Malware Analysis Report

2024-11-15 06:25

Sample ID 240706-t8vhnavgpq
Target Software v1.12.rar
SHA256 2cdd242e5363cc24b7c79306c2c69fa1173e8435faab39c4f88270cba30147a4
Tags
lumma discovery spyware stealer
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

2cdd242e5363cc24b7c79306c2c69fa1173e8435faab39c4f88270cba30147a4

Threat Level: Known bad

The file Software v1.12.rar was found to be: Known bad.

Malicious Activity Summary

lumma discovery spyware stealer

Lumma Stealer

Downloads MZ/PE file

Reads user/profile data of web browsers

Executes dropped EXE

Accesses cryptocurrency files/wallets, possible credential harvesting

Checks installed software on the system

Suspicious use of SetThreadContext

Enumerates physical storage devices

Program crash

Suspicious use of FindShellTrayWindow

Suspicious use of AdjustPrivilegeToken

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of SendNotifyMessage

Enumerates system info in registry

Modifies data under HKEY_USERS

Suspicious use of WriteProcessMemory

Suspicious behavior: GetForegroundWindowSpam

Modifies registry class

Suspicious behavior: EnumeratesProcesses

Suspicious use of SetWindowsHookEx

Checks SCSI registry key(s)

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-07-06 16:44

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-07-06 16:44

Reported

2024-07-06 16:52

Platform

win10v2004-20240704-en

Max time kernel

387s

Max time network

403s

Command Line

cmd /c "C:\Users\Admin\AppData\Local\Temp\Software v1.12.rar"

Signatures

Lumma Stealer

stealer lumma

Downloads MZ/PE file

Reads user/profile data of web browsers

spyware stealer

Accesses cryptocurrency files/wallets, possible credential harvesting

spyware

Checks installed software on the system

discovery

Enumerates physical storage devices

Checks SCSI registry key(s)

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\system32\taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName C:\Windows\system32\taskmgr.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133647580605086263" C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-21-1403246978-718555486-3105247137-1000_Classes\Local Settings C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1403246978-718555486-3105247137-1000\{CBA6D471-97CA-45CB-B490-A3C6A03C75EC} C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1403246978-718555486-3105247137-1000_Classes\Local Settings C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance\ C:\Program Files\7-Zip\7zFM.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1403246978-718555486-3105247137-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance\ C:\Program Files\7-Zip\7zFM.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1403246978-718555486-3105247137-1000_Classes\Local Settings C:\Windows\system32\taskmgr.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1403246978-718555486-3105247137-1000_Classes\Local Settings C:\Windows\system32\cmd.exe N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe N/A
N/A N/A C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe N/A
N/A N/A C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe N/A
N/A N/A C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe N/A
N/A N/A C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe N/A
N/A N/A C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe N/A
N/A N/A C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Program Files\7-Zip\7zFM.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: 33 N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A

Suspicious use of SetWindowsHookEx

Description Indicator Process Target
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Users\Admin\Downloads\winrar-x64-701.exe N/A
N/A N/A C:\Users\Admin\Downloads\winrar-x64-701.exe N/A
N/A N/A C:\Users\Admin\Downloads\winrar-x64-701.exe N/A
N/A N/A C:\Users\Admin\Downloads\winrar-x64-701.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 1032 wrote to memory of 1588 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 1588 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 4872 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1032 wrote to memory of 2716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Windows\system32\cmd.exe

cmd /c "C:\Users\Admin\AppData\Local\Temp\Software v1.12.rar"

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffe7732ab58,0x7ffe7732ab68,0x7ffe7732ab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1744 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2200 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2300 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3136 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3260 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4040 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=4596 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=3564 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4892 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5036 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x33c 0x3c8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5052 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5448 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=6024 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6148 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5332 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6256 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=5864 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5328 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5524 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5568 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6256 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=2328 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3516 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3496 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5232 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3204 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Users\Admin\Downloads\winrar-x64-701.exe

"C:\Users\Admin\Downloads\winrar-x64-701.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5988 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Users\Admin\Downloads\winrar-x64-701.exe

"C:\Users\Admin\Downloads\winrar-x64-701.exe"

C:\Program Files\7-Zip\7zFM.exe

"C:\Program Files\7-Zip\7zFM.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5424 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Users\Admin\Desktop\Software v1.12\Software v1.12.exe

"C:\Users\Admin\Desktop\Software v1.12\Software v1.12.exe"

C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe

"C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"

C:\Windows\SysWOW64\WerFault.exe

C:\Windows\SysWOW64\WerFault.exe -pss -s 460 -p 5036 -ip 5036

C:\Windows\SysWOW64\WerFault.exe

C:\Windows\SysWOW64\WerFault.exe -u -p 5036 -s 308

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3928 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

C:\Windows\system32\taskmgr.exe

"C:\Windows\system32\taskmgr.exe" /4

C:\Users\Admin\Desktop\Software v1.12\Software v1.12.exe

"C:\Users\Admin\Desktop\Software v1.12\Software v1.12.exe"

C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe

"C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"

C:\Windows\SysWOW64\WerFault.exe

C:\Windows\SysWOW64\WerFault.exe -pss -s 448 -p 4492 -ip 4492

C:\Windows\SysWOW64\WerFault.exe

C:\Windows\SysWOW64\WerFault.exe -u -p 4492 -s 280

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3932 --field-trial-handle=1924,i,14627809379962928157,12937446336121172558,131072 /prefetch:8

