Malware Analysis Report

2024-10-16 06:32

Sample ID 240609-n3vzcaba24
Target https://youareanidiot.cc
Tags
evasion
score
4/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
4/10

Threat Level: Likely benign

The file https://youareanidiot.cc was found to be: Likely benign.

Malicious Activity Summary

evasion

Application makes screenshots during execution. Possible data exfiltration.

Resource Forking

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-09 11:55

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-09 11:55

Reported

2024-06-09 11:59

Platform

macos-20240410-en

Max time kernel

191s

Max time network

194s

Command Line

[sh -c sudo /bin/zsh -c "/Applications/Google\ Chrome.app/Contents/MacOS/Google\ Chrome --simulate-outdated-no-au='Tue, 31 Dec 2099' --new-window https://youareanidiot.cc"]

Signatures

Application makes screenshots during execution. Possible data exfiltration.

Description Indicator Process Target
N/A /usr/sbin/screencapture -zsuis_msg-com.apple.screenshot.launcher -uUpi N/A N/A

Resource Forking

evasion
Description Indicator Process Target
N/A "/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Frameworks/KeystoneRegistration.framework/Helpers/ksinstall" "--install=/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Frameworks/KeystoneRegistration.framework/Resources/Keystone.tbz" N/A N/A
N/A /System/Library/Frameworks/Security.framework/Versions/A/Resources/CloudKeychainProxy.bundle/Contents/MacOS/CloudKeychainProxy N/A N/A
N/A /System/Library/PreferencePanes/Wallet.prefPane/Contents/Resources/walletAvailabilityCheckTool N/A N/A
N/A /System/Library/PreferencePanes/TouchID.prefPane/Contents/Resources/AllowPasswordPref N/A N/A
N/A /System/Library/PrivateFrameworks/StorageKit.framework/Resources/storagekitd N/A N/A
N/A /usr/bin/tar -Oxjf "/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Frameworks/KeystoneRegistration.framework/Resources/Keystone.tbz" GoogleSoftwareUpdate.bundle/Contents/Info.plist N/A N/A
N/A /System/Library/PreferencePanes/ClassroomSettings.prefPane/Contents/Resources/ClassroomSettingsVisibilityCheckTool N/A N/A
N/A /System/Library/PreferencePanes/Profiles.prefPane/Contents/Resources/CPPrefPaneEnabledTool N/A N/A
N/A /System/Library/PreferencePanes/Sidecar.prefPane/Contents/Resources/sidecarPrefCheck N/A N/A

Processes

/bin/sh

[sh -c sudo /bin/zsh -c "/Applications/Google\ Chrome.app/Contents/MacOS/Google\ Chrome --simulate-outdated-no-au='Tue, 31 Dec 2099' --new-window https://youareanidiot.cc"]

/bin/bash

[sh -c sudo /bin/zsh -c "/Applications/Google\ Chrome.app/Contents/MacOS/Google\ Chrome --simulate-outdated-no-au='Tue, 31 Dec 2099' --new-window https://youareanidiot.cc"]

/usr/bin/sudo

[sudo /bin/zsh -c /Applications/Google\ Chrome.app/Contents/MacOS/Google\ Chrome --simulate-outdated-no-au='Tue, 31 Dec 2099' --new-window https://youareanidiot.cc]

/bin/zsh

[/bin/zsh -c /Applications/Google\ Chrome.app/Contents/MacOS/Google\ Chrome --simulate-outdated-no-au='Tue, 31 Dec 2099' --new-window https://youareanidiot.cc]

/usr/libexec/dmd

[/usr/libexec/dmd]

/Applications/Google Chrome.app/Contents/MacOS/Google Chrome

[/Applications/Google Chrome.app/Contents/MacOS/Google Chrome --simulate-outdated-no-au=Tue, 31 Dec 2099 --new-window https://youareanidiot.cc]

/usr/libexec/xpcproxy

[xpcproxy com.apple.GameController.gamecontrollerd]

/usr/libexec/gamecontrollerd

[/usr/libexec/gamecontrollerd]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/chrome_crashpad_handler

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/chrome_crashpad_handler --monitor-self-annotation=ptype=crashpad-handler --database=/var/root/Library/Application Support/Google/Chrome/Crashpad --metrics-dir=/var/root/Library/Application Support/Google/Chrome --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=OS X --annotation=prod=Chrome_Mac --annotation=ver=101.0.4951.54 --handshake-fd=5]

/usr/bin/profiles

[/usr/bin/profiles status -type enrollment]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Safari.2028]

/Applications/Safari.app/Contents/MacOS/Safari

[/Applications/Safari.app/Contents/MacOS/Safari]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Frameworks/KeystoneRegistration.framework/Helpers/ksinstall

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Frameworks/KeystoneRegistration.framework/Helpers/ksinstall --install=/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Frameworks/KeystoneRegistration.framework/Resources/Keystone.tbz]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Safari.History]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/developer_id_certificate_reauthorize

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/developer_id_certificate_reauthorize com.google.Chrome]

/System/Library/PrivateFrameworks/SafariShared.framework/Versions/A/XPCServices/com.apple.Safari.History.xpc/Contents/MacOS/com.apple.Safari.History

[/System/Library/PrivateFrameworks/SafariShared.framework/Versions/A/XPCServices/com.apple.Safari.History.xpc/Contents/MacOS/com.apple.Safari.History]

/usr/bin/tar

[/usr/bin/tar -Oxjf /Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Frameworks/KeystoneRegistration.framework/Resources/Keystone.tbz GoogleSoftwareUpdate.bundle/Contents/Info.plist]

/usr/libexec/xpcproxy

[xpcproxy com.apple.WebKit.WebContent.E7C2AF8F-3601-4F4D-AC31-BB598B75B0A3 533]

/System/Library/Frameworks/WebKit.framework/Versions/A/XPCServices/com.apple.WebKit.WebContent.xpc/Contents/MacOS/com.apple.WebKit.WebContent

[/System/Library/Frameworks/WebKit.framework/Versions/A/XPCServices/com.apple.WebKit.WebContent.xpc/Contents/MacOS/com.apple.WebKit.WebContent]

/usr/libexec/xpcproxy

[xpcproxy com.apple.geod]

/System/Library/PrivateFrameworks/GeoServices.framework/Versions/A/XPCServices/com.apple.geod.xpc/Contents/MacOS/com.apple.geod

[/System/Library/PrivateFrameworks/GeoServices.framework/Versions/A/XPCServices/com.apple.geod.xpc/Contents/MacOS/com.apple.geod]

/usr/libexec/xpcproxy

[xpcproxy com.apple.siri.context.service]

/System/Library/PrivateFrameworks/ContextKit.framework/Versions/A/XPCServices/ContextService.xpc/Contents/MacOS/ContextService

[/System/Library/PrivateFrameworks/ContextKit.framework/Versions/A/XPCServices/ContextService.xpc/Contents/MacOS/ContextService]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (GPU).app/Contents/MacOS/Google Chrome Helper (GPU)

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (GPU).app/Contents/MacOS/Google Chrome Helper (GPU) --type=gpu-process --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --gpu-preferences=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 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=21]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=network --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=21]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-GB --service-sandbox-type=utility --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=21]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Alerts).app/Contents/MacOS/Google Chrome Helper (Alerts)

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Alerts).app/Contents/MacOS/Google Chrome Helper (Alerts) --type=utility --utility-sub-type=mac_notifications.mojom.MacNotificationProvider --lang=en-GB --service-sandbox-type=none --message-loop-type-ui --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072]

/usr/libexec/xpcproxy

[xpcproxy com.apple.geod]

/System/Library/PrivateFrameworks/GeoServices.framework/Versions/A/XPCServices/com.apple.geod.xpc/Contents/MacOS/com.apple.geod

[/System/Library/PrivateFrameworks/GeoServices.framework/Versions/A/XPCServices/com.apple.geod.xpc/Contents/MacOS/com.apple.geod]

/usr/libexec/xpcproxy

[xpcproxy com.apple.secinitd]

/usr/libexec/secinitd

[/usr/libexec/secinitd]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer)

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer) --type=renderer --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --display-capture-permissions-policy-allowed --lang=en-GB --num-raster-threads=1 --enable-zero-copy --enable-gpu-memory-buffer-compositor-resources --renderer-client-id=7 --launch-time-ticks=291626225 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=59]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer)

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer) --type=renderer --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --display-capture-permissions-policy-allowed --lang=en-GB --num-raster-threads=1 --enable-zero-copy --enable-gpu-memory-buffer-compositor-resources --renderer-client-id=6 --launch-time-ticks=291841126 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=59]

/usr/libexec/xpcproxy

[xpcproxy com.apple.SafariLaunchAgent]

/Library/Apple/System/Library/CoreServices/SafariSupport.bundle/Contents/MacOS/SafariLaunchAgent

[/Library/Apple/System/Library/CoreServices/SafariSupport.bundle/Contents/MacOS/SafariLaunchAgent]

/usr/libexec/xpcproxy

[xpcproxy com.apple.nehelper]

/usr/libexec/xpcproxy

[xpcproxy com.apple.ViewBridgeAuxiliary]

/System/Library/PrivateFrameworks/ViewBridge.framework/Versions/A/XPCServices/ViewBridgeAuxiliary.xpc/Contents/MacOS/ViewBridgeAuxiliary

[/System/Library/PrivateFrameworks/ViewBridge.framework/Versions/A/XPCServices/ViewBridgeAuxiliary.xpc/Contents/MacOS/ViewBridgeAuxiliary]

/usr/libexec/xpcproxy

[xpcproxy com.apple.spindump]

