Malware Analysis Report

2025-01-22 09:17

Sample ID 240707-r6mnxswgnh
Target YouAreAnIdiot.zip
SHA256 7d260edc60345e80685c8a3017396e7bad2174b5d31c67840152b6695c6f5ce7
Tags
redline @hasbulayt execution infostealer
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

7d260edc60345e80685c8a3017396e7bad2174b5d31c67840152b6695c6f5ce7

Threat Level: Known bad

The file YouAreAnIdiot.zip was found to be: Known bad.

Malicious Activity Summary

redline @hasbulayt execution infostealer

RedLine payload

RedLine

Uses the VBS compiler for execution

Executes dropped EXE

Legitimate hosting services abused for malware hosting/C2

Suspicious use of SetThreadContext

Command and Scripting Interpreter: JavaScript

Enumerates system info in registry

Modifies data under HKEY_USERS

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Uses Task Scheduler COM API

Suspicious behavior: GetForegroundWindowSpam

Suspicious behavior: EnumeratesProcesses

Modifies registry class

Suspicious use of AdjustPrivilegeToken

Suspicious use of FindShellTrayWindow

Suspicious use of SendNotifyMessage

Suspicious use of SetWindowsHookEx

Suspicious use of WriteProcessMemory

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-07-07 14:48

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-07-07 14:48

Reported

2024-07-07 15:06

Platform

win10-20240404-en

Max time kernel

1049s

Max time network

1055s

Command Line

C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\YouAreAnIdiot.zip

Signatures

RedLine

infostealer redline

RedLine payload

Description Indicator Process Target
N/A N/A N/A N/A

Uses the VBS compiler for execution

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A
N/A camo.githubusercontent.com N/A N/A

Command and Scripting Interpreter: JavaScript

execution

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133648373362417890" C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings C:\Windows\system32\OpenWith.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\.md\ = "md_auto_file" C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\md_auto_file\shell\edit\command C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\md_auto_file C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\.md C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\md_auto_file\shell C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\md_auto_file\shell\open C:\Windows\system32\OpenWith.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\md_auto_file\shell\open\command\ = "%SystemRoot%\\system32\\NOTEPAD.EXE %1" C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\md_auto_file\shell\edit\command\ = "%SystemRoot%\\system32\\NOTEPAD.EXE %1" C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\md_auto_file\shell\open\command C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\md_auto_file\shell\edit C:\Windows\system32\OpenWith.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Program Files\7-Zip\7zG.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\7-Zip\7zG.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\7-Zip\7zG.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\7-Zip\7zG.exe N/A
N/A N/A C:\Program Files\7-Zip\7zG.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\7-Zip\7zG.exe N/A
N/A N/A C:\Program Files\7-Zip\7zG.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 2596 wrote to memory of 3548 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3548 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4568 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4504 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 4504 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2596 wrote to memory of 3604 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Uses Task Scheduler COM API

persistence

Processes

C:\Windows\Explorer.exe

C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\YouAreAnIdiot.zip

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xcc,0xd0,0xd4,0xa8,0xd8,0x7ffb6cae9758,0x7ffb6cae9768,0x7ffb6cae9778

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1524 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1768 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2060 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2980 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3016 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4412 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4872 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4956 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5080 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=4108 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4352 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5352 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5028 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:8

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Program Files\7-Zip\7zG.exe

"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\YouAreAnIdiot\" -ad -an -ai#7zMap28135:88:7zEvent20307

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.15063.0 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3688 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5376 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:8

C:\Program Files\7-Zip\7zG.exe

"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\Fantom\" -ad -an -ai#7zMap12940:74:7zEvent9378

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3612 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5036 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:8

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Program Files\7-Zip\7zG.exe

"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\apex-legends-main\" -ad -an -ai#7zMap10512:96:7zEvent1441

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Windows\system32\NOTEPAD.EXE

"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Downloads\apex-legends-main\apex-legends-main\README.md

C:\Program Files\7-Zip\7zG.exe

"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\apex-legends-main\apex-legends-main\APEX LEGENDS\" -ad -an -ai#7zMap10532:158:7zEvent8441

C:\Users\Admin\Downloads\apex-legends-main\apex-legends-main\APEX LEGENDS\APEX LEGENDS.exe

"C:\Users\Admin\Downloads\apex-legends-main\apex-legends-main\APEX LEGENDS\APEX LEGENDS.exe"

C:\Windows\Microsoft.NET\Framework\v4.0.30319\vbc.exe

"C:\Windows\Microsoft.NET\Framework\v4.0.30319\vbc.exe"

C:\Users\Admin\Downloads\apex-legends-main\apex-legends-main\APEX LEGENDS\APEX LEGENDS.exe

"C:\Users\Admin\Downloads\apex-legends-main\apex-legends-main\APEX LEGENDS\APEX LEGENDS.exe"

C:\Windows\Microsoft.NET\Framework\v4.0.30319\vbc.exe

"C:\Windows\Microsoft.NET\Framework\v4.0.30319\vbc.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1756 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:8

C:\Program Files\7-Zip\7zG.exe

"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\" -an -ai#7zMap17891:88:7zEvent11166

C:\Program Files\7-Zip\7zG.exe

"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\valorant-main\VALORANT\" -ad -an -ai#7zMap22371:106:7zEvent22401

C:\Users\Admin\Downloads\valorant-main\VALORANT\VALORANT.exe

"C:\Users\Admin\Downloads\valorant-main\VALORANT\VALORANT.exe"

C:\Windows\Microsoft.NET\Framework\v4.0.30319\vbc.exe

"C:\Windows\Microsoft.NET\Framework\v4.0.30319\vbc.exe"

C:\Windows\system32\sfc.exe

"C:\Windows\system32\sfc.exe"

C:\Windows\system32\sfc.exe

"C:\Windows\system32\sfc.exe" /scannow

C:\Windows\system32\sfc.exe

"C:\Windows\system32\sfc.exe" /scannow

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4624 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:8

C:\Program Files\7-Zip\7zG.exe

"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\Discord-Nuker-main\" -ad -an -ai#7zMap19341:98:7zEvent26973

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Downloads\Discord-Nuker-main\Discord-Nuker-main\[1] Install.bat" "

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Downloads\Discord-Nuker-main\Discord-Nuker-main\[2] Start.bat" "

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Downloads\Discord-Nuker-main\Discord-Nuker-main\[1] Install.bat" "

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Downloads\Discord-Nuker-main\Discord-Nuker-main\[1] Install.bat" "

C:\Windows\System32\WScript.exe

"C:\Windows\System32\WScript.exe" "C:\Users\Admin\Downloads\Discord-Nuker-main\Discord-Nuker-main\index.js"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3572 --field-trial-handle=1776,i,11300847313372434597,16591641987458193145,131072 /prefetch:8

