cee624108d8d0a054c63ea177ad081e7f85b965f03d1c2837431d64830f49842

Resubmissions

20/06/2024, 17:51

240620-we8jjatgrp 8

20/06/2024, 17:48

240620-wde6latgkp 8

Analysis

max time kernel
149s
max time network
148s
platform
windows11-21h2_x64
resource
win11-20240611-en
resource tags

arch:x64arch:x86image:win11-20240611-enlocale:en-usos:windows11-21h2-x64system
submitted
20/06/2024, 17:48

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

text.bat
Size

130B
MD5

2b659b3b8eb11a4f6f2fd98022932629
SHA1

31fb3028b94556373256e217b5d828036fff42ae
SHA256

cee624108d8d0a054c63ea177ad081e7f85b965f03d1c2837431d64830f49842
SHA512

df37021856cf28fff290845a21808faa7e93bc59397d39e7053a54b9ac4de1d4756ae840d9c6be2638b77950f54aae712f50aacf82b7fae2ec3443432fe093fe

Score

8^/10

Malware Config

Signatures

Downloads MZ/PE file

Delays execution with timeout.exe 1 IoCs

evasion

pid	Process
240	timeout.exe

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe

Modifies data under HKEY_USERS 3 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133633793029365415"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-1276817940-128734381-631578427-1000_Classes\Local Settings\MuiCache	MiniSearchHost.exe

NTFS ADS 1 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\GameMaker-Installer-2024.4.1.152.exe:Zone.Identifier	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
3752	chrome.exe
3752	chrome.exe
1028	chrome.exe
1028	chrome.exe
3124	chrome.exe
3124	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 15 IoCs

pid	Process
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe
Token: SeShutdownPrivilege	3752	chrome.exe
Token: SeCreatePagefilePrivilege	3752	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2460	MiniSearchHost.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3172 wrote to memory of 240	3172	cmd.exe	80
PID 3172 wrote to memory of 240	3172	cmd.exe	80
PID 3752 wrote to memory of 1564	3752	chrome.exe	85
PID 3752 wrote to memory of 1564	3752	chrome.exe	85
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 3984	3752	chrome.exe	86
PID 3752 wrote to memory of 2260	3752	chrome.exe	87
PID 3752 wrote to memory of 2260	3752	chrome.exe	87
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88
PID 3752 wrote to memory of 1924	3752	chrome.exe	88

C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c "C:\Users\Admin\AppData\Local\Temp\text.bat"
1⤵
- Suspicious use of WriteProcessMemory
PID:3172
- C:\Windows\system32\timeout.exe
  timeout 1
  2⤵
  - Delays execution with timeout.exe
  PID:240

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3752
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7fffbf17ab58,0x7fffbf17ab68,0x7fffbf17ab78
  2⤵
  PID:1564
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1504 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:2
  2⤵
  PID:3984
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2136 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:2260
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2204 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:1924
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3080 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:1
  2⤵
  PID:4432
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3236 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:1
  2⤵
  PID:3328
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4168 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:1
  2⤵
  PID:4968
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4400 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:1836
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4524 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:2324
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4416 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:3308
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4788 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:4028
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4748 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:548
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4852 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:1
  2⤵
  PID:2472
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4516 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:1
  2⤵
  PID:2588
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=2668 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:1
  2⤵
  PID:1344
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4900 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:1228
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=4284 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:1
  2⤵
  PID:4252
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3284 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:1616
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4080 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:1336
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=4348 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:1
  2⤵
  PID:1708
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5200 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:1
  2⤵
  PID:3160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5208 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:4472
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5452 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:1472
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5548 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  - NTFS ADS
  PID:2796
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5380 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:1492
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5408 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:1568
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=5460 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:1
  2⤵
  PID:2420
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5296 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:4032
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5324 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:8
  2⤵
  PID:4188
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5552 --field-trial-handle=1784,i,11695242130631226915,14550587358807100921,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1028

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:4568

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc
1⤵
PID:1344

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x00000000000004DC 0x00000000000004C4
1⤵
PID:3164

C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe
"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca
1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:2460

