Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240611-en
  • resource tags

    arch:x64arch:x86image:win11-20240611-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    12/06/2024, 17:12

General

  • Target

    Acura.exe

  • Size

    1.2MB

  • MD5

    a12b9eaeb350dac058adb1ed74420229

  • SHA1

    686d790fc201b1d565c19acb3cc5fd0742a89e53

  • SHA256

    a7334c7690db35b3ae2897639e53d40b699ab8894f6a28fbc7812d0e2acab7f0

  • SHA512

    f70ab61219f71bae8816497e5235fb39259f695c99528c4c6a61feedbd77428b5fecb0c54aa951e2dbd255a6c5cb2b52ed0881ba92878dbad0e2b32e21ae8e7b

  • SSDEEP

    12288:5SHPIeRQQoaiy4HLGYuXSKLqSoP/Lh7cKlz3yM8KDI3Ewepte3p1cRRje:5SHPIUdoaiy4HSjXSKLPc/VCZn0K1SJ

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Modifies data under HKEY_USERS 1 IoCs
  • Modifies registry class 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 7 IoCs
  • Suspicious use of AdjustPrivilegeToken 64 IoCs
  • Suspicious use of FindShellTrayWindow 33 IoCs
  • Suspicious use of SendNotifyMessage 12 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Acura.exe
    "C:\Users\Admin\AppData\Local\Temp\Acura.exe"
    1⤵
      PID:3040
    • C:\Windows\System32\rundll32.exe
      C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
      1⤵
        PID:3020
      • C:\Program Files\Google\Chrome\Application\chrome.exe
        "C:\Program Files\Google\Chrome\Application\chrome.exe"
        1⤵
        • Enumerates system info in registry
        • Modifies data under HKEY_USERS
        • Suspicious behavior: EnumeratesProcesses
        • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
        • Suspicious use of AdjustPrivilegeToken
        • Suspicious use of FindShellTrayWindow
        • Suspicious use of SendNotifyMessage
        • Suspicious use of WriteProcessMemory
        PID:4868
        • C:\Program Files\Google\Chrome\Application\chrome.exe
          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff8e22aab58,0x7ff8e22aab68,0x7ff8e22aab78
          2⤵
            PID:5100
          • C:\Program Files\Google\Chrome\Application\chrome.exe
            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1524 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:2
            2⤵
              PID:3972
            • C:\Program Files\Google\Chrome\Application\chrome.exe
              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2112 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
              2⤵
                PID:3336
              • C:\Program Files\Google\Chrome\Application\chrome.exe
                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2140 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
                2⤵
                  PID:4228
                • C:\Program Files\Google\Chrome\Application\chrome.exe
                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3052 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:1
                  2⤵
                    PID:2348
                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3172 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:1
                    2⤵
                      PID:2012
                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4272 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:1
                      2⤵
                        PID:4456
                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4412 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
                        2⤵
                          PID:3724
                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4536 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
                          2⤵
                            PID:3908
                          • C:\Program Files\Google\Chrome\Application\chrome.exe
                            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4504 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
                            2⤵
                              PID:3116
                            • C:\Program Files\Google\Chrome\Application\chrome.exe
                              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4772 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
                              2⤵
                                PID:1224
                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4952 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
                                2⤵
                                  PID:748
                                • C:\Program Files\Google\Chrome\Application\chrome.exe
                                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4552 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:1
                                  2⤵
                                    PID:1472
                                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=3436 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:1
                                    2⤵
                                      PID:4496
                                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4952 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
                                      2⤵
                                        PID:1380
                                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2180 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
                                        2⤵
                                          PID:4044
                                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5072 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:1
                                          2⤵
                                            PID:2028
                                          • C:\Program Files\Google\Chrome\Application\chrome.exe
                                            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4984 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
                                            2⤵
                                              PID:4092
                                            • C:\Program Files\Google\Chrome\Application\chrome.exe
                                              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4376 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
                                              2⤵
                                              • Modifies registry class
                                              PID:4656
                                            • C:\Program Files\Google\Chrome\Application\chrome.exe
                                              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5188 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
                                              2⤵
                                                PID:2456
                                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5256 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:1
                                                2⤵
                                                  PID:4912
                                                • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5312 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
                                                  2⤵
                                                    PID:2680
                                                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5448 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
                                                    2⤵
                                                      PID:2140
                                                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4964 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
                                                      2⤵
                                                        PID:532
                                                    • C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
                                                      "C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
                                                      1⤵
                                                        PID:3156

