hxxps://townseed[.]ca/bigfingers/

Resubmissions

15/07/2024, 02:34

240715-c2lhqstgjk 4

15/07/2024, 02:25

240715-cwn2nsweqc 1

Analysis

max time kernel
1799s
max time network
1794s
platform
windows10-1703_x64
resource
win10-20240404-en
resource tags

arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
submitted
15/07/2024, 02:34

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://townseed.ca/bigfingers/

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 2 IoCs

description	ioc	Process
File created	C:\Windows\rescache\_merged\1601268389\715946058.pri	taskmgr.exe
File created	C:\Windows\rescache\_merged\4183903823\2290032291.pri	taskmgr.exe

Checks SCSI registry key(s) 3 TTPs 3 IoCs

SCSI information is often read in order to detect sandboxing environments.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000	taskmgr.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A	taskmgr.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName	taskmgr.exe

Checks processor information in registry 2 TTPs 32 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz	AcroRd32.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz	AcroRd32.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	AcroRd32.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	AcroRd32.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature	firefox.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies Internet Explorer settings 1 TTPs 1 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION	AcroRd32.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133654844842670899"	chrome.exe

Modifies registry class 61 IoCs

description	ioc	Process
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1 = 14002e80922b16d365937a46956b92703aca08af0000	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\WOW6432Node\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance	AcroRd32.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2 = 14002e8005398e082303024b98265d99428e115f0000	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 00000000ffffffff	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\FFlags = "1092616193"	AcroRd32.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\Shell\SniffedFolderType = "Generic"	AcroRd32.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\MRUListEx = 020000000100000000000000ffffffff	AcroRd32.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}"	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\GroupByKey:PID = "0"	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupView = "0"	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:PID = "0"	AcroRd32.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\MRUListEx = ffffffff	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\GroupByDirection = "1"	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\IconSize = "16"	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Mode = "4"	AcroRd32.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\MRUListEx = 0100000000000000ffffffff	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\Mode = "4"	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\FFlags = "1"	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1"	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings	firefox.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\Shell	AcroRd32.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByDirection = "1"	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\NodeSlot = "2"	AcroRd32.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}"	AcroRd32.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 0202	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\Shell	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\LogicalViewMode = "1"	AcroRd32.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 02	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\IconSize = "16"	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\GroupView = "0"	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}	AcroRd32.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\MRUListEx = 010000000200000000000000ffffffff	AcroRd32.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000007800000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\LogicalViewMode = "1"	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings	chrome.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings	AcroRd32.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\MRUListEx = ffffffff	AcroRd32.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\Shell\SniffedFolderType = "Documents"	AcroRd32.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 020202	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\NodeSlot = "3"	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell	AcroRd32.exe
Key created	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg	AcroRd32.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000	AcroRd32.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000007800000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000	AcroRd32.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\Shell\KnownFolderDerivedFolderType = "{57807898-8C4F-4462-BB63-71042380B109}"	AcroRd32.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000	AcroRd32.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4106386276-4127174233-3637007343-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1092616193"	AcroRd32.exe

Suspicious behavior: EnumeratesProcesses 64 IoCs

pid	Process
4760	chrome.exe
4760	chrome.exe
1756	chrome.exe
1756	chrome.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe

Suspicious behavior: GetForegroundWindowSpam 5 IoCs

pid	Process
564	OpenWith.exe
2364	AcroRd32.exe
4596	OpenWith.exe
3880	OpenWith.exe
3900	taskmgr.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 20 IoCs

pid	Process
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe
Token: SeShutdownPrivilege	4760	chrome.exe
Token: SeCreatePagefilePrivilege	4760	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe

Suspicious use of SendNotifyMessage 64 IoCs

pid	Process
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
3900	taskmgr.exe
4760	chrome.exe
4760	chrome.exe
4760	chrome.exe

Suspicious use of SetWindowsHookEx 64 IoCs

pid	Process
564	OpenWith.exe
564	OpenWith.exe
564	OpenWith.exe
564	OpenWith.exe
564	OpenWith.exe
564	OpenWith.exe
564	OpenWith.exe
564	OpenWith.exe
564	OpenWith.exe
564	OpenWith.exe
564	OpenWith.exe
564	OpenWith.exe
564	OpenWith.exe
564	OpenWith.exe
564	OpenWith.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
2364	AcroRd32.exe
4596	OpenWith.exe
4596	OpenWith.exe
4596	OpenWith.exe
4596	OpenWith.exe
4596	OpenWith.exe
4596	OpenWith.exe
4596	OpenWith.exe
4596	OpenWith.exe
4596	OpenWith.exe
2352	AcroRd32.exe
3880	OpenWith.exe
3880	OpenWith.exe
3880	OpenWith.exe
3880	OpenWith.exe
3880	OpenWith.exe
3880	OpenWith.exe
3880	OpenWith.exe
3880	OpenWith.exe
3880	OpenWith.exe
1904	firefox.exe
1904	firefox.exe
1904	firefox.exe
1904	firefox.exe
5488	firefox.exe
5488	firefox.exe
5488	firefox.exe
5488	firefox.exe
5820	OpenWith.exe
5820	OpenWith.exe
5820	OpenWith.exe
5820	OpenWith.exe
5820	OpenWith.exe
5488	firefox.exe
5488	firefox.exe
5488	firefox.exe
5488	firefox.exe
5488	firefox.exe
5488	firefox.exe
5488	firefox.exe
5488	firefox.exe
5488	firefox.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4760 wrote to memory of 3296	4760	chrome.exe	73
PID 4760 wrote to memory of 3296	4760	chrome.exe	73
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 2988	4760	chrome.exe	75
PID 4760 wrote to memory of 1408	4760	chrome.exe	76
PID 4760 wrote to memory of 1408	4760	chrome.exe	76
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77
PID 4760 wrote to memory of 3964	4760	chrome.exe	77

Uses Task Scheduler COM API 1 TTPs
The Task Scheduler COM API can be used to schedule applications to run on boot or at set times.
persistence

Query Registry
T1012

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://townseed.ca/bigfingers/
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4760
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xcc,0xd0,0xd4,0xa8,0xd8,0x7ffcc03b9758,0x7ffcc03b9768,0x7ffcc03b9778
  2⤵
  PID:3296
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1616 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:2
  2⤵
  PID:2988
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1780 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:1408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1984 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:3964
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2844 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:3756
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2880 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:1428
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4340 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:3540
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4656 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:4816
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4236 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:3276
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=4812 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:372
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5140 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:3040
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4700 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:1296
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.15063.0 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4888 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1756
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=688 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:4996
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=816 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:888
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=3796 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:2312
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=2864 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:4024
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=5536 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:4076
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4624 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:3532
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5156 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:4580
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5368 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:4644
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=5308 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:2500
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=2492 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:1732
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2860 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:8
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=5788 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:4212
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5408 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:1012
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=5404 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:4848
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6140 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:4492
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=4280 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:2384
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=6508 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:2960
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6188 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:3944
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=5824 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:2888
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5892 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:4456
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=5344 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:2412
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6700 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:700
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5924 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:4372
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=4712 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:1
  2⤵
  PID:2496
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6912 --field-trial-handle=1680,i,14247459968238982500,2237761624883405452,131072 /prefetch:8
  2⤵
  PID:4564