Network

Country Destination Domain Proto
US 8.8.8.8:53 www.google.com udp
GB 142.250.180.4:443 www.google.com tcp
GB 142.250.180.4:443 www.google.com udp
US 8.8.8.8:53 4.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 clients2.google.com udp
N/A 224.0.0.251:5353 udp
GB 172.217.16.238:443 clients2.google.com tcp
US 8.8.8.8:53 238.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 215.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 240.221.184.93.in-addr.arpa udp
US 8.8.8.8:53 github.githubassets.com udp
US 8.8.8.8:53 avatars.githubusercontent.com udp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.133:443 avatars.githubusercontent.com tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 8.8.8.8:53 user-images.githubusercontent.com udp
US 8.8.8.8:53 154.109.199.185.in-addr.arpa udp
US 8.8.8.8:53 133.109.199.185.in-addr.arpa udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 142.250.179.234:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 collector.github.com udp
US 140.82.112.21:443 collector.github.com tcp
US 8.8.8.8:53 234.179.250.142.in-addr.arpa udp
GB 142.250.179.234:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 21.112.82.140.in-addr.arpa udp
US 185.199.109.154:443 github.githubassets.com tcp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 210.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 raw.githubusercontent.com udp
US 185.199.110.133:443 raw.githubusercontent.com tcp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
GB 172.217.169.35:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 133.110.199.185.in-addr.arpa udp
US 8.8.8.8:53 35.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 23.236.111.52.in-addr.arpa udp
US 8.8.8.8:53 40.173.79.40.in-addr.arpa udp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
GB 172.217.169.35:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 8.8.8.8:53 camo.githubusercontent.com udp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
GB 20.26.156.215:443 github.com tcp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 142.250.187.202:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 github.com udp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 8.8.8.8:53 codeload.github.com udp
GB 20.26.156.216:443 codeload.github.com tcp
US 8.8.8.8:53 216.156.26.20.in-addr.arpa udp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 8.8.8.8:53 collector.github.com udp
NL 79.137.204.112:80 tcp
US 140.82.113.21:443 collector.github.com tcp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 140.82.113.21:443 collector.github.com tcp
US 8.8.8.8:53 21.113.82.140.in-addr.arpa udp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
US 8.8.8.8:53 codeload.github.com udp
GB 20.26.156.216:443 codeload.github.com tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
NL 79.137.204.112:80 tcp
US 8.8.8.8:53 collector.github.com udp
US 140.82.112.21:443 collector.github.com tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
US 8.8.8.8:53 github.com udp
US 8.8.8.8:53 codeload.github.com udp
GB 20.26.156.216:443 codeload.github.com tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
US 8.8.8.8:53 objects.githubusercontent.com udp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp
NL 79.137.204.112:80 tcp

Files

\??\pipe\crashpad_2596_RBBDOWHHTFEKHAYF

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

MD5 99914b932bd37a50b983c5e7c90ae93b
SHA1 bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
SHA256 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
SHA512 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 be1068447a67f5312600b7db8bae062d
SHA1 8c1e8a66c3ecaa070f1028df92dafebef332fb1c
SHA256 2099e498296ab2c4d2ef3f4cac38b9b848883f6730be01555faeee42710f4924
SHA512 92828c0c1ab173059b58b4bdcf1bb2fcc56538996c7240c8fc4c98e33af27f595ef20c14ae8de8158f0f829ca6717b690c1c4503ba295fc61fdb7a528e7247c1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2fdba0bd5f0c59c9f41fbefc0fa20d20
SHA1 325d7b3201a135ba493fe9dc0a01edf69e808df3
SHA256 fbac873dc59a159b9687cf1ddf282af87c6b55d8e2716c91e5c6ddd1882d5716
SHA512 0a9d5852821bacb595d5411166b24363b291ca2746246f3dec3a01e40a73c6b59e270165c85e420b1ee5ef0ce1427106636b988971dc19b2928c4796f10ef4b0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 178239666d0012cef7e981e9de259831
SHA1 7ed145a6c8e50d5ce83347eded2f0c0211fb49c9
SHA256 a32a0744cbadd5ca29ccf308d7597ddbdfeda2be9693719ab949d89ffb85be27
SHA512 1f157899799904ae693c30fa841bfadd13f985a90fba56165697e60a56868fff7f4a20b4751c06d69d3fd02318ed53459cb66653da8e023b720bad807d4fa490

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 64e2829e366c3729da66924a6a10afb1
SHA1 d9a337f3a74a46d4cd596558d0b0a697cae25c18
SHA256 b18c0369287f2be2701b0d5a5641b959bf7b615bf31965f19c0e12c2f9dfba39
SHA512 415738757d8f4ccfd9c431896fd1e805b2cd3ce27ededa277815948366002fdb2397ea2e9715640eb22b81e79ee413ddbee97aa5fa8e1a82ba54a0f288aa400d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 93e6e6db9843e8bbde4ae6cadf16e95d
SHA1 084a9f9276e173241a76202fe17bc5b9b17f0c22
SHA256 a6f89a3b2d2ca69d4332323ad1e262994e573f44856e163004b2f16e8eaa5c53
SHA512 6a2c84a7422daf72222e53b12dcad485ff5e6c959470d0cff1343555d9f340dcf033cc88d7e138bbcbf10ec4a940c73c4ddaaececc0363e33a7e82babe8fdad8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 9dfaa283816460a1cca5988f145e1313
SHA1 9b4c5b937ceb259e133c120adf568cf11497e326
SHA256 1952f335c54ac9cdde76a5e92ca2b70fda13e6b6025cb704280f6381e512e0cf
SHA512 63a1083e9e95df0cabbe1aef6b8e63bbfbd5b15cccd54c0ef94bda7f18df556a3dc3a206380b2048fc92f0a684754ae30287e2e70251f536884356ffa7b7421c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe58586c.TMP

MD5 c0714ba68c9c40cb0ddadfac6bb3e6bf
SHA1 2c871e4f59d41929cb4a3c4387c4540a22c4ad5f
SHA256 ccfc0aaa756c5b2d572f5144bb1da6f3fafa8be17f2cfce0c76ad25acf56a213
SHA512 dfea57931db41fc36995922119e42b9ce43686922a7f074a2da948753c3ed1c18c47752819d2e06a31f5e4c72c3dd1403e6298d817fe696d9bb0d7e9de91aae9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 000dfc073660bf82fdc0d1e550efc5aa
SHA1 b63b26b6ea65f6a4a115b89edafa7d489f0789dc
SHA256 7c89208f420671f509e7897fdfa1e3970c14de08f946951ecde430497bfea006
SHA512 06589a27f056a0bd2e0f388458bc7e1d0a65deb11eeb943519f933d46c4ef4f6bd03f1ed9e290bfeeb8d87e13f08e8a06fa7714f4167705b9000e0d6af69a9f9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 73e9c870534c73223a702bf190f3901d
SHA1 5bca73915d58c3416cd90df1131cee5275380571
SHA256 85680a84dc5b0b17b9cdb8a03aa3d1fa42ef49f9ffe00aef5802c668a25e8e4a
SHA512 a7d544d019b1771e33c86f48f4ccab31eaa94f61be14d6b628463a42e1de913988f462c0b9fde18bb70feea662b345f2005aa6ab13de3da28040ffe31b953a3f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 19aa66e51d318dda913a2961a802e546
SHA1 ba5efa75e26a5c29382678635242eb4eda60b7c1
SHA256 8b8a2e205ef4c2f63fa7e84c3aeaf1c2b52c4dc979285ec04386611bdf64b846
SHA512 c860311748ce1d5fa566aabd8c54048c5746a4859a929af977bc7e27b24707c6e5a0a1c6f8c2c4a689e6fdaee7c5b89a2322bed32d44ea03dfae6d8e7e7eb272

