87257e6eade624e3da87ecd572263fce25f4ef36435be1127e648a375eb69a20

Analysis

max time kernel
283s
max time network
285s
platform
windows10-2004_x64
resource
win10v2004-20240611-en
resource tags

arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
submitted
28/06/2024, 21:56

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Synapse X/api-ms-win-crt-time-l1-1-0.dll
Size

21KB
MD5

6d35a57a6d8d569f870b96e00e7f1f4d
SHA1

8407bdb3cd5ec15b2ce738b3dbd704aa289ce3e1
SHA256

f41511e477a164eb9451ca51fb3810437f3b15f21e6f5c6ce0956e84ec823723
SHA512

4317b86d32ca93e5f0d832819cf1ab8af68e853a19eb07dd1fa4d168a0b2a8eab309194884ed3a613b09fc6d511be872a053f76f00ea443499006cdd226fea8f
SSDEEP

192:mm3hwD2WhhWq4WGxVA6VWQ4cRWY9y56CqRqNX01k9z3A8oXTlxWBR:HWhhWVxdlG5DNR9zrG/0R

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133640854094298537"	chrome.exe

Modifies registry class 2 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-200405930-3877336739-3533750831-1000\{7E7A944A-1E4B-4944-8605-EB02E152F038}	chrome.exe
Key created	\REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\Local Settings	chrome.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
2184	chrome.exe
2184	chrome.exe
5040	chrome.exe
5040	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 11 IoCs

pid	Process
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe
Token: SeShutdownPrivilege	2184	chrome.exe
Token: SeCreatePagefilePrivilege	2184	chrome.exe

Suspicious use of FindShellTrayWindow 33 IoCs

pid	Process
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe
2184	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2184 wrote to memory of 4964	2184	chrome.exe	94
PID 2184 wrote to memory of 4964	2184	chrome.exe	94
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 4680	2184	chrome.exe	95
PID 2184 wrote to memory of 1716	2184	chrome.exe	96
PID 2184 wrote to memory of 1716	2184	chrome.exe	96
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97
PID 2184 wrote to memory of 3808	2184	chrome.exe	97

C:\Windows\system32\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Synapse X\api-ms-win-crt-time-l1-1-0.dll",#1
1⤵
PID:2972

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2184
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffeb98dab58,0x7ffeb98dab68,0x7ffeb98dab78
  2⤵
  PID:4964
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1724 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:2
  2⤵
  PID:4680
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2196 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  PID:1716
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2248 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  PID:3808
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3216 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:1
  2⤵
  PID:1304
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3356 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:1
  2⤵
  PID:3792
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4440 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:1
  2⤵
  PID:4592
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4528 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  PID:2972
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4656 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  PID:1232
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4716 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  PID:860
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5048 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  PID:3516
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4964 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  PID:2436
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5116 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:1
  2⤵
  PID:4308
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=3400 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:1
  2⤵
  PID:4348
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3336 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  PID:4512
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4828 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  PID:3864
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4216 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  - Modifies registry class
  PID:4184
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3432 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  PID:4500
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=4260 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:1
  2⤵
  PID:1608
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=6076 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:1
  2⤵
  PID:4352
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5116 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:1
  2⤵
  PID:4468
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5372 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  PID:4564
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4568 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  PID:2044
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=2404 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:1
  2⤵
  PID:3968
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4880 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:5040
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=4880 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:1
  2⤵
  PID:4844
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=2792 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:1
  2⤵
  PID:1116
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5852 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  PID:752
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5244 --field-trial-handle=1916,i,9554539865967283152,9987353719857856462,131072 /prefetch:8
  2⤵
  PID:1596

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
1⤵
PID:4628

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x490 0x15c
1⤵
PID:3484

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:3824

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\58f2ade0-193b-4f72-97b9-0ce94ff901df.tmp