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:3652

C:\Program Files (x86)\Google\Update\1.3.36.151\GoogleUpdateBroker.exe
"C:\Program Files (x86)\Google\Update\1.3.36.151\GoogleUpdateBroker.exe" -Embedding
1⤵
PID:3532

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:4520

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:564
- C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
  "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Temp1_FFLS.zip\FFLS_CORE.swf"
  2⤵
  - Checks processor information in registry
  - Modifies Internet Explorer settings
  - Modifies registry class
  - Suspicious behavior: EnumeratesProcesses
  - Suspicious behavior: GetForegroundWindowSpam
  - Suspicious use of SetWindowsHookEx
  PID:2364
- - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
    "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043
    3⤵
    PID:936
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=9659538CE9AC352463FBAA61C27A8691 --mojo-platform-channel-handle=1612 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      PID:4780
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-browser-side-navigation --disable-gpu-compositing --service-pipe-token=C55CC8E65271BA4EEBD9FF9E05AEDA85 --lang=en-US --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --disable-accelerated-video-decode --service-request-channel-token=C55CC8E65271BA4EEBD9FF9E05AEDA85 --renderer-client-id=2 --mojo-platform-channel-handle=1624 --allow-no-sandbox-job /prefetch:1
      4⤵
      PID:2496
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=8EFA6143F9576CF87924792F8B4FCA2C --mojo-platform-channel-handle=2208 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      PID:1396
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=16CE0933781160103AE591BCB5EE925C --mojo-platform-channel-handle=2316 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      PID:4376
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=7D116630249CCF412E0E9A1D7FF489D1 --mojo-platform-channel-handle=1604 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      PID:1476

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:4596
- C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
  "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Admin\Downloads\FFLS\FFLS_CORE.swf"
  2⤵
  - Checks processor information in registry
  - Suspicious use of SetWindowsHookEx
  PID:2352

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x3fc
1⤵
PID:5116

C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe
"C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe"
1⤵
PID:368

C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe
"C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe"
1⤵
PID:2640

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:3880
- C:\Windows\system32\NOTEPAD.EXE
  "C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\README.md
  2⤵
  PID:812

C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe
"C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe"
1⤵
PID:2500

C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe
"C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe"
1⤵
PID:4484

C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe
"C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe"
1⤵
PID:3396

C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe
"C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe"
1⤵
PID:3588

C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe
"C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe"
1⤵
PID:4228

C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe
"C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe"
1⤵
PID:4168

C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /4
1⤵
- Drops file in Windows directory
- Checks SCSI registry key(s)
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SendNotifyMessage
PID:3900

C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe
"C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe"
1⤵
PID:4856

C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe
"C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe"
1⤵
PID:4152

C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe
"C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64\ruffle.exe"
1⤵
PID:5036

C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
1⤵
PID:3588
- C:\Program Files\Mozilla Firefox\firefox.exe
  "C:\Program Files\Mozilla Firefox\firefox.exe"
  2⤵
  - Checks processor information in registry
  - Modifies registry class
  - Suspicious use of SetWindowsHookEx
  PID:1904
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1904.0.1317142198\1973603916" -parentBuildID 20221007134813 -prefsHandle 1696 -prefMapHandle 1688 -prefsLen 20747 -prefMapSize 233444 -appDir "C:\Program Files\Mozilla Firefox\browser" - {01d23d25-a1b5-4b1d-9747-54692db1a0af} 1904 "\\.\pipe\gecko-crash-server-pipe.1904" 1780 22997df7c58 gpu
    3⤵
    PID:1116
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1904.1.1875714468\1282212616" -parentBuildID 20221007134813 -prefsHandle 2124 -prefMapHandle 2120 -prefsLen 20828 -prefMapSize 233444 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f31acc1d-e919-4c94-935c-7e9031ef383f} 1904 "\\.\pipe\gecko-crash-server-pipe.1904" 2136 2298cb72858 socket
    3⤵
    - Checks processor information in registry
    PID:4244
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1904.2.1687992252\1744682153" -childID 1 -isForBrowser -prefsHandle 2984 -prefMapHandle 2980 -prefsLen 20931 -prefMapSize 233444 -jsInitHandle 1352 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {32594b7c-3a26-434f-a04c-fd15925cf3f6} 1904 "\\.\pipe\gecko-crash-server-pipe.1904" 2992 2299bde2e58 tab
    3⤵
    PID:1264
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1904.3.1706351129\1456441477" -childID 2 -isForBrowser -prefsHandle 3560 -prefMapHandle 3556 -prefsLen 26109 -prefMapSize 233444 -jsInitHandle 1352 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {f0b3d979-f5d4-414e-8d2b-4c76a66975e6} 1904 "\\.\pipe\gecko-crash-server-pipe.1904" 3572 2299cc48758 tab
    3⤵
    PID:3396
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1904.4.171205292\1136308300" -childID 3 -isForBrowser -prefsHandle 4320 -prefMapHandle 4316 -prefsLen 26168 -prefMapSize 233444 -jsInitHandle 1352 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {d5a77ae6-2ccc-46c5-8d35-2051ec51dc25} 1904 "\\.\pipe\gecko-crash-server-pipe.1904" 4328 2299df43558 tab
    3⤵
    PID:4512
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1904.5.1969186263\71925586" -childID 4 -isForBrowser -prefsHandle 4892 -prefMapHandle 4864 -prefsLen 26168 -prefMapSize 233444 -jsInitHandle 1352 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {9cd7aced-6c73-4244-9146-215d3f9e52e9} 1904 "\\.\pipe\gecko-crash-server-pipe.1904" 4884 2298cb6eb58 tab
    3⤵
    PID:5428
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1904.6.1505712628\1129272721" -childID 5 -isForBrowser -prefsHandle 5048 -prefMapHandle 5052 -prefsLen 26168 -prefMapSize 233444 -jsInitHandle 1352 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {c21dc944-b2f5-4dde-879a-98fd2c95ba51} 1904 "\\.\pipe\gecko-crash-server-pipe.1904" 5016 2299e37a158 tab
    3⤵
    PID:5436
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1904.7.2079177952\424545844" -childID 6 -isForBrowser -prefsHandle 5232 -prefMapHandle 5236 -prefsLen 26168 -prefMapSize 233444 -jsInitHandle 1352 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {34ea6754-5c81-4910-a153-8ed790847126} 1904 "\\.\pipe\gecko-crash-server-pipe.1904" 5224 2299e37b958 tab
    3⤵
    PID:5444
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1904.8.1250528415\878891353" -childID 7 -isForBrowser -prefsHandle 5680 -prefMapHandle 5684 -prefsLen 26768 -prefMapSize 233444 -jsInitHandle 1352 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {8dfd1309-9a55-402c-8602-d068b5e8bc25} 1904 "\\.\pipe\gecko-crash-server-pipe.1904" 5668 2299806e258 tab
    3⤵
    PID:5780
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1904.9.38548687\1497430637" -childID 8 -isForBrowser -prefsHandle 6016 -prefMapHandle 6012 -prefsLen 26768 -prefMapSize 233444 -jsInitHandle 1352 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {6c4810b3-d5e7-421b-aa9a-5897b7d48f57} 1904 "\\.\pipe\gecko-crash-server-pipe.1904" 6024 229a0a59e58 tab
    3⤵
    PID:6052
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe"
    3⤵
    PID:5416
  - - C:\Program Files\Mozilla Firefox\firefox.exe
      "C:\Program Files\Mozilla Firefox\firefox.exe"
      4⤵
      Checks processor information in registry
      Suspicious use of SetWindowsHookEx
      PID:5488
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.0.1467977797\1604603617" -parentBuildID 20221007134813 -prefsHandle 1628 -prefMapHandle 1604 -prefsLen 17556 -prefMapSize 230321 -appDir "C:\Program Files\Mozilla Firefox\browser" - {160d41e8-b84b-4c03-a90b-bd758ae6a121} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 1708 2214bff1358 gpu
        5⤵
        
