:8
          2⤵
            PID:512
          • C:\Program Files\Google\Chrome\Application\chrome.exe
            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2096 --field-trial-handle=1768,i,8634042058998141343,12558043702322119899,131072 /prefetch:8
            2⤵
              PID:204
            • C:\Program Files\Google\Chrome\Application\chrome.exe
              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2856 --field-trial-handle=1768,i,8634042058998141343,12558043702322119899,131072 /prefetch:1
              2⤵
                PID:3244
              • C:\Program Files\Google\Chrome\Application\chrome.exe
                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2868 --field-trial-handle=1768,i,8634042058998141343,12558043702322119899,131072 /prefetch:1
                2⤵
                  PID:1520
                • C:\Program Files\Google\Chrome\Application\chrome.exe
                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4384 --field-trial-handle=1768,i,8634042058998141343,12558043702322119899,131072 /prefetch:1
                  2⤵
                    PID:656
                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5276 --field-trial-handle=1768,i,8634042058998141343,12558043702322119899,131072 /prefetch:8
                    2⤵
                      PID:4492
                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5080 --field-trial-handle=1768,i,8634042058998141343,12558043702322119899,131072 /prefetch:8
                      2⤵
                        PID:824
                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.15063.0 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2200 --field-trial-handle=1768,i,8634042058998141343,12558043702322119899,131072 /prefetch:2
                        2⤵
                        • Suspicious behavior: EnumeratesProcesses
                        PID:4412
                    • C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
                      "C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
                      1⤵
                        PID:4828

                      Network

                      MITRE ATT&CK Enterprise v15

                      Replay Monitor

                      Loading Replay Monitor...

                      Downloads

                      • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416

                        Filesize

                        1KB

                        MD5

                        55540a230bdab55187a841cfe1aa1545

                        SHA1

                        363e4734f757bdeb89868efe94907774a327695e

                        SHA256

                        d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

                        SHA512

                        c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

                      • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416

                        Filesize

                        230B

                        MD5

                        b61763c35235539cea3bc0249480a430

                        SHA1

                        f06e2e71c5f2afbc2ee04bfc4f60f9e59334496c

                        SHA256

                        464cad8c875a09bbe2c427664d595334060bc85d30d1be858710f0ec68eb32b6

                        SHA512

                        a63a28ef8b860ce842d1eec57dc65ca4be4be77f73393b88396bad3a757e7ed5d7530540bf43619eb75e448682473450e0a4de413894c99b7bdfec68e16008d3

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

                        Filesize

                        3KB

                        MD5

                        2bc0ab9908d37a1850986eebcc7fa09b

                        SHA1

                        e056a1015d86046b03bc3692f859db22b40bd7a9

                        SHA256

                        988bd55463e514a3ba864da7f1ceffce98afa4fef94c2a6e929f06afcb858a51

                        SHA512

                        fd699b9388ec7875a481ff3671046d69c5b7df55bd4f2717aae448f57906a43cb7cbf51040464b45ef1b8579615a1d6da24c2304d6ca91e1ba3451bf108b2f6d

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

                        Filesize

                        1KB

                        MD5

                        1868fe8bcfdbe3dd5329c0964f9e8450

                        SHA1

                        886468bb6e09bcf382076e2010b11753a1c54cfd

                        SHA256

                        d8d0a5ae47a2f5956f0210bd3eb3ac9e4580d35128445597aacd1a8e295a8306

                        SHA512

                        b8bbbf2dfce0df1b8a7f104c0e6224dbb25f3e34637cd5c9c40169cc48c10580122f46d6b791d501ea370ad74a5b85f5312e7139d27a018940b45c0992e470c6

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        703B

                        MD5

                        378c360f26fcce1596ceffbe4a8680bf

                        SHA1

                        cfb4a0fd26fb6a889bcd5d36cda0db64750c1db8

                        SHA256

                        33a8cf1f5777ef384b3eda1b2a47ca5939640deb58f1d64aa5fda56c84c1ac18

                        SHA512

                        294453155a6fea089d5399926aaf00113bfdaf5db3bd1d574e30addfd895823ceb5fbecea0fe8f0ee031c0f757fb1b9ff561649e190c98267e95b3bf8eebb424