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of SendNotifyMessage
PID:3124
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7fffbf17ab58,0x7fffbf17ab68,0x7fffbf17ab78
  2⤵
  PID:3136
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1624 --field-trial-handle=1824,i,1596823916590921668,9299450282724192939,131072 /prefetch:2
  2⤵
  PID:3548
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1912 --field-trial-handle=1824,i,1596823916590921668,9299450282724192939,131072 /prefetch:8
  2⤵
  PID:1676
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2180 --field-trial-handle=1824,i,1596823916590921668,9299450282724192939,131072 /prefetch:8
  2⤵
  PID:4624
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3068 --field-trial-handle=1824,i,1596823916590921668,9299450282724192939,131072 /prefetch:1
  2⤵
  PID:248
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3180 --field-trial-handle=1824,i,1596823916590921668,9299450282724192939,131072 /prefetch:1
  2⤵
  PID:3400
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4268 --field-trial-handle=1824,i,1596823916590921668,9299450282724192939,131072 /prefetch:1
  2⤵
  PID:4168
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4436 --field-trial-handle=1824,i,1596823916590921668,9299450282724192939,131072 /prefetch:8
  2⤵
  PID:1388
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4576 --field-trial-handle=1824,i,1596823916590921668,9299450282724192939,131072 /prefetch:8
  2⤵
  PID:228
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4556 --field-trial-handle=1824,i,1596823916590921668,9299450282724192939,131072 /prefetch:8
  2⤵
  PID:3028
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4812 --field-trial-handle=1824,i,1596823916590921668,9299450282724192939,131072 /prefetch:8
  2⤵
  PID:1548
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4944 --field-trial-handle=1824,i,1596823916590921668,9299450282724192939,131072 /prefetch:8
  2⤵
  PID:4152
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4908 --field-trial-handle=1824,i,1596823916590921668,9299450282724192939,131072 /prefetch:1
  2⤵
  PID:1988
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4188 --field-trial-handle=1824,i,1596823916590921668,9299450282724192939,131072 /prefetch:8
  2⤵
  PID:984
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4804 --field-trial-handle=1824,i,1596823916590921668,9299450282724192939,131072 /prefetch:1
  2⤵
  PID:4852

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:1936

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
b0f123a1a23589d7039d6e4f7ee5b768

SHA1
d83ba85f2b1dc79cfba7a4a1eabe636511ee3829

SHA256
06f9a4471f17f36e5dd7d06d38ef8270b1a36f930ab77cfefebd18ac00319037

SHA512
b13b1a337d89cdeb6c797645b05189d62ebe5ad669e9cef569f1aca8ef8a83982b502447d9b28339c0a2e3e12df90b7aa3e42e93f633864d824a2b5dee92be14

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0

Filesize
44KB

MD5
b65345f1f57ee4e4218f55c7c8955b9e

SHA1
f27c33428029f2cd80c0c0d61947b5cc0d354441

SHA256
5ebfef8fd3ff95f599159590cf763f267c0ed13537459659b54e2ad6f8fc8baf

SHA512
85784d5f0524ff55ca6a9c3a469025c63aa8caa63d223b6dfcb2e3368ad98b1677ed05482f2dd3c074a0d2b6bc2d97153cd85df313fced235a6daae0987ab645

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1

Filesize
264KB

MD5
853810f9902d9c8fb75c43b9654d5b39

SHA1
0675a13bbf6023efa757215046c997a619046fbb

SHA256
57dd3d5169703392fd827023f74cd86f5828f05ca1ff68c4e86b7c5452676ad7

SHA512
a0179b7660bbcea477dbd94ad21432613757cf99852064c2d97b12feb50809c00f61939883323e73967c92726e88590d15da0a4b465c97e961421b6b2d0d7daf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2

Filesize
1.0MB

MD5
f3c2fe84cd0974a9e09e2dc762d37940

SHA1
e9ae359a3de7cc5ae319a65d0048dff2454231c6

SHA256
982131b4b8b37619c7f6403dc78d26e9f9d7bd26364bc4691038047749072976

SHA512
3b40e9db5f417ff0f15780c7be491d6321979b456e5243e7fa8c845bcc862b4c6e7d7358929de9ef42627d52400462efca2e205fd027d899f0b1072a242a4403

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3

Filesize
4.0MB

MD5
df8b429076fadcd3acbe55c33bb3404a

SHA1
b815a874dd315843147ab0a83d1b3e37eca43a27

SHA256
bea1b7a6d460a51f6a95b26e4bad2c82fe32eab4ff2eeb78fb855d7e9d5fdbd3

SHA512
686a197d825398030aeb837aa1f8736b7873652279f8f67d3ca45b8b39d9cf1a310df2bcb4f13a381391f3716a86ba91712e1987392b371a8cf6dc7c08ccfe09

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

Filesize
59KB

MD5
caaa5222d179a24ca5540080c7018b99

SHA1
1f415a7a73a12a4c16f25709504f4e4e4beae9dd

SHA256
b729255f2e984a20fa0f0eb07e08368cf468fd17ff27a7d1dbb4042ec261d8cf

SHA512
71b4f878aa154ba4a8523c2e36faa8dbe3cfafa082b18796d8b69539dee9506253b9e55fc9b71cc2c9027d22ae08587b0e2ddadbc8d3395dbb73584d1ca1ebcc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

Filesize
204KB

MD5
081c4aa5292d279891a28a6520fdc047

SHA1
c3dbb6c15f3555487c7b327f4f62235ddb568b84

SHA256
12cc87773068d1cd7105463287447561740be1cf4caefd563d0664da1f5f995f

SHA512
9a78ec4c2709c9f1b7e12fd9105552b1b5a2b033507de0c876d9a55d31678e6b81cec20e01cf0a9e536b013cdb862816601a79ce0a2bb92cb860d267501c0b69