Network

Country Destination Domain Proto
US 8.8.8.8:53 68.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 g.bing.com udp
US 204.79.197.237:443 g.bing.com tcp
US 8.8.8.8:53 172.214.232.199.in-addr.arpa udp
US 8.8.8.8:53 43.58.199.20.in-addr.arpa udp
US 8.8.8.8:53 237.197.79.204.in-addr.arpa udp
US 8.8.8.8:53 99.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 10.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.180.4:443 www.google.com udp
GB 142.250.180.4:443 www.google.com tcp
US 8.8.8.8:53 4.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 youtube.com udp
GB 216.58.201.110:443 youtube.com tcp
GB 216.58.201.110:443 youtube.com tcp
US 8.8.8.8:53 www.youtube.com udp
GB 172.217.16.238:443 www.youtube.com udp
US 8.8.8.8:53 i.ytimg.com udp
GB 142.250.187.246:443 i.ytimg.com tcp
US 8.8.8.8:53 110.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 238.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 246.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 74.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 227.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 accounts.google.com udp
NL 142.250.102.84:443 accounts.google.com udp
US 8.8.8.8:53 84.102.250.142.in-addr.arpa udp
US 8.8.8.8:53 26.165.165.52.in-addr.arpa udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 172.217.169.42:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 suggestqueries-clients6.youtube.com udp
GB 142.250.200.46:443 suggestqueries-clients6.youtube.com tcp
GB 142.250.200.46:443 suggestqueries-clients6.youtube.com tcp
US 8.8.8.8:53 15.164.165.52.in-addr.arpa udp
US 8.8.8.8:53 42.169.217.172.in-addr.arpa udp
GB 142.250.200.46:443 suggestqueries-clients6.youtube.com udp
US 8.8.8.8:53 46.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.200.46:443 play.google.com udp
US 8.8.8.8:53 147.142.123.92.in-addr.arpa udp
US 8.8.8.8:53 consent.youtube.com udp
GB 142.250.187.246:443 i.ytimg.com udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 142.250.178.2:443 googleads.g.doubleclick.net tcp
GB 142.250.178.2:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 2.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 172.217.169.74:443 jnn-pa.googleapis.com udp
US 8.8.8.8:53 static.doubleclick.net udp
GB 216.58.201.102:443 static.doubleclick.net tcp
US 8.8.8.8:53 74.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 102.201.58.216.in-addr.arpa udp
GB 216.58.201.110:443 consent.youtube.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.187.193:443 yt3.ggpht.com tcp
GB 142.250.187.193:443 yt3.ggpht.com tcp
US 8.8.8.8:53 193.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 rr5---sn-aigzrn7k.googlevideo.com udp
GB 173.194.139.10:443 rr5---sn-aigzrn7k.googlevideo.com tcp
US 8.8.8.8:53 10.139.194.173.in-addr.arpa udp
GB 173.194.139.10:443 rr5---sn-aigzrn7k.googlevideo.com udp
GB 142.250.187.193:443 yt3.ggpht.com udp
US 8.8.8.8:53 81.144.22.2.in-addr.arpa udp
US 8.8.8.8:53 www.mediafire.com udp
US 104.16.114.74:443 www.mediafire.com tcp
US 8.8.8.8:53 static.mediafire.com udp
US 8.8.8.8:53 ajax.googleapis.com udp
GB 142.250.187.202:443 ajax.googleapis.com tcp
US 8.8.8.8:53 74.114.16.104.in-addr.arpa udp
US 104.16.114.74:443 static.mediafire.com udp
US 8.8.8.8:53 cdn.amplitude.com udp
IE 18.66.171.13:443 cdn.amplitude.com tcp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 72.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 13.171.66.18.in-addr.arpa udp
US 8.8.8.8:53 connect.facebook.net udp
NL 157.240.247.8:443 connect.facebook.net tcp
NL 157.240.247.8:443 connect.facebook.net tcp
US 8.8.8.8:53 8.247.240.157.in-addr.arpa udp
US 8.8.8.8:53 translate.google.com udp
GB 172.217.169.46:443 translate.google.com tcp
US 8.8.8.8:53 46.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 api.amplitude.com udp
US 54.71.189.75:443 api.amplitude.com tcp
GB 172.217.169.42:443 jnn-pa.googleapis.com udp
NL 157.240.247.8:443 connect.facebook.net udp
US 8.8.8.8:53 21.236.111.52.in-addr.arpa udp
US 8.8.8.8:53 75.189.71.54.in-addr.arpa udp
US 8.8.8.8:53 78.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 translate.googleapis.com udp
GB 216.58.212.202:443 translate.googleapis.com tcp
GB 216.58.212.202:443 translate.googleapis.com tcp
US 8.8.8.8:53 202.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 region1.analytics.google.com udp
US 8.8.8.8:53 stats.g.doubleclick.net udp
US 216.239.32.36:443 region1.analytics.google.com tcp
GB 74.125.71.156:443 stats.g.doubleclick.net tcp
US 8.8.8.8:53 www.google.co.uk udp
GB 172.217.16.227:443 www.google.co.uk tcp
US 8.8.8.8:53 156.71.125.74.in-addr.arpa udp
US 8.8.8.8:53 36.32.239.216.in-addr.arpa udp
US 8.8.8.8:53 www.facebook.com udp
NL 157.240.247.35:443 www.facebook.com tcp
US 8.8.8.8:53 35.247.240.157.in-addr.arpa udp
US 8.8.8.8:53 translate-pa.googleapis.com udp
GB 74.125.71.156:443 stats.g.doubleclick.net udp
GB 172.217.16.227:443 www.google.co.uk udp
US 216.239.32.36:443 region1.analytics.google.com udp
GB 216.58.212.202:443 translate-pa.googleapis.com udp
US 8.8.8.8:53 the.gatekeeperconsent.com udp
US 172.67.199.186:443 the.gatekeeperconsent.com tcp
US 8.8.8.8:53 btloader.com udp
US 104.22.75.216:443 btloader.com tcp
US 8.8.8.8:53 www.ezojs.com udp
US 8.8.8.8:53 privacy.gatekeeperconsent.com udp
GB 172.217.169.46:443 translate.google.com udp
US 8.8.8.8:53 static.cloudflareinsights.com udp
US 104.21.42.32:443 privacy.gatekeeperconsent.com tcp
US 104.21.63.106:443 www.ezojs.com tcp
US 104.16.79.73:443 static.cloudflareinsights.com tcp
US 8.8.8.8:53 216.75.22.104.in-addr.arpa udp
US 8.8.8.8:53 186.199.67.172.in-addr.arpa udp
US 8.8.8.8:53 32.42.21.104.in-addr.arpa udp
US 8.8.8.8:53 106.63.21.104.in-addr.arpa udp
US 8.8.8.8:53 73.79.16.104.in-addr.arpa udp
US 104.21.42.32:443 privacy.gatekeeperconsent.com udp
US 172.67.199.186:443 privacy.gatekeeperconsent.com udp
US 8.8.8.8:53 cdn.otnolatrnup.com udp
US 104.16.52.110:443 cdn.otnolatrnup.com tcp
US 8.8.8.8:53 api.btloader.com udp
US 8.8.8.8:53 ad-delivery.net udp
US 130.211.23.194:443 api.btloader.com tcp
US 8.8.8.8:53 g.ezoic.net udp
US 104.26.3.70:443 ad-delivery.net tcp
US 104.26.3.70:443 ad-delivery.net tcp
FR 15.188.219.54:443 g.ezoic.net tcp
US 8.8.8.8:53 110.52.16.104.in-addr.arpa udp
US 8.8.8.8:53 194.23.211.130.in-addr.arpa udp
US 8.8.8.8:53 70.3.26.104.in-addr.arpa udp
US 8.8.8.8:53 www.mediafiredls.com udp
US 8.8.8.8:53 go.ezodn.com udp
US 8.8.8.8:53 54.219.188.15.in-addr.arpa udp
US 104.26.2.173:443 www.mediafiredls.com tcp
US 104.21.87.79:443 go.ezodn.com tcp
US 104.21.87.79:443 go.ezodn.com tcp
US 104.21.87.79:443 go.ezodn.com tcp
US 104.21.87.79:443 go.ezodn.com tcp
US 104.26.2.173:443 www.mediafiredls.com tcp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
GB 172.217.169.35:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 download2298.mediafire.com udp
US 199.91.155.39:443 download2298.mediafire.com tcp
US 199.91.155.39:443 download2298.mediafire.com tcp
US 130.211.23.194:443 api.btloader.com udp
US 8.8.8.8:53 173.2.26.104.in-addr.arpa udp
US 8.8.8.8:53 79.87.21.104.in-addr.arpa udp
US 8.8.8.8:53 35.169.217.172.in-addr.arpa udp
US 172.67.199.186:443 privacy.gatekeeperconsent.com udp
US 104.21.87.79:443 go.ezodn.com udp
US 8.8.8.8:53 g.ezodn.com udp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 otnolatrnup.com udp
GB 172.217.169.34:443 securepubads.g.doubleclick.net tcp
US 8.8.8.8:53 39.155.91.199.in-addr.arpa udp
US 8.8.8.8:53 34.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 34.200.250.142.in-addr.arpa udp
GB 142.250.178.2:443 googleads.g.doubleclick.net udp
GB 172.217.169.35:443 beacons.gcp.gvt2.com udp
GB 172.217.169.34:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 bshr.ezodn.com udp
US 8.8.8.8:53 tags.crwdcntrl.net udp
US 8.8.8.8:53 bcp.crwdcntrl.net udp
US 8.8.8.8:53 ad.crwdcntrl.net udp
US 104.21.87.79:443 bshr.ezodn.com tcp
IE 34.252.32.189:443 ad.crwdcntrl.net tcp
IE 54.72.120.129:443 ad.crwdcntrl.net tcp
IE 3.162.140.109:443 tags.crwdcntrl.net tcp
US 8.8.8.8:53 189.32.252.34.in-addr.arpa udp
US 8.8.8.8:53 129.120.72.54.in-addr.arpa udp
US 8.8.8.8:53 109.140.162.3.in-addr.arpa udp
US 104.21.87.79:443 bshr.ezodn.com udp
NL 142.250.102.84:443 accounts.google.com udp
NL 142.250.102.84:443 accounts.google.com tcp
US 8.8.8.8:53 fundingchoicesmessages.google.com udp
GB 142.250.200.46:443 play.google.com udp
US 8.8.8.8:53 clients2.google.com udp
GB 172.217.16.238:443 clients2.google.com udp
GB 172.217.16.238:443 clients2.google.com tcp
N/A 224.0.0.251:5353 udp
GB 172.217.169.35:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 e2c65.gcp.gvt2.com udp
US 34.161.115.43:443 e2c65.gcp.gvt2.com tcp
US 8.8.8.8:53 43.115.161.34.in-addr.arpa udp
US 8.8.8.8:53 duckduckgo.com udp
IE 52.142.124.215:443 duckduckgo.com tcp
IE 52.142.124.215:443 duckduckgo.com tcp
US 8.8.8.8:53 beacons.gvt2.com udp
GB 142.250.178.3:443 beacons.gvt2.com tcp
US 8.8.8.8:53 3.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 215.124.142.52.in-addr.arpa udp
US 8.8.8.8:53 improving.duckduckgo.com udp
GB 172.217.169.42:443 translate-pa.googleapis.com udp
US 8.8.8.8:53 e2c75.gcp.gvt2.com udp
QA 34.1.37.11:443 e2c75.gcp.gvt2.com tcp
QA 34.1.37.11:443 e2c75.gcp.gvt2.com tcp
GB 142.250.178.3:443 beacons.gvt2.com udp
US 8.8.8.8:53 11.37.1.34.in-addr.arpa udp
US 8.8.8.8:53 links.duckduckgo.com udp
IE 20.223.54.233:443 links.duckduckgo.com tcp
US 8.8.8.8:53 233.54.223.20.in-addr.arpa udp
IE 52.142.124.215:443 improving.duckduckgo.com tcp
US 8.8.8.8:53 external-content.duckduckgo.com udp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
US 8.8.8.8:53 222.125.142.52.in-addr.arpa udp
GB 172.217.16.238:443 clients2.google.com udp
US 8.8.8.8:53 a.nel.cloudflare.com udp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 8.8.8.8:53 1.80.190.35.in-addr.arpa udp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 8.8.8.8:53 www.win-rar.com udp
US 8.8.8.8:53 e2c53.gcp.gvt2.com udp
DE 51.195.68.163:443 www.win-rar.com tcp
DE 51.195.68.163:443 www.win-rar.com tcp
US 35.217.93.191:443 e2c53.gcp.gvt2.com tcp
US 35.217.93.191:443 e2c53.gcp.gvt2.com tcp
US 8.8.8.8:53 e2c12.gcp.gvt2.com udp
PL 34.118.72.152:443 e2c12.gcp.gvt2.com tcp
US 8.8.8.8:53 191.93.217.35.in-addr.arpa udp
US 8.8.8.8:53 163.68.195.51.in-addr.arpa udp
US 8.8.8.8:53 beacons2.gvt2.com udp
US 216.239.32.3:443 beacons2.gvt2.com tcp
US 8.8.8.8:53 152.72.118.34.in-addr.arpa udp
US 8.8.8.8:53 3.32.239.216.in-addr.arpa udp
DE 51.195.68.163:443 www.win-rar.com tcp
NL 142.250.102.84:443 accounts.google.com udp
DE 51.195.68.163:443 www.win-rar.com tcp
US 216.239.32.3:443 beacons2.gvt2.com udp
GB 172.217.169.35:443 beacons.gcp.gvt2.com udp
GB 142.250.178.2:443 googleads.g.doubleclick.net udp
GB 172.217.16.238:443 clients2.google.com udp
US 8.8.8.8:53 beacons3.gvt2.com udp
GB 172.217.169.67:443 beacons3.gvt2.com tcp
GB 172.217.169.67:443 beacons3.gvt2.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 67.169.217.172.in-addr.arpa udp
GB 172.217.169.35:443 beacons.gcp.gvt2.com udp
GB 142.250.178.2:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 89.65.42.20.in-addr.arpa udp
US 8.8.8.8:53 bitchsafettyudjwu.shop udp
US 104.21.27.50:443 bitchsafettyudjwu.shop tcp
US 104.21.27.50:443 bitchsafettyudjwu.shop tcp
US 8.8.8.8:53 50.27.21.104.in-addr.arpa udp
US 104.21.27.50:443 bitchsafettyudjwu.shop tcp
US 104.21.27.50:443 bitchsafettyudjwu.shop tcp
US 104.21.27.50:443 bitchsafettyudjwu.shop tcp
US 104.21.27.50:443 bitchsafettyudjwu.shop tcp
US 104.21.27.50:443 bitchsafettyudjwu.shop tcp
US 104.21.27.50:443 bitchsafettyudjwu.shop tcp
US 104.21.27.50:443 bitchsafettyudjwu.shop tcp
US 104.21.27.50:443 bitchsafettyudjwu.shop tcp
US 104.21.27.50:443 bitchsafettyudjwu.shop tcp
US 8.8.8.8:53 www.youtube.com udp
GB 142.250.187.238:443 www.youtube.com udp
GB 142.250.187.238:443 www.youtube.com tcp
US 104.21.27.50:443 bitchsafettyudjwu.shop tcp

