2546dcffc5ad854d4ddc64fbf056871cd5a00f2471cb7a5bfd4ac23b6e9eedad

max time kernel
45s
max time network
146s
platform
windows7_x64
resource
win7-20240508-en
resource tags

arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
submitted
18-06-2024 08:02

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

eicar_com.zip
Size

184B
MD5

6ce6f415d8475545be5ba114f208b0ff
SHA1

d27265074c9eac2e2122ed69294dbc4d7cce9141
SHA256

2546dcffc5ad854d4ddc64fbf056871cd5a00f2471cb7a5bfd4ac23b6e9eedad
SHA512

d9305862fe0bf552718d19db43075d88cffd768974627db60fa1a90a8d45563e035a6449663b8f66aac53791d77f37dbb5035159aa08e69fc473972022f80010

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
2392	chrome.exe
2392	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe
Token: SeShutdownPrivilege	2392	chrome.exe

Suspicious use of FindShellTrayWindow 34 IoCs

pid	Process
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe

Suspicious use of SendNotifyMessage 32 IoCs

pid	Process
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe
2392	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2392 wrote to memory of 1276	2392	chrome.exe	29
PID 2392 wrote to memory of 1276	2392	chrome.exe	29
PID 2392 wrote to memory of 1276	2392	chrome.exe	29
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2792	2392	chrome.exe	31
PID 2392 wrote to memory of 2772	2392	chrome.exe	32
PID 2392 wrote to memory of 2772	2392	chrome.exe	32
PID 2392 wrote to memory of 2772	2392	chrome.exe	32
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33
PID 2392 wrote to memory of 3004	2392	chrome.exe	33

C:\Windows\Explorer.exe
C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\eicar_com.zip
1⤵
PID:1792

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2392
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xc0,0xc4,0xc8,0x94,0xcc,0x7fef6ce9758,0x7fef6ce9768,0x7fef6ce9778
  2⤵
  PID:1276
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1144 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:2
  2⤵
  PID:2792
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1528 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:2772
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1628 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:3004
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2268 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:1636
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2288 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:1828
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=1404 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:2
  2⤵
  PID:2100
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=2892 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:2168
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3484 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:704
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3604 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:1488
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3700 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:2388
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=3716 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:900
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4144 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:2620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=2868 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:2948
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=2324 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:580
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1444 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:1860
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3896 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:2824
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=2056 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:1456
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=2104 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:544
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3128 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:3024
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4260 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:1808
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=2016 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:2088
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=576 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:1380
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2456 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:2376
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=2312 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:2120
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1804 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:2280
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4308 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:2072
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=4420 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:2620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=4412 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:2024
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=4072 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:2932
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=2860 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:2068
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4168 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:1316
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4560 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:8
  2⤵
  PID:2560
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=1568 --field-trial-handle=1392,i,6163287331124253446,15945774824367208962,131072 /prefetch:1
  2⤵
  PID:2724

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:1036

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

Filesize
59KB

MD5
4febfe996b766b43559bbba95b671493

SHA1
3422d06f948ba200d5e3e95111784b8cdcaa39d4

SHA256
ce78b8c713697858fd2fc1957ed3bc42e4261ba15ecd862ba969bda3de56a5a1

SHA512
ef72c1db3996528d2a9d0e6cfbcf90dbc3fa858bfc607483cacdccd4a3a4e2f91deca7621ce0e6e6e23ba7a509fcc03f0efbe66eee8e244bbb6799bb8c21d812

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

Filesize
40KB

MD5
aa12ea792026e66caab5841d4d0b9bab

SHA1
47beeba1239050999e8c98ded40f02ce82a78d3f

SHA256
65fe153a832452e97f5d484440a7047e314d3a83cb61ad2508fed48a820e1de1

SHA512
0b2b1bb8851c60c9d4ab1d039b990a4de5799c97c50b45f64e36a21849c14e785f69196f674ac225b1419d7f501338054074cab6203d041361a4fa1ed8802b27

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000022

Filesize
68KB

MD5
f0c27286e196d0cb18681b58dfda5b37

SHA1
9539ba7e5e8f9cc453327ca251fe59be35edc20b

SHA256
7a6878398886e4c70cf3e9cec688dc852a1f1465feb9f461ff1f238b608d0127

SHA512
336333d29cd4f885e7758de9094b2defb8c9e1eb917cb55ff8c4627b903efb6a0b31dcda6005939ef2a604d014fe6c2acda7c8c802907e219739cf6dab96475b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000023