        PID:612
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.1.916228167\2033266860" -parentBuildID 20221007134813 -prefsHandle 1888 -prefMapHandle 1884 -prefsLen 17601 -prefMapSize 230321 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b8babbff-67e2-49e5-baf6-ee1d79c857d1} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 1900 2214c46f858 socket
        5⤵
        
        PID:1612
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.2.1660518740\452407702" -childID 1 -isForBrowser -prefsHandle 3176 -prefMapHandle 3040 -prefsLen 23650 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {ccdbb035-a624-4172-becd-49c37951b801} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 3080 2214e57d958 tab
        5⤵
        
        PID:3944
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.3.136241182\1153819546" -childID 2 -isForBrowser -prefsHandle 3276 -prefMapHandle 2624 -prefsLen 23805 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {ff586804-a3fe-4b2a-bb12-75a7c75caad8} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 3240 2214206c758 tab
        5⤵
        
        PID:4484
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.4.963149801\1687677996" -childID 3 -isForBrowser -prefsHandle 3740 -prefMapHandle 3736 -prefsLen 24887 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {df4a3494-1f3b-415e-8fd0-b1129ef414f8} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 3608 22151905b58 tab
        5⤵
        
        PID:5136
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.5.743545271\1884854892" -parentBuildID 20221007134813 -prefsHandle 4100 -prefMapHandle 4124 -prefsLen 25821 -prefMapSize 230321 -appDir "C:\Program Files\Mozilla Firefox\browser" - {4f575f33-8b6a-46cf-a0fc-45daed47018a} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 4116 22153c13a58 rdd
        5⤵
        
        PID:316
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.6.1662158494\1909298142" -childID 4 -isForBrowser -prefsHandle 2872 -prefMapHandle 3000 -prefsLen 32012 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {9d023093-009c-4133-8ee2-bf93cab9542b} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 3100 2214d564558 tab
        5⤵
        
        PID:4556
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.7.894407763\135766308" -childID 5 -isForBrowser -prefsHandle 4976 -prefMapHandle 4980 -prefsLen 32012 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {6985cd24-a3d8-425d-acde-bde0e158984e} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 5056 2214d787958 tab
        5⤵
        
        PID:3232
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.8.466317903\1016322368" -childID 6 -isForBrowser -prefsHandle 5172 -prefMapHandle 5176 -prefsLen 32012 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {d12d84f6-c9fe-41ef-93b8-d7fd06a5d176} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 5164 2214d7da458 tab
        5⤵
        
        PID:1048
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.9.1431571544\696303520" -childID 7 -isForBrowser -prefsHandle 4980 -prefMapHandle 5192 -prefsLen 32012 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {356b650e-4b4f-4486-a2a0-7984807750a2} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 5004 22153c15258 tab
        5⤵
        
        PID:5508
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.10.518311967\528964295" -childID 8 -isForBrowser -prefsHandle 6040 -prefMapHandle 6036 -prefsLen 32788 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {773e3d97-aab2-4c37-b9d6-aca43d4a8c6b} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 6048 22154bf9e58 tab
        5⤵
        
        PID:2308
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.11.1747835768\109658558" -childID 9 -isForBrowser -prefsHandle 5752 -prefMapHandle 5940 -prefsLen 32788 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {e1bb8259-ea16-41db-986a-c2c820fb71b5} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 5740 22150f43a58 tab
        5⤵
        
        PID:3800
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.12.728535266\386077484" -childID 10 -isForBrowser -prefsHandle 6176 -prefMapHandle 6180 -prefsLen 32788 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {b74e1e5c-0473-46fc-a97c-d8561b24a4be} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 6256 22150f44358 tab
        5⤵
        
        PID:4492
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.13.1244864779\904802174" -childID 11 -isForBrowser -prefsHandle 6364 -prefMapHandle 6368 -prefsLen 32788 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {807858da-cfd3-4c25-b61e-26ecd3315bf5} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 6264 22150f44f58 tab
        5⤵
        
        PID:4396
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.14.1179516295\117198109" -childID 12 -isForBrowser -prefsHandle 3256 -prefMapHandle 5876 -prefsLen 32788 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {f66a7083-2bae-4309-ae0c-d78d6557c14b} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 6564 2214202db58 tab
        5⤵
        
        PID:580
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.15.1760543545\112520796" -childID 13 -isForBrowser -prefsHandle 6984 -prefMapHandle 6972 -prefsLen 32788 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {c382b27f-4e2a-4856-aca0-7304c87f0196} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 6992 22153804158 tab
        5⤵
        
        PID:828
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.16.2142359963\694468746" -childID 14 -isForBrowser -prefsHandle 6252 -prefMapHandle 6376 -prefsLen 32788 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {59b29964-9d80-4c35-a9a3-8a3f531264f6} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 6924 22142067558 tab
        5⤵
        
        PID:2268
    - - C:\Program Files\Mozilla Firefox\firefox.exe
        
        "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5488.17.1391218508\1599279700" -childID 15 -isForBrowser -prefsHandle 6516 -prefMapHandle 6140 -prefsLen 32788 -prefMapSize 230321 -jsInitHandle 1208 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {f63ed2d8-7e6c-48ff-bede-219b9d195811} 5488 "\\.\pipe\gecko-crash-server-pipe.5488" 6504 221573a5e58 tab
        5⤵
        
        PID:5820

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:5820
- C:\Program Files\Mozilla Firefox\firefox.exe
  "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "C:\Users\Admin\Downloads\FFLS\FFLS_CORE.swf"
  2⤵
  PID:488
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url C:\Users\Admin\Downloads\FFLS\FFLS_CORE.swf
    3⤵
    - Checks processor information in registry
    PID:5112

C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "C:\Users\Admin\Downloads\FFLS\FFLS_CORE.swf"
1⤵
PID:4804
- C:\Program Files\Mozilla Firefox\firefox.exe
  "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url C:\Users\Admin\Downloads\FFLS\FFLS_CORE.swf
  2⤵
  - Checks processor information in registry
  PID:5824