/usr/sbin/spindump

[/usr/sbin/spindump]

/usr/libexec/xpcproxy

[xpcproxy com.apple.tailspind]

/usr/libexec/tailspind

[/usr/libexec/tailspind]

/usr/libexec/xpcproxy

[xpcproxy com.apple.spindump_agent]

/usr/libexec/spindump_agent

[/usr/libexec/spindump_agent]

/usr/libexec/xpcproxy

[xpcproxy com.apple.akd]

/System/Library/PrivateFrameworks/AuthKit.framework/Versions/A/Support/akd

[/System/Library/PrivateFrameworks/AuthKit.framework/Versions/A/Support/akd]

/usr/libexec/xpcproxy

[xpcproxy com.apple.pbs]

/System/Library/CoreServices/pbs

[/System/Library/CoreServices/pbs]

/usr/libexec/xpcproxy

[xpcproxy com.apple.WebKit.WebContent.0AD6DA6C-5B4E-4172-85F5-2E532ACAE9AF 533]

/System/Library/Frameworks/WebKit.framework/Versions/A/XPCServices/com.apple.WebKit.WebContent.xpc/Contents/MacOS/com.apple.WebKit.WebContent

[/System/Library/Frameworks/WebKit.framework/Versions/A/XPCServices/com.apple.WebKit.WebContent.xpc/Contents/MacOS/com.apple.WebKit.WebContent]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Safari.SearchHelper 533]

/System/Library/PrivateFrameworks/SafariShared.framework/Versions/A/XPCServices/com.apple.Safari.SearchHelper.xpc/Contents/MacOS/com.apple.Safari.SearchHelper

[/System/Library/PrivateFrameworks/SafariShared.framework/Versions/A/XPCServices/com.apple.Safari.SearchHelper.xpc/Contents/MacOS/com.apple.Safari.SearchHelper]

/Library/Google/GoogleSoftwareUpdate/GoogleSoftwareUpdate.bundle/Contents/Helpers/ksadmin

[/Library/Google/GoogleSoftwareUpdate/GoogleSoftwareUpdate.bundle/Contents/Helpers/ksadmin --productid com.google.Chrome --print-tickets --store /Library/Google/GoogleSoftwareUpdate/TicketStore/Keystone.ticketstore]

/Library/Google/GoogleSoftwareUpdate/GoogleSoftwareUpdate.bundle/Contents/Helpers/ksadmin

[/Library/Google/GoogleSoftwareUpdate/GoogleSoftwareUpdate.bundle/Contents/Helpers/ksadmin -P com.google.Chrome --delete --user-store]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer)

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer) --type=renderer --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --extension-process --display-capture-permissions-policy-allowed --lang=en-GB --num-raster-threads=1 --enable-zero-copy --enable-gpu-memory-buffer-compositor-resources --renderer-client-id=8 --launch-time-ticks=300714741 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=71]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer)

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer) --type=renderer --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --extension-process --display-capture-permissions-policy-allowed --lang=en-GB --num-raster-threads=1 --enable-zero-copy --enable-gpu-memory-buffer-compositor-resources --renderer-client-id=12 --launch-time-ticks=300809336 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=66]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer)

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer) --type=renderer --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --extension-process --display-capture-permissions-policy-allowed --lang=en-GB --num-raster-threads=1 --enable-zero-copy --enable-gpu-memory-buffer-compositor-resources --renderer-client-id=10 --launch-time-ticks=301112421 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=79]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer)

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer) --type=renderer --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --extension-process --display-capture-permissions-policy-allowed --lang=en-GB --num-raster-threads=1 --enable-zero-copy --enable-gpu-memory-buffer-compositor-resources --renderer-client-id=11 --launch-time-ticks=301851844 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=81]

/usr/libexec/nehelper

[/usr/libexec/nehelper]

/usr/libexec/xpcproxy

[xpcproxy com.apple.CoreAuthentication.agent]

/usr/sbin/system_profiler

[/usr/sbin/system_profiler SPConfigurationProfileDataType -detailLevel mini -timeout 15 -xml]

/System/Library/Frameworks/LocalAuthentication.framework/Support/coreauthd

[/System/Library/Frameworks/LocalAuthentication.framework/Support/coreauthd]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-GB --service-sandbox-type=service --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=101]

/usr/libexec/xpcproxy

[xpcproxy com.apple.sysmond]

/usr/libexec/sysmond

[/usr/libexec/sysmond]

/usr/libexec/xpcproxy

[xpcproxy com.apple.bsd.dirhelper]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-GB --service-sandbox-type=utility --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=101]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-GB --service-sandbox-type=service --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=114]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-GB --service-sandbox-type=utility --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=114]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-GB --service-sandbox-type=service --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=114]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer)

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer) --type=renderer --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --extension-process --display-capture-permissions-policy-allowed --lang=en-GB --num-raster-threads=1 --enable-zero-copy --enable-gpu-memory-buffer-compositor-resources --renderer-client-id=19 --launch-time-ticks=323570596 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=66]

/usr/libexec/xpcproxy

[xpcproxy com.apple.neagent.878568F8-CCE5-4157-8315-22F20DC8FB0A]

/usr/libexec/neagent

[/usr/libexec/neagent]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer)

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer) --type=renderer --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --display-capture-permissions-policy-allowed --lang=en-GB --num-raster-threads=1 --enable-zero-copy --enable-gpu-memory-buffer-compositor-resources --renderer-client-id=20 --launch-time-ticks=328063035 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=122]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer)

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer) --type=renderer --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --display-capture-permissions-policy-allowed --lang=en-GB --num-raster-threads=1 --enable-zero-copy --enable-gpu-memory-buffer-compositor-resources --renderer-client-id=21 --launch-time-ticks=330087701 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=122]

/usr/libexec/xpcproxy

[xpcproxy com.apple.ReportCrash.Root]

/System/Library/CoreServices/ReportCrash

[/System/Library/CoreServices/ReportCrash daemon]

/usr/libexec/xpcproxy

[xpcproxy com.apple.security.cloudkeychainproxy3]

/System/Library/Frameworks/Security.framework/Versions/A/Resources/CloudKeychainProxy.bundle/Contents/MacOS/CloudKeychainProxy

[/System/Library/Frameworks/Security.framework/Versions/A/Resources/CloudKeychainProxy.bundle/Contents/MacOS/CloudKeychainProxy]

/usr/libexec/xpcproxy

[xpcproxy com.apple.ReportMemoryException]

/usr/libexec/ReportMemoryException

[/usr/libexec/ReportMemoryException]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer)

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer) --type=renderer --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --display-capture-permissions-policy-allowed --lang=en-GB --num-raster-threads=1 --enable-zero-copy --enable-gpu-memory-buffer-compositor-resources --renderer-client-id=22 --launch-time-ticks=343211736 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=122]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer)

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer) --type=renderer --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --display-capture-permissions-policy-allowed --lang=en-GB --num-raster-threads=1 --enable-zero-copy --enable-gpu-memory-buffer-compositor-resources --renderer-client-id=23 --launch-time-ticks=346433581 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=75]

/usr/libexec/xpcproxy

[xpcproxy com.apple.AddressBook.ContactsAccountsService]

/System/Library/Frameworks/AddressBook.framework/Executables/ContactsAccountsService

[/System/Library/Frameworks/AddressBook.framework/Executables/ContactsAccountsService]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-GB --service-sandbox-type=utility --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=80]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-GB --service-sandbox-type=service --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=77]

/usr/libexec/xpcproxy

[xpcproxy com.apple.TextInputMenuAgent]

/System/Library/CoreServices/TextInputMenuAgent.app/Contents/MacOS/TextInputMenuAgent

[/System/Library/CoreServices/TextInputMenuAgent.app/Contents/MacOS/TextInputMenuAgent]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-GB --service-sandbox-type=utility --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=77]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-GB --service-sandbox-type=utility --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=80]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-GB --service-sandbox-type=utility --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=77]

/bin/sh

[sh -c /usr/sbin/kextstat]

/bin/bash

[sh -c /usr/sbin/kextstat]

/usr/sbin/kextstat

[/usr/sbin/kextstat]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-GB --service-sandbox-type=utility --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=77]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-GB --service-sandbox-type=service --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=115]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-GB --service-sandbox-type=service --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=115]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer)

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper (Renderer).app/Contents/MacOS/Google Chrome Helper (Renderer) --type=renderer --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --display-capture-permissions-policy-allowed --lang=en-GB --num-raster-threads=1 --enable-zero-copy --enable-gpu-memory-buffer-compositor-resources --renderer-client-id=32 --launch-time-ticks=386558811 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=116]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-GB --service-sandbox-type=utility --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=116]

/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper

[/Applications/Google Chrome.app/Contents/Frameworks/Google Chrome Framework.framework/Versions/101.0.4951.54/Helpers/Google Chrome Helper.app/Contents/MacOS/Google Chrome Helper --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-GB --service-sandbox-type=utility --metrics-client-id=c4c0c7dc-66bc-4341-87b4-36b4665ab2e7 --shared-files --field-trial-handle=1718379636,r,775627585015018569,13549514212299060935,131072 --seatbelt-client=116]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Dictionary.1776]

/System/Applications/Dictionary.app/Contents/MacOS/Dictionary

[/System/Applications/Dictionary.app/Contents/MacOS/Dictionary]

/usr/libexec/xpcproxy

[xpcproxy com.apple.calculator.2132]

/System/Applications/Calculator.app/Contents/MacOS/Calculator

[/System/Applications/Calculator.app/Contents/MacOS/Calculator]

/usr/libexec/xpcproxy

[xpcproxy com.apple.siri.launcher.1708]