Files

\??\pipe\crashpad_1032_AEDJEILXEBKPOBDQ

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 4322213ab838e97b7867b7b2d1cda0d2
SHA1 6bf7fd74e7f0a218571dfd518bb680efb91cc9c8
SHA256 c9bff3ba5b7494ece1fc70fcdd83d564dab6b18ccb40811abe54d468cf6687ce
SHA512 13cbb8ff5a29683e4864353e881fd576cd890f21cb231b5fe889a7222a00add48e41ed9aff8582aea57c34d3854377b7378a35bab637e4cd6cd869e406bf3f50

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ddd448cc0c9c431df67cf36664aaee63
SHA1 4c0ccb6f9041360ec84cbd20df731ef6563d12d7
SHA256 316839acfeda03eaa3291b1b54d635b4b4dfe7cd05a02e3a7c68d36ac720f33e
SHA512 52737a21232101264ad35dd40042a03e54d4ea44884be69467cf4ab2d3ecacf22c2d57c39dfccce1072d843d358a5776659726916059b04f64c3b0c55a88ffe2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 116cb530938588b3626762f93d3616a6
SHA1 1021800f559fe5ceca51149fe1a829d837b176dc
SHA256 a3b8a06d98ce4be3f85f30d5ce1e0e17341f9dad8ec26452f7983d4746e2faf8
SHA512 9dbbfe2e40fa807f880b5d930fef405ff723b04221a38ca6361e25efbb95004d6346f4240236014db37b2b6048fb22d05ce4c6cdc069a0c992207e26eae4b822

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 7920e55f1d0c2b61bd2073b6e82faa58
SHA1 b7efd3d21da54e5ea5b2996b4768d3f789ded3c0
SHA256 949edd1dd1a70ba43ea6d9b31b6b16ed1b2cf9c8358880b193aec280e5369386
SHA512 25a3dfc4a9e3bb0f9272ff6d16686fec26c99a7fe2366ec750da755c2605c5b93f7e6c766962c52a72164fcb44d43680e3a3a35c3be4fc131336909995c051cc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe58a68c.TMP