Filesize
281KB

MD5
b1030be4c805e42c33294648e07334ae

SHA1
2d7345b7b9290f14fbe95ecc2a4fa5fa48316673

SHA256
be46ae83982ff4db189944dbd3a8d64cf66ccbbb9a092da650ae477e17142701

SHA512
e199453f7e53ed5f7a71759048f8093461f109c70b2f11b6087a4cc9b3a1acd9c45785e3bfbce05e775b7d99e4a1d9004f5dd6ac77c00ae968035daeb565ebbc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

Filesize
225KB

MD5
d115c0a2800145c06e066875ba331616

SHA1
b94c5f0d25110782e939d1234141b70e6b238653

SHA256
113e69d83de21cf11879632723c532d28df10a53c0c2cffb663190f82c50570e

SHA512
2bd24181e53bce956c5262bcc641c323ec077f5a19193fc56a74d3704eb1f4d76b47076d1654c69cb53ddb9a93bb880ed49fa0ccaf46321723da6cfa99c4522f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

Filesize
19KB

MD5
d89db53bc50d25c5cf52ceb433bee641

SHA1
e49477e0f9b79a9e95fe33232f4976b79104cc69

SHA256
b1a035629418e7c9e332dbe9726141d19f055b33798b2833f87c248acc758b9d

SHA512
3fa535c2b7723262dd2dd3f8609dc0ee8fd01dd03179f2b413dc17707b7d8d21b7adc6cb6ddfc336cae0694700ad9c496b18a1a66c456f47bd62d45d10538f61

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

Filesize
47KB

MD5
1af625b5988f4098155457b42c9e7604

SHA1
f101a2737ad079176c92bc2684f8961b074ad710

SHA256
44d44ea3935d534f44d0e33117954cadb08b712269e12e10093755e3d4885014

SHA512
b81654c38578ee6acb3ef12ced4fb5edaeb698add94d68a6745db933582494170ac6a048022eeb2dd734372232673f7ed50102fc8fc3094e3804110b20172d39

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

Filesize
808KB

MD5
2bddd552038fa6582707fe3e183855ea

SHA1
7e622e9b8256f94a9051934534f85137a8b9c9f1

SHA256
5a196c59e04a05a940f87c32c8a2c531a68d1f31570d324492b0c71f41fdc6f7

SHA512
e8c0ea81cdb036468b9ed3b8bfdf6a18202c4babfcf64d1c5bf69aebd0780c485779d4bb4a3774b690a64564bc33f2d957a006aa1e3dd81f7405eb9c71131334

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

Filesize
32KB

MD5
a37cb5b2be3ac24f85e18e0f6af90e18

SHA1
7888cab4667f8997bee7cfe1357b6d090e5f987b

SHA256
38322e4056896c3d332335130caef7ebf6f02a9e902e87adeb3141aaaefc5eb1

SHA512
f2772d825de479756299954d0d6b67c3c940e41a2e2329a733e755b8b3d107c53fbf845d64330ae9b75f75f56f872b9f6fbcefacb55606a0ae7fda58eab6b384

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

Filesize
32KB

MD5
fe0cb11576905a924b316b72b715c2e3

SHA1
31a833346d235602a4fc51b49ef9bf57d9d1409f

SHA256
ee9fdfd767036158d8d3bc22f6c3095c5bfa6c17d4611eaacd45a5a829a864b9

SHA512
0227816287e01021bc07b84db89642ed0cc5e1c3a653a8be2c38bc53dcb17cd62b1a45051cf143ba9c2a5880df961d281192547fbb0788d95659ec5169e98ac4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
624B

MD5
d4b4747482d178c37d1108678a0e2af9

SHA1
940d8e98c2293effe2e68b1e460c2f1f3e8a0121

SHA256
2b247ad918cedaa9de270b2de45403436d228229fe09b189da8e08ee5e4d8c97

SHA512
74109f173cad4e4691b5687618d57f8445fb72ce562864f555345ca8a3c21cf361e93a37d8f9a8d447adbcec2933fad797d9ca2d7f1e322946a709931c25b750