/System/Applications/Siri.app/Contents/MacOS/Siri

[/System/Applications/Siri.app/Contents/MacOS/Siri]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Siri.2292]

/System/Library/CoreServices/Siri.app/Contents/MacOS/Siri

[/System/Library/CoreServices/Siri.app/Contents/MacOS/Siri]

/usr/libexec/xpcproxy

[xpcproxy com.apple.AddressBook.1780]

/System/Applications/Contacts.app/Contents/MacOS/Contacts

[/System/Applications/Contacts.app/Contents/MacOS/Contacts]

/usr/libexec/xpcproxy

[xpcproxy com.apple.backup.launcher.1784]

/System/Applications/Time Machine.app/Contents/MacOS/Time Machine

[/System/Applications/Time Machine.app/Contents/MacOS/Time Machine]

/usr/libexec/xpcproxy

[xpcproxy com.apple.FontBook.1856]

/System/Applications/Font Book.app/Contents/MacOS/Font Book

[/System/Applications/Font Book.app/Contents/MacOS/Font Book]

/usr/libexec/xpcproxy

[xpcproxy com.apple.systempreferences.2140]

/System/Applications/System Preferences.app/Contents/MacOS/System Preferences

[/System/Applications/System Preferences.app/Contents/MacOS/System Preferences]

/usr/libexec/xpcproxy

[xpcproxy com.apple.findmy.1716]

/System/Applications/FindMy.app/Contents/MacOS/FindMy

[/System/Applications/FindMy.app/Contents/MacOS/FindMy]

/usr/libexec/xpcproxy

[xpcproxy com.apple.launchpad.launcher.2144]

/System/Applications/Launchpad.app/Contents/MacOS/Launchpad

[/System/Applications/Launchpad.app/Contents/MacOS/Launchpad]

/usr/libexec/xpcproxy

[xpcproxy com.apple.FaceTime.1860]

/System/Applications/FaceTime.app/Contents/MacOS/FaceTime

[/System/Applications/FaceTime.app/Contents/MacOS/FaceTime]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Maps.1864]

/System/Applications/Maps.app/Contents/MacOS/Maps

[/System/Applications/Maps.app/Contents/MacOS/Maps]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Chess.1724]

/System/Applications/Chess.app/Contents/MacOS/Chess

[/System/Applications/Chess.app/Contents/MacOS/Chess]

/usr/libexec/xpcproxy

[xpcproxy com.apple.mail.2576]

/System/Applications/Mail.app/Contents/MacOS/Mail

[/System/Applications/Mail.app/Contents/MacOS/Mail]

/usr/libexec/xpcproxy

[xpcproxy com.apple.exposelauncher.1868]

/System/Applications/Mission Control.app/Contents/MacOS/Mission Control

[/System/Applications/Mission Control.app/Contents/MacOS/Mission Control]

/usr/libexec/xpcproxy

[xpcproxy com.apple.PhotoBooth.2580]

/System/Applications/Photo Booth.app/Contents/MacOS/Photo Booth

[/System/Applications/Photo Booth.app/Contents/MacOS/Photo Booth]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Stickies.1872]

/System/Applications/Stickies.app/Contents/MacOS/Stickies

[/System/Applications/Stickies.app/Contents/MacOS/Stickies]

/usr/libexec/xpcproxy

[xpcproxy com.apple.QuickTimePlayerX.2584]

/System/Applications/QuickTime Player.app/Contents/MacOS/QuickTime Player

[/System/Applications/QuickTime Player.app/Contents/MacOS/QuickTime Player]

/usr/libexec/xpcproxy

[xpcproxy com.apple.iBooksX.1732]

/System/Applications/Books.app/Contents/MacOS/Books

[/System/Applications/Books.app/Contents/MacOS/Books]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Photos.1876]

/System/Applications/Photos.app/Contents/MacOS/Photos

[/System/Applications/Photos.app/Contents/MacOS/Photos]

/System/Applications/Podcasts.app/Contents/MacOS/Podcasts

[/System/Applications/Podcasts.app/Contents/MacOS/Podcasts]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Notes.1736]

/System/Applications/Notes.app/Contents/MacOS/Notes

[/System/Applications/Notes.app/Contents/MacOS/Notes]

/usr/libexec/xpcproxy

[xpcproxy com.apple.iChat.1880]

/System/Applications/Messages.app/Contents/MacOS/Messages

[/System/Applications/Messages.app/Contents/MacOS/Messages]

/usr/libexec/xpcproxy

[xpcproxy com.apple.TextEdit.2092]

/System/Applications/TextEdit.app/Contents/MacOS/TextEdit

[/System/Applications/TextEdit.app/Contents/MacOS/TextEdit]

/usr/libexec/xpcproxy

[xpcproxy com.apple.uikitsystemapp]

/System/Library/CoreServices/UIKitSystem.app/Contents/MacOS/UIKitSystem

[/System/Library/CoreServices/UIKitSystem.app/Contents/MacOS/UIKitSystem system_app_start]

/usr/libexec/xpcproxy

[xpcproxy com.apple.reminders.2592]

/System/Applications/Reminders.app/Contents/MacOS/Reminders

[/System/Applications/Reminders.app/Contents/MacOS/Reminders]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Image_Capture.1740]

/System/Applications/Image Capture.app/Contents/MacOS/Image Capture

[/System/Applications/Image Capture.app/Contents/MacOS/Image Capture]

/usr/libexec/xpcproxy

[xpcproxy com.microsoft.Word.2024]

/usr/libexec/xpcproxy

[xpcproxy com.apple.AccountProfileRemoteViewService 648]

/System/Library/PrivateFrameworks/AOSUI.framework/Versions/A/XPCServices/AccountProfileRemoteViewService.xpc/Contents/MacOS/AccountProfileRemoteViewService

[/System/Library/PrivateFrameworks/AOSUI.framework/Versions/A/XPCServices/AccountProfileRemoteViewService.xpc/Contents/MacOS/AccountProfileRemoteViewService]

/Applications/Microsoft Word.app/Contents/MacOS/Microsoft Word

[/Applications/Microsoft Word.app/Contents/MacOS/Microsoft Word]

/System/Library/PreferencePanes/ClassroomSettings.prefPane/Contents/Resources/ClassroomSettingsVisibilityCheckTool

[/System/Library/PreferencePanes/ClassroomSettings.prefPane/Contents/Resources/ClassroomSettingsVisibilityCheckTool]

/System/Library/PreferencePanes/Profiles.prefPane/Contents/Resources/CPPrefPaneEnabledTool

[/System/Library/PreferencePanes/Profiles.prefPane/Contents/Resources/CPPrefPaneEnabledTool]

/System/Library/PreferencePanes/Sidecar.prefPane/Contents/Resources/sidecarPrefCheck

[/System/Library/PreferencePanes/Sidecar.prefPane/Contents/Resources/sidecarPrefCheck]

/System/Library/PreferencePanes/TouchID.prefPane/Contents/Resources/AllowPasswordPref

[/System/Library/PreferencePanes/TouchID.prefPane/Contents/Resources/AllowPasswordPref]

/System/Library/PreferencePanes/Wallet.prefPane/Contents/Resources/walletAvailabilityCheckTool

[/System/Library/PreferencePanes/Wallet.prefPane/Contents/Resources/walletAvailabilityCheckTool]

/usr/libexec/xpcproxy

[xpcproxy com.apple.nfcd]

/usr/libexec/nfcd

[/usr/libexec/nfcd]

/usr/libexec/xpcproxy

[xpcproxy com.apple.assistantd]

/usr/libexec/xpcproxy

[xpcproxy com.apple.mobile.keybagd]

/usr/libexec/xpcproxy

[xpcproxy com.apple.icloud.searchpartyuseragent]

/usr/libexec/keybagd

[/usr/libexec/keybagd -t 15]

/usr/libexec/xpcproxy

[xpcproxy com.apple.adid]

/System/Library/PrivateFrameworks/CoreADI.framework/adid

[/System/Library/PrivateFrameworks/CoreADI.framework/adid]

/usr/libexec/searchpartyuseragent

[/usr/libexec/searchpartyuseragent]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Automator.2596]

/System/Applications/Automator.app/Contents/MacOS/Automator

[/System/Applications/Automator.app/Contents/MacOS/Automator]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Home.1744]

/System/Applications/Home.app/Contents/MacOS/Home

[/System/Applications/Home.app/Contents/MacOS/Home]

/usr/libexec/xpcproxy

[xpcproxy com.apple.VoiceMemos.1888]

/System/Applications/VoiceMemos.app/Contents/MacOS/VoiceMemos

[/System/Applications/VoiceMemos.app/Contents/MacOS/VoiceMemos]

/usr/libexec/xpcproxy

[xpcproxy com.microsoft.Excel.2032]

/Applications/Microsoft Excel.app/Contents/MacOS/Microsoft Excel

[/Applications/Microsoft Excel.app/Contents/MacOS/Microsoft Excel]

/usr/libexec/xpcproxy

[xpcproxy com.microsoft.Outlook.2036]

/Applications/Microsoft Outlook.app/Contents/MacOS/Microsoft Outlook

[/Applications/Microsoft Outlook.app/Contents/MacOS/Microsoft Outlook]

/usr/libexec/xpcproxy

[xpcproxy com.microsoft.onenote.mac.2040]

/Applications/Microsoft OneNote.app/Contents/MacOS/Microsoft OneNote

[/Applications/Microsoft OneNote.app/Contents/MacOS/Microsoft OneNote]

/System/Applications/Music.app/Contents/MacOS/Music

[/System/Applications/Music.app/Contents/MacOS/Music]