MD5 cdbc7a761c38e8ab2c9184498dde7c6a
SHA1 f3b1b4420d932e0de8110ff54d3787257a30fbbd
SHA256 dbf9b722a090c771712cfb48b54a41bc014e09f190a9d95c14019225b9b5aa6a
SHA512 42ccbb53b1996e64d847a3d54ea8194b734d0124619e2241df052286a6cca89490da28a67e44b4e9c788115c82e1217536ccc8ebd8f16e8f0267f12e10a87c4b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 220e5bbc89b36bb437048b4e02ed1689
SHA1 3c7f8d460669353371e720ca498bf70c2ea2d159
SHA256 bb86d1e360465cfca4c7184a9e2a70050461139d13d901d9d047df93f1648f0a
SHA512 8da34955f13693230122473845ed38425152b84e23dcb688f3968288d3f2632d1ead06795177831d1d213bb9f56e5a6abe703bf7fe12cb425b613ab05c96a916

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Manifest Resources\agimnkijcaahngcdmfeangaknmldooml\Shortcuts Menu Icons\0\512.png

MD5 12a429f9782bcff446dc1089b68d44ee
SHA1 e41e5a1a4f2950a7f2da8be77ca26a66da7093b9
SHA256 e1d7407b07c40b5436d78db1077a16fbf75d49e32f3cbd01187b5eaaa10f1e37
SHA512 1da99c5278a589972a1d711d694890f4fd4ec4e56f83781ab9dee91ba99530a7f90d969588fa24dce24b094a28bdecbea80328cee862031a8b289f3e4f38ce7a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Manifest Resources\agimnkijcaahngcdmfeangaknmldooml\Shortcuts Menu Icons\Monochrome\1\512.png

MD5 7f57c509f12aaae2c269646db7fde6e8
SHA1 969d8c0e3d9140f843f36ccf2974b112ad7afc07
SHA256 1d5c9f67fe93f9fcc1a1b61ebc35bda8f98f1261e5005ae37af71f42aab1d90f
SHA512 3503a0f4939bed9e1fd5e086b17d6de1063220dffdab2d2373aa9582a2454a9d8f18c1be74442f4e597bdba796d2d69220bd9e6be632a15367225b804187ea18

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\64b38fb2-c457-4dc3-92ac-99da9a57604b\index-dir\the-real-index

MD5 a78357a1bbcdccc4e358d52e28a1ec30
SHA1 e64443cee19a6f8680954dddba68d9c0f1cb2df0
SHA256 e6a03b2e2c7839943aa7af4341af322b9cb751e4c8fdd361fb83fab00d600b2a
SHA512 2df954f199f378c53fe10dc6979c128810bebdb151f22b44a98b262bf0a243917d6baccc9d928cb95a287784d004fb91eee69249fb1400612fd2ee9e7732c78a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\64b38fb2-c457-4dc3-92ac-99da9a57604b\index-dir\the-real-index~RFe58c985.TMP

MD5 098926eddffaa50d8730366645c243d5
SHA1 644d9c1b0feba9dd2b809302c18586dcebe9e23e
SHA256 1d502ee74c7cd9b0063a51dca43a8dc836ae0c0feb236b6771cdf2768bbac50b
SHA512 56f02887500e603b8ce26c136138d4814713d2d23306090dcfb9fcd0c8f812684081b28deb44eaf6c6edeb233c5ed5b896a2db9830c9a157dad7d7c39a39926f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 36ae135d54e5bc2103108faf94a98ff0
SHA1 cdf21a48d45ad456a2d7d82464bbc7ca0ff480ae
SHA256 9d88824768f4d619b0958a94ad17bd63078328eb25ae37d1f834534cb1c25038
SHA512 338ac6bd73d61bcd8f485079fccdefeaae92e9f820e4dadf5d23732b7acbedf76e86b1f2dd4e50e554ecbb6b9e2f75e8682ba6a54010344c91427652b9b829f6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8ade697af9c508bd0ae5a15c4f7b9b20
SHA1 149951d6be96a99e4e9631c4a5d7f01124831f46
SHA256 17027dc95deb9057a35ff5f2e52fe6eed73cbeb890fb19d53aab80904a8cb8a4
SHA512 20670eff1e479debc09ae7fc7ca9e726c55250f7efffaa156468f52a7f7041e8a455977ce2ffeeade422d2f9df89431f4f9f08d3eb96f262ec7d57faa4ba7bc1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 86606398c86df9f1a1fa66b97dc026a9
SHA1 28ba6218eaf174f1997f991d0193357ee1b90b47
SHA256 b4a9d6e87719245c6e9af6750e38a93736e16177c7fc58167b1856238d978e6f
SHA512 4923f5443e97b07cd14b62dc6dd224b83a5ebab392419e28c83eb27ea42550a29a962853f8b7106310001a53848cf58a385b2c1878155f01d60e082079191a83

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 21e97898f056da0737ab612532a44cb4
SHA1 f7ede1db968897672f8923f6c1e6f4151e36b702
SHA256 8023a987a3cc92c6a063528d4dc85300d55d128d01e2151a243b4328fdd7e053
SHA512 41e32e0b15bb40d342752b6727f57981ab03083646d8e23bcef2176f1cd75e8a41ba22a8af0082188e3290be796c59905fb6c1db7afbfc573cfd966701c7d24c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\a891b498-efb0-4c78-a0e1-f7251a1db378\index

MD5 54cb446f628b2ea4a5bce5769910512e
SHA1 c27ca848427fe87f5cf4d0e0e3cd57151b0d820d
SHA256 fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d
SHA512 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 dd274af80d07602e87ec652ebda138cd
SHA1 6764382b3405c067840e24de959137e86f36c1ba
SHA256 9247f147d3897c903958c60cc00e09c2651310bbe909290869036dbb060287b0
SHA512 89c620c4c34e3ba21424e43ef15a25db7694910c2984d70d37aa3124e1cef0ab20be7553279710becb4e13612180b2c51e6e42f1dc2553dd5582de4c878c26f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

MD5 c0637a08f2ba40c56260782d2bb3ace4
SHA1 a2bf4298414a764ff1342b3f48f45b4dc1669a96
SHA256 d6ab12688ec8cfe7f9235b18c7d7a4730d86278ba1efae0d715c0d054465781e
SHA512 736d1ac8987102028baef59d43ceb2fde71b3aab2f8f2d8d306846a457e2ac224908968ff7bfe34bb05beb7998223d393244cf5da84f9d64f8b71c9f0b2ca6e2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000004

MD5 c1cee2b5988facde99441327b35864e8
SHA1 b56d48e08529639fa437209c29b72b3292284ab1
SHA256 5bb2ff765cfd3e48b9a27fab19bae3cc62ad498f953c4907f45b875f931e5c73
SHA512 0b75dd37558602ea2307d7ecb368b27d2cdcf38f3bdab5a278ce11e13b1d7816c92d9f221b423d9d54a7189f5b05c283704fad4c0ac83fef02cf5e23596b9e1e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

MD5 127b7a9f7009939d0ae5dd1a48386985
SHA1 f9e981f2fbc6df7e304803153fb6fe40f0dcb6ac
SHA256 9d8e3219c036313e8b27ecb7b91befc49de6a32352a5349656945a7525a89962
SHA512 b1a442d78f6adc7a67f8ee299d46817309798ff2a38a66af2ff03eaa276b3a7967fde34e801dc8488ed75b3110fd01b3a9763f792ce75e21fae190d4779c1287

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fd18f056c78ff4f8199f346115facf79
SHA1 fd05edd60b6ae0a48822f48e1811827da2bafe79
SHA256 8a94b204bade5760b8a314eb03fa1b9ab043bbac61f3a74108bce6c720ec6422
SHA512 8caa52971a3e5d3dfa3a2c1a32146c5d14b85853115ce3f1b0dfc81766fda795bdfa8c83193cbce7d8d79dd6e5e725109d24490f63272127b095df5b562d2962