C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "C:\Users\Admin\Downloads\FFLS\FFLS_CORE.swf"
1⤵
PID:4824
- C:\Program Files\Mozilla Firefox\firefox.exe
  "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url C:\Users\Admin\Downloads\FFLS\FFLS_CORE.swf
  2⤵
  - Checks processor information in registry
  PID:5900

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\update-config.json

Filesize
102B

MD5
7d1d7e1db5d8d862de24415d9ec9aca4

SHA1
f4cdc5511c299005e775dc602e611b9c67a97c78

SHA256
ffad3b0fb11fc38ea243bf3f73e27a6034860709b39bf251ef3eca53d4c3afda

SHA512
1688c6725a3607c7b80dfcd6a8bea787f31c21e3368b31cb84635b727675f426b969899a378bd960bd3f27866023163b5460e7c681ae1fcb62f7829b03456477

Download Submit
C:\Users\Admin\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages

Filesize
36KB

MD5
b30d3becc8731792523d599d949e63f5

SHA1
19350257e42d7aee17fb3bf139a9d3adb330fad4

SHA256
b1b77e96279ead2b460de3de70e2ea4f5ad1b853598a4e27a5caf3f1a32cc4f3

SHA512
523f54895fb07f62b9a5f72c8b62e83d4d9506bda57b183818615f6eb7286e3b9c5a50409bc5c5164867c3ccdeae88aa395ecca6bc7e36d991552f857510792e

Download Submit
C:\Users\Admin\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages

Filesize
56KB

MD5
752a1f26b18748311b691c7d8fc20633

SHA1
c1f8e83eebc1cc1e9b88c773338eb09ff82ab862

SHA256
111dac2948e4cecb10b0d2e10d8afaa663d78d643826b592d6414a1fd77cc131

SHA512
a2f5f262faf2c3e9756da94b2c47787ce3a9391b5bd53581578aa9a764449e114836704d6dec4aadc097fed4c818831baa11affa1eb25be2bfad9349bb090fe5

Download Submit
C:\Users\Admin\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages

Filesize
64KB

MD5
56c64a8331a685fbf79819996b3c8397

SHA1
babd6f58d9d4c5b90e54e77edba7b7af809bad91

SHA256
bc0dd0825992324bcaaee1e4dd9b222f2193ca04859317352d82ac688913600d

SHA512
4a7c7de8a0f7969009d4b18dd22b820a6f9549d6fdbc5558429c0b01b2cca33100858a2fe7c2ed8be00d7255606f018e89d3d152418cc89e4ebdaf3bebfa47bf

Download Submit
C:\Users\Admin\AppData\Local\Adobe\Acrobat\DC\SharedDataEvents

Filesize
12KB

MD5
0b3db9294d72ddf99dfafaf0ac7890f2

SHA1
8354b955b20bb8514655ec00c2fa51fc132070e0

SHA256
d87d7ef9b131c39a1394ff2a3cf00322c27c5945b52524d8f3365499da54902e

SHA512
f2ffa3c558d44084c789c5d99c312eb6ce681e3a74b89bee092e01fae8b5eb2e653efa4401b64474eb70846490fbf76126767f4afb5dcc818ad279c329302d9b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\0e7ba426-f471-41bc-b981-ec84aac1d853.tmp

Filesize
136KB

MD5
56ef49d4b0a30acac9557a53ec531d11

SHA1
72aa9db28c507c393d83f897e98f452cfd4491a7

SHA256
90b8e179edc51c8adad8d663494dee14590923fcaf512ba962289d468f87622e

SHA512
c12a3dcaeec7d1805d0606b4d6b0d27f12497fa88b4875dcc0486961b26125ea4ab47ffa305dc4f5be438fb31c9d631e1d6b9bb96fb89fef41d8acbbfa989fd6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000003

Filesize
211KB

MD5
151fb811968eaf8efb840908b89dc9d4

SHA1
7ec811009fd9b0e6d92d12d78b002275f2f1bee1

SHA256
043fd8558e4a5a60aaccd2f0377f77a544e3e375242e9d7200dc6e51f94103ed

SHA512
83aface0ab01da52fd077f747c9d5916e3c06b0ea5c551d7d316707ec3e8f3f986ce1c82e6f2136e48c6511a83cb0ac67ff6dc8f0e440ac72fc6854086a87674

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000004

Filesize
24KB

MD5
c594a826934b9505d591d0f7a7df80b7

SHA1
c04b8637e686f71f3fc46a29a86346ba9b04ae18

SHA256
e664eef3d68ac6336a28be033165d4780e8a5ab28f0d90df1b148ef86babb610

SHA512
04a1dfdb8ee2f5fefa101d5e3ff36e87659fd774e96aa8c5941d3353ccc268a125822cf01533c74839e5f1c54725da9cc437d3d69b88e5bf3f99caccd4d75961

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000040

Filesize
41KB

MD5
cfd2fdfedddc08d2932df2d665e36745

SHA1
b3ddd2ea3ff672a4f0babe49ed656b33800e79d0

SHA256
576cff014b4dea0ff3a0c7a4044503b758bceb6a30c2678a1177446f456a4536

SHA512
394c2f25b002b77fd5c12a4872fd669a0ef10c663b2803eb66e2cdaee48ca386e1f76fe552200535c30b05b7f21091a472a50271cd9620131dfb2317276dbe6c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000076

Filesize
102KB

MD5
557e060b08d9b8045032b29db67d04a0

SHA1
ac62faca880ade1a269ed236c22cfddbac04f64f

SHA256
a82da5978d345622ec0cc74abd12d0d2536991abd09f133c4d1a0c5a096bba19

SHA512
3df70aad90a074bd487893098d2b4315d4e94a8abd758f01681ca94988f7678d210e6e1ceb3b6c2efb7e2c05ac7a2f8b5f732f62181eda5ca167627c08ef6194

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000077

Filesize
93KB

MD5
e27f74d9f0562e2cf473f88d56ed3c98

SHA1
0afc78cc9231d99a8f473d3935fda3749790b0cf

SHA256
25e9435eca2d74e17aac2aef4937254e8a9fb19f47022cfd01ef19ae0046148e

SHA512
305f813a5f6106c6731cd872aed8ea42659256a5f3157f9aad68d9f742b6ade22d1b3ac09a160cd761594cf5e58e352ee251b390014bff7f0f85ac788a80dea0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00007a

Filesize
1024KB

MD5
b226e35e4fc15872892a77e0a7bedb63

SHA1
47692ee72e6a7fafeb6e5a5428be91ba4d0935b4

SHA256
1589966dd84ef7714e9662380a34d01d9fe49a87e0b2a72cb1902ae899673d76

SHA512
55e54299e33c44de3e88c884af98df2115496b3cb56f73da398efc4fc930d33bc5006260cbc7bc0de58a4bb4741d9fb79e77b50438acc57e7919d6917c393e2d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8b4cd649e02aea85_0