C:\Users\Admin\Downloads\YouAreAnIdiot.zip

MD5 a7a51358ab9cdf1773b76bc2e25812d9
SHA1 9f3befe37f5fbe58bbb9476a811869c5410ee919
SHA256 817ae49d7329ea507f0a01bb8009b9698bbd2fbe5055c942536f73f4d1d2b612
SHA512 3adc88eec7f646e50be24d2322b146438350aad358b3939d6ec0cd700fa3e3c07f2b75c5cd5e0018721af8e2391b0f32138ab66369869aaaa055d9188b4aa38d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 c1811ce70e28bbbc1d085a28bdc801f8
SHA1 16e470de51e25ae3fb41a62ed8a4cecc360f61fa
SHA256 500cf10328668e92a39b4e3a73491d96a0aab94e66f7f5c0320a4faa23bef8a5
SHA512 e9d6ddd41d055bfa8704a6e27fe7975dedb71fbd6173668274c6f924419d963aee49a0e2683e1140f00d909ba3c0bb9d7c9b01fdabef0838ef8c859fc467a6fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6f612a20751b789aa20cf3a32383e1c8
SHA1 5f27fd636867564f128758aa7c9f5850ea45e3a5
SHA256 5c1124d108d9c432c71ab22d42d7e66e9243a0ba5ce08d65bfb60733f35e9073
SHA512 30d6a4667f29bdceb630d81c330a69111cca7439a2579076a3d874926cb27be3b3f932ca3f9551a5831d1266f7b43bdf1069f749f5dd6556ab4f3ca5dccef3ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 9479620943eee1906556e0514edf403d
SHA1 b09be3d746a9ae49115027d0df8465d98fd97979
SHA256 1353910a1231bdb4951d113d938b93f5598513196210ed3a9b03781fe291dfcb
SHA512 6872815b2036bdc42a9b29767fddecaf1b449e389481c2f8f1bc53520b0d31c3dea2444ed34d21ed02c24961a0aecbd17dc35bac8be511aa070c56bfee2d0437

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7f8f54be26f3f5647fbb090ef853c717
SHA1 2a80645b478b6052c6504d8cf0cab1e4d7390907
SHA256 7aea19e555072c4373db79d81ef524fcd17802ef79dfe66ef72453261026f826
SHA512 a0faf8aff9c5a7fcc2c312dec0a5bdb3aede5caf2342cd6ac47c23e73361c5c3ba454c03e1a16aa48c1a3c507d16497dc2a203e18fb6890c2b2efcb4e04fa690

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 cb7a9b33b5ceb869f67262d4be0c4e7f
SHA1 3fca1cc0b7b0c1bfca3dc4426b43e044ceaefcd6
SHA256 93eb1bbbf717ac97e37b874d2be42addb3fb346f79aad14d58c8dd3c0057311b
SHA512 6bc472b89c2bd2cc840a6e76a2321f6f8b1828b8aa79e9079efd776c92b3de5ca6e98122748385ae50dcd64e497308be4428bf95253b3ce4bea97acde826242a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 473e612c22116316e8a491b627928811
SHA1 d1295e319a6b1c99eac6ff6d65c559615907c022
SHA256 238af46900b3a3bbd5d8577a04625263e0cf9b9de2ad1f307fdd94a76edb7424
SHA512 747487dd1e94159e53fdeab55d79e19a01956e18e44d7982d3eb96a2e339897cfd15e3cdfa0ca79614aa60802f7ce0efd8d0b6c96ff69b5b29b0c77f8f934e6e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7a34f1152c4387c91497440a27ea3e33
SHA1 12022c283df00d93690bd68817413b3d096a21cd
SHA256 148099c1d767fb304ebd9136af7f1cbd4334331afcfa233be2cf7a41b6efd4d3
SHA512 864f02c8e3b48b507420802881e29f2559cf3b6477d455f989f27d210f940b98cc3d79f4fbff9f4ad0dab427d61c95deef63c0e6701fc5b494fe60936560119f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 034f6b6c10d5e7d7fee6851619f99a00
SHA1 80c9ba5acc9a948be2f3ebb5d7fefeaef98abc24
SHA256 89780eef24f5d4473b208a31682523f5b97e7fe753886f0355e3a522ea980168
SHA512 35f26f382c0aae524217f09d9deae881374a44f7f028397425f33999c44af6869303b6daabf2dd693df0451ba3baff7a5cbed45d73749609f231cbbe44846c03

C:\Users\Admin\Downloads\Fantom.zip

MD5 3500896b86e96031cf27527cb2bbce40
SHA1 77ad023a9ea211fa01413ecd3033773698168a9c
SHA256 7b8e6ac4d63a4d8515200807fbd3a2bd46ac77df64300e5f19508af0d54d2be6
SHA512 3aaeeb40471a639619a6022d8cfc308ee5898e7ce0646b36dd21c3946feb3476b51ed8dfdf92e836d77c8e8f7214129c3283ad05c3d868e1027cb8ce8aa01884

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 65b912c4c8119814f4a9b5d8bc6baac9
SHA1 74db49dd5ea49c68d7a711f5a6b29ee111b97bde
SHA256 56e55df0a70d9da28478f19db982cc54c3f68958be38dc58e2d36083b2384c79
SHA512 0f0c04cb70c12f0796c1e02f7590bae0abf8cb653ea27d7f5ab462846b9f1e851f8779d165f33479e8abde2cc9e33c2e60713287a96ee6a88e59b2a0371cc659

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 5b0e12b3e51c60de77b7fcd2dbd99850
SHA1 47be02b4297f37adec7f0791a34b8896cef9a20c
SHA256 e9bbcf5c1f5298fc8073ecd33516a351c4614f23a9f079743e5644732bd9ed9a
SHA512 ebd0e7d693dee916126b9ed64312fe9ca574441ca164a5c428da050fab1fe8b5cbaec3ec6c47283f1bc216746a7a96e32e76fe800a7fee86e3c8a75b6a3c4a92

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 57f5ea6f080e92acc871781ea52f6729
SHA1 ee56d49e9e567c51ed0f0af043e2899f72141008
SHA256 d4d43661c5e652126533b812bceee15735544c35f8f8469b3654e09f71e043aa
SHA512 04771478e921b26c0af3d8547bbcfe38203066450ee324c157a7767d7529946cd269ae3f64f59bc25aa9b80caedb47692525685bea66760bebaebc63c7501f57