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 3a67aa856f40b3ea21aefc972212fb2d
SHA1 52b7c2cf2e4f7728f520a084c8f4dd6b4b219ae5
SHA256 57f03c97e5dcfc09d23d3f76454e2d69a4af97b0d1084c74364f0b43bfae2aff
SHA512 26ccdcb5290f42c09ba6eb675b7343b07da8061af906544eb74b0f222c7020468cf59132bca32d56400340de354cfd9bfcae172fe7680a596799637e3d9769ca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\64b38fb2-c457-4dc3-92ac-99da9a57604b\index-dir\the-real-index

MD5 2d3fb964fd0571c851b00c5e12cb9e5f
SHA1 29b9d6b1066877188ec41e04ce46029e0f6596bc
SHA256 13874666ed045baa188bd4383c7bc73d2adc39f7a8234c72d58febf9e079c954
SHA512 81533f895831f2001c281076d31f6c1522f6663a6f23a3e316be2571b692d73a04d0a4f73c44cc67b7686d863fbbd82573d09b105f7f8167a4b2f2d72e812856

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b04e1d406578e21594e7e8d9d3d107f3
SHA1 70b87dd131853e4109539827e8866173a7553386
SHA256 5bc4c62a3a4ea0efccbe8fdb2acd63ffebeec20b0cb8c70cb54d2187b48ef09a
SHA512 7eac906f2f2d9b04f53571679bb1a8320fbebf194e4fb4e2313dd7b87b733271c23c9e3a2ea7e6e1ff16845741c16b6362789ebdbaab15dda5d5f2d670e9d7af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 d13138107350e1399753444ee669c447
SHA1 d39766c089f3826836e2923b8c7c69781f393b6e
SHA256 32f2445c46a76a3f0bcb11f5291d54930aca2996e7d6edd7b67e9f434cf60a9d
SHA512 eec01d274bf4dc3a21de77ceaf6d80f7b376f8d9fc2a4c370a905fd6804145a2be5fd7701f40099e480bb8304b50480015ee075538ebd8ed9efb9fb412ea4556

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f74b2b5dfa44e05b9c5baa8ad5d4e7b0
SHA1 34076c2bc130e5f702597d1acd1d27fbb64be4e0
SHA256 fcf93ecc44276ba60e8e480b830fec5d4e6b6cc4338d71e48ce311873a1a65af
SHA512 8f73a3f50f55350c34ce8e2db528d49938f31a2afbee5295960d158fabcf1294f1c159e91d0cb5e1ec50e980addd07f746a4667b1bfde8b033380d3388292f26

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\a891b498-efb0-4c78-a0e1-f7251a1db378\index-dir\the-real-index~RFe595402.TMP

MD5 c635fd290a8685f87a501a34365032d5
SHA1 dd20a0a6757d3bf954f7b2b1602bbe99beb96994
SHA256 5edf4d6536b1b5bc139d8d2ae9c56543a0a23d7a265b9979836b22d6f11d2879
SHA512 cc2a695f62dad2914c3f31607b3f027bf2d4f703cb72eff5beb4110a1b25a439a646d53655e1df692865710121775f0030e8bb6ad6761601fcae610ab642b1a4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\a891b498-efb0-4c78-a0e1-f7251a1db378\index-dir\the-real-index

MD5 9f8b025df87a2b0224e21815c28abe84
SHA1 6684733275f157fccf4e8876fb4e6c1145704fe4
SHA256 8b4e5436cd7ba2cb5c3da004b661d7cc43040176cf3691c6f91d631ef879a152
SHA512 31296693e623f44db9111e694bee99bb00d732845172d3225546f890e4c1691e052c01e28c1b34b982463935bc9eebf1f33d87b8cb72f6ba10b21df2da7c3a35

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 1f8d05b7e49e90fd38ea3f288d79bbb3
SHA1 3d40dad67fcc6afd6cdbaf2b3335a56b7996af81
SHA256 fbffb986e89742932a9dafa8a6031f2c1bd97e52cdb33eb8b75e6fcb06d8522a
SHA512 cf07459b74c715d88a57fa41b2630086947edb5103bc5744043515c0a167d80d8097e70f5754ccd7f79a916aca90f5b32ef76f1774d315f45ae292e8b3c76fb2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c563c5210af14c5a75947d2a373dba5a
SHA1 df4e82c999c81b76e559683a36340a9bab715ee9
SHA256 d3d94dfd077538977b6f25cf0f6c2fef534ea25f4f7088936e0bf3d203d9942f
SHA512 239e3d17520db843c644fbf56e03856ab88bf9b7d789944b215a7d3b4898e80902f7e68c66c4cff86ac8bf2d168fa4969892eb3a96d1b61ebfcd8edbdd8305fd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 095ab336aeb4d5619af2c43899d2046f
SHA1 e5c2aa19e9e0253e006fd65edbf913517faed7c2
SHA256 568ac80886812ae344c796257bca97647d8d30e3755cd34c25efa3c60657bb2d
SHA512 3148fb8d43c77f278ffe887f0bd14b4ab207f07220c8c90c6f153bce2a6ffc26dff7ced64df7be09f8aa42fc19929645afbfcb80b86960ec2633319ec57c5e54

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002b

MD5 151fb811968eaf8efb840908b89dc9d4
SHA1 7ec811009fd9b0e6d92d12d78b002275f2f1bee1
SHA256 043fd8558e4a5a60aaccd2f0377f77a544e3e375242e9d7200dc6e51f94103ed
SHA512 83aface0ab01da52fd077f747c9d5916e3c06b0ea5c551d7d316707ec3e8f3f986ce1c82e6f2136e48c6511a83cb0ac67ff6dc8f0e440ac72fc6854086a87674

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 9bebf35ec9f812a4dc12589cfee1e255
SHA1 644e74bdcaacd8c34b3116b8c72589d383f9155f
SHA256 407538ec5dd76780fc85f69cbff8ec43ada00e5216386ae8d8137fc608bb0b86
SHA512 79bc9c7503cacdd5616c070bf19bacd57984f69a591bc91793ad6f974dc89991f268f68b5ce747e1581b9a1d25e90e09aa46fcab6c77624f9592aad91beffeff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1fef2c21d7d9a2d01b87df9848aa9016
SHA1 fc58aa621798c1e94352fb919cc2047b448caa2c
SHA256 f2f86162760972ece2f67f089552421d920f77aa19bb63c11411823eed73824a
SHA512 7e5ea7975b02b24f149e6f8645f9306102df8756b82d20d3bd568668a3acc4d24f8003da5d8fddb868436bcdeb318d80c1e2d1c22609a7fd37cc7b095af602ed

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 0040d0aa7af8c185a95553b93bdf1962
SHA1 6e6f27f0e0c6babfb899be5371683cd157159a5f
SHA256 43090c0f5d7af580f54887a3996b548e4cd7858545b771c4c8c83cc82241eba6
SHA512 53a9f15c6d0988cc7fbc8ab9951ae4a36461ecd0664e2dc5c5c385f8beb7b8a664dbfdf85a28bccf207de1e3768bd0c8a7ed6a6319aabc2191b92eceb53b40eb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 9a85a531e2c66782b51cf70ecc4eea47
SHA1 a4f9aee1453074ffc7f6ec1a912c8295d963fec1
SHA256 4dcf7e841c69b07d145c9d43146ec53a12239e6df612d0c89798aaeed69c8c32
SHA512 dfe5d3a409a89b7a34eebe2b9e3d6ac6b3ab787dedbe10ba1c4fba736a8797e206a36818b2743d232b13b6d4176514923ac726e971975cf3ffadeea784d17094