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
624B

MD5
8b142a1ae401ad7b843aac84fddc777c

SHA1
3def4c7ace5630860f6dafe30efedd259b292a97

SHA256
689797309dfd6d9151b4dca1814bd3cc00a5af8b73dda169bef2c26a1419e046

SHA512
0e7e8c27a416ada7e0ffd595bd92eefc2958d4e4e4986c6c9d98ada049c2a836c5c41de404c13c4652bd66f194d672f90561264a46ea4d61b6cc2ccf031bd347

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\000\p\Paths\MANIFEST-000001

Filesize
41B

MD5
5af87dfd673ba2115e2fcf5cfdb727ab

SHA1
d5b5bbf396dc291274584ef71f444f420b6056f1

SHA256
f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4

SHA512
de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
453e2774cb2dc0f7c83ad3624a764a08

SHA1
4d8d7ba1ad3225c8af30d73ebd990fcdf667366e

SHA256
12b27148a49db24128c6b800a5923e1a11febb2537a0577519647705e8755379

SHA512
a0279c307c20188883f0161c60af1f60ea6a7e73b0c340978dde666ac575d695dd161491b0c4cfc3a98eacf768f6243d190cc8a0676c2ec946a875e4f0ecc714

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
8KB

MD5
b361bba9a823abf6facfabbfd500c694

SHA1
05471f6176d505e868b0bd39186d5d3631d21db1

SHA256
0ee1c4007f3b1e6afbda85564acd490584c73dd3a4a9cb2560a52536c136e669

SHA512
6dfd69c429e4f6865bc3490864a669f11a598c4b259bd375553a92da6b77b1017c293e49d4c4b982884a032b65f446b1bf69ab7b7ff18d6cdf1847f02d187bcf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
8KB

MD5
28d6575cf724d544a4da80d754f7cfbf

SHA1
fe4f5517cf465f9dba1ef145aceb084e590d2db8

SHA256
7cb193a8a41a0cb92033452a06fd7108f7d1a6af32c156353113100f2c2ad177

SHA512
77cefe1dd766b3d30437711a13246a4b5bd1009b712a3de0e04f587e789c168340e770d1783922e20a47e9e7a4e1ac06ad286657734e32f19735927ee26c7ea3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
7KB

MD5
ee0824fa638084314e0054f3127f4ba6

SHA1
c4205e10d1c211012ef8b190fa3c43a5b18dbb44

SHA256
1da2711c938d16ccfc39fc655ed3b8ba8eafaf14dde7123fa12b83ecf19bc62d

SHA512
17cbe825d7ea036f23c75dd90df87595f2dcdc697c88a461323c8282c4e5a4952d04052b0282d06aef9877fbd6028fa669497329e0736e512f1ee0fdc956be49

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
356B

MD5
27ed33db30e1d8924bb27a572052cfc2

SHA1
cf64f46054f178d7d1a1e30540af2167ae02685d

SHA256
212326439e8c88e0ba5cbe097284454792a285d4c2476f7310702f2fe9b98c16

SHA512
33bf455ea4d8ff64d17706aa2f616c5f964313666be134592026e5e49777c3b5302c6aa5e2e08337bef499b7c6cfa4055ebcf9d7ab1a4dd6ab31a0c43653f921

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
0edc96ddc0a8a036bef2d772a2d45814

SHA1
bb4d5c0adf9637ba9297a72a4afb24c12afa776a

SHA256
3a7d38191b37965e916a9154040c244322d48593e0cfffd8be0a6b2594f9bf35

SHA512
d841161f35a1da980caf3f257cb0363eb3c96a9ce3e435273f3a55233cd8db42a475499f36c3ef628086b1f4dfb1fef72fc2dd1b6d28c5e0c448701fcea0b445