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

Filesize
24KB

MD5
c594a826934b9505d591d0f7a7df80b7

SHA1
c04b8637e686f71f3fc46a29a86346ba9b04ae18

SHA256
e664eef3d68ac6336a28be033165d4780e8a5ab28f0d90df1b148ef86babb610

SHA512
04a1dfdb8ee2f5fefa101d5e3ff36e87659fd774e96aa8c5941d3353ccc268a125822cf01533c74839e5f1c54725da9cc437d3d69b88e5bf3f99caccd4d75961

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

Filesize
26KB

MD5
2c587d22249f14c472185f027b9c0b9a

SHA1
04a8c20572d2660f36b35cc6ade848f27b457d3e

SHA256
d12763e688d98b7d6e25cd92535389dd4591f0ec3179f56dc6ef9ed45e7b5d1d

SHA512
79ae8edcbade7c070888455e4a61544f946f9df274a60d4f91a36f822e529624b04814c59ce69b3b15ec092a1fba14562fd0efa06cc49743352cac1efccdfef8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

Filesize
29KB

MD5
f51f06999b501c0d8235a0ab042bcf3d

SHA1
97b6cdc54fb9fb1ae1767449fe96a234fea64f1e

SHA256
5a55d76727507751b48ce233de7f768dfbcba136783dc8aa148b69a885b7e4c1

SHA512
d8bb0a3db193732324d9301f39622d7be5393b9a90faf69ce42b6777fe19d27cac8d6805c701e78970b0413a6b97ce4c410b47e6abbfee5788cbfa348c8def8a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

Filesize
24KB

MD5
87c2b09a983584b04a63f3ff44064d64

SHA1
8796d5ef1ad1196309ef582cecef3ab95db27043

SHA256
d4a4a801c412a8324a19f21511a7880815b373628e66016bc1785a5a85e0afb0

SHA512
df1f0d6f5f53306887b0b16364651bda9cdc28b8ea74b2d46b2530c6772a724422b33bbdcd7c33d724d2fd4a973e1e9dbc4b654c9c53981386c341620c337067

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

Filesize
137KB

MD5
67e3bcc48d4c18315ecbf03832f9e643

SHA1
4a987fd6194b7897f2eb5aeda45ca7b911d8037e

SHA256
939b2bda62cc3da42203d80ac5126e30f3a0fd44b90c0fe330e7e0f8d339dec8

SHA512
9a4de125740a16b5489ab78cc48c8fa91406f1b66ceedb39d41919c9f4bb394a900f13128a94ca6b450454af0a9dd8eb3045ecba7b6f29dde7599b01b35efbec

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

Filesize
69KB

MD5
921df38cecd4019512bbc90523bd5df5

SHA1
5bf380ffb3a385b734b70486afcfc493462eceec

SHA256
83289571497cbf2f2859d8308982493a9c92baa23bebfb41ceed584e3a6f8f3f

SHA512
35fa5f8559570af719f8a56854d6184daa7ef218d38c257e1ad71209272d37355e9ad93aaa9fbe7e3b0a9b8b46dfc9085879b01ce7bb86dd9308d4a6f35f09e5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

Filesize
326KB

MD5
40e01c775b4f150dec2ff43bdf0f1816

SHA1
29cc0f7eb904aced209cec12ebbf8e6ab192da53

SHA256
4d21e64e043f3f03c39754589e8131f993de6565a9da3bf86a21c205e37b3ca0

SHA512
c868ed04136d1c38c2d4f22f7c16337532fa1b62a3da413df9815ddeb2fbd5a5175d7987beb796193a4e812a679c117928c97a4e87042ce4383433ba479b923f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

Filesize
106KB

MD5
c054cddd96069f22fe75e7a2c17ae412

SHA1
d38822115595dad9af041a2ac43dd74c782276c3

SHA256
5f2af02562178807d98ae12e1a8e1aeac6928440ed40276a8c3ea791a733ae71

SHA512
64506610fa6074e56f710f5e7b21ea47662237751121e2b73d77a9c1fc72ae61f2b3a2fd7cfd95c9b6a9500f56c307d0176f365e426aaa641b2afda81aa136c1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

Filesize
151KB

MD5
4407696e0c55e910084ef858ec0dadda

SHA1
c190174df2b8de59eb72800f9324023a8db37edc

SHA256
54097e500bdfb50e9f9f3ffa091095aa4406ef48947327e21605a7a4ee341ec8

SHA512
32374156ec2da2e632cc36b241a4b9979a5125461d8a59548324bf8ca9cee5a504ffe1a6bd06b3b7bb72921a5331f0118648d613a38eb20e20d6cd562568914c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

Filesize
16KB

MD5
3cb4b23cded973753aa3c8fb7a0b528d

SHA1
45f5351ddfc9aadc5ff01664003c62773d6b54d0

SHA256
9456ed7740b5fdede2cb4f1d3a36fc6e294f0b7852937a8cced650148ba05cb5

SHA512
6ec9192172238d89d2e80f874cbca6316edd42fe069a3a24a5b0d1d1e86a50d4cde498fed7ec5d1d8ae45c6a1abfbc5f2eaf3220c17e880ba9ef876750180384