Filesize
19KB

MD5
13bc30007c926913cc7bc008434257cb

SHA1
5e5dfdf14de2580216a79a70db086d1909e55a48

SHA256
7888f667afe7ecfdbd8b233ffc69e7f4c1da0a7a4226a15ec86b0e84d78f3e21

SHA512
24df9e7ae1d6e6af13215b054ed75b82df69b9bfa643e5c9973a218e32e341e626f434318895387156677ea2bb7dc5b7ed0282aca4a0e6d8da702b09458fca56

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9cf29ce7723ebdc9_0

Filesize
280B

MD5
091886d2731c12a94b63b6d2b2d65ab7

SHA1
4490f62813365453a438986223bcda013c4e58dc

SHA256
2c59c83f4935bfddbe6f9ee7001a4daf0519e6f90885c2eb3dad94bc42337099

SHA512
ca031114f885b926d572913df6caf30cfd6f4a9a65612e3c57fd7daa3937a4e49cc220318fa1565944e8f053e5a3523f9fb7e895469c38c5300b1d2f27842481

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

Filesize
9KB

MD5
3f29c5ea734d469bce2b4a8fe5ca3825

SHA1
9e712ba6489071f9770ff3f520df3ffd6602b593

SHA256
af277945dc1bf0e1046cfd0457ad690dbec23c363d661c0397df0d63be79d779

SHA512
6f7b80b0be5d1019cf7d6d619dcff22e99a38c9cfcf5c5e90687c2dc37785e0800196c8d321519b9d8fe01da11f0d554c7df49e47a7fa1f8251dbfd280b2d485

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
168B

MD5
74cdcb744a85cdfa1e7e602e566edd42

SHA1
cf74dcbb27c64d2ebf7af5faa2c10998cc843b33

SHA256
1c9d70546caa28844f6f2492d6253c96b67e015ebe9cf3cbb27ca1d6c4603dfc

SHA512
b9e3235ab5acb2f8f41ae3d59e2f2eab2f425c106f9c38cc6711d9f56f66fa5fc9c630edc6a9fb9205b9eb1fcf25e2406f1d05ee898bbfe2b626df85560548db

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
168B

MD5
cdbf1770ceb8b7bd73dc0c2c8b69d82e

SHA1
5bb299417e2ed5e553e910b1d625ba778534c98b

SHA256
a76d07194f5f9c9844f7539a9e8cdd9cd1204d0347efeca7566e29fc38fc7990

SHA512
8efa8dc57321513fd57ba71bc6d3605490133d8ad27bd6578e8738a47873f6f7873156cb1101df43b3e86d9426cd92afdfc0eb27d4ce0f1db9d26d0c7ba2a7c4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
168B

MD5
c8903ef942b7b6ab5179641b4a5d170a

SHA1
1f1738ad975bf155d229369c956a0c33cc6fb855

SHA256
ab329e73910108f7b568b7b778ab7e933269452669e413778a72c791c3468f38

SHA512
443a37ff420a9c6b5fe2c32eab59168a0077266ea2eacdb8a6197852d777ac134c395a41fa4fa30a0aa15017c59f77a6b5836514672e1fddc77727c375fc9da1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
168B

MD5
1543cff426585019646536fa4004516c

SHA1
4d96db8b2708ef3d4fa0828e3bbe31745eef629a

SHA256
604655b71388f4961ff3a717644fce905c08c3f4d2136f0d32f6b4d3102ae59b

SHA512
6a38089ac06a2a4786d8932a3ca5ae7d9e4ab0fc99fc9e0b10a524454298c166d8890591f89f4dd92345c0c1d935e4a1a1688aff98f3d6cc4aacc82cb0d5a0d9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
9KB

MD5
067acb81a1390d58b38e291557562237

SHA1
3dbd93ca77b0ce64d6fd65308d5d283f7f510e33

SHA256
f94d6fe613157e69ad5e9828b011bf62f062233c98423548b1c6407f92aca9e8

SHA512
ed58f4681911e6f1ab2d2e0826e8615a5f08ce1a5cae9b2f33425eafab3a7124634b2a4363f9ce476e1fcecf3f12a951651b3a510044390b1e8a9c276ad36e45

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
092a82e55c883356b73455b57bffb6e2

SHA1
9a0303d3852968b11ad8d06467aacf366f690b11

SHA256
958e7201fe169d620e8947ad920e4236ec53eafcb25d3a8ada9ad39c61f9d14e

SHA512
92e11fd1b50d92cbdd3d24da9b8f4aceab4348e02a29fa221bbe12c9c36c37e094dec2d82b8a7f611c05985048870eaf0b64742b24db6f58e1fd11b8a2301b64

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
38490200dde9059c9408927cec2b7d18

SHA1
c1ed9ff40b750a1c5976c81ead27af123373723d

SHA256
44a9bd3eefabf0c2d62fc4ce27c0bdc09704a7ca77777d261a82f00d23a67bdd

SHA512
14e5ddc7eb1d6675826c17e2b04e02ce4035a093d3e75f4fa6b806f644027d95e8259203793c16ef45d10da458cf9b284de6e7aa18c252e5f671e45c8dc98bbf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History

Filesize
192KB

MD5
3c1f0c61348f335092a4fb1e663c794d

SHA1
d2cf17b16f66df59f0d7bec17f4cb5e63bebf695

SHA256
fe417a4136310b027d4f575cbbd5f521c89b85bd535a3c617a40df6fdb0b1c68

SHA512
01e76b0490fac00e5d37f323de41cc9a2e973b3265665f0477b25948f0c89c13123305bc135f39c91a031a3ecf3a560354cfee72a22e25f6e5304b7320ba0104

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
acd4b4802c49ce6821bb14e669a72800

SHA1
2210d85f4f374c6b408e555b86d2738cf35bc863

SHA256
111fbeb5f0a698d04e28914090bfa372b177c8d3767b31959969cc06842639de

SHA512
938d2e4afd4ae2a38aff4a1d28013fd1c14d0efca3bc3902d3f15228bc0be49261232babe7f384cead3180009f618382128ef8561a11e2d5c2135e6b007b6409

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
553B

MD5
a2817d5614d39116eb353982a472dbee

SHA1
ebf16120993753e74cddd9928885a7363c04aea7

SHA256
571a48c7e45751719d0cbe0090383864893e82508774ef8558b665aa0ad66fd7

SHA512
0dece709c4925022d3f23a0b1ddec22593c9c2457049f9f842b9b917c09d99b4680c86fa37fa50a4a39add6dda730a5bf3849551f96529f8e3127cf22b56788d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
80364234cb3a3689f617098d995beb6b

SHA1
106002d6c4e8ab5fb7cd3b03d7eca0d686dc3a63

SHA256
00c791346393cc9ab309cc9bb91736837d61624d256b8033095e5fd8935c0a39

SHA512
d07f58705611f09325f416290c10df2da90b570acb3afb7a0b2101ddd25350084d18d499a70ff9f1ced6dcd4809a1569489d1cb480fd423991f469a0a20566eb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
46d05b7bfe20b07fe5191d152e63ff22