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
859B

MD5
55d7f8e52b59065e65c7002b70cef2f3

SHA1
50b48ad98636af2d118538faba516dd0f9e1e3f0

SHA256
2f155acde93c62c29686c08bb77f8220a5209c65a3d7c9a3ddcd0c4cc46042ef

SHA512
708bb1a83a9e9843b00f05183c8c830f7a18a330ea3898151f4440a8e1d7e769496b417117c87aa2fd4c4c136cd5234e192a8301ca619a6cd27a9781980b6164

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
859B

MD5
b8e9c69cb0f1cc41631fef293ac2a513

SHA1
6373f7e79404d57e20d6fe0e423a9b09f1b1184a

SHA256
7527c70abc1fc9defeac2d0496a8559e565edccab2143c21ae8e5089d2f1b299

SHA512
aa83c6fe349ff432b3c978c6c0f872599e1bbde804ab9a6c0ddb654bbad487a03a665c46c251a01e953c62d137423f8ece28c2ec034eab59dc98d47d6e50b0a6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
859B

MD5
3a829c71837bea62fc4371d705ec5de2

SHA1
1b8330b435b1fc641563d3d7d598ce14ab1d1eba

SHA256
f9f01ee3ddc9fc3de29b490da98c6555462af4e818279b0fcb3d41335bee3022

SHA512
7432348c79e853cafaeff6a3f68aa3a4432372d205014c7d1430940b4cf1b15a69babdc990416a10fe6534c67235de20fb312203c0cf67676fbf3c6e02b9c92a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
1fda6fe23412988b222a31521f3d16f6

SHA1
ccd0f960a7717b348afceae3b974c1093e6ad0f5

SHA256
722b1f541d7ca8d0b5357102bf1dc0cc59e38b59c24df237174506ce1d046ebe

SHA512
b4bfa8b901a0a13c052eb8411cdbedd1c7156c036d679f831abe08e6628277cc73b777a9c3fa380a9ede9e321cceec538d4b82d2f2aa32314c654e10dd018bfc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
b76ae3c6fa56cc984a8371ff17d22a54

SHA1
6f4761907ec2d12213afee3b9d7be61cd31628a2

SHA256
ee18aaaf819deb7cd62bbf820550e75f4cf29f1363a73b819b226a90b96dddda

SHA512
6b5194977d1482029fc1fd71bf7a09958d3c3c26df982c8ebee63f7163e43aa1a2ea5fd2e6f4090d5388403b8273dd7a49d645a39348a19ac243cf53e9cf7a5f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
aa4c5341353628300358175666defdec

SHA1
46b0d358baf509fb626894a54457bd41f6f1edd1

SHA256
77e1b6c94b659beddace9609d06789db0ed6bc072e2b7174865e254fc103ba83

SHA512
fab91bff861736bcd4d9f33bbf5645db3b01a9bbbfd24bbee59fdad515e691f26bb44857e5e97334e78d1d0a28895aa27645e82172f5c941197e784e632640f2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
4e4799a9a3747043488e5a3ce6e0badd

SHA1
10eb89486bb586964a175d353ff8a1e6f179d52d

SHA256
ace92eed896572ca049b46283508f0260baac4b674be627e4b9bfa7e587ac573

SHA512
a4e9919756b9dae86e517a35f29a56bee98ab96bc657d259d1085234c4a82e575ea345f8788ee1e559e7df3c338bd173acded5fa9a1ba2ac086bcaf0352b5ae4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
c9eb0174d53801bc6e7e68cd6c2ce6e1

SHA1
f1a993989fdd3b38b2b9de911083d823ecd6eb84

SHA256
915f74f771a13ed0aab3c62ad73db36db1dc0eb3bbc5df2a6f097c80b43eda47

SHA512
4f8d57ae872f96a046c9edc032a62dbbe10699355beac7f60237513878007b2ec63b532a51fd56f06668f4f7c1d42b63268111c0cab1acc9898c24a145182063

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
e18210a368489d061fcb23e3c5cc50e0