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

Filesize
164KB

MD5
34b5359cb2b00e1b1a90479a025024eb

SHA1
ec09c3d760fcbc11167d1f5ea19c150a0486417b

SHA256
94302748d16da440938f341f1121663ba19fb915dd8ebc6592918ca31b3278e0

SHA512
cf35933365b0f8571c9cf2075a5c1bfec48bdcb74b8d6f6dbb6fe800948ba51b7111378437aa496cd179d84889509426c7a8fdd7dfe8592acb17e39089b4d6c0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013

Filesize
20KB

MD5
e2f3e45a5a46e26cbd6cdd7693cfa090

SHA1
2f2c3c033d190e9d6b80d4cebaf48b49edba38d6

SHA256
620580010ad02ef3e61e1323c4f99caaf08db36bbd51357c02533b33e8cb0c39

SHA512
d74c60212cfd987c36259f15d6dedcd6dff25b92014162667076c560fa53002163f90306c2423363a652970c77706c90b000a8c8e3e48edaf336dfc585306a07

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

Filesize
16KB

MD5
88f0957bb12d4870ab3ad907f535eb17

SHA1
990ea97f318a7b71ac6b76060fa906cb1c086637

SHA256
3bcada9c56a6256f726489498925dc82afd16abbe379c95caeba3b1714ebf387

SHA512
d7f5ea7a6304804f879e53a606800288cc4f182d0acfb3eb7553fecc308b0d3e135dbca288fad714dc1280520ef661c2094efbae14170b2d0209e38c7b10d1b3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015

Filesize
24KB

MD5
1c2585853d0c323a8f736c1ad4a8ff19

SHA1
eab2934e48d8a84ba1a93e5297648a440873222f

SHA256
fa56b508ab04b28054bd898def18f4657c63fa4e0c79c16d811bbdf58c6f3604

SHA512
8348a8de0a936fba0d16cd5ee49a2aaaf10bdafe894c0ee1d916110fc8dab6ac112eb775ac3cb5e65844cb64654bb6efba31ac71428b171bd3b8270027a22c88

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016

Filesize
252KB

MD5
b47464d0155f3fd48262070d854ff4ed

SHA1
a3b11b06176753e3a4827abe85cd08bfcaddcbab

SHA256
a848de30fbff0cf48810c54ae146c7b6fc0089b8b2b13caf04f94c1a63f40528

SHA512
1a3f8b807931ad6cae70605b5170004cb006bcc423c83051c864563c1011c833b99aaa7372ad7938673cac82ebac6d3e8d017027fac113f3bf6b6a1f96ea2bd4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017

Filesize
163KB

MD5
30d982e828b5c524980da42245ee9e90

SHA1
7364e3f1f7ed95e2d772ec151b49b73e4972fee6

SHA256
c41244b589eae8e53d412f7da31782c1b6389dbef2d422a58971e5f32346adb0

SHA512
c40ad603cfae96e89e4b852dc29a0ddd8f8bd259c2b7acb4fdc2d9100d039a05b6624d533851a375267e8d4bc55aed0b079651129477bcba4b32cedbfe901100

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018

Filesize
206KB

MD5
25714201a83fd63ea90a2e3f30d550c9

SHA1
64ff0abd6f35a873ae9713d5e5febe285a8deefb

SHA256
590419f13ad714dad9405f3764d603f28d61699f645b3fb0ed9923dcf301aece

SHA512
04d0fb0c1f0ecd78bef337d0f55bc74ce5e3c99c8a667a22786ed5060adf565b501dc096343005914e27e539591f6d4b978065422ccd6b3910aaa3d7ad6184e2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002c

Filesize
202KB

MD5
9901c48297a339c554e405b4fefe7407

SHA1
5182e80bd6d4bb6bb1b7f0752849fe09e4aa330e

SHA256
9a5974509d9692162d491cf45136f072c54ddc650b201336818c76a9f257d4d2

SHA512
b68ef68c4dcc31716ce25d486617f6ef929ddbb8f7030dd4838320e2803dd6dd1c83966b3484d2986b19f3bd866484c5a432f4f6533bb3e72f5c7457a9bb9742

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
e4ab5202ad90dff9891cae1cfc3fcb5b

SHA1
c056ee7b3d6e5f1f31daf30e85a898f0b1bfcf5b

SHA256
0e915e00a7f02c9ee3cbee3df88ed49ccd47795cc7f5f25cadc85bf93d9c13a1

SHA512
46afdc68abd32e53481d070ff096fab5b6517988a3746399474fedb9dd94fe9bc6975e96df03f22bd666c3dd757daff6d751b6986c701855dcdfd72f0c36573a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
80bb082de93246199dc753ce4c5bc30c

SHA1
25e3b0ac88ff89ab2d4b46112b73f3a1338bdc8f

SHA256
3e33362bd37bb579878e2a2abf847ee4fe3305eae2e71518a1ae74b2052fe884

SHA512
107ed008b85516447729c2f80d026d86ca3400a9e1fb52d33d0976e2c0f76aa89f20eb995529f002e9e547d5bf5a6fccd8cf09f53a539d7e17b141d9bfabedc2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
168B