                                                      Network

                                                      MITRE ATT&CK Enterprise v15

                                                      Replay Monitor

                                                      Loading Replay Monitor...

                                                      Downloads

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

                                                        Filesize

                                                        98KB

                                                        MD5

                                                        3020c417c60d75bab45eb5bbbc8692ba

                                                        SHA1

                                                        9cbf1c694914b66e445ab9dccd9787fc39e464cf

                                                        SHA256

                                                        e051b84978d4d8421e774833fa27ca6e3ffb06e677766898cd3350e16c4afd11

                                                        SHA512

                                                        f02977e465ce26a0935ce893a5f85e00c225bcfac181ec190c3c73722329eac6257d3d4f32599f3c917d0e708d4231bf7877d029a58e6383fc090fd78cf05243

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000025

                                                        Filesize

                                                        49KB

                                                        MD5

                                                        20980bab135f476d48a3f69148762f28

                                                        SHA1

                                                        75394cf4059ccf01a554278c554a5610dcb9b73e

                                                        SHA256

                                                        e4219e58333dbb133997b1fa9b51e906b464190beb8d206f0f39f1db909f95f4

                                                        SHA512

                                                        ab291427fb1da8b8e6b47018d18de6b9267bceec59fea507cae5c43203e4099530e3a17a12d6840a231f9f5b3539dcf5a480573d61ddea14450dd48ba4caaf6d

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

                                                        Filesize

                                                        4KB

                                                        MD5

                                                        6cd66ab94faf859615fb134adb85eb0f

                                                        SHA1

                                                        666d3c9ef5417f5ae749281f923821704fa91b6d

                                                        SHA256

                                                        1e3e3a60022dd140ae1dcd8ade61dab2ecc1190f5fff5504337d10d20a5077d3

                                                        SHA512

                                                        102e9a55262bb0beda96f4ef558cef0ce81753f2495fd94b91cd9515f5a1b6f31b6dc564f59f5882a5b4604271d40cba3bec79dfdfb79c75dc728a094e5b59da

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

                                                        Filesize

                                                        5KB

                                                        MD5

                                                        f45a87e86658ece977df048b80d05652

                                                        SHA1

                                                        09e6093a006dcedc52ab045ca86dd28e9aab4cc1

                                                        SHA256

                                                        458cdc6642007cd9bab58502df1768e6c2e0cb27f5ba9edd7d2ada22891796a6

                                                        SHA512

                                                        d3b33dd3d31fa933a4fa87b5d6135427e03842f49cb6cfbfbada37eb855081ee371b46475b2f9e3fd88fdbf38b298fc108082f65d11086170fa5a7116f3a360b

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\MANIFEST-000001

                                                        Filesize

                                                        23B

                                                        MD5

                                                        3fd11ff447c1ee23538dc4d9724427a3

                                                        SHA1

                                                        1335e6f71cc4e3cf7025233523b4760f8893e9c9

                                                        SHA256

                                                        720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed

                                                        SHA512

                                                        10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

                                                        Filesize

                                                        4KB

                                                        MD5

                                                        4f97152c275b7af4dd5fbbd270e21a90

                                                        SHA1

                                                        a54168765371c4af8ceb2f1a6c3f9218a332dca2

                                                        SHA256

                                                        57df9116500a17576209ca0b12bf0dd219693a0756f5a5e0c84b39c46f1d8e37

                                                        SHA512

                                                        7bf844aaaa3028206cb0c450e972644ba1eed66b9aa3a7fe5b4727bcd40c4bd80462526f2917020a13a235c88ec9e3150b19e0201e43f61c9b761e2ff641cc5c

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

                                                        Filesize

                                                        2B

                                                        MD5

                                                        d751713988987e9331980363e24189ce

                                                        SHA1

                                                        97d170e1550eee4afc0af065b78cda302a97674c

                                                        SHA256

                                                        4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

                                                        SHA512

                                                        b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                                        Filesize

                                                        1KB

                                                        MD5

                                                        68dea08c66b4b0459fc7360d8e54c6ed

                                                        SHA1

                                                        f2da617139437c204d2b526923a854d5eac6653f

                                                        SHA256

                                                        8537e21bce4049d716212e8a227e2179bb4803f4ff70c4ea92e10226777b1b6c

                                                        SHA512

                                                        224e97660fa12f64a08c45cdaca4fd7e35c50bf3a995d493190f339f77d6f57172ba5c49884048dcd8eb58c0831a8c37eddaa5f932c026c1c8f34b5b11c015a6

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                                        Filesize

                                                        3KB

                                                        MD5

                                                        f60f752077dea70b9164aef35c92f075

                                                        SHA1

                                                        d9de5bfabd6208716ed90735a7a675f7860b5312

                                                        SHA256

                                                        533b455cc36a2a3a864ea4e761f291b8919b8d2c557785cb2beff431c32c7af9

                                                        SHA512

                                                        5bbe2c6e2e926e228054805576e697297d6c94103c5d101833c91d43d068e69d7972313558998b232e202a04c3b4ccf88fcafb39e66f5faaff5455fd25c93a57

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                                        Filesize

                                                        4KB

                                                        MD5

                                                        47b7876d86ffdf32bb9021e11da17a96

                                                        SHA1

                                                        7fc5a5b91b947e26e1e50da3f5a911b908a23f96

                                                        SHA256

                                                        33c2160158cadf84d0af7b47e427e4c1fc249bcf340df7afeabbaa48bace2c9b

                                                        SHA512

                                                        4e86892eb6fd10cf55f6ce67c35c78b97f620eec8c8a8a358c6d3c768e0b9e6631fbf7a945526233709891f996c4165c21469ee13234ae277879e3f74fe7d09e

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                                        Filesize

                                                        4KB

                                                        MD5

                                                        ca383c8961cb6ac52e92f81e815669a1

                                                        SHA1

                                                        a83eb56a8638fe64f17a1ed1bba7af9aea837305

                                                        SHA256

                                                        cabdd0a2270d845eb1e2bf4ca16f482408c227c3eb0bf69947c3242753e7eb42

                                                        SHA512

                                                        9b010e6a540828905afa80321033f8e1d82443fab96b034e0a00d2f1d80d952f0c735da05dbffbdf9b724933b2f35c081a29990d3034fc45abe4cc574514ce92

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                                        Filesize

                                                        356B

                                                        MD5

                                                        f2a1d49950760c4640b3e49ce439d205

                                                        SHA1

                                                        d755412946d28554296ae1c04a166cd3240157b9

                                                        SHA256

                                                        8d7f36327c0ac0a86c27185768c85fc40f945c9063d1a6be84c376d0a844dc30

                                                        SHA512

                                                        b4b763400ae92cc2ef3a38a345f10ab116e4431e3bbe437878f28f2dc0f9dfeaa006951d6f58a8f8466fc2d74cc59212eafcb7b5acc9f48b217932513c958267

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                                        Filesize

                                                        2KB

                                                        MD5

                                                        bb4aedd0bf6601e4c66f1908be72b427

                                                        SHA1

                                                        dcaaa501ff864bc9abbbbee48f4c8d524bac2b41

                                                        SHA256

                                                        2c4bde201168134f37acd53c8feba5a2cb3154a0fdf59124dcfa3803de0ce6a0

                                                        SHA512

                                                        432c4b0da84ec1a9d662fbed8145d8eeda5ce41183358d4bcf0d3fb0fa2e2fdb4a9751faf30b0e55fd4f621cf3439364b470ce80e202953f2965ccfa23101386

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                                        Filesize

                                                        1KB

                                                        MD5

                                                        5268b4c6a500fc42d75d4f5fde42dc7e

                                                        SHA1

                                                        aef783958eac0563a4b4e50e1300859e6e32f6ea

                                                        SHA256

                                                        bca89335334a4ab428945fec49ba45ca861f053def1e0a04ba289adf40f96d41

                                                        SHA512

                                                        df50404d2074eb77ef3e9a4e4716b924c02898875ef6911f6b324f4b750e630bea45cced4d53935336b32b3b7a97517ffa840114cf6f6bde19eddcb02f742073

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                                        Filesize

                                                        1KB

                                                        MD5

                                                        a0d6145d7079662d6c4de39e7cf59ece

                                                        SHA1

                                                        1c8164391022fa8b88c818bc1a41e225207afe5b

                                                        SHA256

                                                        2bb98d64e1042f185f41fe62c8f80e651c76e9b3c6de2eb1cb34291a61e28174

                                                        SHA512

                                                        1bf6076ea01fcf4237cabf73caecae5e33935f2437a1c8b0a98ee281fc43eec07cea72ec52c95752a27b9dc618051886a7590f0a2522d1898c63d9a82f204fbf

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                                        Filesize

                                                        4KB

                                                        MD5

                                                        82f5e7a45cb42f372660d54e055f7f53

                                                        SHA1

                                                        756cccf6275cf3f6cffd7d6c567009c08f62deaa

                                                        SHA256

                                                        94bbf03058b2ec5686dab012ff9f0ade8dcdc65250364328bad6e3aec74ee311

                                                        SHA512

                                                        2c2af7fe30b2ac12ff8661685383edb3b87111d62893947ce4d773e9c67e92daeac0114001cd165cac0658db169e0ae14fd254c4805ba973fee009cfdbf3d0fd

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                                        Filesize

                                                        6KB

                                                        MD5

                                                        d09c839b515d531c1e7f3705cace53df

                                                        SHA1

                                                        dd8f0c9a2d85e846f829e44c80cce718c9117c59

                                                        SHA256

                                                        e6ef89f87d3e667270207b1c0ccac36805a2f060aa337b9fe5b4c114b7fc41af

                                                        SHA512

                                                        cf17224ccc1a86ccfcfb193b43b3aba6f6ac077c9bffdfe6e60d7953925ad106531b9158126e675dea93ed36ebf1638bacba15abc69ec3c6431964e2cdd723d9

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                                        Filesize

                                                        7KB

                                                        MD5

                                                        71188b2e4c11dafc35b26ded2fe17b38

                                                        SHA1

                                                        38744c40b337baf8cf40267ce26c50f6fcdbc32f

                                                        SHA256

                                                        e28d08efa4c811158fbd0b12d2e291dc94348fbeb81e88ff2e99ab641584159f

                                                        SHA512

                                                        7886fdf805188d319e27211e852468d2e11a88d6b3cb1875924333e3741094821a7c223844bd81919040f138f0f1c60c0d5e318aa6ebb17c810c6857ece31339

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                                        Filesize

                                                        7KB

                                                        MD5

                                                        e8d06bce606914860ce6104efd6409ad

                                                        SHA1

                                                        baac956eaf50a4fa94e810c5e2f4e5c7f41388dd

                                                        SHA256

                                                        684963084700e6be9d39b047e190a104702839a002f5702f8202031ab86bf134

                                                        SHA512

                                                        82494c5dba3e8a140aa908443ae8191485dec06498d155c79ce41f83311c1495f932ebcefb6ed259bc0beca8beb8a8d7773061deef08b090682764ac58c4e34c

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

                                                        Filesize

                                                        16KB

                                                        MD5

                                                        88b6703595a480cbf9d554156ff4cbcb

                                                        SHA1

                                                        042c7cbd9adf5cb437c3e6176a0ac8680d7498f5

                                                        SHA256

                                                        0de8a039f5419f625fba9494515eaab6b8eed88600110f8058c7e05c7e74025c

                                                        SHA512

                                                        fa132dba638243269656cb844d3b8b211a2176b5b6cb92970dd451569171bcbcd96d6283bbb9980d2402f6968fca25e94b3154921a098876acee6cf435912bb8

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                                                        Filesize

                                                        274KB

                                                        MD5

                                                        a8f7216eff33e1a85935c69682a65934

                                                        SHA1

                                                        da219ca470afceb510022bcbef742c7218a8758d

                                                        SHA256

                                                        c1375d57cc5ae2f435566e6e865ede14ebdb4ad1134736ca1ebf2a78b1285d0f

                                                        SHA512

                                                        e6950fee585f20384406399bc06dfd81155361e7a66478eae6e94806c0e7e6f912c594b373970fc89eae2d7053072d5840170b3d3841a31e3171bb7ea8686bc6

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

                                                        Filesize

                                                        83KB

                                                        MD5

                                                        c200aa9ee000aaa7e5f39d5d8426bf0e

                                                        SHA1

                                                        2e4abeff58a2d1472cb288ad6db2df9eb8ac2e50

                                                        SHA256

                                                        3e47cbb824c9136b7d9a06fd6be9a6e346c004c742ec4fd969aa9ff8d7dc34ae

                                                        SHA512

                                                        3ff90cb22592c01d69dfb16c4b10f55fab67cb53422393b9525b4449d0febe4f3ef4c581c4a971b687cd59188318ccf1b739e822a334c092ec97da06692fe3e3

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

                                                        Filesize

                                                        85KB

                                                        MD5

                                                        c034bddc7a17848b173b84c0bd2bb508

                                                        SHA1

                                                        1438082c01117baa65846648c97a2428dc14e2c8

                                                        SHA256

                                                        ea2426fc5574dc13c07b3c22f8920233a0d8b72a74942feee4278fd1a8577776

                                                        SHA512

                                                        e946627af411ad50e72f20b02a5f478656f7cc0f09e5dc6214b4f6b45b7946dc236695bd12605371432125048a54988598b4601727da5f180986b8e923d873c8

                                                      • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe586ada.TMP

                                                        Filesize

                                                        83KB

                                                        MD5

                                                        364d970ae462cb368fa42b713d0a6cd1

                                                        SHA1

                                                        8af974d399922215bcbe0ccf70d9218b12224fed

                                                        SHA256

                                                        6fa2aaa7894843043c11f5532c49f41efd45376a90debe614e359bcb316c2cf0

                                                        SHA512

                                                        f1d75d66683b613759f0a7374a27745c70dbcd99eff44ae27af58355d58c43dc636987fa8cbffe03a700ee3d26d975ff2a9680dcfe7582983f266665c6648138

                                                      • C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

                                                        Filesize

                                                        2B

                                                        MD5

                                                        f3b25701fe362ec84616a93a45ce9998

                                                        SHA1

                                                        d62636d8caec13f04e28442a0a6fa1afeb024bbb

                                                        SHA256

                                                        b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209

                                                        SHA512

                                                        98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

                                                      • memory/3040-1-0x000002C4C4B40000-0x000002C4C4C72000-memory.dmp

                                                        Filesize

                                                        1.2MB

                                                      • memory/3040-3-0x00007FF8E18F0000-0x00007FF8E23B2000-memory.dmp

                                                        Filesize

                                                        10.8MB

                                                      • memory/3040-2-0x00007FF8E18F0000-0x00007FF8E23B2000-memory.dmp

                                                        Filesize

                                                        10.8MB

                                                      • memory/3040-0-0x00007FF8E18F3000-0x00007FF8E18F5000-memory.dmp

                                                        Filesize

                                                        8KB