SHA1
9ea703e8804db0a8fe8eea2f5c1e9f7925b02351

SHA256
bea2c07f5bed0b051365ab42a7b403f0b419fce50bcdbd210a0d728335a223da

SHA512
b9ea7af70200a85491c4c89c038c24f75654f508ae9c49f21860d22579dc5f1476e398596b023d36f0a171f8272d544dc031f287797db3ecba904adb2db81131

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
4200c535cc0420688942a5544549bf8a

SHA1
bff9027ed64afb8a676a5f96936375e058a66741

SHA256
484d7bae0584d7dd1fd1c1945428e1855a18c13b42f99e9e8edfb435cb1d9b59

SHA512
f7004368cf1105094b4615e7fcb464513e4fce29130a26e6331836b7a7258a20d4ebdaab4c207521ea67ffedbd565e9345e9b3ce5f0166c3c3c6cc6f396e42be

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
16KB

MD5
e39b99650b76df7c25b33b1fc09cfb5f

SHA1
25a36e1b72f1b5ce11fbeddbab454c511290031e

SHA256
be842cf533d5c6cec16e36315d886644a2b045c073098e3c1909ff5bc9e07063

SHA512
7a6fc24e073783c2cc93aa04f92ac9fd2b30bd64d1f256fd384de5fbe12bca42ba924a908ae60eb0536343b129a76bfd650784e6cd985bbcc6332121ddb5a780

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\4ba1e172-6765-4fd2-816a-b127ce457daa\index-dir\the-real-index

Filesize
2KB

MD5
8e65d479b47d6bcb7495edb659cdcaf9

SHA1
6cb01263ae75cd7c974e1d7d5fdcc17f823e0d0a

SHA256
0fdd156d3544964089cafd8abc5fb782e6a4c2a4fd83ceed4bf046eaffb1b9f8

SHA512
082c4ebff09e0a655f5ed512b46c163d8cca0c1fa86b5bb3c3ca15bd011c6c7171eceaf47eaed114aa7ed8a3d527394c3a3f59507e65142babc2e1e2f58256c0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\4ba1e172-6765-4fd2-816a-b127ce457daa\index-dir\the-real-index

Filesize
2KB

MD5
004eb50c511e4b70c1d01d4473f21e31

SHA1
e93d314b54148af72579434c87d9f5aa84790c9f

SHA256
2bb6dddf991f0891fa9a7bcc289c47503438fb1c06702dab041da45ed26974c0

SHA512
eeae586eb7170c14dea424e3eb5cb34b2e089a608168da5873ade144029ba3b1dcc3f85da731d42475409b91e39e3bedc66a83fd8c1d38c0e9f81d6ab57288c1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\4ba1e172-6765-4fd2-816a-b127ce457daa\index-dir\the-real-index~RFe57f8b8.TMP

Filesize
48B

MD5
037f9c496cee8bba7161cb5b24445055

SHA1
b41cbf16654af5314ba86f623154b88f1cd68484

SHA256
096cd549056f291de419417d7e17f0b5fa70e1f4c6a6292ac8558e045de7d0ed

SHA512
c28b80eb4aa3c5238b5b16e63cabe70bea08669d853f3346859f2fd2dea2423aa0c8a8239f0f1f8c92337e0e97313713920e09e3ad04a75638f265312f66d826

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\a124b21d-a574-47ff-ae52-42a9491253d0\b9ed6afd3d0638f9_0

Filesize
2KB

MD5
cf7aa1bd48b32ca9ca675999fab06c86

SHA1
3e4fbc051703c6a25de2108217d1f53e6e8ad60a

SHA256
2c96e341edc78c3a9bf8868c9d10cdcba93f5077f6ac0cf8b31450e803b98cf3

SHA512
cdd244e951c722ac3e9f5185c6c04f26a0e2db97f6e9120a70a0484635e9827ed4a4de2798c7fa36642fae15d6629e8cf938e0f73e47d0e405f470cef6bff954

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\a124b21d-a574-47ff-ae52-42a9491253d0\index