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b331c42e57be4a8275151583af360d1a
SHA1 c15cb32246a370e69758a3e3b78cb4400b237d56
SHA256 a89457e5d223e992916bab1a67363270d3ad16f9c6ef60cd62c9bd6fe65b2a5d
SHA512 99ecd7e4992382d79d20c06ea2f0ce212d6ed9e2c56a46f751ee648d79772750ebba9a2054e41c59d1a8314b19047dc2ce49fed6b43e500b87e60d584db0d077

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d880f180ec1e968576fb9285d60ae429
SHA1 3bab983c24d2296b409f830d77980792aac067fc
SHA256 c4981e549c8f2cb5277aad776ab45bf37468f19c14f9e3f3aea8325df4577d92
SHA512 8b92a2b99ac29e5de0cc4d98caba066a6ba4d77e37ee2f820ab91df371827afa0b6a4b7a50b99f3cd2c362d94994b96a6e7bcfec19db6abb59f0be9787260d71

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 82a930a39172b9af8951023d7cde93d7
SHA1 07a97b7c93f4b74f8dfe6d2c553836939c4eaa0f
SHA256 0c3220bbf16553b7904ca865ca4e9b2425f37436b09c01942a651ec065ddc4c8
SHA512 5f897e5fd078362ce130b17f3e237c2948684d42da52fda4ecc377fad23dd04919879f87f700d1cc017dbe3502a97e8e279a95d5e858c14d68c893e8a911d2e7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 648b1839dfb44bac1b22475b4eb95c40
SHA1 71249c0eb71e05f0f8133a000de9d5b9040e08ba
SHA256 5329cdbddac879baa1e6991a3a9236cfa7aa4d08a94a12d8ad9a0c3cb58e3b96
SHA512 3ff31e3ab09d7664ac8704fb11f278af02a0bdfc38a59850227d4e0afe50f453c2fb662a27b5414b10eedac6677d81f59d765492708b2dd3a9538c6d72736aa2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 854efffa9e96993d7cda26b8b0fa46bd
SHA1 71d4551a07e26468a63bdbcf410d9e877b03bc1b
SHA256 8d05dfc9d69c4727bcd25feb0432d72370de8d711616ee80b7893cdf186ed874
SHA512 e29833b18d34e0f84ef89a2f1789aa5a520aedd20d9b5655ee04d7ca30ac403aef9a38295585c4c15cbe442e51280c04c90984df281d34e03685f55ff678a398

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 bae37f8e18c66128d2ef89002e161853
SHA1 99d1f40dfbbce017e36d1b2a8a9c797bef9bf8bb
SHA256 1081400f481a23e5e80f292c210c9d28c77083a8945c7b3ea0cd752ed6508fd2
SHA512 ecd65a44249a682dcbc56999f2528d7b881768c2351ba4306ef111e11542f8617580616d3c270bec78bb1410d70046bf39cf8860aacac33f16386efcb5b558eb

C:\Users\Admin\Downloads\winrar-x64-701.exe

MD5 46c17c999744470b689331f41eab7df1
SHA1 b8a63127df6a87d333061c622220d6d70ed80f7c
SHA256 c5b5def1c8882b702b6b25cbd94461c737bc151366d2d9eba5006c04886bfc9a
SHA512 4b02a3e85b699f62df1b4fe752c4dee08cfabc9b8bb316bc39b854bd5187fc602943a95788ec680c7d3dc2c26ad882e69c0740294bd6cb3b32cdcd165a9441b6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 57bcc4a82bcd17b1093239b6cf32a776
SHA1 963c3cdb763a1974c1a159bc08af825c33344d57
SHA256 09881bdb150047022bfee63e04ca30a1c7cd8c30c2e20e41c007ebebc466a95d
SHA512 af1760a35782853c213ed7223d86e78de8c73a8b4ef394741dfbf60781f2da37c17607f9f5b9ac4abe5921d8e6f768ad8de4b1122aef5a02566f240daac7b7bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d240c12b74051cceca996359e9c62163
SHA1 fd023648f1f1e2d1bc207b701cf095ea27eeed1d
SHA256 ef5ba9512fcd60b3900381c5a2f312325f12edbd1c341b9ce5d0901da81d3a50
SHA512 40fb70369763d2192492a8e8e52ac35343954e14ed24e847ce5cf77c0baa1f3969c265bd791941b618db1b1a6f997daaed5838fb1a0040b57cae6155bd2b9e18

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\5069bcda-3145-4bbc-8ffe-cc35187e1781.tmp

MD5 e839cabb98fd81ce02e6d94e29f1ec3e
SHA1 6f96c1ad52c205e87a59ea638eb9f0f13d42c4d5
SHA256 c4f1836d57f96bcef8e6ef8df8527f7627c39498885e2fc37fa1a50b633d0f4f
SHA512 74908e5519645c10506f4adfd40db7b74f07c9f5436f2a20a9e8b7dbf46d63131374840ded0cf3e88355073d62b4d941a69014f3a226905bf36af0f430495893

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe5af222.TMP

MD5 2a1093fa38a0f3b490a002ad00b39d28
SHA1 8f36a74ba740fa6514507ac62a27329e27cc6d07
SHA256 988f645b1921194774b91fcfa129605f7920a689dc6e843e0fa969cbb922a179
SHA512 a87c483a3ba9fd1426f8638e4c7d689cade9bc426a9c3bcc3d6f78a520c8a07233570f14f01644734f618e4942f577c8600c2249b9656426f066303c75236822

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2bc73088b787391b2b4d18b738357433
SHA1 f3a5b636cc9439111eaebb0b66f1146078b6aaa5
SHA256 08879be080b111bfce3b964f966f5cdcd1807dcde978d246053fcf3f52d5de38
SHA512 269e6a99ba6a38ba0a00ce9bcc07ae1cba5a403ce9c0aa419ec098dc1c78b04099f24af32e29ac3e63dc29ba8d7bba26048bd1e0e276ff56e652de5ae0066d84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 8eca65b364316fc1c231941461d872e7
SHA1 fde84b36a572bdce3149faa25219d34958971995
SHA256 17252be1ee50fa8cc6dcf672fe1d095c22542db0f3653d14091f5f1996676971
SHA512 b1b5f78ee40f0194df3e97547f79b41dd88a7a62b8447826c20bb19a8928c4d845cc5f3d7fb6363b239aa06171d1d3d219636dc24d5b5fafe170b92331f8dc62

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 aa00adaa9915f5a47df2a8fe731793b5
SHA1 27b5d1cf4336250bffc5c8b42281d4f084f48772
SHA256 349f197c9de759cf087f62bdae1d47e8794e8f276baaa55b0f2bd26a42b89df2
SHA512 f7caef8bf7626296cd406dda9ed8d7ba2421e126c32946acb1c4151f375b53b1238f19032522b658bc1f8d46fbe1ebcf1754b49658057c6e69bd8cab8a46e8a4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c3635558f9e391d58dbdde4136185d79
SHA1 6681601d253cadf773a2eb9dd5b3dcf330f52f3c
SHA256 f43562fd65fd011f09d23058a5a090304166ea02b740e38d16c38cbde7b56527
SHA512 9c86c7713d3ce3f47e5e47d5884aa85517294c4f2bf2b65433b72e4de4922de4166a79601f7d712abd31b7fbdbb73c61fa734376d6a9821d0dfabcb348873e71

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\64b38fb2-c457-4dc3-92ac-99da9a57604b\index-dir\the-real-index

MD5 2fa689897fe2167aeed9f9118ec93fe0
SHA1 5b9305b644af81f60232c53d5fa95c60d01675ba
SHA256 bdc529fc51454363ff2c9652cee5ed102659d32bcc3818a0282e24ccb9d48858
SHA512 cb550fff446ad93bf8e4f751663c14d7f1781d533a5d426c88d29703ed00b617685b13e0e0182df77680393534f9516d8666af1273c7665572f71d2daf8f7495