MD5
5d07404c9fb8bace113cbe71ee77ae83

SHA1
756d47337623f0a0eb7784d321314e95b7d06956

SHA256
f828b1bb7c4c1f2e0f0ea3456d98367b448db4c5f718d8b5998e2cea299af75d

SHA512
e269cd6c4bb87bc37e44bca29fd836e5e21bb48a13a90cf8df92f3945bad9663dc2368ef016a38e4bff593628b12954cacfcf06705d9397dc0a9917abdc14e6a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Favicons

Filesize
28KB

MD5
41f8de64d740fc23a0ea5010d2a98fcf

SHA1
9c6fd575f5afcd222c22910482da5fce3e06a2f1

SHA256
6c032079e9520abf305881e3b070c34876d3825e1ffb335c458479e9f8f5d71b

SHA512
f1e0c711279f8021bb769ba540cde49dfafd650717b568973d6286f888a8bd74e2b875be7aa8e205fd57a5ecffcfe5fb6b778ecf4b5e299a72e8b3968338a8ce

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
8f827979f3960e81e9e8f97f58b152fc

SHA1
5961ace2ea86ccc650ab1d36bbd4a481746c0a49

SHA256
7a4ee753ca0e607673383dc7c0c53b89df2e891fba7b9fe6ae34fd7cc82e11c8

SHA512
bc9ac2baac59d9669ab01534ea26704f88f4c87d314c529f64ad4b67025eaf1ec8975b5d264cd3c5338394af35affb119b8ebc884be71210ea31317d3a830eb4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History

Filesize
152KB

MD5
dc6bac20317c82f4a1e0f20f41a4b010

SHA1
54a49ebc7090f62cd101d69944fe9eea37d175ca

SHA256
598314135184ce7c52cfc8a409d109bcfe3eebc9ced8b3fada4200035c4d8638

SHA512
6d0171d44b300b37ae2603fc9bba8e5f5e2758178c3cc0d64365f45d429412a7dd0f46160cce445f4c5215e146529c037b32afacc666a0d0d247d304a1f527a1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb__tmp_for_rebuild\MANIFEST-000001

Filesize
41B

MD5
5af87dfd673ba2115e2fcf5cfdb727ab

SHA1
d5b5bbf396dc291274584ef71f444f420b6056f1

SHA256
f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4

SHA512
de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
84B

MD5
32b9dc9cc81d0682e78627c873fdd651

SHA1
46c486386d3e153c3e9b11d54cb52cf0064b71cf

SHA256
712196693e3527ac1131831f1a2108b6c0e5c68967b26d51a452611cdfb86e0c

SHA512
f18bc37f8b72411548da247aa1394cc5ac03c3bbd98e82eb8ba290ef239ef5b8625cf4835bd41ce7c52766d0bc3bfe9150dd22dbf62f0f05992ddde5fbfdc811

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
99b96c43314c30a700a7fb9982c2c9f1

SHA1
c1a837ecf7bdfedf3658d29a2c365afe2a4ca660

SHA256
8b522bdbdad93ad75f676fc839dd38fce13605333f1deb661e70c870210531d7

SHA512
6a78bd21d9249d27bdc8610a53804cb4a9a635243cb0408d1846b775a398ffb5cea2c6aa616a5229cf393a75da1e7899b00e16e6f2cfed4f131b47846924d4ad

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
e90c6ff06d6aa33caa903ea720c20f08

SHA1
1af2551487084a53d930fef3e97ed431c464a496

SHA256
290a4bb87df4a1a0d2f1123192df354f453a34305694935db1fead8390fa8331

SHA512
5437aeebc5b06bdead405082520a177c5e078886489c351a180d5a5f82a722ad48a24a980a30d95c47c36f0e65f90c464264a19612a9249d7a8a8dfc0bdc0cac

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
356B

MD5
f25965b6d30f36ddaae4d2b261e745e9

SHA1
fcf27d46a0ea1d45c0e54e6f771b656df064c6dd

SHA256
79019381261cf12f6b2a19abbb087a5571893bc0626fd7666174c81b3869bc80

SHA512
e0da5109568fddce1d2aced9b7b675f1e4454b4c199b33614487d887daf995f842f599cc9e997d827d4265d94b6dc59317005cfd3cac390396c7f7344908d258

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
356B

MD5
866b2bd92d6fce744b77a159f7090480

SHA1
7405be767a05c154d0913d1a09dbbda234678492

SHA256
6d4393301232f27da9af820adcceb4bb8ac745d61a1f062fdfa22ba244bef1ac

SHA512
219e5fc4ad7c0194bf43ec2c016aaece26eb27cd620629f1a0b83a0cd5eb8c05b4316c8da54cc475584156daf8072df855d80c4455229c40680f437c378f2a11