Filesize
24B

MD5
54cb446f628b2ea4a5bce5769910512e

SHA1
c27ca848427fe87f5cf4d0e0e3cd57151b0d820d

SHA256
fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d

SHA512
8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\a124b21d-a574-47ff-ae52-42a9491253d0\index-dir\the-real-index

Filesize
624B

MD5
ca78e7f0a23870f1dc4178267e90b920

SHA1
39532731b58abf171880b74e40400f8ea350e8b6

SHA256
21c1464ba13ceb4ce8dcd9bf79acfa37a007e27a62edafa5c2a2fb53fd0dad51

SHA512
e17324bddecbbafb1ba99e3f569293a4bc2ce1843e3b1c70d6b629629f1450ecebfb92b03a58347342b355251908258c2b66f32d2e569a1371c1f6f77935f8ab

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\a124b21d-a574-47ff-ae52-42a9491253d0\index-dir\the-real-index~RFe5852ed.TMP

Filesize
48B

MD5
1cfc31d8b4df578c19188b80cb3f889d

SHA1
7e72ea67fe2d7228865b6a12b1d11792cd9ca145

SHA256
6a796582e85368cf4c8ba36a9dc754b220f6bc92a1025f2ecd4592da213de820

SHA512
13aa6929c113b70bd3c7e5c861af9fd64dece3136619b68f17cd1e5eec968473cb89333102bd0b85f28abc45f4c20bbb8c961a57dddb769bf3571cdf31b7343a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
183B

MD5
94f58eb6c33a5bf66f3deeda94d545d6

SHA1
89e07b2714ca04dc1ad17980b624f755a58dcb1c

SHA256
c916d5b0f0c85aed4f6eb439d2022139070c04e9a2779f4d4f20ffef166024df

SHA512
fd9668c2b0ed20d83146998fd7cc4be3f9feb44ea01eedca1fefa10f7cadf80e9f3b6822631c50bb619bd1b04866e3b70ec2dfab763a85bcda152240aed2dc41

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
176B

MD5
5c702eb26f153930965b6ccff8449f6e

SHA1
9013e1eec8e9bf2fb2ed1f58d5fa5d97abc7f7eb

SHA256
8dc4a1304af24404cbc14afd218cf8e6dc3c418715b038b63e93e20f9671fa79

SHA512
b9150ee8c42ec686ccccbb44efd27e9662a668b246fbf17d1835c212156075b8081dc3bbfcd396ea498b30e310cb31575d0d729f9f35519de19512c2bfdb4cee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
178B

MD5
6715908884ea3bc9e7df665123972e0a

SHA1
6a17cc32797544fd931300ccae81750622d2606a

SHA256
710ed54de3c82b8eab4f4dec0884e3b68d74619e36253444df5dfe4376ef4704

SHA512
ec3f06abb0e44e5b8a068f69678007f7d3881ce5fa54567d106e104b3770eec5ea5d9265f97db157bed6a5a4b6c5769c2447e19df6ecd00badb6498e1d0238a0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
187B

MD5
85859276b6860227df6661ccd50b0bd8

SHA1
84fab3b22aeb67989b4c3b77ad54c6987836a460

SHA256
66613e570b4f9886fb1495f3440afcf6fbdc59830f54e73af8e7f1d3c0bb5cc7

SHA512
b9324e732b9a6062e80496510e8f05a10df0d57a46f864cb3f97e84fa3cc6e0ef11dd0d2a2744945d008a50b7242685946abf343402443053b6026135eb199f0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
112B

MD5
3a919b86f14150e787fbd9eb1ece4895

SHA1
6a0bdadfbea7fb4846a957f664be86e379170092

SHA256
5070536e3329f18ac972b72f371c363e83e60f664d42d9e6a95033ceb900a026

SHA512
5b2db26657d9202a0fdafb2570c0091df8e9f4d827fdb4578db8192f05f809a6846dfe3d3407e10866c4160143df60b3a9208041bb7b1efd2dd6e3c8054a6d77