/usr/libexec/xpcproxy

[xpcproxy com.apple.AppStore.1900]

/System/Applications/App Store.app/Contents/MacOS/App Store

[/System/Applications/App Store.app/Contents/MacOS/App Store]

/usr/libexec/xpcproxy

[xpcproxy com.microsoft.Powerpoint.2044]

/Applications/Microsoft PowerPoint.app/Contents/MacOS/Microsoft PowerPoint

[/Applications/Microsoft PowerPoint.app/Contents/MacOS/Microsoft PowerPoint]

/System/Applications/TV.app/Contents/MacOS/TV

[/System/Applications/TV.app/Contents/MacOS/TV]

/usr/libexec/xpcproxy

[xpcproxy com.apple.iCal.1908]

/System/Applications/Calendar.app/Contents/MacOS/Calendar

[/System/Applications/Calendar.app/Contents/MacOS/Calendar]

/usr/libexec/xpcproxy

[xpcproxy com.apple.stocks.1768]

/System/Applications/Stocks.app/Contents/MacOS/Stocks

[/System/Applications/Stocks.app/Contents/MacOS/Stocks]

/usr/libexec/xpcproxy

[xpcproxy com.apple.ViewBridgeAuxiliary]

/usr/libexec/xpcproxy

[xpcproxy com.apple.accessibility.mediaaccessibilityd]

/System/Library/Frameworks/MediaAccessibility.framework/Versions/A/XPCServices/com.apple.accessibility.mediaaccessibilityd.xpc/Contents/MacOS/com.apple.accessibility.mediaaccessibilityd

[/System/Library/Frameworks/MediaAccessibility.framework/Versions/A/XPCServices/com.apple.accessibility.mediaaccessibilityd.xpc/Contents/MacOS/com.apple.accessibility.mediaaccessibilityd]

/usr/libexec/xpcproxy

[xpcproxy com.apple.mediaremoted]

/System/Library/PrivateFrameworks/ViewBridge.framework/Versions/A/XPCServices/ViewBridgeAuxiliary.xpc/Contents/MacOS/ViewBridgeAuxiliary

[/System/Library/PrivateFrameworks/ViewBridge.framework/Versions/A/XPCServices/ViewBridgeAuxiliary.xpc/Contents/MacOS/ViewBridgeAuxiliary]

/System/Library/PrivateFrameworks/MediaRemote.framework/Support/mediaremoted

[/System/Library/PrivateFrameworks/MediaRemote.framework/Support/mediaremoted]

/usr/libexec/xpcproxy

[xpcproxy com.apple.SiriUI.SiriUISetupXPC 644]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Safari.History]

/System/Library/PrivateFrameworks/SiriUI.framework/Versions/A/XPCServices/SiriUISetupXPC.xpc/Contents/MacOS/SiriUISetupXPC

[/System/Library/PrivateFrameworks/SiriUI.framework/Versions/A/XPCServices/SiriUISetupXPC.xpc/Contents/MacOS/SiriUISetupXPC]

/System/Library/PrivateFrameworks/SafariShared.framework/Versions/A/XPCServices/com.apple.Safari.History.xpc/Contents/MacOS/com.apple.Safari.History

[/System/Library/PrivateFrameworks/SafariShared.framework/Versions/A/XPCServices/com.apple.Safari.History.xpc/Contents/MacOS/com.apple.Safari.History]

/usr/libexec/xpcproxy

[xpcproxy com.apple.icloud.fmfd]

/usr/libexec/fmfd

[/usr/libexec/fmfd]

/usr/libexec/xpcproxy

[xpcproxy com.apple.iCloudHelper]

/System/Library/PrivateFrameworks/AOSKit.framework/Versions/A/XPCServices/com.apple.iCloudHelper.xpc/Contents/MacOS/com.apple.iCloudHelper

[/System/Library/PrivateFrameworks/AOSKit.framework/Versions/A/XPCServices/com.apple.iCloudHelper.xpc/Contents/MacOS/com.apple.iCloudHelper]

/usr/libexec/xpcproxy

[xpcproxy com.apple.studentd]

/usr/libexec/studentd

[/usr/libexec/studentd]

/usr/libexec/xpcproxy

[xpcproxy com.apple.keychainaccess.1820]

/System/Applications/Utilities/Keychain Access.app/Contents/MacOS/Keychain Access

[/System/Applications/Utilities/Keychain Access.app/Contents/MacOS/Keychain Access]

/usr/libexec/xpcproxy

[xpcproxy com.apple.ActivityMonitor.1800]

/System/Applications/Utilities/Activity Monitor.app/Contents/MacOS/Activity Monitor

[/System/Applications/Utilities/Activity Monitor.app/Contents/MacOS/Activity Monitor]

/usr/libexec/xpcproxy

[xpcproxy com.apple.MigrateAssistant.1824]

/System/Applications/Utilities/Migration Assistant.app/Contents/MacOS/Migration Assistant

[/System/Applications/Utilities/Migration Assistant.app/Contents/MacOS/Migration Assistant]

/usr/libexec/xpcproxy

[xpcproxy com.apple.bootcampassistant.1848]

/System/Applications/Utilities/Boot Camp Assistant.app/Contents/MacOS/Boot Camp Assistant

[/System/Applications/Utilities/Boot Camp Assistant.app/Contents/MacOS/Boot Camp Assistant]

/usr/libexec/xpcproxy

[xpcproxy com.apple.DiskUtility.2148]

/System/Applications/Utilities/Disk Utility.app/Contents/MacOS/Disk Utility

[/System/Applications/Utilities/Disk Utility.app/Contents/MacOS/Disk Utility]

/usr/libexec/xpcproxy

[xpcproxy com.apple.screenshot.launcher.1804]

/System/Applications/Utilities/Screenshot.app/Contents/MacOS/Screenshot

[/System/Applications/Utilities/Screenshot.app/Contents/MacOS/Screenshot]

/usr/sbin/screencapture

[/usr/sbin/screencapture -zsuis_msg-com.apple.screenshot.launcher -uUpi]

/usr/libexec/xpcproxy

[xpcproxy com.apple.ScriptEditor2.1828]

/System/Applications/Utilities/Script Editor.app/Contents/MacOS/Script Editor

[/System/Applications/Utilities/Script Editor.app/Contents/MacOS/Script Editor]

/usr/libexec/xpcproxy

[xpcproxy com.apple.DigitalColorMeter.1852]

/System/Applications/Utilities/Digital Color Meter.app/Contents/MacOS/Digital Color Meter

[/System/Applications/Utilities/Digital Color Meter.app/Contents/MacOS/Digital Color Meter]

/usr/libexec/xpcproxy

[xpcproxy com.apple.colorsync.useragent]

/usr/libexec/xpcproxy

[xpcproxy com.apple.appleseed.FeedbackAssistant.2152]

/usr/libexec/xpcproxy

[xpcproxy com.apple.storagekitd]

/usr/libexec/xpcproxy

[xpcproxy com.apple.mobileassetd]

/System/Library/CoreServices/Applications/Feedback Assistant.app/Contents/MacOS/Feedback Assistant

[/System/Library/CoreServices/Applications/Feedback Assistant.app/Contents/MacOS/Feedback Assistant]

/System/Library/PrivateFrameworks/StorageKit.framework/Resources/storagekitd

[/System/Library/PrivateFrameworks/StorageKit.framework/Resources/storagekitd]

/usr/libexec/xpcproxy

[xpcproxy com.apple.grapher.1808]

/System/Applications/Utilities/Grapher.app/Contents/MacOS/Grapher

[/System/Applications/Utilities/Grapher.app/Contents/MacOS/Grapher]

/System/Library/Frameworks/ColorSync.framework/Support/colorsync.useragent

[/System/Library/Frameworks/ColorSync.framework/Support/colorsync.useragent]

/usr/libexec/xpcproxy

[xpcproxy com.apple.BluetoothFileExchange.2108]

/System/Applications/Utilities/Bluetooth File Exchange.app/Contents/MacOS/Bluetooth File Exchange

[/System/Applications/Utilities/Bluetooth File Exchange.app/Contents/MacOS/Bluetooth File Exchange]

/usr/libexec/xpcproxy

[xpcproxy com.apple.ColorSyncUtility.1832]

/System/Applications/Utilities/ColorSync Utility.app/Contents/MacOS/ColorSync Utility

[/System/Applications/Utilities/ColorSync Utility.app/Contents/MacOS/ColorSync Utility]

/usr/libexec/xpcproxy

[xpcproxy com.apple.airport.airportutility.1788]

/System/Applications/Utilities/AirPort Utility.app/Contents/MacOS/AirPort Utility

[/System/Applications/Utilities/AirPort Utility.app/Contents/MacOS/AirPort Utility]

/usr/libexec/xpcproxy

[xpcproxy com.apple.audio.AudioMIDISetup.1812]

/System/Applications/Utilities/Audio MIDI Setup.app/Contents/MacOS/Audio MIDI Setup

[/System/Applications/Utilities/Audio MIDI Setup.app/Contents/MacOS/Audio MIDI Setup]

/usr/libexec/xpcproxy

[xpcproxy com.apple.colorsyncd]

/usr/libexec/colorsyncd

[/usr/libexec/colorsyncd]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Console.1836]

/System/Applications/Utilities/Console.app/Contents/MacOS/Console

[/System/Applications/Utilities/Console.app/Contents/MacOS/Console]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Terminal.2100]

/System/Applications/Utilities/Terminal.app/Contents/MacOS/Terminal

[/System/Applications/Utilities/Terminal.app/Contents/MacOS/Terminal]

/usr/libexec/xpcproxy

[xpcproxy com.apple.VoiceOverUtility.1792]