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f289640d97211e6d58370c7ea55c5756
SHA1 fafb87ab03d4c6611a08779b1c8ecdfafc028bae
SHA256 acfc6895e57cd7368f926cdd6046c7d16f9c4b23fb58c5d1b52719aa318bcf84
SHA512 cf82dd718f4c678f8a0f4c63778f22c0e0c3edef4259f468f8ada89b8993ec28b4a536615e087254a7d12d003a3ba9b049630fc107dbed47ad0d662fa4a8a365

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 8fcdb17e11a2fa4eab943b688f028ca9
SHA1 dc386e545afcab97cf4a3c5ac2a6405f06843b7f
SHA256 5cb17cf8f4c69cb765a68cf7b7a059ac3dae6af871845e95d643b1b779f3e3d9
SHA512 550e2e057f85941c662ef1d60e916ff19cce5be5216e6cbc58a5bb75c6420a34f5e3c936c7836652739a47eaabfaf7c314292132883b5dc4f117f79ebceed69d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 fb445e01d96cf8b90e967b6760696f23
SHA1 15794082de3bb4541c903670dc15ca7847041df4
SHA256 bd731cab39f6383899d675b00424739eedb261ddab638dafb7cfcb76907e5cd8
SHA512 844ad2a16f29d14777af2dc9ad5c9bdd3004ad226d9f866c07cb9d3a5431be4066cfb343282c3bac36b80afbab165ab45ab1fc4f1f4f397fb0dc21bc9e52eea7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000003

MD5 628ba8d31375849e0943894669cd033c
SHA1 4fa6d50a37fa2dadec892474d3e713ef9de2d8a1
SHA256 80e3440c312f921afe33a7d4a3d11d1d2dc7162f8f50b748b796f424441d10d6
SHA512 d4406493dc8767c479460f3039b038866549feebf392280384da08adbcad2e871720d046220cb67ebe3ab75c14e06a31df2fa7c0f2c17f91eda26ba0a709d27f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000002

MD5 f31a1ab9f483d9db21349522e39dd16e
SHA1 01a275d7fc1c4f578fa506c8e0bf9b7787dd4806
SHA256 463800c9ec072ae72a4f6fdc1f2f779c792cb7ceb6f57c7d1231eabefad2bd9d
SHA512 cab9bf13c36b854bef939e1d09c8d896caf1d7c20f6948f70f27eaf2869e49c8b9be728b4c95926ba869a987516a79d3193d416b0582b7570a58269c8caa7603

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000004

MD5 669b1563b95fce26d9ddc3c7e9bdc538
SHA1 275e4ae2606a0da908003b77ea06b24ea8b66214
SHA256 d46765072d87d9892a0f6f8f9849eafe0abecee9d662e99f8b45d8c5b22ac667
SHA512 09e066f5a1974927b2cb607a8b953f2732928c7347f65cdfcdb573170840562de6eae091a61108827b3ae0799c16bfbd41d858ee1a8bc57d9bb1fac814438302

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c6abc8543808a229760b18cbb6316eb4
SHA1 8372fa451bed087a070c75f9dc09f644b4239943
SHA256 ba3ef178b12ab3e10f85827522deaf54d8108e2737612132666e9b78fc2a715d
SHA512 fc0e78d03c7c08bf288d8875a40c8a10f5c7b31d1dd0e968c39e026f2d6ca29410c4e7d3d9e8b679b5e7ab56fd0b5a64288591f5a0cef8435e6f8e57bf8cbd8a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

MD5 a93c39dc44e8e1c7ae8617d34edba5a7
SHA1 89a5bdfb422d9cb533b5cabdb83f03f9da3a071c
SHA256 7c31319fdc0eb7a02f9b0a484b9225f96927b091fe87ea51cbd7a0e1f6c03886
SHA512 0e7a64add6345bf114343b0ff25990716ac438ad690ccbfbbdc5817883fd3d627811a035f94a60277422857cced8cab0f89877f5faab835a397a23497cf82114

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

MD5 8680ad8cc782b74ee7a15f0a042c76f1
SHA1 ec430c456dedd9a2360703a826491fcd69f6dd8b
SHA256 af745264049ea73c66c1dc7783e59fcfe94c0506337867380ae638e694cfe5e7
SHA512 7869afe9f737bc31a9c33b03014f4d5239cc48a798deabc0fdc835fd6736a99b17d181e57866ac960bbdb0d1e3e8610cf97bb01762435d8808ca56f1e74dc2be

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 be7fcc1c8033ed4875c4930f428561a5
SHA1 08a23a393db98e850531621ff8a62775bc35ce43
SHA256 1b7a990af148ad4d890f733a054671f8bd1cc9aad66a764e0890d9185b34cfb9
SHA512 ccda5af21158c817cd93a6ca08a872cffe93250ea9d8e01560aa340450b6ff5e2d6a6ec43a742ad2be4c6cc5e6b736c6f7318f5abcf617fb51e7fd85476a5f77

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 660ca27f71af3247e9615a0d00fabdd4
SHA1 324e60a7b22e5e95f53faea406631378bf740e97
SHA256 6debbca6981a0fa42d2e555a702626733ab3d69ade5871784547d69053bb432e
SHA512 34ef9a3af10f0a2a7cd091ac2afc4048b6c3c239ae27969e997471af1a8e0e754d64c0e515541362c40902271e96b1cfdcf1d4247ec6a74793fdddb7c25a2d10

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017

MD5 e9801251e72907b9009ff381f862bbdf
SHA1 0ec5af00cdbb26642d1a4e16d2e822096beb7906
SHA256 657c0e6bc5c89b9bf9e31273a39ead65b1650712ca0c3a5807bf707957a95916
SHA512 3c2388fed59b206fb8a1082762725b788bc25eb7b2ef5916f9186d993a12b95d6cc69538c3656bd20882643a3374dac8c992334bc85b42650bab1cfa0af14ed9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ed084f24107dc305037c4cb6dbc3e5c0
SHA1 9df3cf8b67e9dd814cf9469644f61600b7402671
SHA256 c9af3841c9edeb72695f770c6c301c9b170e736c57b4eef53247fa05ea04b069
SHA512 1a987dbc7b92224a34a11ad9605b430990266140ca80605a7f10874d37e343cca716ee30f00a62a9c2e38d8a5f7f7f1210150127b351f7282472a8cf2656f259

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d9fb99565f5b28b4d77790b0e7b5b1db
SHA1 b8ff3063022f0b74ad4bd6ea0609216591133549
SHA256 d25da39f4f327eaacf9f575d99382dc27455b49b7735e17f5e3f36c009386e78
SHA512 74bc4c2f8453255fe78caa47ae7785d6b28d5ac9d5d097fe8110ca83295607d2ef32cc08790bedbc071a13fb0fc2b720bfc1efb2d4495d95b295d2dfee9168f2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 6683a7754982fdab37fa535f2e694a1a
SHA1 60c86d63df166c8fb294595025e3e4081977ee92
SHA256 74b7729145a6154cb28696d6b85dedf66a4e412c0a6d158c574ec9ca00cff2fe
SHA512 9388ce9c6001479778fbe4064ff2b035001f29d099f147d74d431f39aa80784453f80f7907bed04b7c538bd2db29111a20ca10ce41c1b1be3804cab837786cbd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 b02b82b267597a6e75cd22d7ae9d3e3e
SHA1 ead329af0565ffac128fe5b62290cd3dc3e0c49d
SHA256 eaceafac24b7aa8ea56e0573f7dddede4def78de4abec36fc6c4441c6225a447
SHA512 70aa87fac25083cb0bcbc8d6b2e49e2c5b96b9ea828924763c9c49ac35dd80161ab9081208702e87e83b95ca1147244595e75c5aa3ba7ace9da8a9c93fd7a24f