SHA1
3ca40d81a47703411b5777240e411fe0b59c44fa

SHA256
eb65890e532fec00a9489e3d6569e168fb8f42c098e9ca7679f9277e82342575

SHA512
e3279b8c802232a1748308c8a0032a121909c9382283ad50ad64786af9e3fd57e67a7c60948089784059e003ddbb07820a9adff39b27131303e5f41fa807f0ed

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
6KB

MD5
516b4d90b6da5fe5e8c7ebb6072db380

SHA1
f127f6a163bb45023b2300b70de2c04ef5b38ec3

SHA256
435dd4f402739ce94717205541d8ea2414144cd326dea79ba54753b331ee2caa

SHA512
28fb38dd7f1934e2d42355bc68f97bf1696cb463eb79b114be6d4f59f990df928544512c406b010b9cf71f3fe140cdd04aacc1cddd966d8f4f954f6d4ee1c544

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
8KB

MD5
cdc24adbd2b9635a7f026a9b3db61ea0

SHA1
a540fcdcba9506cb12db3d30ccdeebeedc56deb9

SHA256
17ddd093de1f7c4d17c0be22b098e35faff961aefa9cdf151ac71361d746a7bf

SHA512
c2d4b9e7d29f9f16c57c1888832aeb83e598ece010a37c86af0417fe030583e70a62fe504edeb2f794ed55b752da4db01bb76e1a4f2ff9e215a2506f3b9563aa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
8KB

MD5
8ae770b03507a798405de4a8c5149591

SHA1
54197710dbd3e00461375cc6a76dd2ed2a0783d6

SHA256
b07120765164e99f05406b8b69f7b970ae28b56a816152535982c618a839bd21

SHA512
8ac84102872f5a2864404af8f8b405c8c5cff1fd9395abe9f28a316f8b635891eaa538c0e130ded660698bbf8069c3297c8caba2cc58896a2cab9d208840199c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
0792ba20c25a9322acc8592c57ecc19b

SHA1
e01181b2af0c44c48627338a6d676b77b016d291

SHA256
c7ed0985620392119370c63567d2e265355afa8514c94a7cb2a7ec712adfacb8

SHA512
b9c3c139203191d1b425c2b4b1a58390d12cbfa2c4477643a2647d620e1c94805fbc4f925fd1eb3355b4945dcb4b9055a5eab2b058d01affb60e7c451e7671b2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1018B

MD5
0b9dba676c1fe4022264f2df9ca84e95

SHA1
b22b62dfb055bbaad16bde691e89aceb6408673c

SHA256
0a1431ac1d5795be220e07f314a09129fb85cc84b3f59a0c3786ec5999f002ed

SHA512
6ec09ed2fc4bf7d67b3c4922a0c7e39b76316d1347b55ef103cb7d8a93355e1e5735fee6cf5bc0f69a70713dd5d1c672ced227c6b65715025de0774a6649d2d6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
8KB

MD5
1f2cee365feca164e15aa77e010939d5

SHA1
78dba5dd0c4c12c653bc92c4a0fb6576a9f83cf1

SHA256
b39eb66aa4bc5f7529f3796747240022182b1c0cb8df205b8865545ee46e0682

SHA512
fcce01359065d10c6a702af2650ca692a4dcd368a32c44c897fad01ed43a62c4e24149157ec39fd7cc01fbc04b48b66cdfeacf7f0508fa93aa851b44103135de

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
1d289f8a0d06f48c52f59ceb7ae123ed

SHA1
46dcba9fd14ad57bac64d13ae424acdd45c4c310

SHA256
e5884d134e3fce029a15c879abab9352269b819c50946eb9fc7efef8c03d0189

SHA512
aba352b69f421ddf8aeda7c37b15cf4c5ecb6a324bd47a699aaf7b3a793ed6ce5ef0feb122e5ba73c38ffda27d17d8b8985dbcbde0ee04cc0f39dda8b2ccbd69

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
962b70048ba3614e3cf383a1db142923

SHA1
b1f5dff6d06087b508fde1fa988599b9c6b974de

SHA256
300772bee4dd53311c1fb6717a450723caf80716f2e9be7e603c57790aff3131

SHA512
e1d2ec2af366e095fff48b684ffe7bd925fdf4cef35639f47de5ef0c9df6d72e334a6fd11641fe42ec0243b936112a19a17b8af31fd10a25ac4ee396b1aa9d18

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
003f0df4cbed06822ffc2bbb474bb7cd

SHA1
b167f5e3fd80defd50b64b0b67bebf0c4fd816ec

SHA256
56ed3ccd197b3c79fb1c0407af9a6b3f73402aaf9ef83af5f06953a9aff3a917

SHA512
26c8d2998595d13d1cdb84ad084550790dd52fde42f896c9475bb59ef81b7e9b2a2b1100825ef7ddab156ce71db2c4e8cbc83f7e1301110d5ef0a16d10d83eda

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
756f9beec828ff1aab042881923ba6f1

SHA1
7bca31b118d24f8e64850993aa95521087006c5c

SHA256
3f3d366a8c23f7ba4cf5fb527805d4f20a5cb5c9b611b91a87b2ea3c2d7eef75

SHA512
fc3d673a323c7e1ce76eb8d66f5206e74caf7cfee1b1e0b0f81cce1c3387e3a82d88bfcb5eefb6d1d00b512261ad8e0d1bebaae1dd1e2bad70cd7afd49fd40d8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
371B

MD5
3c67a4c91b5902d71fce784915fdd1a9

SHA1
e6d8c282efc11dffc4e8cd80387c7edcb85b57ee

SHA256
8cce8cac68f50b38b8abe3fdd8cfdec70a443b9a229f7f39be5383027223ee9f

SHA512
1092220624dd420b1dd5a26e64da6a525eebb2a83b11de35a98b4217630fc4de9c606978ee4b098ee8c64cfdf3a0bba5fffc396dfecfb1ccd5c4cc179267d07e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
9d911c20578330c60e6da425cf6c6c77

SHA1
3a1f97d6561958abbf23263df777f8564f9c4057

SHA256
8a0e1e0ea92d764282774a35e2a2522157d6f5705ea0ff3cfd5d5d40a4d1ed4d

SHA512
f7147f3b9f1e7bdc185d68e0d7e0e1ce0f5707b3357bb4d2991f7a19810bd5b54c52abb3fa0d623e1565268b62376ee4b609dd9d1ca1f1e81ce0f81d4edfd885

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
705B

MD5
deedb5475fb8d7e15f452980f588847e

SHA1
4710470bfbd8c50dfc14cc14b292eebcea869410

SHA256
3298a51f7cc898aeeba74512e46b8bde34d4b8859ffa508f549538b7beff95d8

SHA512
a40b0391524f2f8b5ca5b768e09d63d15cc427bdfebb83dc357113aeb85ea89b9779de08b6d1f60b878330be012d18f270635f404926625c7f3e012129ab0c87

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
d0935e53f74be900d6e40618c3ae9e4f