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
183B

MD5
271aac3899b72716516f65a55bfaa6de

SHA1
5a0fbe6c02e1981a9c5d987bb99e95d48a6b45e8

SHA256
dc41aff3410f0cb4f68016dec40c0babf4fe2b724a98859207c899aed7d69d66

SHA512
baea33d32f98d538e1005c824706894e4791c478bceea0af5f2b31c1e453d0113256466abb915baa9cbfff282db33fca24803e863d2f18d194f3db76e24c8424

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
114B

MD5
d7f5d39452828005af7fcd6097636633

SHA1
ce34899bc5ec6446fc1d0c438503f87ef0bfcc0e

SHA256
c4eb774f6f6789a578cf949a545a368f1f4eab9db70a5229d92d3f590ac4cb50

SHA512
75446cd2b88293a8530527f11e74e3606b4b17337a4d2d8360a54ec0d282717f7ed2bc4e73ac412ed642af1f873cf9fe9a025e6e6280086fed12c492d7a07607

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
247B

MD5
0ba7b57e78ed6d5c8fc14603de0e5e11

SHA1
642aa8357698b6d733479e6746080121667fec49

SHA256
a560cdbde0424085778c8937f41aa84635a2f65b3e67b6bab34eaeb1e945a514

SHA512
164b31fc21e19621729ba1647114e43e0689a46aabcd88e3e850a274443324c3ca0886caa97ed83382d32e98dc42a6210e9d2fb96a24876798e7e7e183238352

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe57e6e5.TMP

Filesize
119B

MD5
dc91fa2f26a825687d5a5b77bf588c25

SHA1
1e58e83d3d07da4bedff978e796fd69a6682a15d

SHA256
b5b3d54b69be5bcc18287e974cb9304eeefe2c5c66457c14398272806e752a9b

SHA512
39a8084137754e137a26dbd8b1d79a78e0f671ee24836822a33c4baab8f4e91a7d7f9a1e8e535062d6533e4f47c217a056d3b1faf3cc13ad352e0af1ca3bf830

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
120B

MD5
19710481e2064c93ca709322fe15ee08

SHA1
da016149646351c07c219587269262de544eee68

SHA256
c48559f82d5e54930582fea4402e86f81c0aeee1c48f7060f9e7c12cd99436c0

SHA512
2a9c0ae92d2c03e2be3880a079fe7be9cefbafaf1ce46fc4e243f8ea927d16bf0835658bca56d847410ccacb1147bc168bcf6776e3ec8fe94d81a9abc54923b9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
144B

MD5
16bd1de99843f0d6fea20bb3e229e00a

SHA1
ff09cddd61df581b840997ff0d6168e475c62053

SHA256
4256bfef4c1f416bd83f59be24f43b2a2f8e0d3781facf0cc6c78ef6321e99d8

SHA512
0a5c30564e82613a7ed05781a91433816a35025383ccdb296f5836a3bf579c0eff2ef4c2a68eec91a3e9b7aa9bfd3bdf4fd3cc73efba82afdeb1f3aeb86ba5b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir2184_1169894843\Shortcuts Menu Icons\Monochrome\0\512.png

Filesize
2KB

MD5
12a429f9782bcff446dc1089b68d44ee

SHA1
e41e5a1a4f2950a7f2da8be77ca26a66da7093b9

SHA256
e1d7407b07c40b5436d78db1077a16fbf75d49e32f3cbd01187b5eaaa10f1e37

SHA512
1da99c5278a589972a1d711d694890f4fd4ec4e56f83781ab9dee91ba99530a7f90d969588fa24dce24b094a28bdecbea80328cee862031a8b289f3e4f38ce7a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir2184_1169894843\Shortcuts Menu Icons\Monochrome\1\512.png

Filesize
10KB

MD5
7f57c509f12aaae2c269646db7fde6e8

SHA1
969d8c0e3d9140f843f36ccf2974b112ad7afc07

SHA256
1d5c9f67fe93f9fcc1a1b61ebc35bda8f98f1261e5005ae37af71f42aab1d90f

SHA512
3503a0f4939bed9e1fd5e086b17d6de1063220dffdab2d2373aa9582a2454a9d8f18c1be74442f4e597bdba796d2d69220bd9e6be632a15367225b804187ea18