C:\Users\Admin\Downloads\apex-legends-main\apex-legends-main\README.md

MD5 eded903203f4e9febf6e44e681cfcb80
SHA1 226e081c74228a7a0a6b5d4dab583b1c0e712ee8
SHA256 41b054a0b5e298c6f708135d6833d02b0ca28b87c0d7be480261be17a27aa26e
SHA512 28dfacf60965ad7a5d0f0538a4a64ffb246ba172b17b587e453aaea88d487cd4fa7bd583d6cd2b0ec8fe3eadb303fcaa8f191a6130f5f9f4bb36bc7c5ce28147

C:\Users\Admin\Downloads\apex-legends-main\apex-legends-main\APEX LEGENDS.rar

MD5 70d7c5de6d014dc27770bbf94e582e39
SHA1 e49ba6593070fb7d4af60fdee19645402291bbc2
SHA256 2e813c5988bdbcb4f25125f1f444a6eb5326336faabe22779484659010072095
SHA512 6f097840b0f094cc5d81f92dee03ccf16e5185ee67cb8b09151b9d88cd4c3d8bd4aad2e42e5cda52eea4a545c1b3fe74020409ac841d8df352207ffa1a534dc3

C:\Users\Admin\Downloads\apex-legends-main\apex-legends-main\APEX LEGENDS\APEX LEGENDS.exe

MD5 4aea629d407c072e2c724a6e4f77153d
SHA1 5838cdd700530b2902bde3d80bd48e6e690c9ac9
SHA256 0f398cac312ef8decf3594a7280d34889fa8863b2b73e40351aa13d42284e35f
SHA512 04f7d86cb9db0d106ed47e4fb8851e5b0a6fe2d6c6550cce417a5131223d9b802963d72d2281bc8d3830d11843fe26fc564f71389409d54c877f39b2685f087a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 38435a8606aa4536e8b862df19e7e192
SHA1 73d78a0309d9c91311182bc03e8c867b67248043
SHA256 3c2290407bed08ec9590f7d6f4171b72580352a9c672acdbcc839ea53ab8df3f
SHA512 917bcd4e44ee1ce76f7f556a3fdcd4254ff3d4a82943ca798da92645a93c55ff227bd4f33c5f963e205b3527834654ddbf25a7208553f616871a4b28067febbd

memory/5036-717-0x0000000000400000-0x0000000000428000-memory.dmp

memory/5036-725-0x000000000A490000-0x000000000AA96000-memory.dmp

memory/5036-726-0x000000000A0B0000-0x000000000A1BA000-memory.dmp

memory/5036-727-0x000000000A010000-0x000000000A022000-memory.dmp

memory/5036-728-0x000000000A070000-0x000000000A0AE000-memory.dmp

memory/5036-729-0x000000000A1C0000-0x000000000A20B000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d9eecd95852982f5_0

MD5 cb0b2bc3c1ecdc412260540b81306892
SHA1 16ad222705c1600801ff36abc296b050c3fdf5f6
SHA256 d019e0bcb24ee775d15e49e7f5b4f7b409535542912e4bd4304384d1ce315117
SHA512 5baac80ae52294b4976e2eccefeef83da9183a12cb9e94eaecd2e30d5a3835f2ca7bea4b6b640e6b2942cc522b8770166745a9f2f355f0eb31e6566b98fa9da1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4ac1f7dcf2bea264_0

MD5 e0266099bf88d046bf7f71dc6c4f0d78
SHA1 9aa7fb25c08fd25b3a0addf130d17b29023a3723
SHA256 96c53f87cbd69f9aab6b59380ad23d417328a20cd79b84aa7d35727cdd325e39
SHA512 c4168066b0994289a19b546970cd961af2ff36d174c4a5c2e656d47a82ca53dea379e7dd1fc8a1fde44b48e58835c6fe8a0fc2d7f4cf80e24ef2b0cae5ddd148

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3c62bf1d64a9ae01_0

MD5 37278b6894f787dd5f58a0751ba12f39
SHA1 7ee2dd9504f8e70057522bc71569a1f21e1cad32
SHA256 b6afdb63913b2394b14d5ba8677a065b553c6e532719f8b2b67cb8886c0e5fb6
SHA512 2d6c39e3a5b33e1c10fc5d93394aa3233b0414cea6f5b8627a91904c0f0c20a9eff1d3e8a413c6b406b615d3a04ad1aaaee372912ef3fed12adb99d1db2daaa2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4a58397873cfc208_0

MD5 f051723a62d4255025576398d1926b8b
SHA1 345acf1c89eea2963b67beb279575ce2d41a65e6
SHA256 4e4d7fb6a2ca7469dbf2d0bff8b81384b5a4b6ec066b0e2bdebf546d7ec215d0
SHA512 c1b2112dd83a17144ad18f00fcc373baa166faea374c84b4f9b22731c5fc1bc1980eea714f21c864e7c932f055790c48ec736231b7ba52155561d59a5d75a876

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\54d038a883eb59dd_0

MD5 4b727b380da2b36e2db1ed2f41ac60c0
SHA1 c006cfad79961193f81f8ade9ffc2c62c958df22
SHA256 615b6947af703191c4b0e124ee970c71f8592d49564554e294632ec930a27afc
SHA512 8f13a3e97215c81f4be193320979b69dfa1344f3054dfb4db7fa0bccad0407c3ff97cc5b48efb742f18eb196dcf8548743a8f82cd78187edae91c24d4cb9fe6e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4ea1d72338bd933a_0

MD5 beb1a73cea5030b36ecb098def281545
SHA1 e18881368d31a4aa0469382dd7489baed1c224d8
SHA256 d50e48dcd54c5d66ca7f55acbd353211da39061b6a65c8c5537154eb089bdcd6
SHA512 ff1b4c0ebcb12c3b62ddf692d1dc1d55c979edcfd088a6c626c79f523ee5103f978ea1de18f00da945e27b7963e2d107c5e3c9b3bca4b984dc5cbe46444a0d87

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d97446d89de2b5c4_0

MD5 01a175ca6db48e869e01b8d429e7a380
SHA1 3a20512f86699191d0e31f5152c3dd78ddff98b4
SHA256 1670e725a83991a3cec31115ff7c89bfcb2fda69f0303dcb75a1dfd180d08842
SHA512 2c5631b62fadcbff016d765099dfde95394c931c3a4e5ee3a9f97718faa1ffec9f05487dafb8f28371be0f83c40b41aebda941a5678c7c64138801f37783592e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ea0651ac727e1903_0