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1024B

MD5
65f458a7462ad124852499cb6449b414

SHA1
75a7590caa2a3a83e1163bc1b233e380c0f3ed7a

SHA256
c40560793a02e205c1f529c2f198b073f8e96aff8e03f533cc260b472f4ae847

SHA512
60dabd74b1a45ce28afba1ba5bd94740e47eb9d02cb43072d8710dde599c42f6f0ffe6b31209d493c82a2d5ff66baf22715df2c543e3c7fbdf045c409d095cad

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
22B

MD5
3bb76ec23c5506830ead56540e06159f

SHA1
94695e47d907e559e91e677cec4eb763dc0c5ca9

SHA256
6b40f4ae548688a472be3ca0c1b08ecf520b31e706fec0f9793b4666134eba06

SHA512
307f9bd06ca5ee753acdc450cf1599dfc8ed080d9a1b19d752dd9b7950377a5b04e44d374f12ed76abd74961c2b1f8ad6c93e4663ea77f5d6e066570c1aa6bad

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1024B

MD5
061765dc4d9e49a0c010ea7c324b13c8

SHA1
466f1daa2b0dd76cb7d7c6886aefdf7d5e4e9ea4

SHA256
62c675ff937304e76056cd85ac7048995c9da339882be0b4ed48991f308be52e

SHA512
a572d6e94eedcaf948b430a9fa5daa66947cd0cbcdd584e534b92e92f982afb27f65d814487fc782c7fc9182f1223a5e407df600f93d3710d8c35aa337d65a83

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
9f4d762e39b9c9e76a88c63ea9a212da

SHA1
4db954aaff1b3c1c4733a32e150e016747726b6d

SHA256
f55fc02dfd327a87b1aa78bad2edc8569724a674ac22a9d67a428da9c3f05099

SHA512
3a155d1545950f8fd0b1e928ee5549c9c3f51c859ac0adbc09b0a531fbef5ebd278d221e20a770b4ca57e4b185e87571960c0c08c442e7e47dabbb433862b606

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
beb102b52a6bf63777f4dea9cf5de9e9

SHA1
f3de8f295c7251472d7d0244e096d2b8346a1cdd

SHA256
484b94774424ed6c75f5956e658b4574e19c0897031c0a746ad68ab7f755ac4f

SHA512
b8eb3e54982eff31aca1b6313a660d3eeddfeb78eabe0a6e871cbd041351aa1098195bbfdfaa576256f5357fb217a118cdb38910bf187e99cab8c6c59dfff514

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
3584b8950f07b934e848628fb345bd82

SHA1
e96bfbe4efc989b9e5667dab92d942155f5de804

SHA256
78f33f5a6a8c1dc4e5ff765ed41b2e698866d88721232d702c88f690d1001a5f

SHA512
6a7669fe67c3370d5e94cc734f3ce1f8778022ecd1ebe15e8683ea28bda9bb047b3a54772758d2a0d858feb90296e5ec3f0efdd01581c10836024d160ac70389

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
0e496c5d0a8931fd817c0560a003162c

SHA1
3529ce5f0c43b7e3b7e620bffbcd9c1881c28cb9

SHA256
fe06fb8ea5fb07fc782382045b6f3850bb7452c79ceb495ce1a7a9d8e165ba0c

SHA512
3e24cf9fb661114c404c9938b893acb826c2f87eb14bcffe3d44ff96dad75627ca1fe89aff2a2c8355456fb586d6975538a3e521e4a7bed45ccf049c13e0f2a1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
7832f179807207f5144ac82838a31ff0

SHA1
348cce9c0a7ba344c25905cb05b36ec43f33def4

SHA256
59a77ad75e2950f886982be9f2576207d0abe03ec09da9228832315b26ec9d62

SHA512
f9879af29a71f484c45ebb90934e18063a2c784b8c87cffdc32383cce7ea63a0cbbd050ad44f0e8dd52ea1c346202f5ceed5efd81e7ddbfe8d0d9a788125048f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
86515ae84fe8e80d4d31716263b83104

SHA1
b4a218b30cab1b7a847689334cfce54f5744a652

SHA256
fa81acc8888e127c03695050b68b5726c12c1e31fdcb486ebb19b37bd2c5767f

SHA512
5ea3339e67a6ce80939134bb031c4721e1bf1aab0f6b81c25fe6ef44a2d1d43c752d4e892034d1380c7c51bd4962c238b559e7d0c3e069b8ff0326b65dd18d1e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
440acb6fddf8d35e0daf1f3c1352b18e

SHA1
86a8b310aa5cf608883c02bc44f4192344d2c6cc

SHA256
55114308d5708f5c087f1d23961fd7a73d4a4cac6b12934d024cf9d5690b0828

SHA512
d1b0bdded7de8a14735c35984f5c71daff5cffe4931628018b86327393d29abfc295d63ca0980ea44ec4fef3ef5b6af51d94fae96bc2602dd5af0efb34971c04

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
4370836fa0195629dace5bff6c7ebb09