/System/Applications/Utilities/VoiceOver Utility.app/Contents/MacOS/VoiceOver Utility

[/System/Applications/Utilities/VoiceOver Utility.app/Contents/MacOS/VoiceOver Utility]

/usr/libexec/xpcproxy

[xpcproxy com.apple.systemprofiler]

/System/Applications/Utilities/System Information.app/Contents/MacOS/System Information

[/System/Applications/Utilities/System Information.app/Contents/MacOS/System Information]

/usr/libexec/xpcproxy

[xpcproxy com.apple.bootcampassistant.ExFATChecksum 711]

/usr/libexec/xpcproxy

[xpcproxy com.apple.xpc.roleaccountd]

/usr/libexec/xpcroleaccountd

[/usr/libexec/xpcroleaccountd -launchd]

/usr/libexec/xpcproxy

[xpcproxy com.apple.screencaptureui.agent]

/System/Library/CoreServices/screencaptureui.app/Contents/MacOS/screencaptureui

[/System/Library/CoreServices/screencaptureui.app/Contents/MacOS/screencaptureui]

/usr/libexec/xpcproxy

[xpcproxy com.apple.AssetCacheManagerService]

/System/Library/PrivateFrameworks/AssetCacheServicesExtensions.framework/XPCServices/AssetCacheManagerService.xpc/Contents/MacOS/AssetCacheManagerService

[/System/Library/PrivateFrameworks/AssetCacheServicesExtensions.framework/XPCServices/AssetCacheManagerService.xpc/Contents/MacOS/AssetCacheManagerService]

/private/var/db/com.apple.xpc.roleaccountd.staging/com.apple.bootcampassistant.ExFATChecksum.16777223.1152921500312351016.xpc/Contents/MacOS/ExFATChecksum

[/private/var/db/com.apple.xpc.roleaccountd.staging/com.apple.bootcampassistant.ExFATChecksum.16777223.1152921500312351016.xpc/Contents/MacOS/ExFATChecksum]

/usr/libexec/xpcproxy

[xpcproxy com.apple.sysmond]

/usr/libexec/sysmond

[/usr/libexec/sysmond]

/usr/bin/login

[login -pf run]

/usr/libexec/xpcproxy

[xpcproxy com.apple.audio.systemsoundserverd]

/usr/sbin/systemsoundserverd

[/usr/sbin/systemsoundserverd]

/usr/libexec/xpcproxy

[xpcproxy com.apple.audio.AudioComponentRegistrar]

/System/Library/Frameworks/AudioToolbox.framework/AudioComponentRegistrar

[/System/Library/Frameworks/AudioToolbox.framework/AudioComponentRegistrar -daemon]

/usr/libexec/xpcproxy

[xpcproxy com.apple.AccountPolicyHelper]

/System/Library/PrivateFrameworks/AccountPolicy.framework/XPCServices/com.apple.AccountPolicyHelper.xpc/Contents/MacOS/com.apple.AccountPolicyHelper

[/System/Library/PrivateFrameworks/AccountPolicy.framework/XPCServices/com.apple.AccountPolicyHelper.xpc/Contents/MacOS/com.apple.AccountPolicyHelper]

/bin/zsh

[-zsh]

/usr/libexec/path_helper

[/usr/libexec/path_helper -s]

/usr/bin/locale

[locale LC_CTYPE]

/usr/libexec/xpcproxy

[xpcproxy com.apple.icloud.findmydeviced]

/usr/libexec/findmydeviced

[/usr/libexec/findmydeviced]

/usr/bin/csrutil

[/usr/bin/csrutil status]

/usr/libexec/xpcproxy

[xpcproxy com.apple.mobile.keybagd]

/usr/libexec/keybagd

[/usr/libexec/keybagd -t 15]

/usr/libexec/mobileassetd

[/usr/libexec/mobileassetd]

/usr/libexec/xpcproxy

[xpcproxy com.apple.ViewBridgeAuxiliary]

/System/Library/PrivateFrameworks/ViewBridge.framework/Versions/A/XPCServices/ViewBridgeAuxiliary.xpc/Contents/MacOS/ViewBridgeAuxiliary

[/System/Library/PrivateFrameworks/ViewBridge.framework/Versions/A/XPCServices/ViewBridgeAuxiliary.xpc/Contents/MacOS/ViewBridgeAuxiliary]

/usr/libexec/xpcproxy

[xpcproxy com.apple.Safari.History]

/System/Library/PrivateFrameworks/SafariShared.framework/Versions/A/XPCServices/com.apple.Safari.History.xpc/Contents/MacOS/com.apple.Safari.History

[/System/Library/PrivateFrameworks/SafariShared.framework/Versions/A/XPCServices/com.apple.Safari.History.xpc/Contents/MacOS/com.apple.Safari.History]

/usr/libexec/xpcproxy

[xpcproxy com.apple.tccd]

/usr/libexec/xpcproxy

[xpcproxy com.apple.telephonyutilities.callservicesd]

/System/Library/PrivateFrameworks/TelephonyUtilities.framework/callservicesd

[/System/Library/PrivateFrameworks/TelephonyUtilities.framework/callservicesd]

Network

Country Destination Domain Proto
DE 17.253.79.202:80 tcp
AU 40.79.173.41:443 tcp
US 8.8.8.8:53 gspe1-ssl.ls.apple.com.edgesuite.net udp
US 8.8.8.8:53 e10499.dsce9.akamaiedge.net udp
GB 23.200.147.27:443 gspe1-ssl.ls.apple.com.edgesuite.net tcp
US 8.8.8.8:53 gspe35-ssl.ls-apple.com.akadns.net udp
NL 72.246.172.153:443 tcp
N/A 224.0.0.251:5353 udp
GB 23.200.147.27:443 gspe1-ssl.ls.apple.com.edgesuite.net tcp
US 8.8.8.8:53 api-glb-aeuw3b.smoot.apple.com udp
US 8.8.8.8:53 dns.google udp
FR 15.237.18.235:443 api-glb-aeuw3b.smoot.apple.com tcp
US 8.8.8.8:443 dns.google tcp
US 8.8.8.8:53 dns.google udp
US 8.8.4.4:443 dns.google tcp
US 8.8.8.8:53 dns.google udp
US 8.8.4.4:443 dns.google tcp
US 8.8.4.4:443 dns.google tcp
US 8.8.8.8:443 dns.google tcp
US 8.8.8.8:53 clients2.google.com udp
US 8.8.8.8:53 youareanidiot.cc udp
FR 216.58.213.78:443 clients2.google.com tcp
US 172.67.143.125:443 youareanidiot.cc tcp
US 8.8.4.4:443 dns.google tcp
US 8.8.4.4:443 dns.google tcp
US 8.8.8.8:53 clients1.google.com udp
US 8.8.8.8:53 www.google.com udp
FR 216.58.213.78:443 clients1.google.com tcp
FR 172.217.20.196:443 www.google.com tcp
US 8.8.8.8:443 dns.google tcp
US 8.8.4.4:443 dns.google tcp
US 8.8.4.4:443 dns.google tcp
US 8.8.8.8:53 dns.google udp
US 8.8.4.4:443 dns.google tcp
US 8.8.4.4:443 dns.google tcp
US 8.8.4.4:443 dns.google udp
US 8.8.8.8:53 gspe21-ssl.ls-apple.com.akadns.net udp
US 8.8.8.8:53 e6858.dscx.akamaiedge.net udp
US 8.8.8.8:53 e4686.dsce9.akamaiedge.net udp
US 8.8.8.8:53 a1366.dscapi6.akamai.net udp
US 8.8.8.8:53 e10499.dsce9.akamaiedge.net udp
GB 23.200.147.27:443 a1366.dscapi6.akamai.net tcp
US 8.8.8.8:53 mobile.events.data.trafficmanager.net udp
IE 20.50.80.210:443 tcp
FR 142.250.179.74:443 optimizationguide-pa.googleapis.com tcp
FR 216.58.214.163:80 www.gstatic.com tcp
US 8.8.8.8:53 dns.google udp
US 8.8.4.4:443 dns.google tcp
US 104.21.95.69:443 youareanidiot.cc tcp
US 8.8.8.8:53 gsp64-ssl.ls-apple.com.akadns.net udp
US 8.8.8.8:53 a479.dscg4.akamai.net udp
US 8.8.8.8:53 bag-cdn.itunes-apple.com.akadns.net udp
US 8.8.8.8:53 e673.dsce9.akamaiedge.net udp
US 104.21.95.69:80 youareanidiot.cc tcp
US 104.21.95.69:80 youareanidiot.cc tcp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:443 dns.google udp
FR 172.217.20.195:443 update.googleapis.com tcp
FR 216.58.214.163:80 www.gstatic.com tcp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:443 dns.google udp
FR 172.217.20.196:443 www.google.com tcp
US 8.8.8.8:53 b._dns-sd._udp.0.0.127.10.in-addr.arpa udp
US 8.8.8.8:53 db._dns-sd._udp.0.0.127.10.in-addr.arpa udp
US 8.8.8.8:53 b._dns-sd._udp.0.0.127.10.in-addr.arpa udp
US 8.8.8.8:53 db._dns-sd._udp.0.0.127.10.in-addr.arpa udp
US 104.21.95.69:80 youareanidiot.cc tcp
FR 172.217.20.196:443 www.google.com tcp
FR 216.58.214.74:443 optimizationguide-pa.googleapis.com tcp
NL 142.250.27.84:443 accounts.google.com tcp
FR 216.58.214.163:80 www.gstatic.com tcp
US 104.21.95.69:443 youareanidiot.cc udp
FR 216.58.214.74:443 tcp
FR 216.58.214.74:443 tcp
FR 216.58.214.74:443 tcp
FR 216.58.214.163:80 www.gstatic.com tcp
FR 216.58.215.35:443 beacons.gcp.gvt2.com tcp
FR 216.58.214.163:80 www.gstatic.com tcp
NL 23.218.71.56:80 tcp
US 8.8.8.8:53 e10499.dsce9.akamaiedge.net udp
US 8.8.8.8:53 a1366.dscapi6.akamai.net udp
GB 23.200.147.27:443 a1366.dscapi6.akamai.net tcp
US 8.8.8.8:53 e4686.dsce9.akamaiedge.net udp
US 8.8.8.8:53 gsp-ssl.ls.apple.com udp
GB 17.253.29.218:443 gsp-ssl.ls.apple.com tcp
IE 17.57.146.88:5223 tcp
US 8.8.8.8:53 ax.itunes.apple.com udp
US 8.8.8.8:53 a479.dscg4.akamai.net udp
US 8.8.8.8:53 gspe19-ssl.ls.apple.com udp
US 8.8.8.8:53 apsu.apple.com udp
GB 17.253.37.210:443 apsu.apple.com tcp
GB 17.253.37.210:443 apsu.apple.com tcp
US 8.8.8.8:53 e6858.dscx.akamaiedge.net udp
BE 23.55.96.225:443 e6858.dscx.akamaiedge.net tcp
GB 17.253.37.210:443 apsu.apple.com tcp
US 8.8.8.8:53 e6858.dscx.akamaiedge.net udp
US 8.8.8.8:53 225.96.55.23.in-addr.arpa udp
US 8.8.8.8:53 a.c.a.1.0.0.0.0.0.0.0.0.0.0.0.0.3.9.0.1.0.0.d.5.0.f.6.2.2.0.a.2.ip6.arpa udp
US 8.8.8.8:53 a.c.a.1.0.0.0.0.0.0.0.0.0.0.0.0.7.9.0.1.0.0.d.5.0.f.6.2.2.0.a.2.ip6.arpa udp
US 8.8.8.8:443 dns.google udp
US 8.8.8.8:53 fmfmobile.icloud.com udp
US 8.8.8.8:53 fmipmobile.icloud.com udp
GB 17.250.81.68:443 fmipmobile.icloud.com tcp
GB 17.250.81.64:443 fmipmobile.icloud.com tcp