MD5 e125c145f0bdd55a6ffafcd9e42aed8f
SHA1 93f8f3751eae7c706f0af9d756cd138bfd845826
SHA256 ef3ee351ee351145d7ddbf91ff89a2017a9777ef93ca26292baddf5a916cf8d0
SHA512 bf120fcbf7d488a99db9aae1e60a8aff679c1abf53f8b06c456d28b39c559dbbd636687bd08512a8b14b79e23d034762cf8f5ef9aff28b2dd0ae8f5823bda046

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fd1bc9ac805f6db7_0

MD5 bfccf013a0c8884feac59bd0ba9eba9f
SHA1 34f750a98daa663a4ee414aa2781ebf44e96f3a3
SHA256 fd1f01dcc84876cac83c8f1c75f3b287a8e7fd0716e5778167f3714242973b7b
SHA512 74d67da55f8e690a2b63f348198214367e40210c669287c2ce28bafe5dd4eaa76861002a0b43d06b5d0e1cdd9d14639ffe036def229d94fa91b27d7317b1e832

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\08cd4f688689d170_0

MD5 bcab0e63c772531a7e87d572395fb043
SHA1 77fb89821e35c4bb550c2a8f1f4e7e7fa08afc25
SHA256 e1f1878cb642a058f55c4a51ee2780aea81c47035846cb8a0882040613b352df
SHA512 c32998012542467fef6d31016ca8273a4e92b2db0138c5bf582a165efae6e278f69566a5de7ecf8254357ae0205aef0d6502a1f83fac8d29f642eeef124715b4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e9bf643e30184d46_0

MD5 06fc7fee7be0256df35a8065c1e86737
SHA1 5e8dd4fc09440fa98129f1fc448440ffcf2d955c
SHA256 58bcead59f70cd304d19941deca3c6cf1fd40ca2ce6d3dbee629c326d1775452
SHA512 8632ae956f079b6ff41fd4baec22f1a33fbd8103124b3a0d0125f73dcdcc485e199416fb7210d85bd23a2c80c5187f3e97c2f42935287027c2af8b266f92602b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a8b2d5eadb3596e1_0

MD5 b59dad8c17ddb63037cf698a2f158f21
SHA1 5cbb11d85bb3313611282c384aef4e385b30883b
SHA256 4db45fd81918cb3a12d823f34f330d9191748a955cf6dc59289dcedcbea898a0
SHA512 437aba72d98b0522953603c0fa3f76644bc9ea22664b95e46094bdd9fabf4f9ec2ac5a9614a64059c41873f148befa02b6e83d67319c80ea9bd1e7653e2ebb19

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b5c0b0d2ff0cad95_0

MD5 9c6f09058dbb87be964da6b6ae5c1ed7
SHA1 162889de52cd5bd32fb0fd0ecd61d227eecb156c
SHA256 6edd814b59d460f4e88b0e01f1719127e66f24a9753947d2960c4c66fee57277
SHA512 17d75d16186e121b33726c1ae4d8611afa593a9aada147a863ee1494f279fcec7b489453714e023aa1618cc41b30295da9b216165b708c9e0b7f0987e7f14783

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d2f0b55ffdddd6a23a1f883bd989e06c
SHA1 d3aa2faf9c1f5bd2fcf460b7aaee5066cb775905
SHA256 cd6b03550191b50ff98ffb8565ade05185aeae87802eda207babe00e22e5bdc1
SHA512 0ca2d194a4a5ffaa4e7c3a5d5b280cd214fa2e1452a2cf1e89685213b92b1ea2f7370b1d2178e55b2419f341255c9c53200fdb8de443fa103f6aba01fc2582e4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ee9fa2f43cc7d269cac944564d6ffd20
SHA1 8c5ef31cb24f98698f3422d75c53e30645868364
SHA256 3d195bb660b199f66b494f366883dece329e7169d33f62664b8714fe1b7475ea
SHA512 fff35e17df51461ebae8556070e66d6e1547d154dc9cb0334f8f85f2ba3555131176ce0790c0ac3ebec74857d718515b5f0d54102f2d89050ee4f58863f24a80

C:\Users\Admin\Downloads\valorant-main.zip.crdownload

MD5 4aa8c53e4003f855c4b9dbb6e30d14ce
SHA1 1a2d232a357946ef4687d76f72e68fc92dab7918
SHA256 396d9399c1b052b014f6cc59a833a647a12e13df22a894ffca52d49d62a2ee40
SHA512 eb23a56b1571e42a666423d3bda1a762fde300a9b83d7c7cbca550e4f15bb42a6384b844b6518e9b1e20a1484169940d9bb92d268122b7aabdf2b77a710e16b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9cd0a4361c79ab9810cefa8cc41ef720
SHA1 d9cc6f18a78b87add38ba46e3258c25989aec729
SHA256 0747947ea25b62e820260cd20c85d92232191831bc9dcb1088e3b9f27244b6fd
SHA512 001d6202d6a1da75391f7d54fcef0395b40f137a2e19ee60caafd6ee92f5f96098e1d571f0596248b6d8d6e2ddf5081807a99d146e69d1e077385855165c8236

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c4d8d5a695877b69d0f63756ab9df0ac
SHA1 d9029e759a12809f34459b9ae9630bfd3371d5ad
SHA256 bda44a6fe14a67f8d04a9ca439ff7ad6b54941436e24be4a729aa7ad17d7c6cc
SHA512 6f0657bbcb5fa9d8e34a1d01c72b42d6baf644860e030dac1aecf976f53f78a46ddb5188ba4f79f90d620cc65c141a7511e17944952785c342d52c3c6ae92574

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 f4f7b410ece7a8bc74f248b74dc6ee6e
SHA1 c06a99355e7ca92c8de318bcfdb07ce15544972e
SHA256 375fccc9c270dfcdacba004f18ca74a9c55e5620b658bbb0dfb29977996c7b93
SHA512 165b48227632a70189b3e1223b08f95f050846d69992a23868d04b5cbaf83e8ee079727569c0a9f51854bcb65defc554bb151f80be50189cae5d364e67f10987

C:\Users\Admin\Downloads\valorant-main\VALORANT.rar

MD5 9a3e42a1e3c10ace6d2b159cee68924f
SHA1 70b56e94ae7e6ba49589438a7a91daa6a3b6b5bc
SHA256 9e0775e62da69d7016a89e23e3460ef840221dc6daff79b7189f773d1bf6d360
SHA512 bd5d9a75af43e62e583b27d4e46c0e94a68ff00f5c9e5c1676712d1d6c2798311e2419e92c62b796b65b757bc1875978d47d97f5274980123cca8666dc0affd6