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        701B

                        MD5

                        ca996d3782f5a033e5dee85f54dfa2ca

                        SHA1

                        9408ed4e2c4af1f25de91831d7b63d45a109679a

                        SHA256

                        6b7734a0bbc18a629d14cd504becd71a07049b240d1c6f7f4425db94b177a93a

                        SHA512

                        a39bd84e4fad1b82e9082d613aa8070f6a0be5fa051c888dad3c4f96f0ffa35c9e5b00116a581e70af6bf04adffbb3d1eda5073da567d3b24e76c41f3d2f65d2

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        701B

                        MD5

                        afe4f2fe9dc9e63b1c688bcd547e4f8b

                        SHA1

                        9f56797b3a19efeb60c5b73e3cab1cb019aef906

                        SHA256

                        205594f5331a636199e7ee28f6b3d56fa0d2b6fd258c2a7c46701c17f0ab39d5

                        SHA512

                        95704634648f566e8eee25cd877bd7f7263a1d1268348ee0390f5a2d5912d99cad97829f26db3918fbca301904c3d2a4ab8d2a2b5d73df6786b1f2c3e7de4b37

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        701B

                        MD5

                        eddd7a1750119a2ee8784fa641e35f74

                        SHA1

                        c71f3ef3c4ebfbcb9c3357f9012dfde140d6d565

                        SHA256

                        9c775904dfe4167920d9f151d4581961723837964d9b1ee2f537c8c2a76eb14d

                        SHA512

                        84d0cc366d7847025615d9c26fecc380f4bb7c14af93b689dad7a2461c15929b254f9e23d33d25c2ae321af5116d9038bc8020e801b57b4da786ad3f5f45eaa5

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        703B

                        MD5

                        f195f5ea618a28b1eec76980ec2a224f

                        SHA1

                        81c929b8276408d46dc52cb3670d16a8b2b1bc6d

                        SHA256

                        56f0cc253d9af0295272a92023da2189a5fb517600748a3a33ee51f99f91087d

                        SHA512

                        aea5a7f107458d60522947ce6cc73927bb628bbbf9c1c89b634c5e48a11af1c06ec95dde25ce30186f0c2e94e3d752c12cc560df16c095d56bc0e8b6c6b5214a

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        701B

                        MD5

                        0e0d591aafe2fd391352721a0ffed5c4

                        SHA1

                        b84e6f3cc893df6bd1911068c0dc4908df369c3a

                        SHA256

                        7a98866ed9511d84cf601e36265d57ee235f8b7958bad10b78fc17201199a5ab

                        SHA512

                        89a5a00f01b4ae4d4448ea8bd8336037b1df0dec73904d1d14fae351f92afbf9315ee57d5dd882303afbc5a782a8044c3d2a89ffe4b57ad6c673e3bf5ff31363

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        703B

                        MD5

                        9df1f81faabe5aaa61e3f248d7fe19ca

                        SHA1

                        fe2c075c4f04b4f81f633d5103f93f6509656a8c

                        SHA256

                        963930066ee2fca1cb8fd030e77ba53db2e8da2efa5519614bfb918a10eb70e3

                        SHA512

                        b29be0c344b71cd74ebf594bfe8441d8c090a275d46c8d1b968b6662d60203627964badc0e7d6c7eb65210b56b1c6cf4a03f1393f9fb0cbf4e664d7632f342b4

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        703B

                        MD5

                        0456f5dc9897e50f7fcd1d5f43f2ff9b

                        SHA1

                        ffbea194289c9238f058462af55622c40b62a8d7

                        SHA256

                        b57e5fa9cfe6316f594a8e62e2ee63bd88e6ec5108c87b4c8925ff5493aa1c30

                        SHA512

                        e5dfe021e11790aa5216a961d4f6ff12fbc4176eea1a94888bfa85a9b77dbdd73764e1e193ecb6a2f4da2575a3d3bf358434003a176f9bf9e9257fa394657fde