SHA1
c624387078039be9b433c2dbdc8fc84431fc1150

SHA256
2d99eaf32516cb74ef9e13ea8afa11d843b30187a3612153ad74c24bc5a0aa97

SHA512
78e9320b14b8b4c158efdb45a9ede187b3530a54e799b6e645d0ce3c04729eb18b4e32b88562a21425f9146cc4ed45271b898b810d534c0ffe06898ea662f31a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
1cccbbb53641f707369b1d56ddf68b9c

SHA1
82477b2a826d8c76d96363fe50d7d26d735a36d3

SHA256
4671332759488b3f74d4cc9b0371d072411fbd2805d354550137a15f4e5ef3e6

SHA512
12a3be3da1abf901cc3067c5e521725c747255435e7f6a01eaedb0d398d89add9ddcab6dea19a64b2efdbf737477d6c278bc70749db028844226a9e5aa0d4cb5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
16KB

MD5
e958605db09cb3f9df688e4f31986652

SHA1
3e8af3785eea92263ae0e240acf130166af654ed

SHA256
c97507510d83246f99f69755b46c051f8b1c2ac916a3c6d9b812dae6e2efce78

SHA512
759e952c902894a1c0c24571e88656d5eb059faf666d1f471aee667351d2dcd35fa45afc58f70de00d38c6820b7a5300ec7ad281b485db9a3ee274053694ba0c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Session Storage__tmp_for_rebuild\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Visited Links

Filesize
128KB

MD5
70425e4c95d76de9e6c13b9928cfac28

SHA1
486ac1d8b666789c0e957e08a1236a982511018c

SHA256
f66994db545936eb4baf8471f68cf93b7c7a8d81164d6d89780d178656d8bc24

SHA512
a3ea0745966475e2fe57dfb617a255d16eee6881c28b546403d7277e998d1e115f7ddfd25abb0e3324b526ce763f2a642e206c3fee764da072ca9eee74afaf68

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version

Filesize
14B

MD5
009b9a2ee7afbf6dd0b9617fc8f8ecba

SHA1
c97ed0652e731fc412e3b7bdfca2994b7cc206a7

SHA256
de607a2c68f52e15a104ead9ecbaa3e6862fdb11eac080e408ba4d69f1f7a915

SHA512
6161dd952ae140a8fb8aa5e33f06bc65fdc15ce3fbfe4c576dc2668c86bce4a1d5c1112caee014e5efa3698547faad3bc80ec253eedb43148e36e1a02ce89910

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
278KB

MD5
7ddbf84f49ff6040776890a6678f2d3f

SHA1
ac48abdbecc70690ac3a70ac3dcccfbe4719f68d

SHA256
0a20209d5ef27f27b38c1b0b5fc5ea52899657b43040435de8c3eed4049f3c46

SHA512
06f46d88f0b33198d409c93c3a6a140e5418c4f8ba7c1ef7e3459c980db80315306d32986fec3c077f4fdcf21e070f048aa1e7f44ce2db50f272d5146bdccba4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
278KB

MD5
5e53207119cb13633e9375d9c4ac9b45

SHA1
568792541114dc4fe6defe53837b2f59624b0ac4

SHA256
b90171604fe5c39d759a533c3b59a8b92caa1fddfd4e9f0906346a5f4f390b94

SHA512
959aea33cc629c6d01b6169b3f434af2033f07462874398c44cc43a6b5f26f7a00d3a227ccc865401bcb4425b10a4763ff25db38db7407edab260f9f6797b14d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
144KB

MD5
6baabb4dec1055f910ed7b6be649ed03

SHA1
fb9eb5165a6f4ffa383badc468afcb2b70c676b6

SHA256
b9935e54633f6e625e8798fafe7ba904d331b6ae96908855b99bc07f20891bf1

SHA512
ef5d11f3fb9e675486155c6441237a4c5c968ec78bd322ed4ad876e1c6ca70191b2c3de02dc00785ca2f9b789301636eddf834a68fc428fa4cd715ffe9aee4f2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
278KB

MD5
9071113ec0687ec78356a8c82a129ce4

SHA1
ef21235b88c1f13ccfe85e7c97075ec9c90b144a

SHA256
6f2c78d020342014169887cc721943d4c6075aa7465ab0416568b031dc1ccdd1

SHA512
b82ea8659d3b0122aa520cc9ded6c293fecb3813e93adf605b65436a46a71e3baab0f418c127c3dfa129469ec127dc764cac4165913235c9bc0cf8b6c4a788b7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
278KB

MD5
cc2ec7956d329f1d264a1aa5d21d8ec7

SHA1
2ea4d9a3e47d8d63f7ea10ad1710cf9cbed39a00

SHA256
cf4668af5c843a8705bf1a9479bd8a39388e973daa8ffd06c07c600e7997f15a

SHA512
944f68ab8cacde1a32f45e06e1b01f88810f7e55936e09024596f5a26e70c52fdfc8342488f8cd25c68a75449363d7c49a7c814f9bf7440fff4557db663c28d4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
278KB

MD5
bf620727220f37939f0d54be7b761c6f

SHA1
d175285ec0ba17999b27d71325b01fc045cae1a1

SHA256
786d8d33b1457be258e3e28c98d1d2b5685cdf06c345259c8eecdb71370c944a

SHA512
05791606b0998a1b26c93fcb368880c286ce4346c0a9185673454b6a05ea5b2c4f6f8c2a81225f976f7d71c50d2c88de5afc3ebbcc8180e7589533b4a2766795

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
88KB

MD5
5f7046cf29e1723c0f798274cdac88c9

SHA1
5c9c2e6fd97a44855d4bc70da2b620e7aacb3b4d

SHA256
3c794dbb2addf658fcc97b6f56600b6cf3ffda4f575f13439a2e0515ee3a349d

SHA512
a9379e30a1b7440cf81c5c62944f9aee4cab32ba76f31ed1adc6fdce499bc82def1471721dc3ecbae60bb32b545034e1d39ba7fce465f297f3e17b15012a03b2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
89KB

MD5
6fcd9e1d9074190284b74fa05f752196

SHA1
fe1b222c91636aa2c5fa92f9bbbf9ee113b1375b

SHA256
016247b5f000f1ff95a1436d7f99534fff702d91c27c382e4697c51b666b6595

SHA512
d35ee507bedb05c115d9d9b55f58d020098f48c9557d583909ef63e4172044736e3370223ff311c356e898907a008b99882ba21fef2ca1839658f343f20b5334

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe58b7c2.TMP

Filesize
83KB

MD5
c7bff8eda783bd63c990da62e9683e4a

SHA1
908fd3b43eada30950b3d945dd66de8bc2889502

SHA256
6ea7a469f7fda6d54f373b06fd79f40d5d1b552120a26db0ad3247d491d081c6

SHA512
11bbf72af8f9d1dbff88971231170ee8808bf08ecf966124a64bdcb29bba47f412f1156fc43e00080c9c1c0ac849b1c3c7eb67eeeab17ad8919e312195da6bc5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\PnaclTranslationCache\data_0

Filesize
8KB

MD5
cf89d16bb9107c631daabf0c0ee58efb

SHA1
3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b

SHA256
d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e

SHA512
8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\PnaclTranslationCache\data_2

Filesize
8KB

MD5
0962291d6d367570bee5454721c17e11

SHA1
59d10a893ef321a706a9255176761366115bedcb

SHA256
ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7

SHA512
f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\PnaclTranslationCache\data_3

Filesize
8KB

MD5
41876349cb12d6db992f1309f22df3f0

SHA1
5cf26b3420fc0302cd0a71e8d029739b8765be27

SHA256
e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c

SHA512
e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

Filesize
264KB

MD5
f672e8956b66625b327322583178e4c7

SHA1
190fcc60919a2b22d6f2ce34193f57c220a1da5e

SHA256
56f0b02708979c4f19b970925b4abe35d78b0885fe70058aada7f51a71503c8e

SHA512
aa0163f9c7386d1ec09c9e6a0ebe2347008a87068b4cd950de94f4cc2e072d746a1a64618cfc854201ee313b394dd9ce86a0e031a63209297b5350acd1888be0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

Filesize
85B

MD5
bc6142469cd7dadf107be9ad87ea4753

SHA1
72a9aa05003fab742b0e4dc4c5d9eda6b9f7565c

SHA256
b26da4f8c7e283aa74386da0229d66af14a37986b8ca828e054fc932f68dd557

SHA512
47d1a67a16f5dc6d50556c5296e65918f0a2fcad0e8cee5795b100fe8cd89eaf5e1fd67691e8a57af3677883a5d8f104723b1901d11845b286474c8ac56f6182

Download Submit
C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat

Filesize
10KB

MD5
870b0b2057b02c012ae660a60a8cf3a8

SHA1
de36df30678ecf716189eb86179904bfbf9c11bc

SHA256
a143251cd1964f2b8cb7921b647b49e5d95f9a93bd7af1bc338335600df8a1b1

SHA512
b2fb5741233398b049eea5a561c2e8af478957a4b2e189fcd3b738cd610c8778428ffb9c1bcaf382a334255fe090ad6b6c1b4e0e51e1495cc22390f890221ec9

Download Submit
C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat

Filesize
10KB

MD5
e0236413295e49948baeeb46d884acef

SHA1
c24f80184264ef596722c1a84b8dedde9bdad557

SHA256
11af5d1895a6e5952ebf08f72ad5121d828a5e2f8dc0656875d527e886ca54e8

SHA512
d99fd945c37dee141ea4e4f2e2460f482230bb679d8a63131348685a7dbebce074c9543161672fc525cd0c84d41d29e2ee78f6e3a7b8f7d18ca40eefcb95e5c6

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

Filesize
2B

MD5
f3b25701fe362ec84616a93a45ce9998

SHA1
d62636d8caec13f04e28442a0a6fa1afeb024bbb

SHA256
b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209

SHA512
98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

Download Submit