C:\Users\Admin\Downloads\valorant-main\VALORANT\VALORANT.exe

MD5 91a3ac82a8aeaffa0bc7fc1a0920d9e8
SHA1 0275b2c0714b2874a4822406fa1c9c236ddf99f7
SHA256 ef97ca6c0aa156141486cc1eb7ec8f1bc20ef55dfa54aa65367d5da6b318244e
SHA512 1e3de9db2b68e8712b912e0d9af41f9faab4b9213c1c4110d9888c65b927f4072750437603b2cf0d6366a656f90af848197fd79138b6053897dcb4a9e87a305c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a6f07cd8ae7a0ab19ceb48995991efc0
SHA1 86a92a06686a1de4f4a8704d263d815075eca7fe
SHA256 3e3053fe1bdd8bc6d8dc12deece0bfb0d01ca10c70ffb8109130c1ffc53114f9
SHA512 f1231938fdf8edd0b895f6aa180afbf14a742f1165bd51f3a5818a2deb6f0fb0344f9963fdfe4c4d60420066a092c3c18697c10790a60a6450283095941815f5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013

MD5 d42260d3a1f2caf48502123f9f24f0ef
SHA1 5de3e9b2a85efd5a1a280145d276fb5fdde41e1e
SHA256 20215846d229b457266ee43cd16fa77ae1e611705cf5ea9941096d7576ce3a2a
SHA512 8d805ebe11c051179763962035ccdbb06798cf6d9292ad09a1f1e9fa29c305cdf94bb455b18ceb07aadccd53fea56b5f6f3fb34201cfe7e824e33791baf8d5c1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

MD5 2180211f4cb4595dfcbd910e16739428
SHA1 2351ccf6f2328991903ac3da4f95c12aa5ab90d3
SHA256 5f6a587234a5315126175ca24a69c0c30d90e53606e36c20cf71e91e51752b6e
SHA512 9f2dd13fb789025757d1bbacf1b8f6d652618a09d0254f539daa3c8298c82b31b993e4d43a8b9fbe4f7b4add50e7f6641f7d577cf5f4e0bf7b2781787ea9378c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b8c1dbcc795b1188591f80ce14f5c06c
SHA1 4dc9ab272bf0389ce30ce97536190bf03dad00b8
SHA256 1c0301513a808edd02088c2ca79c038c1369fc3cf7fda4be310e6ba5e84c5ac6
SHA512 7a2cb4fd362c0ad1d473a1571a8e533574c0daa5f45169b5e3cbe47e38e55fb62303b6a1b17250089f596e4f77206a705068fce05423b54c9de777a67ff9ea24

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e76fe6c195dc99fd13fb96d12bbbd5ff
SHA1 ed1bb627e7195806f302af3941c15fdaaca50dc0
SHA256 f8162867d84701f82396b848848874f1009ebb4561e7db25c09cb8b1567b5bc0
SHA512 33e317d8db4fd75e00bc0c1695571186240bfba94fd007b64987c9269452c8ce22a75097caf4d9dc929077491320b99576c0d20e1a0b73c6431dbf8069703ef9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 974732a1ca74afb8c4bee41589a08871
SHA1 f029633cf218345f9f2013a3481e71db2f6a03d4
SHA256 fb261354abfb01600cb25a3afa7eab98c7d0518714ccdd33386172541bdae1d4
SHA512 7fc41e77d87448f1034e890e9d52a226dba5fa16d0560ce666511b5042ca4faa18cd5141287cd9eaf15829e5efb26601cc63143685364ac241e8d1d36bf88356

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6c481fa63fd9ff3ba1a3baca55fa53f8
SHA1 62266b95069d1fd4ba132fa5b268e296d2651418
SHA256 febab3ae0f8bfe309b7f1fb02fc7764700c0ff2ff3843c045bd919f1a8391774
SHA512 0c9b0e6f80bbb03714f74839bbbfa9e6fe861ea53d6654722394a4e20a1304a1788b41bcf7de5c994a6c0e60e6a72c48c6402412b63b692a6a2ad81f705f2236

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1cd1ba816e59af1517616b39468bb4e8
SHA1 2fed53637275477345dea002b8180dbc6fe165ec
SHA256 5876ddca4af27c787cf1335d7389098f816917035c3c0ff0c16b094670ee1476
SHA512 477b06cd0fae5d504889f651e687aeb4d922437415c2f325b811f2f4f29e797172a14e0dd96a588ae40c317c1d475778793327aaa2cc78441bac9e2daaf4c603

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 a099488a4e9c5dc41a526d661eb9bff3
SHA1 17f01595fb6cd89e37b75f5740242ced7d06335c
SHA256 a4e9443c2a474440e7eb567176ca5aa5f7c0fd5e67c67badf215333e78a2d325
SHA512 15d92de72c4840bac36a1ec97129f27f623e4e8ff5a684836cf44afd56a847850ef08d9b5af53e4640cd7d11357d9903bad531277069daefafd3b00e2e56adb5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cf802f238d5321f58215cc8e86dadab1
SHA1 17146840c81f5d84c64b054cae95bb22a2d92d08
SHA256 0d6ca72ce4de03990f550e4f54ad89ae56e9d5c2535c2c3872e0f9f344ba09c6
SHA512 753657a7477ca831bfa33e5cb9a05cf4de5d0c8e866f21559d86f05e93021ea117646ffde44676026df39e7c9306326c715f006bc97e0581938c09d1dc49cf97

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 49fb9486be7f4c1fffd72110fa729c18
SHA1 7cd94b781d389e9affe4fece76985283d61484ac
SHA256 27028833afcab05324b971abab1b915c846f15b7c8c349e9591926b2c4502aff
SHA512 526724eebc3c49ba5e27814bbd23c46d5684f88fb0b39e54c6277558d431d6c103bee63f925d95e37c0cb8e4ad1e759573922015697f8c1948937b93d1dca238

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 defcde6915911dcfe948f02178c6b104
SHA1 d2e3e9ae09dddd0fb2e7c01600b19ba998c2d162
SHA256 f04aa79a016daa04fe278ddcacd9b7c46d7ec28e4b17c461ee6d7456c235829c
SHA512 7788acc538a5351020713bd512e7ceeee1388de31ca81ace7d5b1389f6c1627a4ab72915f69cef53c1b5632a781364922fcb587d2b5b15b97f199032125195d8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3833a094a2120eee2fedcc36e32d57b4
SHA1 aab38bd4c3ad9a4dbfc8a087810e57c84cc5cf1a
SHA256 f35c78a078754a1bb3ac6c369e9dc0eb147ec59dc2e94f261f665d882b20c821
SHA512 7ab57edd5c616ab672c993ce42986dab0ed7f6814989b133a5a1800ea09827df811c5772045e4af76d74f89c7cb00d2d000571155eb9699a7e8dcb0f98e7bad2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5aea75e5007568608f483e46a0c6b371
SHA1 95596b1880b42e4e8088dd1f169c59c8c804cc87
SHA256 a7e25ee43aa6ed99a357d4a601981155d83fe2ca53b6ed272d1bae3ccd42e2d2
SHA512 10708e7b7843a431b5f4cbca678b61765d3d80c07b7668f63f095fbb8c459c71b45a1e992ad525814c07cf0b83bd3e3fe84cbda981524b4105313b01835cf270