Filesize
326KB

MD5
e1cc2a63700c228659d68004749758a2

SHA1
46c67c53860963d9e435971ab7e5260678720a24

SHA256
a39dab412aa94f6d83c924e9aa101af704ea69c7f2bf12f67e91fcf12ce4b141

SHA512
d31e60ec5ed920653cc89d4d2ab610728d932f346c3f9862d52b4242cb98d7b515961aeedac4c97b2c7c3108ceb11148c2a6ec6ab3607e5c51eebf0621376cbb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000024

Filesize
133KB

MD5
aca410b85f17c42e837b4896e3a5be6b

SHA1
b9e79f41f8154b8f2c0061df6039c61732661f2a

SHA256
e57345e84ec221fef028512c2e799456f6344bac396a6a912bea403df8acdbb2

SHA512
bb3a46befdd04e189b50cb5028d4a2d11f99aa3019ab5ad098bfb26aac6a1a3ef868af62bb3973a73baa95ebbe26250da42a1815fd28eeaf68b6ac5ba817ef1f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000050

Filesize
203KB

MD5
99916ce0720ed460e59d3fbd24d55be2

SHA1
d6bb9106eb65e3b84bfe03d872c931fb27f5a3db

SHA256
07118bf4bbc3ba87d75cbc11ddf427219a14d518436d7f3886d75301f897edaf

SHA512
8d3d52e57806d1850b57bffee12c1a8d9e1a1edcf871b2395df5c889991a183a8d652a0636d5452068f5ef78d37e08ce10b2b2f4e05c3e3c0f2f2230310418a8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
a685e11a1913c2617e8c29653e1bec10

SHA1
0d7e36155cdccb3411aeaa8ce1b836e2ec865ad1

SHA256
0c5edaba352b1c4a23295293e92ee0f64dc3b2b27c54e9a8147091539aa7e2fb

SHA512
889edf703030dcda606888c87befcb40fa401cf0dc11b3280382bd30d52a80454361dafbd9cf167ba215c366137e012cecc3a7a44cf091e0ed6cc24c21376deb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\000006.dbtmp

Filesize
16B

MD5
aefd77f47fb84fae5ea194496b44c67a

SHA1
dcfbb6a5b8d05662c4858664f81693bb7f803b82

SHA256
4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611

SHA512
b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\CURRENT~RFf7675bc.TMP

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
3c0b4a6527fa3db0db07c4114c19d953

SHA1
07211f673079be425900d484ce6bb56f8b87170b

SHA256
23f1277009c55a3abe39a3dc68230fc8c8477635af26a9d9b2d5db78415aeaa8

SHA512
68664153934e99b9768e024041b47f878a6bb1752e9c90963fedbd401a1998a22327410cbbe08a59a43d405b950e37cbcc9364cd726fc68ed7d9d2cc7a8ce86d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1006B

MD5
29ac5d8ef7b8200404e8bcfda8accad6

SHA1
17e7df56a2e5fdd6395e0e03ea68eacbd4f0a24a

SHA256
f4b94b43b9328f0a5d4ee4f4eef97a24a11be5c2be447a1ecf87793726b102c6

SHA512
00c300bdf43fa53a8fd21b23f8b50c0d1b226fdea0ee876e57b901b6f037304bbec83f058c35bae0579f1faf3c1a38f0197a7fa190306ac347993e5f072f0128

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1010B

MD5
1c7a974407b7e9c7224cb761500c5a3e

SHA1
f7577e4912b034e0eea7ac9e08abcf18d10a1745

SHA256
a24cfc56b3da10dec7aff9777ceabef9acad718cc230f00bdc5a99f10199d51b

SHA512
e26f7595b24b5e26c37bcd68efb4cbdf5400a496fd716f8d7911d9230edf107e46371368428a04a791442ccbec814fe2814c9a796dbf4c5c5e9094c684d656dd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
333e8f51a7f0450c0e47dd627021bb4c

SHA1
7d0e8d4fc02cda5880cb7fe5432fb84457e30ca4

SHA256
ff01cc5148d4274b248b853c1146747613bde3c7a962481797802653ac282f72

SHA512
bde117c56c40138b4a52085e1f020080e69ae8764216b9041ef90322ba05170e142f97c019353d173fce198eb2638ed51ad2ace95416da50380da730f1c18582

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
ef55c41285cfb8092e594daca597e62e

SHA1
a5078d64dfaf2c9204e6e419319d2f7fa9871c75

SHA256
42d8e4c4c6e5782f49e14f4443fba87b8e03c5c15564c393e2ec0eac8e4e5fa0

SHA512
e15e3803ef93ac4296bd747fa366d40a59deda94920f6d3515e97691c73894aabd4a4dafa4c875a184aee009355e7c5c387c6764d21d970c14e4df05ea8a7161