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        701B

                        MD5

                        108bbea3559ac5e11900ede949d40910

                        SHA1

                        d3f5b21d4a24c5c1dbc3c8d42091416d7a1cdc9a

                        SHA256

                        023ad44d5fd0262b700120bb39ce979375b5057105b46e7f11e2addb8b8bc520

                        SHA512

                        4f8f3125f73aaee870343d9ad701ff7ea83993312c17c573d1a756155a174a2a70452eadd33075cb0aa66bdb81ef2dc77b0143b6671c841ff17d374002b112e1

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        703B

                        MD5

                        96c7154ea36c361a881857a5619044d1

                        SHA1

                        9922608920d3976b7605d9ca96566dbf07b9d582

                        SHA256

                        28cd733aa7c12ddacc21cf2f09eafe1e224c4c02b1b049ce7cbd0f1b33f41021

                        SHA512

                        db0c1cb1289edd6493d1e71c4c8df906f04826ac45e1dee981ec619c4670d4391b6d7b1798eabb48f25e65e871658e9b34415d378e25cae38d0667e52cf6b3bc

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        703B

                        MD5

                        5cf92ccc4c3cae061646be869a1ad5c0

                        SHA1

                        e4256054fc92b40636e9ca997d90f657549e603f

                        SHA256

                        6d026123609e3651145304bc1d4ad4eef32ba7d52f26e111fa24541dfd209df9

                        SHA512

                        154a7d2ed1063c8d310d9ee241ba83f84803f7c95db0bc3874bfb795d2f23aaf7ffe8eb88ab4b07ff913342be4e1d47c2289144ed9e75a2e75df553017ba910e

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        703B

                        MD5

                        8ef5ec387e1fdfe7c2cd9fee2ecdce69

                        SHA1

                        33937fde5d85d420181bfc8b28f24814e6f8128f

                        SHA256

                        cc95ef6f07e39e83c6107174df063ac2add98f62782b918f6022e775689034cb

                        SHA512

                        1d474e5e0dde0f09b4825de7e710e8985e1de9d430b2c1dd758811916bcf0283923045ac0c647a75c28985d0501edf3ff6e597c40492bd35ebeeaa08a508a959

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        703B

                        MD5

                        ed6b4aa5ea43f5fe8300ebb796f411de

                        SHA1

                        ba64db2959bd1d297ed35982089f7274d1ca889f

                        SHA256

                        baec7bdcd632ece0a85ae3fd2176f38ca4a82c7ff330555135c78f6cc641a179

                        SHA512

                        7ab87116b527c2bb805ca62936c98e5dc242219350cab5ec9e804e31f4c3a09f40b22e26bc267ce4638b91e0cc78ccbbbe26e3ac69c458cfe0fbff6c50a46f95

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        703B

                        MD5

                        e6b79a4af3f9d9e93ca9e1b5b339f7d5

                        SHA1

                        5cfce73ce008cb26d632151f94cba148a2c3b244

                        SHA256

                        0bdbe54863707f2db827c86d8297ce852a048aec2e3d9d52cce6c7e8fc7b3411

                        SHA512

                        f0795d4d97def6177bf60686b0f9532343dd37e391b75e69639b28cbaee00c84f244e87a96ce4f5fddd7821f8717b078c39985846ac769f036e9e585c16e06ff

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        703B

                        MD5

                        047f3993530897e7a664a6b42d295322

                        SHA1

                        30f94565978067cadf20ab55c78b25f6886c0498

                        SHA256

                        4c7bc65ff7f91259210e8e5c42643aa7b816d8f4236ef7bb586ac7d6e1add913

                        SHA512

                        bb43a11e3c37940233fb34014783ced7b8fa2d62a84dc12b77e84673655121b588cd49220c9762c07f6609247fc047e7a96fc20b27263a8adbf00698a5044e38

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        703B

                        MD5

                        88a5f1e20841b6719917ec2daacb192f

                        SHA1

                        fca9ff551244d5ef20e5e80c34f99fe923600042

                        SHA256

                        bd7038c9b2eaf2dde7773e97d84bd432a3e281e533ba74593b81fd5b37a43ffe

                        SHA512

                        661112d24a596c65ce17794755cba2f00541188a6fb807af7a1a8a5542760b6daff41a1c3f168542a5b504f96d93208555bd5a099a1ac73daf52ba32a59f8d40