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 284d5dbb21285e76fc172765290ac857
SHA1 95c0549d7b1133e3b6b6c610d03ba2ef25bb729d
SHA256 0236c03bb7721c572194047a796a2e212fd8ed1d22c094a22410187d0ee3a9ca
SHA512 81659ee81e40de496bd29eaa3b307a0ed500f1efda6776e08d5fa435c487a90b5144c179e9effa93972ed05d26da3f52929aaa1802cd5ffd35cba4632cb02c9c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 636cd1c4dc4597dfd229f482f18caf2f
SHA1 d0f50792e401ec791a75d4116fffa6719e2216ab
SHA256 7cba0a9cf3496388a9c6cc101991877447297c8910e560b6ab85d0f655d6cf83
SHA512 6c59d0ff28639b43b2972f32af22e70482ece391db8f5118edbd41edcaf5fbd6b6f1eb34162a7e028fbd710e46744fc9a1a840d56ea97b9821e01b284d176606

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6694b39b762953c8b35fd7f592dbf673
SHA1 d0456eef79dce7fd1dde0b15b7294fc6666409a0
SHA256 45f81b2d8ce51d48dc2df5a3aa6e88207c834fdc306f5ae7fac86cea3047fabb
SHA512 0bbd80e2936cb191f7659456aa42337e5fbbb95ddbae603e997bf4df7bc3312e39902a9d309582fa794c12c6acd2dc7cdc75ac25abe932554843d8908bae3241

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 73cb9a6f31730b5fe6f5a49a89624995
SHA1 f199b3d23427786f0358c9386b28e9ecf35754b8
SHA256 cbe09f7936739dddd06db20303101abfdab5f338808f47d360085397d879020f
SHA512 71bd6185015130adfe98fc79f91d3a30824a7de8f73e53f1e4159ebe32b425c44f212885ce4408558933bb7e2f064995cfea4175456cb3f41c12fae28c0dea9f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 a28d4e9a9fd178dce978e6401cdf4499
SHA1 47effe29cf8a4032330c977b4afa7aca777c1109
SHA256 401888d7df468a492f98d14d87310c89b6127ec93fcd9cc53c917725801e833a
SHA512 846bf1f6508d938138911bd665b44c99df08bf24b1bfa7e9c11054c47c77c39cc48b4cca7b43eb2e51eac914568191db8ab9fb0ac5d6d64095d2b57d3bd9593a

C:\Users\Admin\Downloads\Discord-Nuker-main.zip

MD5 9cac3c25beced32e105326372b9d20f8
SHA1 f02be48ec4363f67cbacda3ab4db8a6da66b48d0
SHA256 11ddbef48b48e20214d6a6b944a910b639d86912e309f37b21214e1318ccfa8b
SHA512 877c899d8e8d6af0aa5fd964395cd9df440f6907cc9264e1711ecdfd6df26523f090c35b62578b950150e216f1cddf9b67280aeb53518a8ab936a6a4909b6f0f

C:\Users\Admin\Downloads\Discord-Nuker-main\Discord-Nuker-main\[1] Install.bat

MD5 91a7947887832618e54403f14ebd168a
SHA1 8cc5a74ecc1c2cb658d4440788b2287490104d1d
SHA256 0d3fd41b45d6066b7fc9d305e94413aebc14be627757e17238b95743a2fe94e5
SHA512 94588308c0fd874f163c84031ed079c6de9bc7c0f558c6c71356c08af0e79fc9f0b3eab02e49056dc6a271cb77a86ef1b90ebe7828ec35610b2edcb2b0662ca6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0e3791ec7059a65bc2d1a020e6c6141c
SHA1 847f4efa3480b9a54c1056563d23ad4b12682221
SHA256 c083077b123ce6433df891cdafc54eabb44d2861793b56b10cebe268abcc8281
SHA512 4ae430ac84e732b1fe75087c2e3d1521e310d2c479060a449804a56b0aa3db979bf7bfb7772f154f9c65d67ac53de1ce4d8aadb1030fe775341242b46d1f0a46

C:\Users\Admin\Downloads\Discord-Nuker-main\Discord-Nuker-main\[2] Start.bat

MD5 39012d19894dcdc3b98b8f55b0ed91af
SHA1 ea82d05b68e00a17e5f7ef0b47eb01e923e134c7
SHA256 f790cf2df75f1d3f130faf83e192a870b3bb0666b16112a2e98318f3d02d2df5
SHA512 8e30aeefc2f2f4de115a6c534bf6b46d3b12e09f0393456641e6c9a14ba0ae6f85dab456c29d088341d9e96af9fd6be8c0752906cf385ce296507338375298de

C:\Users\Admin\Downloads\Discord-Nuker-main\Discord-Nuker-main\index.js

MD5 4526ce715a3894e3e7042bf28764181d
SHA1 c74d5753b13a75f7b5c7caaed9f452492db2262a
SHA256 711bf63e2045b692e02268d039e03c427dc796785d40901c9eb047d862d5e20d
SHA512 caca381c9129b22479b126bc0b9623af3e7489fbb1cf62c483117679a26a3040660412f07dabf47e4b005ea9ec4bc4599aa2a8ef108169acd873a146ffe73529

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 db48597c8090854ecee0996dfe0d4cd5
SHA1 73b025651872f9f3283f602829b74615c74e46cc
SHA256 024a3d4fae9437cd5616cd1c7c5dc2df40cebf50984bb23cdaed9d521dbc7054
SHA512 eeb4e950ed1977d0b9abc87bd6ba477fd0cd477b270fdc01a778bff0857b79f33e223d74a813481c81f74e689507c43ce1f4131b07807cb0ea5abd242baf790a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5978e76dec6a50e1094c479871b08240
SHA1 a23ae0207e66459916c2df4bc3e967411508ae01
SHA256 c99569ab2852f620b5a6736dd2f5b4eb242bdad473ecd05859ffcb6d1d36a223
SHA512 b23b5ae9593cc056da706f8644a1b0fa5af80de3af25ab45c0c34fa9b85f29dc2bc008fd7da0806010a66bad726997b6628c2e857f53338b8b0ba725fa649078

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ca7290092857bdefe87cb058727d480b
SHA1 703798121286f1f5f3817e94abddcb33243272b2
SHA256 9eaff08e359543cdb51dbf3a35f6621ad8e271a5c09801036d4e80acff6d99e8
SHA512 7a4c7e3c4ff9610aec3e7feb74e9503588ddc581f54e0780b0dc389f64e635125b4c7591a405de853acbdbbc1abf73b930d96e2327b636ebae7f944bbb8feca0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 dd2bf81f41c4ca6ff1315789c1eb5673
SHA1 46754ec3d2766cc0d8a1c230c9713865ed69fbd8
SHA256 752484e3bf0aade9ee6644d9a2e20cc74d41f5da0fee6d0ce36011068e2433bf
SHA512 c5a7bd630747c684aaf9dc8cf8d61944c9ba96ca53662e77eb24ad8cc52e32e6812de4ef7504a91c2db70d44bf9a70af05d902256308b9ebbbe5c0dc3a538812