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir2184_26126346\Icons Monochrome\16.png

Filesize
216B

MD5
a4fd4f5953721f7f3a5b4bfd58922efe

SHA1
f3abed41d764efbd26bacf84c42bd8098a14c5cb

SHA256
c659d57841bb33d63f7b1334200548f207340d95e8e2ae25aac7a798a08071a3

SHA512
7fcc1ca4d6d97335e76faa65b7cfb381fb722210041bdcd3b31b0f94e15dc226eec4639547af86ae71f311f52a956dc83294c2d23f345e63b5e45e25956b2691

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
281KB

MD5
8d9257145d4f8f6483d698ce4a84b01a

SHA1
a72f83e8e870c03d20fe49ff27071fdc73c4848d

SHA256
89d448073eebf219d32c77f129017d03dfbacaf0120abc1aa9bbbeca91229ea0

SHA512
15a64f44331834cd204cdb2c6b9503f8c0d678b5808bafd4be0fae2457750371adda5f1d38907906612c0f8687d37317e975b5342d2376460a97c5cf9a9a0c78

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
281KB

MD5
85f64b7dee0cbc4dc4586ec9417459e5

SHA1
36731085a9d08b19bb72e07e296540ed41e5455c

SHA256
fc4136dd344c99d9747035a905dae25df8156f50560731109bfb934ddfe71228

SHA512
22d72e2407c5129a94a4ad9b57a89b29781fd2808437586b99ee20e624349d740d3fd5cd7eb75bdde202e2323053cf72dede06c3d492e66af55f39de0b4090ea

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
97KB

MD5
edd4d56556acf55bfb1cd199d7c0aef1

SHA1
40b7bfa80b4b0f6e83bda858bd0e60e2497d55b2

SHA256
7584f4e97d842439944fb503e13f21b3e26d0c9d26e0e51481671e7cf43a5480

SHA512
91e82c074e3d4b349b737aa870a1d5d045b70c326d467db3f3d253f31be6b89d5e1da8d13de9f9b6ee5a52b9b9e79101c9b9386bbb79195f8ae3d5960e6d9da1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
89KB

MD5
d738a7787d9fe9f09f50ccd2819e1525

SHA1
f3ac59797b40621749f429ef72f6e861d8f2a3a6

SHA256
b3df6c01675737637849f386e0dc48218e54add34b98af04ee74414acfc0b265

SHA512
1f43df61cd097b49c346c72e17f1271a8cfd436da9c818b5805924e6ca4944c1357c06cf99441678dd8792249b2f1239fc44ff3df74fc3b922a319332f63722d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe58c29f.TMP

Filesize
87KB

MD5
4f8d3a44477c49d7f9d46276a661223d

SHA1
feea443192dd153b4db34067a182db7ce35a65ab

SHA256
baf9a7023d2e7b026cb7baad96801cdd37c48e03e3896b03a0c9b73dfa4904af

SHA512
8bfd2c1892dd42d93fe8439eb0f19e853ab4ebdb4f320648260f9b7791abe0d18f701c462cba043a8fb259149b51ab29da0fccc59fd5c399a42d5b753d217daf

Download Submit
C:\Users\Admin\Downloads\Synapse X.zip

Filesize
4.6MB

MD5
99bd25df79eac5ed3ff6a4fcf0a3c8c5

SHA1
f23f78031fb48468952f5b12bcd13992fcf69cff

SHA256
87257e6eade624e3da87ecd572263fce25f4ef36435be1127e648a375eb69a20

SHA512
ae0437acbb853f806c2d788a225c147c8e5994a7fbec7207af7a0eff0d9fa08083a11e95a3f0bd3bf2ecc499214fcc3e2d011202af366ad81cc64703051bdab8

Download Submit