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1006B

MD5
1669ad66ae4afb6064a15d50ff508395

SHA1
5588619baedac0db858491ed253aaeb70a1e2f73

SHA256
fbc47fbbd32380c98525e8df2d3072bde36fab3aabc0d7fe710b672f49605750

SHA512
194592426b0d9e771361060cf136d2116b68eb76cb45d6ffff154af295638a2f46705ecb250cd7cc9af60f56bf103cba80dabfc20b451662a85368fec32ebc40

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
8dd3ace73e5ef14f0cbad6484405ad17

SHA1
77e551d1cba8f3bdd97f585294fed33707a6d296

SHA256
21831aaf1a4a5c6496797e44933a1f67bf192d033f0ea95135ef13ed97d579d1

SHA512
abd58aa662ea2da913b3cc1cdf9c7f13c187d2d3b29c2819820cb6597b27a3b029fe870607ccea78e85a5a49b9a4deadfcd0aa03fab4eb11f396cde1fbe8fd08

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1006B

MD5
fd49781896527d6f0467f58e0d6893fa

SHA1
1252aaadd59eedfec753a003bd397b53d48470b8

SHA256
a06c13137f467a019667aad47cb37cf0898d4ab22ad53b2c1387b4f633328957

SHA512
18751163e084846d6a76124e3fcb1e37ae4803ec511d8ff81408b7b2062699d038254baf1b23a6c0c6582c0d88a5c35bc08be145ef83f36a78b3793a73b81ce0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
f2f5b41f1661b51a67b81856d1e7ec39

SHA1
56a4d4f91cce9d4adb359fa82bc3578d2ecfb9cb

SHA256
798106d183582e86205950eff84778ab40a8b2220a9312165b3c06a734d81f1d

SHA512
d67bebc7490a17befa59853e69aa4f33758b3dabf7a3d7caec3cbb8975917ac553cb3211ed20d3cf8df88fc5a72152eeac77574f8d89b9b69c35fc50fc3440b1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
2a41467f3543460a9805f2f62b9f1154

SHA1
29f8074903d2ebfd287147c14796d299532c80e9

SHA256
0d2b579ed819c6ac869d8c5e5ea22e3b5bee773cd8b94b12973522275cfee68a

SHA512
ddb51dfdd58f2f8f08b0f4231676cfd95292f5a0fc9350e559cdeb89a9193fdf3b76b1a36047ff4002432c8adb43a88c6f20b3346427799a628471ad27ca4645

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
f6495b8aa6249ec12253ef1c1b43840c

SHA1
be9cfdde655baac3c24b7adfdd47a384dc4fe549

SHA256
13845725e0a0c4426633ed12059e7ee4926978afd4ce76c7dd6df3f1ea7340bb

SHA512
a52519e57549c87a80c46c6e76adb3102662efc20d4c106a575dd026c4e93beffb1aa55f52a41b870434732b476fe72870cfb8286aa9f8e646d304fe3c4088e2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
f74e884d12f3b820033a5cbac90481b2

SHA1
d81f2baa8ffcc2413ede4a993984bb53f6f9fc73

SHA256
180bdb2a038ef5db99f2236ba565baa54713d807b257c9ed46a04ab847b4d58c

SHA512
44fbc005577c42e85b5d76861758e9287983e930cb11190278ee409d84086146dbdc35ec5022b4652bdc50a2814c31c9300cb9936085b584e42035b353a06b9b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
f65ec4ff710b67ade482e0a5eca5048b

SHA1
3f542536fcf2c9594fa811cb864fbf4183f3e657

SHA256
87b2e3b3517530fa219da513f789a2381c5142e9d195bd9e35558bcf5c8ef554

SHA512
904152ee1ed56f1296893d84563254eb8a20e8ef8c2c009bb1d33be6a145a7b0fd5571f5163da25545e8e08152776102cd9bee231209a9552304dbe851f1d616

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
97cf30548cc9101c60a0c031d25ef760

SHA1
92f939fcf81cc4f0c42f7094adf85147b914dad4

SHA256
59b859503034ee7cc0ba0d865831e1e11720fd268e302efe8ea5712b4f33aabf

SHA512
3919b41dae96ba677969c49e96ae11102467367449fc6733dfba7fe8c1a5b5436d2cf519abac22f0d93fd7c0f90cc6dbf976cdb37a5ad93d861fad78f1d843c8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
09b64ededb34cc462406b551a481571d