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 1d40a17003d31400cf7a2bff271a1a43
SHA1 5517c1b8b4585d3f1de462001095d29572d0334f
SHA256 4f125c04482a672b6ec67f6f6d3f68c7c55f79e9b3f2f01397926eaad1aeee90
SHA512 7b86ce5c8fbde123c783072847e94c768cabd373e7431c28f10c97cae248c69d6cffb59b692bfa484e67e80d69591b602aa256ff5e9aa3348ed36d824d06edc5

C:\Users\Admin\Desktop\Software v1.12\Software v1.12.exe

MD5 25584a4815b6690060c6a38eb98f988f
SHA1 d1c6904e889c71734f83f6385f9600fee410559f
SHA256 fea65d7e88b70b9d545d059a804251743fbeb4bb6e9edfde40e2e84bec2f83e3
SHA512 04ebef8eab9f4df869bd67cef87d642833aef4f8be721548ae973c2ac15b2c484f059a91075101cdd91d434e6e9fe3e0df5f8430c7e6cae034e63e08abad4fb6

memory/4252-1278-0x0000000000400000-0x0000000000459000-memory.dmp

memory/4252-1279-0x0000000000400000-0x0000000000459000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version

MD5 009b9a2ee7afbf6dd0b9617fc8f8ecba
SHA1 c97ed0652e731fc412e3b7bdfca2994b7cc206a7
SHA256 de607a2c68f52e15a104ead9ecbaa3e6862fdb11eac080e408ba4d69f1f7a915
SHA512 6161dd952ae140a8fb8aa5e33f06bc65fdc15ce3fbfe4c576dc2668c86bce4a1d5c1112caee014e5efa3698547faad3bc80ec253eedb43148e36e1a02ce89910

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Data

MD5 b23cdfbcbe7d61f67ded5b728c894af6
SHA1 7ae2d7863b58e7654f0e799ba7e8ff56221b7e38
SHA256 5148a5ad40ad9323a2406ddd3c0865c3f4b1db55ac35952efbb4347eb8368a16
SHA512 9eafc036bf87846a959e60d2ed5c4e3894514dd50e2f81a85b256f86f400a1fb54fb37152397eaffa0488caa116efa3d61d38f2ac1a41e905e5df9b39c219a5f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Cookies

MD5 c40e46e75ae866e69806a93f541f57c1
SHA1 c68c16b851dc35e61bea77a087e22a54db7041a8
SHA256 8a68f71b6abef4c4540873aabeb6deb1efb72e1f4741894dd77303b6c2215eed
SHA512 8327dd1cd32b8368606d1324652639ed80dd132c0bdbd8696d531546175d358c57e9760408a4234663ae567667182dcd64f2d5656643581586ae16b2b096d933

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History

MD5 2dc5b7d3513bb37feec374ea2ab7c670
SHA1 0b38be35eca2d040647f1e2f9e1faa1e661feb72
SHA256 f4e2fd68c7887b1b2d072a6f96570fa5bca52982cc74377af0ccea229c9c9fd5
SHA512 0a0fee8b9c13762f1da9a1b498f96a784a125ceeb2d0ab095bc75214cbcc91999234b8c2be04ab739c588c3d709537fdda76b145773cb352b9c126bf048fb8bd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016

MD5 2fe1a3c9b2823be620573421fe473a81
SHA1 c3d29c0999ecdd8529d0e4526dd7236043968f44
SHA256 50d2a45f8df2255c8e90a4376906c7933368a82427ea6add916dd3a481845f31
SHA512 020027aa147c74e756fff505d9f5526a44ffa339b2bae7fb0e67ae24ed646ecce62b02e229a6ce6620404e7c9c0d5fca7470cfbcc4b6d1576c677a6605ea4757

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015

MD5 660c3b546f2a131de50b69b91f26c636
SHA1 70f80e7f10e1dd9180efe191ce92d28296ec9035
SHA256 fd91362b7111a0dcc85ef6bd9bc776881c7428f8631d5a32725711dce678bff9
SHA512 6be1e881fbb4a112440883aecb232c1afc28d0f247276ef3285b17b925ea0a5d3bac8eac6db906fc6ac64a4192dd740f5743ba62ba36d8204ff3e8669b123db2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

MD5 7e7ae79453361bdbbc333a4e55379729
SHA1 f6fbaea64fe2494ed08b85658c817a4567cce0f9
SHA256 ca6ababe505d8c82b9456470cfadf491de6d5e1599ecb74ba0344a7df32dfe2d
SHA512 7e5120ac8d3f2760a21c36b0c765340f63438322b37301afe684298c58ad6e3e6087cc2b2bb62c410938da2ac5ffd261c4652374c4e26bbc39440000b37437e8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013

MD5 d989f35706c62ce4a5c561586c55566e
SHA1 d32e7958e5765609bf08dcdefd0b2c2a8714ce34
SHA256 375dfe942a03ee024b5cc827b3efda5550d13df7530281f50862ce3b33fcb716
SHA512 84b9347471279e53ec5f151caf47fd125b9c137d4bf550a873c8f46e269098ea5e2882b1dc1fe3b44095308df78f56d53674928f44a1e76d3bd7dc9d888d91dd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

MD5 79cbf5b6645638246cb94c0fe4b59bc7
SHA1 7edc0b05ee0d9e945f74742e46c20cc83de2b3ee
SHA256 2dc8cb2fe5802944f5a378daa649ccaee14ce3025b76447824c75eb26fa78936
SHA512 9e7a5efa1a0d6ceebae3db6c90b2c0bf59162fbe6dce5b7695dc46636fb7bc631dacea71c5e4cd8c1192a610a23ce4d8e154eb26c9423917bf69a056ec640dd7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

MD5 6e2df673cf4661a6709df74b340a712e
SHA1 78951ef50dd7d443f8480af8c8cbe8f2a00aba5e
SHA256 5adbc8850a787767d3726dc34e3cc71f4d91382f2392a34ca9c97f7aa411f182
SHA512 8ac2e49e092f03ede6cedb19418c4654b12449bfc4b34d4ef1009f74b171f4ff244f0fa0b4999e99b257eef2c8337e8e87b1a803030c986da3f3a3b198f51fdf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

MD5 947b7b96c830b83cc2f06bb27f4be73f
SHA1 a221e5919af446393acc428b9a781b413f7776ea
SHA256 82cbfb11944684c9199402b1eacc05984d105c872517082ba25b2c74ec0e4944
SHA512 b2e3eed0274b1a7689b6a7a94778e7534f121c94d50a43e8bada832be5785e3ad1dcf8f150750485dd323a1d64a609880d2d19bd0867312a25bdbfd1e9347d91

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

MD5 367d6749aabc56bcfd8fe6f68e8ec07f
SHA1 94603bfd837a6cc48b0b413d97e6c21294139f01
SHA256 aba7125a597cbea4846b275de47b9e35fb42202d217c321ad861b09d3b831b5b
SHA512 737b43474c49d945fcc767a082ae79734333de55374c35825993539376577af76175a966e633b8224b4ede6a42738f3298e5c42d7a307f37897857c7c65842c7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

MD5 60cddf65272f3c8a74d45040b9f3b42d
SHA1 202797cfb1221b50384ce2338e1a5094642d7362
SHA256 fa95f2bfd1ff4ff29c1a2a20c0ad0c1a10b26e9842e79fa75bca6ad4f49bfab8
SHA512 c75d1bbd7e5dd3b279552c64c46fca4b1f174db33cc0a24e17d157c017309094615694b32e5eedf9c0507bfc0b22c2380e8f2696093b179e68eef0b48ca2ce7e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