Files

/tmp/com.google.Keystone/.keystone_system_install_lock

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

/var/folders/pq/yy2b5ptn4cz739jgclj4m1wm0000gp/C/com.apple.Safari//mds/mdsObject.db

MD5 d3a1859e6ec593505cc882e6def48fc8
SHA1 f8e6728e3e9de477a75706faa95cead9ce13cb32
SHA256 3ebafa97782204a4a1d75cfec22e15fcdeab45b65bab3b3e65508707e034a16c
SHA512 ea2a749b105759ea33408186b417359deffb4a3a5ed0533cb26b459c16bb3524d67ede5c9cf0d5098921c0c0a9313fb9c2672f1e5ba48810eda548fa3209e818

/var/folders/pq/yy2b5ptn4cz739jgclj4m1wm0000gp/C/com.apple.Safari//mds/mdsDirectory.db

MD5 0e4a0d1ceb2af6f0f8d0167ce77be2d3
SHA1 414ba4c1dc5fc8bf53d550e296fd6f5ad669918c
SHA256 cca093bcfc65e25dd77c849866e110df72526dffbe29d76e11e29c7d888a4030
SHA512 1dc5282d27c49a4b6f921ba5dfc88b8c1d32289df00dd866f9ac6669a5a8d99afeda614bffc7cf61a44375ae73e09cd52606b443b63636977c9cd2ef4fa68a20

/Users/run/Library/Keychains/login.keychain-db

MD5 b69895eb7c37d014221003b545d4110a
SHA1 44a99d8a93ae4de9eed741404d9e62c1ad4957bd
SHA256 f1df281cb07173e6e5ff7f67a0c70512a25b86aeed8cb57d8b6885634da50c96
SHA512 4d72faa1039f59bf77faaa84727630e3beed086c17a0367eccb930fb11d459228d490ede9754273490fa9aac54bb48229f2ec6038f3af8bdb18f4e7c58ecb8ed

/Users/run/Library/Keychains/login.keychain-db

MD5 906add69b5b4d32ff46d0d8b8d5dbbd5
SHA1 6e4b9924652ce31e50c527838184fe1ae001ea7c
SHA256 bf53e69555f90680bcf48d5642c1b2cfc356147a22a22a649058fc0d13a7d39a
SHA512 b54716f7289807159ebf44f8d10238de04f226b548c6a13ce1050f1edb0314ba762b9b66583bbdeb13a2f19a0843993f6620fad0aadb19ef457a171294c1d54b

/Users/run/Library/Keychains/login.keychain-db

MD5 d4e8abb66e0c22ab36a14b47b6116eeb
SHA1 eb28ab87ef8c2e9989218aef3c6a9d22a0dbf3ea
SHA256 3bd02d77b5147d1ceaefaf5b60e7502e7cf3341a6c280ddc5a144026af3098d8
SHA512 40e9710be1deef70ed284898b63b825251c67aedb5b8cf86415d185b123b35031015ae14edfec88d42d386dac5373a5dbb957dd1681db1afeab17bf5a75f7259

/Users/run/Library/Keychains/login.keychain-db

MD5 036c42dd65b439f0ce91c68454088f33
SHA1 b8a2ff24b8257c97475b3326b39d352610375822
SHA256 beb0c69a9a61b821862fece065b3f40b60d02253d10dd0fb997ea0fc78051474
SHA512 75b31fcd2738eccce8c21ce702785deef6df4eeaa719b4b1800b65bc48102f54d207aef2e37435c5107af4342d6948b6ca4afa7c878d2ab118e3060f1983d375

/Users/run/Library/Keychains/login.keychain-db

MD5 32b1c6fabf9d74e1ec134e010f32bb69
SHA1 db63ab486d2f33e2d866efcc8ef6a623e18df115
SHA256 933416f7c80ae8552f6c542856d2b490727388c404e45be0a19d20a9d2618feb
SHA512 3cd670fb6d38cdbcc5dc2cde7bba629b8043c944b45fd7cba45f9a3094e556efe9378fe1ff023c4d95dbe3a2d85dc2bb089a3cf7f22b0bba6ba77f097c0f9928

/var/root/Library/Application Support/Google/Chrome/Crashpad/settings.dat

MD5 c6db1caaee0095f017c09113d53ed054
SHA1 cc37e2b3948325a0eeb51080f45b17ebf52a7035
SHA256 ca3252b297284a87de2ee1688585f7c37d26b98c05d7ed04bd7d6df10c0d1476
SHA512 3013340ee4157dfef7dcacd690b840f12b876e8241d4e8bc419016d5336810ab77023cdbbeaa896544e4c29f386d21296649542ef2b0fc6b58c49e2ad0337d85

/Users/run/Library/Keychains/login.keychain-db

MD5 95a05ad8ac5cc37a339e36151bf8fdac
SHA1 51a387728a37ee63070562e4630aa5ff72ac719b
SHA256 5c22db67ab78765cd4ccfe2f4856e2f9de4cc76eaa5d86c875744ec6a4b34908
SHA512 b8256b093dbda75131ceaa16c806ca63179997781f7b00183d2030aeb7db246ea5bafa7158e1bcdd6816bf95eb971ab2004622bae62f6a25a10d6b76cd17cd22

/var/root/Library/Application Support/Google/Chrome/Default/Sync Data/LevelDB/000003.ldb

MD5 fe382e791274914bee5950777e4f1fd3
SHA1 53b523b5fc87e66f2520a0b5f9ea080072668f4d
SHA256 935d36c021d0e08a5648c622f3f6fde376e3310013680ae598c0e22dc943d132
SHA512 a5f608fb4f0a1dbc4c5d1b739b1a5b6f50cac1d6a61312b19abf9f601882a291d73524ac55bbe183e4e64db8dcc203d4bf3cedc734fd04bd448cb825d98d1e67

/var/root/Library/Application Support/Google/Chrome/Default/Extension Scripts/CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

/var/root/Library/Application Support/Google/Chrome/Default/Extension Scripts/MANIFEST-000001

MD5 5af87dfd673ba2115e2fcf5cfdb727ab
SHA1 d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256 f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512 de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

/var/root/Library/Application Support/Google/Chrome/Default/Site Characteristics Database/000003.ldb

MD5 5c4e7ade5753ab7de2c42c04111fa42e
SHA1 fb577b8c07d9617f507a3f2950df0a6dcfebe4e2
SHA256 d3979fd2d9ecfdb05498d79d1f24998c38cfd107e321f6810d8b7f9f12affd82
SHA512 7a7452bcd22e66190e36ff0036f21d854fa57bdcbaebf637aa3a6d932a385a7c90525ede0c124853c218445d583c0edcf45d12159ca452732f31d16c3901929b

/var/root/Library/Application Support/Google/Chrome/Default/Session Storage/000003.ldb

MD5 38fc535a8f11d7e955ef58cc63158eff
SHA1 c45ad3ee106dbfb65dce7c09b53140f34454cd0e
SHA256 085c44dfa11e65ac3548c4d0fe1ae641570f90c7caaa2881c3990efcf555e6a8
SHA512 26e70000f77c1b6388dd470f9d7ec6bedc4fc3c43e48efcc853812eb076108bcdd9f50f7a89265e431d33df96e71755ca242dfd0aac16a51d99dea50a5a1e505