SHA1
94867deba0fdd95cf9b17534ba9d5780c041fc6f

SHA256
36bf04ff7cc08c6802f91747de427e99858d0e9f7344fcbd39a5750f37ccbd2c

SHA512
329cd72bed00c3257569132f338841fd77f18e9f3e09987e86d17a369ae3e398d8014415aa4adfec8ba23db096b05bdcd755691f92fadad8a8116725f5833730

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
5804c2f4b140c5a2cb28caa33cd1c055

SHA1
e84f82a08e9f12f891553eff00e9fb1b4880bdfd

SHA256
f50aaa32f0c59601688f5605bd0fbe0b328a7776fe583d6ca2053cb09287f20f

SHA512
5a8e6dacd9979643779119f18a8f5732ce2801b18ccbc5c361803ec6b36eaf8f740908cb2f30152c82870bf7d5e58e8f73e5e440975e24a6d28dfaa0b6d90393

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
34a448220db1ea05fef6839a765a4e44

SHA1
16ff780aac2c54930452345777ea3b9a54dd0dd5

SHA256
04d0cfa5250d9f1c1f522e7f94a85a24a24712d9f6955230bb90f527d6b90bd5

SHA512
50a103db56ba9956b2ffd6d2f47b9cd656899d9abae085f2111b824f95b615c8d03e6acacae2b262e02013bf727daa7341b66e1ad55886928583bab1f1a9c66b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\fe547e59-8f16-45c7-9f76-07543b1f5f53\index

Filesize
24B

MD5
54cb446f628b2ea4a5bce5769910512e

SHA1
c27ca848427fe87f5cf4d0e0e3cd57151b0d820d

SHA256
fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d

SHA512
8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
176B

MD5
8c10e8f97aa384f22a21d4d20429dfba

SHA1
c5eec4dce86d9cbc00bd620be8e8570521710371

SHA256
07ac449e236ee6ba3948cc8d7beb4da37eab4ad3fb2fed8f94b4d53a6f9b4fce

SHA512
6bea3fee269452a6ef10486986f6dd5cc701a51c0bbfed925d02391e0933311fe41384ca2767cdbee1382cbb34c0e7bb5603d7e8dd10bece081eeed398a5ce93

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
187B

MD5
45036449bb5b13ba570dd9a270de4f50

SHA1
ac48543a94e782d4b4f99858d3744b47c3cc73f2

SHA256
20682d58c15dfc45154dafada50157f823d9eb6ec3c8b02fe771ba93bb657e2d

SHA512
10139506558d10fd64f00452ef01159bb6a80c8208f8e91f475a0c96f0dcb59f7f6842a9b66822cc7abe7396966ed42c6382035e23f90bf9d5ec0b910c478635

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
247B

MD5
5edfe1d62c43b0fd1f770baca5025bf2

SHA1
961af58616cc141dd74c5618f8bb6f75da6f2af2

SHA256
d7b90bd41ebe642085705501cf997c32b37d68031e820438ce8ce80dfab10f54

SHA512
190a0a3115618a5c8bde89e814d754831839f8c0ed939e3e00415a7eeca85ebe8d537d81425067fa34c08c2b7076740af9b4a4414217d04b8a9c033e9bee7eb9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
112B

MD5
9f5e60e9de9005a284ebcf52722ac44c

SHA1
3e45d7954d90b5d7f6c12eaea144db6d8264623a

SHA256
e5e9b5fd8c07bdaa1b054f75721a66a9fe61c724d6be50aba72a3d81625a314c

SHA512
cf928829bb55e3f240745d4584da4305c1583c621a0514d14b9f2e0f52b682be8dfcf72d2f21ae023988fb1afaef8c523802e02f03e6ba82cd10c2246914a4ee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
183B

MD5
f1405bcdf753555e0c628b97df41e949

SHA1
bf846894b4496332d62e394793160eae06cca38b

SHA256
5500628a83fdf7f340beecf4a17664a9db6c4b1b46b2e4f9c1a973052aa1be78

SHA512
fef08a030b0b6b41028e2d3351043b51d70b8c0a37450bcfbc3aff7660de56095c2687430c04684d64a33979739e6abf9688d5e0b46fd041e73caf13bff5aa6d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\000002.dbtmp

Filesize
16B

MD5
206702161f94c5cd39fadd03f4014d98

SHA1
bd8bfc144fb5326d21bd1531523d9fb50e1b600a

SHA256
1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

SHA512
0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000007.dbtmp

Filesize
16B

MD5
18e723571b00fb1694a3bad6c78e4054

SHA1
afcc0ef32d46fe59e0483f9a3c891d3034d12f32

SHA256
8af72f43857550b01eab1019335772b367a17a9884a7a759fdf4fe6f272b90aa

SHA512
43bb0af7d3984012d2d67ca6b71f0201e5b948e6fe26a899641c4c6f066c59906d468ddf7f1df5ea5fa33c2bc5ea8219c0f2c82e0a5c365ad7581b898a8859e2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Manifest Resources\agimnkijcaahngcdmfeangaknmldooml\Shortcuts Menu Icons\Monochrome\1\512.png