MD5 651275bd2e3df7877dcd2bdcd245f88e
SHA1 3083a49c8ea3e4c9d86c977383f6e83783d2465f
SHA256 626caf5e1d629b2fda606ec833ce939b945bbc760c7d940deb4b88cff243fb86
SHA512 9dd7e18a0b179e91f638790c0c724586b87f516cb4010b3f05ad641750c6edd38b4a538e33d2425bba576af688555fb926df68479dee64cc047e0818f2c4f04f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

MD5 ea401176818f54ad0cb8b6948f5445f3
SHA1 200034472a9c5f0d624369c0503f330def49b959
SHA256 8aaebbfcd564fde3441e3a911731538e54fb6aeec27dfccd388f5a02d567ef93
SHA512 ea6210ea5a916334278e528e85dfe03c621839fcf1efbbc4a0ae80492389e93620879e49931b4a46cdb8e5763a0c28522c6e2d7f51f7c3474d4b2e939a2860ab

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

MD5 cd3756106418d9e83a2baff9904ba221
SHA1 4c2ed1c1ebe119027db0fbaf7a64b408f1779b4a
SHA256 57ec0895e1bcaf08c769e2d6872f3f3657972f87fac081063445213dae4541ee
SHA512 5bf43ccaaf99505f7e8ecf2eda18efe260125accbc12f655601e2acabd822513e153f4b81cbf03a65d13572f11e9f13fd471006a0ce8f2665e8a594ff2d769dd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

MD5 af5bf693b92c0d2c8441b3a6640c4ad8
SHA1 12ed4ac73239e542ab8d7fa191dddc779808e202
SHA256 b9f2c3f2ec75955d96309f759eaf9fb6bf576c238377491dbb92de1768a26012
SHA512 c2ef099832fc5e8f1e67acbd550b0590c0fb5c291761280a2e74e6a97763906b9c0c1a2295f285462ba3a0ed7cd5658f296e5f0f9c5d11a97ba210f352f8a438

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

MD5 c81ecd0806667682b70013669e13cb3e
SHA1 b035554be89ffc3a6d4b61658f4d8cffb1cdd4bf
SHA256 1663586f372335976dce40ac11492c66d585d824917c41f2d0f66536af43eadc
SHA512 7aa8e6887742cde2b2bea5f029c4dec0e41234433cd4e622df3ae420283f93fa1f17f36a9adee44caad46cace0f6c617a08f95d36c87ec924ddbbc47c25c2d2f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

MD5 2d0cbcd956062756b83ea9217d94f686
SHA1 aedc241a33897a78f90830ee9293a7c0fd274e0e
SHA256 4670bfac0aeaec7193ce6e3f3de25773077a438da5f7098844bf91f8184c65b2
SHA512 92edce017aaf90e51811d8d3522cc278110e35fed457ea982a3d3e560a42970d6692a1a8963d11f3ba90253a1a0e222d8818b984e3ff31f46d0cdd6e0d013124

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

MD5 33ad2290cdf2487f6dff9bf512cece28
SHA1 b56e223cea17569e13c5dd72aff3e34d40f114a9
SHA256 2d01340947a8b8ff697bd0176aa1dbcf81e8fef67acedaf3ede3c71c179007c9
SHA512 df14b0d6217da08012a6571be6bf1eb3ec8ecb35197e610a32bbeca511c23075f7514de79a7963ff0e4be46cd1f3f1440b84219ed37a6d12c22ecaffb6391d7c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000003

MD5 6d86c205a9b52b9d90090fe2652ba0d8
SHA1 0f9b8d05667b8428e7faa8f4e0806ffc5528bda6
SHA256 f1f9f5cceddb1eed63ea0aab3d1d6f913dd61744cb32337c6aaed8c4b121d167
SHA512 751adafea40d464636b62c35fbc29732c423590b0926170ddeb9ae80edfad9aff81ae23100017cd69383fed5602ef8822c076f72336fcaf0b267982346b60da1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000002

MD5 e09df5a23acd241007ec35851474a7f9
SHA1 9802085247211e3c82c5e6fefc003e7c1f21227d
SHA256 846921a45a6d2203548059f9b22a5a5513105e43098da955bf402e681020bf56
SHA512 765b7cfa03aa7d750a18ad63c072c069329f4a7f7a594051c01700934497533ad07dc503c8b3892d5ac97f14b8b85a6f4868c7e5a1a4d2e40a7ae4f7514d1009

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001

MD5 778ca3ed38e51e5d4967cd21efbdd007
SHA1 06e62821512a5b73931e237e35501f7722f0dbf4
SHA256 b7e1bfadb8d9c061f17a7234df012df7842ab1aa8fb6f9579fa3f0a3b4a75bc0
SHA512 5f6f02099ca8079305fb7e7f43ae4344d522271fe30379c0854d6a81b7d8adf408a50a4b799b5f52e6ed162ba6ce7fe97e24a2b9719df780e75683d3aa103d09

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3

MD5 0dc529adababc4bf240bf042b94d4381
SHA1 b1660314e800016d19db1e6cc33dc6674444b6e5
SHA256 7c0bf1082d9a59b754937fd9e2e24296d942ef96f510292db388785f2d165195
SHA512 f6620734334aa0fd74e635a0c6f727a3c1e6da8c2e6ace77499bb2ff1dd83e33e513847ed262f256a504af71f12f5b2c5937c4f13d13c989388f513506573b78

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2

MD5 df0a4ca60b8cf7d053e2376bcac37be2
SHA1 f44b20502dbc4030bea7926b8e9a19ea8868f2f9
SHA256 6c32e4c2968b8fc500a3c8b5cd3eb674a98c30ef3e56d643699728349a385bf5
SHA512 0464cc3678aa154c187783558aac888d74fb1551922aedf4a65826938a49c84a3217c0f4d386fae917df5d9574c2cdc891e9ed9722c2ecd2bcaec28b61c9b1bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1

MD5 f2c0af4d4f0d5660a9f46bb9517be527
SHA1 f21477c7651bbb9ca5a070c45548fd8f991f2903
SHA256 96cebac505395ff5eb89248bd4b0676a76d848199a4ca39afb4867afdaf12d49
SHA512 249659f8dc943c59fcc78637f53c632c33884c72c4cf5eb55e98b69839bc6680415e7c988e6be795d7e6dec7eaf7f5dff5d83319008c41bc772bd587b74a5a9e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0

MD5 793b1cb8f54ad0f524a9c3f3e35ca81f
SHA1 7a8065e460bf8081bdfb90cb0689f83159a0c1b1
SHA256 a91a26f03ad67df485735b8cb4aa7b207f55f042fcbc2dfcdf86986b041c6c5a
SHA512 086ef49a6f8183b36d7c055f0eedcf186bbc0a0d2bbc6279fa5b20fb63c2d3049a90bcdbebc6220ee00b64f0c251426e9294bc36383e120e359de22eb36c6808

memory/3300-1324-0x0000029A2C970000-0x0000029A2C971000-memory.dmp

memory/3300-1323-0x0000029A2C970000-0x0000029A2C971000-memory.dmp

memory/3300-1322-0x0000029A2C970000-0x0000029A2C971000-memory.dmp

memory/3300-1334-0x0000029A2C970000-0x0000029A2C971000-memory.dmp

memory/3300-1330-0x0000029A2C970000-0x0000029A2C971000-memory.dmp

memory/3300-1333-0x0000029A2C970000-0x0000029A2C971000-memory.dmp

memory/3300-1332-0x0000029A2C970000-0x0000029A2C971000-memory.dmp

memory/3300-1331-0x0000029A2C970000-0x0000029A2C971000-memory.dmp

memory/3300-1329-0x0000029A2C970000-0x0000029A2C971000-memory.dmp

memory/3300-1328-0x0000029A2C970000-0x0000029A2C971000-memory.dmp