/var/folders/zz/zyxvpxvq6csfxvn_n0000000000000/T/.com.google.Chrome.1dk2r9

MD5 541f52e24fe1ef9f8e12377a6ccae0c0
SHA1 189898bb2dcae7d5a6057bc2d98b8b450afaebb6
SHA256 81e3a4d43a73699e1b7781723f56b8717175c536685c5450122b30789464ad82
SHA512 d779d78a15c5efca51ebd6b96a7ccb6d718741bdf7d9a37f53b2eb4b98aa1a78bc4cfa57d6e763aab97276c8f9088940ac0476690d4d46023ff4bf52f3326c88

/var/root/Library/Application Support/Google/Chrome/Default/shared_proto_db/metadata/000003.ldb

MD5 17a2dc5826aeb539547f00f52eccccd5
SHA1 fd36ad6db84312792cffac0267f6329b21727d66
SHA256 746da9cf33c3e4d29907dfdf1065f06ae16dcb5c2e9a34cfb5dd0dae9130f151
SHA512 6bca3e308d0446211570021c1f1dc6d8e9704a2a68a90c5c8daf26b20cb2702bccfae8ddfeb6f16c8bfea83e1b648810054a25a7967bb9539feb241f2950ea73

/var/root/Library/Application Support/Google/Chrome/Default/shared_proto_db/000003.ldb

MD5 ea517aa120c972c602673d331dfa35bc
SHA1 7ff539eec544cf306b80137bc182fb544e58aad5
SHA256 0c53b2ef8ec9bd6c3b81955b45cd9fc69705e7b435ad747b50c150c7e341f8da
SHA512 e2bc6f26b0db61af3b7f1648e890be2b748aa886ff3ab51e207a915432c6d9a426b188fe9c979b443e8fe8aad248442b20b2e6cd38f494264cb7cdbcaa88eecd

/private/var/folders/zz/zyxvpxvq6csfxvn_n0000000000000/T/scoped_diruASwBt/CRX_INSTALL/manifest.json

MD5 6ca25f3ef585b63f01bcdf8635120704
SHA1 00c063811e31ea5f9a00f175a71ea25e7821f621
SHA256 49d9de983f7436ba786e6e04a5a20c10f41687ae06b266b1b6553f696719563d
SHA512 566bfd9badbd8951ee52e5911eb68b51e86286989096d32de6e32a2523761b0e0afca251ef3bea36b5d51fb8354a5fca567772a02c3f3b9d8dfe529609fa0430

/private/var/folders/zz/zyxvpxvq6csfxvn_n0000000000000/T/scoped_diruASwBt/CRX_INSTALL/images/icon_128.png

MD5 30899b6c4e4a757b8ec6dd2208acdfb4
SHA1 f2c5880a724c6d75cce1b5191e0d82c3bc7de768
SHA256 4f17efbd974a41d88cb36567aab6bf4586579e78780f00b1826676819e14bff4
SHA512 58539e3f0ad7fef30792efcdbbd955599e11e4261c9946e7c3dff6267e01747354ea3b901c46fc8329f81c68afbeb2d05fe3fcb266bc5948de8befa5b8d040ee

/private/var/folders/zz/zyxvpxvq6csfxvn_n0000000000000/T/scoped_diruASwBt/CRX_INSTALL/images/icon_16.png

MD5 344554d96e418120bd80ef5de5194697
SHA1 23e141c3a6ce368acc1c299f062ab85914bcb17e
SHA256 0a4bd08db6422f8e7a8a218ef39c1b99a5a675f12697f26be88f9afc2e1f9378
SHA512 7ae38853e5acca479d7fd81d48bb88c671cf4dce63342209bcff045ac581a04b7b0ed48f6c58253db950935c0522caaa4fbc6cf5a25151a8960ba56fc804569e

/private/var/root/Library/Application Support/Google/Chrome/Default/Extensions/nmmhkkegccagdldgiimedpiccmgmieda/1.0.0.6_1/craw_background.js

MD5 6eebed29e6a6301e92a9b8b347807f5f
SHA1 65dfb69b650560551110b33dcba50b25e5b876de
SHA256 04cd9494b0ed83924dad12202630b20d053d9e2819c8e826a386c814cc0a1697
SHA512 fede6db31f2ad242e7bc7b52a8859ba7f466a0b920a8dadcb32dcfb5b2a2742e98b767ff22e0c5bc5c11fec021240aa9e458486c9039eb4ebe5cf6af7be97bf2

/Library/Preferences/com.apple.networkextension.uuidcache.plist

MD5 ce7f5b3d4bfc7b4b0da6a06dccc515f2
SHA1 ce657a52a052a3aaf534ecfbf7cbdde4ee334c10
SHA256 9261ecceda608ef174256e5fdc774c1e6e3dcf533409c1bc393d490d01c713f1
SHA512 db9de6afa0e14c347aa0988a985b8a453ef133a2413c03bae0fab48bda34d4f9a488db104837a386bb65c393e8f11b1ed4856b211c1c186423649c147d6aabfb

/Library/Preferences/com.apple.networkextension.uuidcache.plist

MD5 0f6a8cc17f2213961fc33a4646eca848
SHA1 b55c7cabcc7aa10a9064297574b1a1644594d774
SHA256 657db43895a669f40884eab2f014a89beec71e86a1ac2745d0bf2c8bf937c836
SHA512 50bb2dd8a44696daeac943e804ce350638d2558dc8485de1783daf0858df38deef97fac2606c12e92a31b4f70bdaaa22475ceb918dc6e616d2be4db72844d653

/Library/Preferences/com.apple.networkextension.uuidcache.plist

MD5 a2d06040900c3e72aa695e36fc2358f7
SHA1 c3f04b93f9b07508e8130d59252eb35762c7dbd1
SHA256 d1b503e167c350ffaff71a1b2d17f0c4b161aa2bd9ec73a453a0e84847a59192
SHA512 9237b1ccb95caf088cc74d231447455e4f679e338212e150b62a4b29ae1a6e94cffb2eb27e8fd29ff5813d749855dd5af91e112afb10b78877648eeb6187a1d8

/Library/Preferences/com.apple.networkextension.uuidcache.plist

MD5 72aefa577a027ffaeee1d17f267cc5c4
SHA1 5cba43f9396c1636fef3adf7d89467f3e25abde4
SHA256 1841c830b27deec6d1a958218bb946bbf3b32bac6fd4742e21be8c03912708fd
SHA512 461db0ff0922a9d47969c42cdad5aa9e6cea21ec002f6a8b538418ccf3f4cd09b1d103b2cd63628579c2978d864734ef90ffd15e399659c3911e4ade1a53f53c

/Users/run/Library/Caches/GeoServices/Resources/altitude-1285.xml

MD5 9a43af57707d2fb460832049d1f217d1
SHA1 056d813f8cb5198ca82072f7e3484f38ea5267f8
SHA256 7224f8828694ed74a8353567e4d84da188d15a993a4a75938f8409cb49218e7c
SHA512 1f33175f5d0958c79540a627552f71c6960b6ff19c9b2b0aa604c00bfeff216f6ea2ec3a22ef91ad8d7249597fdf5ad49ddbf5f4aef71b397e785152474954d7

/Users/run/Library/Caches/GeoServices/ActiveTileGroup.pbd

MD5 d5aedf03a61e89472522975ee0bbcabe
SHA1 aaf17b7025870ef818cba8fcc07c1a3750604610
SHA256 3075115ff71d5dab8f5561d0c710fc1980eb4ffdf46b6bbd7804f796bacb4ec9
SHA512 7670e0a48ade35e83d797c0bf73187e569ff11ad80062cd483b63490690f9d99b3b65992812ece9a0e37c9bd940202193a950836aaf32c844f0d0f1287971786

/Library/Preferences/com.apple.networkextension.uuidcache.plist

MD5 f89bfcd57bde27c9fc41ae606802800d
SHA1 ef018f2657ac73f7f069bbd0c7cbf482df4c7e12
SHA256 457d49b3caa88b6245645fb8f23c41b7729dcd1981f7fdb1564862ce950c2859
SHA512 7a93d760fe057007864f57c6bedb5d7e789695865aec9a764535fe7a5664b84bde9994a7123f8d1418ae70c628f2f6a55c2d2672a7f78c1ba8b37d48880b0c51

/private/var/db/spindump/tailspin-trace.2024-06-09_11-57-14.tailspin

MD5 1e5c7c3f07d7a5013cf94d0083e7f37c
SHA1 32bfcfe34e6fc976becc2cb92e18344f51058d17
SHA256 2286cd82e90567a841b9bea2af8dad48688639b0f4110bca7fa952db593f4457
SHA512 abbc19c9f0c1867bc0285eb743ca687e629b497107fd9199be7a1f801a71f0307f580087540b3ebb0e7ef2556c923db8da1c006f8f5907a0c058a645356693ee

/var/folders/zz/zyxvpxvq6csfxvn_n0000000000000/T/.com.google.Chrome.Mqmgca/7_all_sslErrorAssistant.crx3

MD5 636c653ec2c30bb767533901a18669b2
SHA1 4b5a01cfea4c5deb62f3aafa01ef24265613b844
SHA256 3eb16d6c28b502ac4cfee8f4a148df05f4d93229fa36a71db8b08d06329ff18a
SHA512 a4128fb20a5df9e573e92b45f5bc18dcdf4be6e7e39172d08847882f17361320141e89b35deef337e40c365d6f1ccdd1b991eb4593d805dfa2e39a5257c335ee