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        703B

                        MD5

                        c6ca73951843a905d8573a77926a3810

                        SHA1

                        29aa3a72a3445bd0f888963eb886c21c8c54dbef

                        SHA256

                        6cd7080a573ec82979a23b3f4c07c94708540078827d23d246792630814a41b6

                        SHA512

                        0563e198fb2824b274fc8410427b7a02378866b691a8141d35d00eb102269d11d01185be138c55207934f59f31d98c6125c74939ff7c54518e11c592b65b5949

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        703B

                        MD5

                        d2cecafb9a5879baee98cbc18a0d2294

                        SHA1

                        9847e0cb272e462894730a23b26bede2584828fa

                        SHA256

                        2139350726d6db07f1b5e71a1bb441d716ca162620d8883c56cf60e9404b41ce

                        SHA512

                        134b186cc825266ffcc34348efbba1c3be03588650b175e9b580344e6b5bb014de3afb92af9414f73eb15b2619b68ce7d7e1f98bdeea5442b5079923879a86f7

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                        Filesize

                        703B

                        MD5

                        249402591075cceee8c4e8a99e78bc9f

                        SHA1

                        8a3f0c853c4ef9600d6b077621cd3dfafccc4479

                        SHA256

                        575ec240b2d8485c55c5eacdf0caf29a51777473a6678e0a79556012a3f0fa16

                        SHA512

                        21a0a2929761334c0124aaf9ff4774190646c889e07a6c8c88bc4860c44c5f4768c4db0293524618473cf47efff8870ddc7a0f743a1c58ffa7e843a326d976c9

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                        Filesize

                        6KB

                        MD5

                        4921b8c7d691697f24a91271e8a6734f

                        SHA1

                        92ff647fe383a83a7b0fd49b51a0b8777aa190ee

                        SHA256

                        bd73303b505a804f0bc9b9d8cfadc598d086dd0b5155b92b2749ec79c0e687ed

                        SHA512

                        da3be7ded8af97312e401c6f36d427c83fac2d2341d4bf8264af53825981f34e229051a48e5e96a327795b0201534fb085532a1e03ae9333381c00a42cde566d

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                        Filesize

                        6KB

                        MD5

                        fbfafe9638b822d98a371ff457e79983

                        SHA1

                        b1b474cbb59a4a28f304e08df6a55e214e69d948

                        SHA256

                        c38d8a7433ac7ffe028a98e271a37197ecf7a5448d641f48738e12f65e6bcbe5

                        SHA512

                        60a3fc85cdd0f7587f9db28e184377fa02c9aca2584b84064d45b1be7a29a4b17bdfa200498e0098a2fe7ee3df899de4f9a0d3eaf042b5ac49cdc8f397c89fcc

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                        Filesize

                        6KB

                        MD5

                        ddba607345a5241a29fcf0c2927ff1b0

                        SHA1

                        3dcd14478e5237e1865489a2de8475e4b090fe9f

                        SHA256

                        2e1950d22621bb0774b8c6d9a522509d0811213aa1bff1e37355721dec1b9af6

                        SHA512

                        33db9fcb5c0f6c8e000414f8df58ca1cc80fd0e7c3f3693aa8c1a6e54e2de234f0010ffe5278bcd909df2e7301e71f44c75553ec26cfcfd8c493cb09a486ebec

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                        Filesize

                        136KB

                        MD5

                        37ab933832b09174066bf01e98073358

                        SHA1

                        22c2536cd24a2f73b764029aeb07d05c2540d2d5

                        SHA256

                        e949efc8900f23f2b6f18844a56d59ba071e64bfcec4f1ad893fda2bbd1871a8

                        SHA512

                        d656325ed37d01cf4addb2aebc14f195ac3e08f1087797081ecf5c39e38091e4e2c5956586612817adeade11c295b45318a0e5a73275f11e1a1be89ce1b3561c

                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

                        Filesize

                        2B

                        MD5

                        99914b932bd37a50b983c5e7c90ae93b

                        SHA1

                        bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

                        SHA256

                        44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

                        SHA512

                        27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd