Analysis Overview
SHA256
a7334c7690db35b3ae2897639e53d40b699ab8894f6a28fbc7812d0e2acab7f0
Threat Level: Likely malicious
The file Acura.exe was found to be: Likely malicious.
Malicious Activity Summary
Downloads MZ/PE file
Unsigned PE
Suspicious use of WriteProcessMemory
Modifies registry class
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Enumerates system info in registry
Modifies data under HKEY_USERS
Suspicious behavior: EnumeratesProcesses
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-12 17:12
Signatures
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-12 17:12
Reported
2024-06-12 17:14
Platform
win11-20240611-en
Max time kernel
149s
Max time network
150s
Command Line
Signatures
Downloads MZ/PE file
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1276817940-128734381-631578427-1000\{9785C701-B236-4A5F-B671-45F61E82AD82} | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Users\Admin\AppData\Local\Temp\Acura.exe
"C:\Users\Admin\AppData\Local\Temp\Acura.exe"
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff8e22aab58,0x7ff8e22aab68,0x7ff8e22aab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1524 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2112 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2140 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3052 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3172 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4272 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4412 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4536 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4504 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4772 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4952 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4552 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=3436 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4952 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2180 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5072 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4984 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4376 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5188 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5256 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5312 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5448 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4964 --field-trial-handle=1812,i,5809563388521193197,1621452305723649596,131072 /prefetch:8
Network
| Country | Destination | Domain | Proto |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.187.250.142.in-addr.arpa | udp |
| GB | 172.217.169.46:443 | play.google.com | udp |
| GB | 172.217.169.46:443 | play.google.com | tcp |
| GB | 142.250.187.206:443 | clients2.google.com | udp |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 142.250.187.206:443 | clients2.google.com | tcp |
| GB | 142.250.180.14:443 | encrypted-tbn2.gstatic.com | tcp |
| GB | 142.250.187.238:443 | consent.google.com | tcp |
| GB | 216.58.204.74:443 | content-autofill.googleapis.com | tcp |
| DE | 128.116.44.4:443 | privatemessages.roblox.com | tcp |
| DE | 128.116.44.4:443 | privatemessages.roblox.com | tcp |
| BE | 88.221.83.26:443 | css.rbxcdn.com | tcp |
| BE | 88.221.83.26:443 | css.rbxcdn.com | tcp |
| BE | 88.221.83.26:443 | css.rbxcdn.com | tcp |
| BE | 88.221.83.26:443 | css.rbxcdn.com | tcp |
| BE | 88.221.83.26:443 | css.rbxcdn.com | tcp |
| BE | 88.221.83.26:443 | css.rbxcdn.com | tcp |
| BE | 2.17.107.67:443 | js.rbxcdn.com | tcp |
| BE | 2.17.107.67:443 | js.rbxcdn.com | tcp |
| BE | 2.17.107.67:443 | js.rbxcdn.com | tcp |
| BE | 2.17.107.67:443 | js.rbxcdn.com | tcp |
| BE | 2.17.107.67:443 | js.rbxcdn.com | tcp |
| BE | 2.17.107.67:443 | js.rbxcdn.com | tcp |
| BE | 88.221.83.8:443 | static.rbxcdn.com | tcp |
| BE | 88.221.83.26:443 | css.rbxcdn.com | tcp |
| DE | 128.116.44.4:443 | privatemessages.roblox.com | udp |
| GB | 128.116.119.4:443 | roblox.com | tcp |
| US | 172.64.154.86:443 | roblox-api.arkoselabs.com | tcp |
| US | 8.8.8.8:53 | 8.83.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.154.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.119.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.roblox.com | udp |
| DE | 128.116.44.4:443 | presence.roblox.com | tcp |
| DE | 128.116.44.4:443 | presence.roblox.com | tcp |
| US | 172.64.154.86:443 | roblox-api.arkoselabs.com | udp |
| BE | 2.17.107.136:443 | apis.rbxcdn.com | tcp |
| BE | 88.221.83.26:443 | images.rbxcdn.com | tcp |
| DE | 128.116.44.4:443 | presence.roblox.com | udp |
| GB | 216.58.204.74:443 | content-autofill.googleapis.com | udp |
| GB | 216.58.204.74:443 | content-autofill.googleapis.com | udp |
| US | 2.17.251.20:443 | tr.rbxcdn.com | tcp |
| US | 2.17.251.20:443 | tr.rbxcdn.com | tcp |
| BE | 88.221.83.8:443 | static.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | lhr2-128-116-119-3.roblox.com | udp |
| US | 8.8.8.8:53 | fra2-128-116-123-3.roblox.com | udp |
| US | 128.116.95.3:443 | dfw2-128-116-95-3.roblox.com | tcp |
| US | 128.116.102.3:443 | iad4-128-116-102-3.roblox.com | tcp |
| US | 128.116.101.3:443 | ord2-128-116-101-3.roblox.com | tcp |
| US | 128.116.127.3:443 | mia2-128-116-127-3.roblox.com | tcp |
| IN | 128.116.104.4:443 | bom1-128-116-104-4.roblox.com | tcp |
| FR | 128.116.122.3:443 | cdg1-128-116-122-3.roblox.com | tcp |
| DE | 128.116.123.3:443 | fra2-128-116-123-3.roblox.com | tcp |
| GB | 128.116.119.3:443 | lhr2-128-116-119-3.roblox.com | tcp |
| BE | 88.221.83.27:443 | c0.rbxcdn.com | tcp |
| PL | 128.116.124.3:443 | pulsar.roblox.com | tcp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | tcp |
| US | 128.116.116.3:443 | lax2-128-116-116-3.roblox.com | tcp |
| US | 128.116.99.3:443 | atl1-128-116-99-3.roblox.com | tcp |
| US | 128.116.115.3:443 | sea1-128-116-115-3.roblox.com | tcp |
| JP | 128.116.120.3:443 | nrt1-128-116-120-3.roblox.com | tcp |
| GB | 3.9.154.15:443 | aws-eu-west-2b-lms.rbx.com | tcp |
| US | 44.220.98.168:443 | aws-us-east-1c-lms.rbx.com | tcp |
| JP | 128.116.120.3:443 | nrt1-128-116-120-3.roblox.com | tcp |
| BE | 2.17.107.82:443 | setup.rbxcdn.com | tcp |
Files
memory/3040-1-0x000002C4C4B40000-0x000002C4C4C72000-memory.dmp
memory/3040-0-0x00007FF8E18F3000-0x00007FF8E18F5000-memory.dmp
memory/3040-2-0x00007FF8E18F0000-0x00007FF8E23B2000-memory.dmp
memory/3040-3-0x00007FF8E18F0000-0x00007FF8E23B2000-memory.dmp
\??\pipe\crashpad_4868_IZPDNWICQPUQEULB
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | a8f7216eff33e1a85935c69682a65934 |
| SHA1 | da219ca470afceb510022bcbef742c7218a8758d |
| SHA256 | c1375d57cc5ae2f435566e6e865ede14ebdb4ad1134736ca1ebf2a78b1285d0f |
| SHA512 | e6950fee585f20384406399bc06dfd81155361e7a66478eae6e94806c0e7e6f912c594b373970fc89eae2d7053072d5840170b3d3841a31e3171bb7ea8686bc6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d09c839b515d531c1e7f3705cace53df |
| SHA1 | dd8f0c9a2d85e846f829e44c80cce718c9117c59 |
| SHA256 | e6ef89f87d3e667270207b1c0ccac36805a2f060aa337b9fe5b4c114b7fc41af |
| SHA512 | cf17224ccc1a86ccfcfb193b43b3aba6f6ac077c9bffdfe6e60d7953925ad106531b9158126e675dea93ed36ebf1638bacba15abc69ec3c6431964e2cdd723d9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f2a1d49950760c4640b3e49ce439d205 |
| SHA1 | d755412946d28554296ae1c04a166cd3240157b9 |
| SHA256 | 8d7f36327c0ac0a86c27185768c85fc40f945c9063d1a6be84c376d0a844dc30 |
| SHA512 | b4b763400ae92cc2ef3a38a345f10ab116e4431e3bbe437878f28f2dc0f9dfeaa006951d6f58a8f8466fc2d74cc59212eafcb7b5acc9f48b217932513c958267 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | 88b6703595a480cbf9d554156ff4cbcb |
| SHA1 | 042c7cbd9adf5cb437c3e6176a0ac8680d7498f5 |
| SHA256 | 0de8a039f5419f625fba9494515eaab6b8eed88600110f8058c7e05c7e74025c |
| SHA512 | fa132dba638243269656cb844d3b8b211a2176b5b6cb92970dd451569171bcbcd96d6283bbb9980d2402f6968fca25e94b3154921a098876acee6cf435912bb8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 68dea08c66b4b0459fc7360d8e54c6ed |
| SHA1 | f2da617139437c204d2b526923a854d5eac6653f |
| SHA256 | 8537e21bce4049d716212e8a227e2179bb4803f4ff70c4ea92e10226777b1b6c |
| SHA512 | 224e97660fa12f64a08c45cdaca4fd7e35c50bf3a995d493190f339f77d6f57172ba5c49884048dcd8eb58c0831a8c37eddaa5f932c026c1c8f34b5b11c015a6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e8d06bce606914860ce6104efd6409ad |
| SHA1 | baac956eaf50a4fa94e810c5e2f4e5c7f41388dd |
| SHA256 | 684963084700e6be9d39b047e190a104702839a002f5702f8202031ab86bf134 |
| SHA512 | 82494c5dba3e8a140aa908443ae8191485dec06498d155c79ce41f83311c1495f932ebcefb6ed259bc0beca8beb8a8d7773061deef08b090682764ac58c4e34c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012
| MD5 | 3020c417c60d75bab45eb5bbbc8692ba |
| SHA1 | 9cbf1c694914b66e445ab9dccd9787fc39e464cf |
| SHA256 | e051b84978d4d8421e774833fa27ca6e3ffb06e677766898cd3350e16c4afd11 |
| SHA512 | f02977e465ce26a0935ce893a5f85e00c225bcfac181ec190c3c73722329eac6257d3d4f32599f3c917d0e708d4231bf7877d029a58e6383fc090fd78cf05243 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000025
| MD5 | 20980bab135f476d48a3f69148762f28 |
| SHA1 | 75394cf4059ccf01a554278c554a5610dcb9b73e |
| SHA256 | e4219e58333dbb133997b1fa9b51e906b464190beb8d206f0f39f1db909f95f4 |
| SHA512 | ab291427fb1da8b8e6b47018d18de6b9267bceec59fea507cae5c43203e4099530e3a17a12d6840a231f9f5b3539dcf5a480573d61ddea14450dd48ba4caaf6d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | c200aa9ee000aaa7e5f39d5d8426bf0e |
| SHA1 | 2e4abeff58a2d1472cb288ad6db2df9eb8ac2e50 |
| SHA256 | 3e47cbb824c9136b7d9a06fd6be9a6e346c004c742ec4fd969aa9ff8d7dc34ae |
| SHA512 | 3ff90cb22592c01d69dfb16c4b10f55fab67cb53422393b9525b4449d0febe4f3ef4c581c4a971b687cd59188318ccf1b739e822a334c092ec97da06692fe3e3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe586ada.TMP
| MD5 | 364d970ae462cb368fa42b713d0a6cd1 |
| SHA1 | 8af974d399922215bcbe0ccf70d9218b12224fed |
| SHA256 | 6fa2aaa7894843043c11f5532c49f41efd45376a90debe614e359bcb316c2cf0 |
| SHA512 | f1d75d66683b613759f0a7374a27745c70dbcd99eff44ae27af58355d58c43dc636987fa8cbffe03a700ee3d26d975ff2a9680dcfe7582983f266665c6648138 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5268b4c6a500fc42d75d4f5fde42dc7e |
| SHA1 | aef783958eac0563a4b4e50e1300859e6e32f6ea |
| SHA256 | bca89335334a4ab428945fec49ba45ca861f053def1e0a04ba289adf40f96d41 |
| SHA512 | df50404d2074eb77ef3e9a4e4716b924c02898875ef6911f6b324f4b750e630bea45cced4d53935336b32b3b7a97517ffa840114cf6f6bde19eddcb02f742073 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a0d6145d7079662d6c4de39e7cf59ece |
| SHA1 | 1c8164391022fa8b88c818bc1a41e225207afe5b |
| SHA256 | 2bb98d64e1042f185f41fe62c8f80e651c76e9b3c6de2eb1cb34291a61e28174 |
| SHA512 | 1bf6076ea01fcf4237cabf73caecae5e33935f2437a1c8b0a98ee281fc43eec07cea72ec52c95752a27b9dc618051886a7590f0a2522d1898c63d9a82f204fbf |
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
| MD5 | f3b25701fe362ec84616a93a45ce9998 |
| SHA1 | d62636d8caec13f04e28442a0a6fa1afeb024bbb |
| SHA256 | b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209 |
| SHA512 | 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 6cd66ab94faf859615fb134adb85eb0f |
| SHA1 | 666d3c9ef5417f5ae749281f923821704fa91b6d |
| SHA256 | 1e3e3a60022dd140ae1dcd8ade61dab2ecc1190f5fff5504337d10d20a5077d3 |
| SHA512 | 102e9a55262bb0beda96f4ef558cef0ce81753f2495fd94b91cd9515f5a1b6f31b6dc564f59f5882a5b4604271d40cba3bec79dfdfb79c75dc728a094e5b59da |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | bb4aedd0bf6601e4c66f1908be72b427 |
| SHA1 | dcaaa501ff864bc9abbbbee48f4c8d524bac2b41 |
| SHA256 | 2c4bde201168134f37acd53c8feba5a2cb3154a0fdf59124dcfa3803de0ce6a0 |
| SHA512 | 432c4b0da84ec1a9d662fbed8145d8eeda5ce41183358d4bcf0d3fb0fa2e2fdb4a9751faf30b0e55fd4f621cf3439364b470ce80e202953f2965ccfa23101386 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | c034bddc7a17848b173b84c0bd2bb508 |
| SHA1 | 1438082c01117baa65846648c97a2428dc14e2c8 |
| SHA256 | ea2426fc5574dc13c07b3c22f8920233a0d8b72a74942feee4278fd1a8577776 |
| SHA512 | e946627af411ad50e72f20b02a5f478656f7cc0f09e5dc6214b4f6b45b7946dc236695bd12605371432125048a54988598b4601727da5f180986b8e923d873c8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f60f752077dea70b9164aef35c92f075 |
| SHA1 | d9de5bfabd6208716ed90735a7a675f7860b5312 |
| SHA256 | 533b455cc36a2a3a864ea4e761f291b8919b8d2c557785cb2beff431c32c7af9 |
| SHA512 | 5bbe2c6e2e926e228054805576e697297d6c94103c5d101833c91d43d068e69d7972313558998b232e202a04c3b4ccf88fcafb39e66f5faaff5455fd25c93a57 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 71188b2e4c11dafc35b26ded2fe17b38 |
| SHA1 | 38744c40b337baf8cf40267ce26c50f6fcdbc32f |
| SHA256 | e28d08efa4c811158fbd0b12d2e291dc94348fbeb81e88ff2e99ab641584159f |
| SHA512 | 7886fdf805188d319e27211e852468d2e11a88d6b3cb1875924333e3741094821a7c223844bd81919040f138f0f1c60c0d5e318aa6ebb17c810c6857ece31339 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 4f97152c275b7af4dd5fbbd270e21a90 |
| SHA1 | a54168765371c4af8ceb2f1a6c3f9218a332dca2 |
| SHA256 | 57df9116500a17576209ca0b12bf0dd219693a0756f5a5e0c84b39c46f1d8e37 |
| SHA512 | 7bf844aaaa3028206cb0c450e972644ba1eed66b9aa3a7fe5b4727bcd40c4bd80462526f2917020a13a235c88ec9e3150b19e0201e43f61c9b761e2ff641cc5c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 82f5e7a45cb42f372660d54e055f7f53 |
| SHA1 | 756cccf6275cf3f6cffd7d6c567009c08f62deaa |
| SHA256 | 94bbf03058b2ec5686dab012ff9f0ade8dcdc65250364328bad6e3aec74ee311 |
| SHA512 | 2c2af7fe30b2ac12ff8661685383edb3b87111d62893947ce4d773e9c67e92daeac0114001cd165cac0658db169e0ae14fd254c4805ba973fee009cfdbf3d0fd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 47b7876d86ffdf32bb9021e11da17a96 |
| SHA1 | 7fc5a5b91b947e26e1e50da3f5a911b908a23f96 |
| SHA256 | 33c2160158cadf84d0af7b47e427e4c1fc249bcf340df7afeabbaa48bace2c9b |
| SHA512 | 4e86892eb6fd10cf55f6ce67c35c78b97f620eec8c8a8a358c6d3c768e0b9e6631fbf7a945526233709891f996c4165c21469ee13234ae277879e3f74fe7d09e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | f45a87e86658ece977df048b80d05652 |
| SHA1 | 09e6093a006dcedc52ab045ca86dd28e9aab4cc1 |
| SHA256 | 458cdc6642007cd9bab58502df1768e6c2e0cb27f5ba9edd7d2ada22891796a6 |
| SHA512 | d3b33dd3d31fa933a4fa87b5d6135427e03842f49cb6cfbfbada37eb855081ee371b46475b2f9e3fd88fdbf38b298fc108082f65d11086170fa5a7116f3a360b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ca383c8961cb6ac52e92f81e815669a1 |
| SHA1 | a83eb56a8638fe64f17a1ed1bba7af9aea837305 |
| SHA256 | cabdd0a2270d845eb1e2bf4ca16f482408c227c3eb0bf69947c3242753e7eb42 |
| SHA512 | 9b010e6a540828905afa80321033f8e1d82443fab96b034e0a00d2f1d80d952f0c735da05dbffbdf9b724933b2f35c081a29990d3034fc45abe4cc574514ce92 |