Filesize
10KB

MD5
7f57c509f12aaae2c269646db7fde6e8

SHA1
969d8c0e3d9140f843f36ccf2974b112ad7afc07

SHA256
1d5c9f67fe93f9fcc1a1b61ebc35bda8f98f1261e5005ae37af71f42aab1d90f

SHA512
3503a0f4939bed9e1fd5e086b17d6de1063220dffdab2d2373aa9582a2454a9d8f18c1be74442f4e597bdba796d2d69220bd9e6be632a15367225b804187ea18

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir2392_849410179\Shortcuts Menu Icons\0\512.png

Filesize
2KB

MD5
12a429f9782bcff446dc1089b68d44ee

SHA1
e41e5a1a4f2950a7f2da8be77ca26a66da7093b9

SHA256
e1d7407b07c40b5436d78db1077a16fbf75d49e32f3cbd01187b5eaaa10f1e37

SHA512
1da99c5278a589972a1d711d694890f4fd4ec4e56f83781ab9dee91ba99530a7f90d969588fa24dce24b094a28bdecbea80328cee862031a8b289f3e4f38ce7a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
290KB

MD5
48bb332f823b382fe5d2b896dc15d3b9

SHA1
c6d5c5b6502edbd2c889badbe5b6aafe05d81525

SHA256
55a9b3e79f49b49424eef9a0495d4e1ca55c82ff4abf8561ea1cc61f357cfd88

SHA512
2e8b65767b277d8ac42ed4aa0a90e250f1f2344c606536f23b5629fb7c68c0df44092599b5abbfead416b1e571271ea05550221d853b273b29ab18031e23bac0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
290KB

MD5
dc2494bc950a3f978d12470a98a6f301

SHA1
5fbf999873eb3f6691a38bc20b8264bef9f60cde

SHA256
eb4bced4de8bc915effde624a3c6fa20bfb470e2d6df895d456e0c699937878a

SHA512
f422577ff6448ab7b909bfa285a82e3523f48e3b7cacf87c4d289abfbf26394bb48cbecd73e15b3d20e4abf9d2cabefc95ed4174c3ace94287f782329eb85145

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
290KB

MD5
ce11acd2f656065c2a5e359afdcedb73

SHA1
aef9b0ebc3bac68feaaae8e6368b158229219d2d

SHA256
243291113f1f3d7a4f322be44b8d1b2100849b66ced433ba1b8504a5b1aac038

SHA512
4d050435efc4be8f8d33eabe794c9413093803e1f8461dc611d72e9ede229164b6fc9e43f9c34b47427d32812d315802cef38b092a2a3f753dec836ea6a0fc60

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
290KB

MD5
c280f8748fac4d3b0f48a1ac72876c8e

SHA1
726f9c5c83ad20afdf2c12e3a0ccc3e7489b4a45

SHA256
effa00e502a904dcb708def57687aa6b87b157a9fb94880e46a2a0ef214e96ef

SHA512
bd62e3ac25466129e628a24773987679a6d5bffeec69abae4e5293893449eb3102e09232f08898567a6e2316812ee01c898f0f8ef60efe4fd26aa1813137a991

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
73KB

MD5
220661fc1192b4a298112fdde7e4fd57

SHA1
1ab1bac324e0e3eec10234e7b565e3d420ce7816

SHA256
549483bd43383c28dffa4a4c74a6093fbd9007f7e4f6e5d5c83367027747fd87

SHA512
596e7b6599f4667c99ea738fad0952c208060998030b413cc758dabb7a38cf46ede911e131af62a24fc9bcf9a8a80513a6a1ff68f794d532e32f0582e1fa9930

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar4E17.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit
C:\Users\Admin\Downloads\eicar_com.zip

Filesize
184B

MD5
6ce6f415d8475545be5ba114f208b0ff

SHA1
d27265074c9eac2e2122ed69294dbc4d7cce9141

SHA256
2546dcffc5ad854d4ddc64fbf056871cd5a00f2471cb7a5bfd4ac23b6e9eedad

SHA512
d9305862fe0bf552718d19db43075d88cffd768974627db60fa1a90a8d45563e035a6449663b8f66aac53791d77f37dbb5035159aa08e69fc473972022f80010

Download Submit