/var/folders/zz/zyxvpxvq6csfxvn_n0000000000000/T/.com.google.Chrome.bAtCq9/khaoiebndkojlmppeemjhbpbandiljpe_65_mac_dzlxuetwsybdv7gfmhikquhdj4.crx3

MD5 f5ed8ad664370de2d16265ac99085dbc
SHA1 52deeff97bc4c2777b70b7d79bedeae161183150
SHA256 9fe1922c50cef6ab1c62d9b37a37e0a7d6e82639217b4b7fb1537183ae0dbf55
SHA512 d0ee804f80dbb6a6a9a5e6165829f840761526782933997b73e22fcda452be6a2b4025c51e22c7980d5a49b985d26b70a2d1f4e5d40f5863712103c1c50e67c7

/var/folders/zz/zyxvpxvq6csfxvn_n0000000000000/T/.com.google.Chrome.HcLNOC/hfnkpimlhhgieaddgfemjhofmfblmnib_8830_all_jgu7tfinrm772lsqtustca3fce.crx3

MD5 1a507b95b38ab7dfa9d4c97108607350
SHA1 ed85a0180050a6ff9ee7c9794735bb33e41ea4d8
SHA256 abfa8d9b81b3f9278d39b04f862766c8ce5c9edb7d3a9be03e04e5c884581142
SHA512 e76ef5141622c61724bef751f0360b266d8b88573e9349d673d86d6a5c6cea4b345d51438a65da0903adac6762f44bcd1a351aedc029348a190dc98eaa7eab66

/var/folders/zz/zyxvpxvq6csfxvn_n0000000000000/T/.com.google.Chrome.8xRBzl/1.0.0.15_llkgjffcdpffmhiakmfcdcblohccpfmo.crx

MD5 39fbc1bf4c6c8f919181e3e72630f974
SHA1 b73f2394a2c1ac341df75ba63eef4e5e9830fade
SHA256 3a118962ef814c91f6476bb9f0de58afa63103af6ac1b8729be9b39a86789e96
SHA512 2dbd8f772bc113f6500dace5d187b12c79e6e3a5c7f6f68d270beebc482334a1970499b28de5187a3619ff3ecd20aab10c31df8433d509dc011e1e88978ab70e

/var/folders/zz/zyxvpxvq6csfxvn_n0000000000000/T/.com.google.Chrome.kZ6MEw/gcmjkmgdlgnkkcocmoeiminaijmmjnii_9.49.1_all_ixzyrcu7pvmgu5pjv6enfqq6wa.crx3

MD5 2db7e78c310ca8e73c069a604eac4d99
SHA1 a6d1e03514f8eba03ab81f1380fc54aaded823b6
SHA256 cd1978742a4afdbaaa15bf712d5c90bef4144caa99024df98f6a9ad58043ae85
SHA512 681eaddbf304f4513b008b98493272b44815460568876b93528851ff7806775de38e6ec588fe27a2cf3dc804415e83a420e45d754b25ad4bdf68ef2c78403aa3

/var/root/Library/Application Support/Google/Chrome/Subresource Filter/Unindexed Rules/9.49.1/Filtering Rules

MD5 6274a7426421914c19502cbe0fe28ca0
SHA1 e4d1c702ca1b5497a3abcdd9495a5d0758f19ffc
SHA256 ae2fd01d2908591e0f39343a5b4a78baa8e7d6cac9d78ba79c502fe0a15ce3ee
SHA512 bf1287f502013308cdd906f6e42998c422ef1e272b348e66122dc4a4e471d01333b418f48d1bb2198c72845bdc950612597e179e612aaa1ba6cf8d48fb8f0cf5

/var/root/Library/Application Support/Google/Chrome/Subresource Filter/Indexed Rules/35/9.49.1/Ruleset Data

MD5 c5e30274fe7b93847f6d7c02410d1209
SHA1 488a49f38459f29e110c706c51b61ca1ae3b0e26
SHA256 e634e3cfdd0d27d0be1f5f9a19748d19d564928765db343503f42a6e1f5dd4ea
SHA512 bc235bb3af269e9a828e6788dbae2b42cabc879b858102f4cc76c0fa02af0e296d20ffc8f134c0a3f9b408643e4810e8c46afeb0c285b892908b06ea1aa1b811

/var/root/Library/Application Support/Google/Chrome/Default/Download Service/Files/16db288d-ff9d-46c7-ae34-7854d35be121

MD5 5adf364735dcbe6bf26ebe3f705c9dbc
SHA1 a891521fea2f61a2fd16ea9f0a3fc3c2c5fb3a46
SHA256 8d21fe1bd251856bfaeaedd6a72ab78f153a047b6042e0fc614f57a32b56d340
SHA512 5f77f8923ab3800ab754f4c60095077b529c5f5f230c6a0b6803dc28597f42ed682921267ed344e190d0f08e0a23eceace7bccbc9d22432029a3e6f4838420e0

/var/folders/zz/zyxvpxvq6csfxvn_n0000000000000/T/.com.google.Chrome.XmWVOh/jflookgnkcckhobaglndicnbbgbonegd_3030_all_gxlhecuj7wt4iru2mmpk5afmoq.crx3

MD5 b173dbd5ca315b732be8248161124804
SHA1 0083e57ea026113275009cb9cd111bd211578e17
SHA256 888ebbd183d017421d0f23a0a1ea9eaedffefd772878d86c67536c138ef62ada
SHA512 d4cb2a881e157a6d71fd5afc0c1fe0cb343de0ff019ab8778bfcbcd731a2fb8e28336986c603a3e354d9889e2adb68ba6a40fe7df0cc1fa5832bc000ef1624e5

/var/root/Library/Application Support/Google/Chrome/OptimizationGuidePredictionModels/53135e32-b606-449c-a2ce-6de06eb81681/model.tflite

MD5 6d7c2f9e94664539dec99b3233301b01
SHA1 85812b004742cc1c211c92911131ce270f8ba769
SHA256 a0956386dc64fd9f4883c8741f950cd60a56859616b159c9e4251c9eb0ac5534
SHA512 4d06917f30651c3bf13c509aae79793b3f1ec93de12179464b18fd9fd16c7bf466884b1c70e425d7e937adde341cf24bd08f19a132bbb9683e804f29b4ed0c33

/Library/Application Support/com.apple.icloud.searchpartyd/savedConfiguration.plist

MD5 d8858841b3415b0e7ce869c9ff94cc6c
SHA1 2d384b197673e24d84270c4b1f5b998a2f5cc671
SHA256 bff60d1818d3c635d8e844c7eb59b4bc45ee3563320ba8c278a064aa3ae5d64c
SHA512 5165384c11f49c318eebd43c59205af9059f81789017712a279b55294007fa072c8a04f14f60bb613d6650f4c6ab0ecceb0b6a78f5c86e4c13e3b277f3bb3a81

/Users/run/Library/Caches/GeoServices/Resources/[email protected]

MD5 9324f60e772b0e127ed4c223be34eec7
SHA1 c811c0efb2654f1b383cb52082c797c2edf2d89d
SHA256 f55c5713b4e36ccd513baa44fdffd51a8e598efcb75db3bb6cdf11ed610b1e8b
SHA512 0e1819049b87c1e2e2778f4ec254fd60a9fac6f8742bc9aaa6a4d81166a9b763403d9fcb0629b296e4b1e4add1d0967608d9d206161e25b5463eb020f5d66e5d

/Users/run/Library/Caches/GeoServices/Resources/[email protected]

MD5 cd63684458d51facddaf5be32e1f0400
SHA1 dd1ab85b7cc396a0b2ff5b97b04800ee9ffebefd
SHA256 cfbdef9d1635d62a21c70d893e962ae334c5cad28b682422932a94f63da7b0a9
SHA512 5755bd36a6bf684f0f95fb9d398360b2cf8adcc00f4edb44dba28e5ad4c2fe0c01c7e3db54ebc3cbac021d0b76e5992b966a32407f4ac49904d26c51b83a4d35

/Users/run/Library/Caches/GeoServices/Resources/default-iosmac-6364.styl

MD5 a639adaa781300bae5806b87a60630f4
SHA1 9e8cd3ec68482004e12e35e0ee0971eee371fa46
SHA256 6a9a65c35e067931fbed99adcd77af62f1dc2e3b8cd3dee6cf18fa356c73e23b
SHA512 f5eca9374f24865da39003d8ed8014d681cc419b38f8e07086166e51d52f339d0958fbbf9688f66bdcd27c9586c9cc80a23bb3be0c50b46c1a9dd6170f347223

/var/folders/pq/yy2b5ptn4cz739jgclj4m1wm0000gp/C/com.apple.colorsync.profiles.502

MD5 7388830585e8029e4b1d86d4fac06b42
SHA1 1b3e4d05bbcba3bb54c2984a47094a70ccbb2bb8
SHA256 0bf2a4813e8a0a5d6650bfe0ce8a13f06558d2d1333f8fd442f71ffee033c694
SHA512 9a65ae6d8bf220798c04e69fe895b30a562430244673d30295d98d5a09f06e7fc073d773c76ecafbf246eff9d037d62d7e6c91b8940e4ae0b6ed497c7f1c4e6c

/private/var/db//keybags/persona.kb

MD5 45470925605843090b70a58026b0aa31
SHA1 dd267ff58a8c0401e701735fea784657ec5c49cd
SHA256 773f492fbd23cb2e16a6f336ca9a931b86bb50fcb510b58eec0147eb3fa8daef
SHA512 e52e9a24da527a5c0e8529f9511525b2908f196b9422cd5a76604208635ed513eeaf0b6be672691713d32f37138f0e0774a8572e863c3e3cc3f7eedd7a79b03e