SHA1
cf0e82a0768e3bf83886904c8ec6872cc17ca963

SHA256
119aae62dffef8be0206bd854cfc75f54b968699af782bc1dae48a9f010a0cce

SHA512
8fb8c544b3ccc20f46b8e3f3180f18eb7856a802f1abfb83f6f3e1f19226147e47e75012514f999b51e2ddf09e572b5210902b93ba3f83a6f58da8aa1e9d762b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
4e0e940b0372c700564126f69f126c08

SHA1
9090b5196172585c0afd501e1db59cc026a726ae

SHA256
6d203199a944cecf917ead16dbed1cae8c343fcc0870c0393ff587e5936fddd6

SHA512
07bb08c78741f810e00d054d208f1e59523a463ebf2c34eac708ec59f6784bfbc98c92003f267e413b58a0eec871c011abf0abddbf47983e324ae58ad8fa2260

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
871B

MD5
7f27157b4dc99552204acb4ec06d853e

SHA1
36446d9aca693cc5d86f35698dd5698a535489f0

SHA256
faef3e9dbaae2e7609eae1e8ea4b168d2f861e31d1b9d48f24bb0dc0927f7214

SHA512
9faf210b46e97a5010203b1cc472cb4f92832b17eeaad1e8ac6fc071116eee834b5f7f7473b24e08bd02aa7fa6adbc71511b1408c27310a06741696127727aac

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
1677cb76c8e8c9592025241aeda26587

SHA1
7c291439ce0e492167a64b342c7f30feb8aee6eb

SHA256
046ec6577c3092c16466760ff1150aea5531f048f4795ff59488c7d61a0aa127

SHA512
6a9c4f193511c3be33bc55ac91f4d21ddbb87c9956dc4bb0a83226cc0807fcb158f076b708d5c63b8662a0684cb1562d75c52eb3c676deab33d436886df4cb32

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
088aa89e15d8530449bb93a69626f899

SHA1
a39568580444e7d43d6dfdb47c60ffcf40741260

SHA256
1cea755c5b3f134345df66f4044b2fb43c27f725daa0cc17907c3ce411859fb5

SHA512
a5c169e6613f51f7232f768aa7dd142c3d2a05caafc061b89e0ca4e31bc0cb6bdadd0f9de4578a953c4fe73eca3e2023c7404fa5d08d4d33aabe08cb345d0ee8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
873B

MD5
8328a42e336f1fa38a477a28d6203a04

SHA1
acdcf8dfe0544eb07369e438318a55d5cceb2acc

SHA256
9cccdfb494e0b32632b7acc0f8c55690c7d7b897e903343e6c95382881b207b3

SHA512
714c5d6fcec34dbc1fed081f262c099054590a21bedea44a8047d4d3ac3b771d7b0940c6b4d01d47561f6fa58ded512ae941f3ac6e5e1ba57c9e748c9f6fa156

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
13d4cc199809309230e5fec4cd6d67df

SHA1
8acb95d52ce4d98da942c7c77408b392d6847ded

SHA256
11fc92e87995b080de398bf7fd26affa20d204fd686d4149e96fc8fe01864097

SHA512
7e8f85ca36c665d5c60ea423f74a1354e7cdb2a5ad1eb80ab00c4db3822ca9f061da7f6228f0f6ee883cf384ef2d4e78e8143e2ac787c5b6010dfede81d4c341

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
d8ab41107eef727b72f91d5359d799e8

SHA1
95403e1b600f58e343b929612729bc82a1cac8a4

SHA256
636a0e8813f69fe418dfe7467cbbfddceba7378661c53436bd95ef853aaf079d

SHA512
1279e19a16af375e46a2f08a2b90629f9040b65f6392e1b2d139e75b4e66ab1a2acb7c8884d96be245c4e0931933632ccd052b6c72fb3bf09657dc04ca93e6d9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
dfb6e3d8a1c734628bceca72dc90c3bf

SHA1
42662233491e5ddbce4ec6e5b0bc6928cb89b27d

SHA256
189c1ba285be1f1d271a604c91ec2896da3c152c54c615bfd5dab979f82dd2f1

SHA512
5019966104b8d12f522a7d2eb1c525c7366dad8ee0cb5a79abd61ca4b3c369410c53bbf775e9e3ac0fd2620e6c34745a106f1aa0d7a2abb1e12552598142a3dd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
d4bd009edda19d1feb7732e2974285fb

SHA1
75b0fe26720a9bd45b06ba83388a01c2d24c30a4

SHA256
2652158ebd58d7a324bce96f1142d533327578d57486964286ed7c05e9968fb4

SHA512
4135b8ee92a1fe8ba7366a934a118e213d84bdbef6e279bf3ff3510225946b2d8031e3a511f46c746760f34dc43d90dda992c44ba7a6ce6617330854602f236f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
bd2f998fdc0e3e8be0a9ba66d8e09494

SHA1
965060aced1b4a6a4ac35483159ee473d17f99d9

SHA256
78930026fe2c19955c8147b80787e91ff6c202905dc45a196f12d2a666e9a607

SHA512
9e3cfcaf29f281725bc0527843cd144829ea86d2384d04d54fdeade0793e0947f79b92eeda95f417fff991c29d2db7b03eccf24b801f1cc7ff4e18e0b3f26ca0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
5db2d734af7573bc5836513ffc513400

SHA1
2cf8e98869f7626300788faa4e76468e9e755d4b

SHA256
34d02076af218638b9d31bbcedd1b352b3c42019df7f1de37f0e7f52ca246ec7

SHA512
dfc93a141eda27d1ca5fd72edcd2cd7034867a48f75a79c21749daf5b1ffbb5c3bf228ecf0ec7eeced9f023c61065808fbf5784f7f20cb70a1f8434a917d4103

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
26ac98d2261c2af9f3374a9bfc062a9a

SHA1
c128c751170500dcee36bf61e4cdafd940ffb799

SHA256
47b7097830d68e2bcf7e1178cdacb9464967b75b9fb9f44066b0fa66c0900f11

SHA512
e00110554d42d7b92372b090cb1b4de6d85ceca072abaafd6998200f601c16218b7531ce7294dfab7842fbf5ee1a55edb087d0ca2d516cadf632c96f9993f598

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
a04bde5e47f90c9fb9084dbc1e438158

SHA1
6af4dbe2b9efad691f2ac95f1ad4f380fe0c3171

SHA256
c6fa2551782ee92ddf5b135a599c82fda2ef279db79cabd98938ef6c0d0c7c9f

SHA512
d9549e7abc881f5dba23087eabfab5689109943552e1a19b933d39063ee0c8e52e01074ba781c0f40f17221d91074a9d649fd8b1f526c86017bd56ffa72aace9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
7f75dd9c6b63b22f0646fea7b6631b1d

SHA1
8104f2a31b345c2fd0df052976dd633d64a46ec6

SHA256
e261f365e7dd83ba9be86d9362631db7082bf1354bd6c1b45cd89778dedf884a

SHA512
893903c15c53749ae52281eda6c6cd2df82ad3d5055385a4b77c871549685f979ee2a22cd6ed707677b638952f18bb51c20437f1995d75dd36b9a8dd17e73245

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
79cbbeb79f2b3bcc8d0b9ecc28952c7c

SHA1
6a90d081e81b9d6f38a22193f1f0d107cf18682a

SHA256
58355ca156c8f85d4b9e608e14649b5c1037a302b0dc201954fea0898fa54af7

SHA512
9cf943944aa0269c3507d8c10673fffb5969230d38b424c04b0e59a26cb7b9e70fe77bd22c30f7c390a6b282c78884e1e5b36cf9e68aca52fa0442d9819b4ffe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
dc8a69e59609b45d04930ccff9e075d7

SHA1
af2cdc472700c3f1513d5c9cc133ca564a2138db

SHA256
4c649fca4200ae309e649722937ec589dd0a635b2f3224c8201b7e112c4d8749

SHA512
ae1734888c2ecfcbd8b4c75d920feae59255f3976207d469d9964219635fa6ea61103a90567bb02481458ecc91154f02a71239b187f37b2c9553edd2ad34c66c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\5c400b215596d3685ecad16b15a5823d3176828b\index.txt

Filesize
137B

MD5
68f7af34bf86a33155547d7418ee11af

SHA1
8d77539289f9affe200843d0b4af11067f9064ec

SHA256
f77a45c4e9a74712cf316dc8858e9f1104e5466324cd6525fb8745dd0903bdaf

SHA512
3986d93eef6068a16d7693c2a061a81f58f675b153bca2b9700c37c3fabf836bf644fbbd6fb028af2428e7d78034e16ecb63327ee75a9396db15d0e2a63813e3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\5c400b215596d3685ecad16b15a5823d3176828b\index.txt~RFe5dfbf7.TMP

Filesize
144B

MD5
76c33a3cf1ac0afc33100fe25b0907e9

SHA1
f036dbc17bba8bdb34184e54dbe69cc3902c6fdf

SHA256
2429e34106b135a1b0dca55e38545ae32bfe245606b33fb9ccd9fa4dd9bf29d4

SHA512
5495b85ffac1a9ede4583f12184269c9c1af89efcc73948467f5f8dede9142df5b7ec30df4432f387f6e0963f045b89a9d2fa2bde842b549296238fbb448c702

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\a02a43ff-f1b2-4c51-b6f4-eda498fda2e4.tmp

Filesize
6KB

MD5
38856700b2b68e403f7c3ccc78f97fe0

SHA1
a5b0410888d7e5b3790fd76cb143f3efe1701a0b

SHA256
5bf6ed8cc553a909195f2b3dce3a8e3f70d5b4411ac006d9c9e07c7c2fcfb4b0

SHA512
89df9d823175231482c48b5439b7dd2239eb3a4995cb146d2ff871c0373fd28fa54dc9be000ed62d1399e3737cf0f01bc824b2df80ae74bd1a26f1d5141d65bb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
136KB

MD5
93ddaf81ffaa975afb5f94c7bc4dc70e

SHA1
3ea51fc352b2d61edcb2a3ee47e9a0436ba67ab3

SHA256
d436c64c0f060ad1f377abaf357059ae316e9ef3ecd9695e4ddb77ce2ab1ae48

SHA512
966ebc2c6c7d94775727bd0724ffac1a80cfd4be015435330a30925e732385d3fa024b5956851cff79a8c91b63a72185f1b0585de3c43fd089e9783aac81fc78

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
136KB

MD5
7043731b240ecc245d22496ed218558e

SHA1
6fba123a271ea66a5f525ae56e19e698f9c2b40b

SHA256
a69702834d7a35b92f525e8d96e75fffa90451919d541a8c4369a8d9ae7d0a90

SHA512
f1098e95abb6a9c4d69f150db819ea673e580500f924f317a49494a0a90fc4ece2e7c7c6c37c3e4bf773fc0b68f160083d9cbecba0f50a0d5184358f9f087d1a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
136KB

MD5
15a479e0e1a1694ef6e5997a3ae36e89

SHA1
f6ba89401341b06eccc06a708b06d26adcba778e

SHA256
7a99e4d2742ee452b209e18f05b6757db3de7636e903268ab73d9e0ead3fbb4e

SHA512
1ae7345706a9b24b695b98d94e13adc3ccaffc65dd3a5ffc8d5026582ac677858ff69359ad79b726cc8a7304636372335cd99a14192fa852ac5e992744e71049

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
136KB

MD5
1037d02d1a73f23ce09e806cd64d3539

SHA1
35dfd61db285157a8791e83e6e6b36c2601b5db4

SHA256
b20c0680d888e2d1dbbff4457fdb3a24af71a509e7f3548ec1c0860553e29582

SHA512
028d9c50a416109e16e1cf64b96866126b0bc83b84bc23777ef37d1bf6e4054314541fe666a8ace4fc5ce6769693048b6564022c14828bf931d461d7502f34c5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
136KB

MD5
b3c82e747e9f1487537abede62793a2d

SHA1
9bba2706f171aca22b881c36990bcde977efab4f

SHA256
0a506f6289c385267fe2cf858c8d3dd1ea6a0e8f9276d316b4ac78e923a811a7

SHA512
3920c152e31309f54ae5a6d4b377a74c2afcf66a47cfce0ff7ae57a1b0aa4f315a198cf7952b462c24d6ba0ad0454cc7b7775a03938c86c282280fcaa09b3679

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
136KB

MD5
e90cf430bf6b273af278e4b111cf11d9

SHA1
3935dd8cff4be9324b0085e2a2a249b0cca4a3a4

SHA256
5647c92a0f4af088ade454562606ec3cfadf20067c6db0c74552d9e477c0ca95

SHA512
2f77113d51bd109f56ad3b8b313515f912948be20fac66cb81d68509b84252ca33876c68265bfb16aa5ebeb7120f7f175e822e88387d2bbb7b5b99e7a955e15e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
136KB

MD5
6401fe427c4ff956063b1f2f57c7df2f

SHA1
b6bb3776ee88cf470f16f915b20ea86aebc18b22

SHA256
91f1b5f5b1677f08d4d13c534fb40ec7f15013db9ea88dfacbbfcf6083ccf10f

SHA512
399374dc2719bbb51bbd41384ab1c1474f1f1c15e9eeff119b1f4154bca5a6198a66b447548056c7c49edadea89e90fc580eba291356c521a6dd978daf0e9c8e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
101KB

MD5
97f4851f180e89db8ed6cd7fcd06f46e

SHA1
80429bb5fb6c0c6f019bd05523b4c186f3e47ffb

SHA256
141bf51972f7c2db88f1f92c856de02d74012933e27244060508b5cc6038ca03

SHA512
1f49b0f3ed200417c01c353c83a8c896f49a20d0d75c1369c502f5d716a96e15e81d88981be2a84555c6c7af86b370f774b8d0ae973290a942a602adece10815

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
103KB

MD5
91263ace247b7b426965d8da7738d72b

SHA1
74c7d27e3a4b05724d7a9eb08fc63ab95c475bbc

SHA256
8bf4023dabf2b6ab4852f3f82656057351433b3db0799105735224de81f3e00d

SHA512
405b4e6139ed27ba0a00a7368a000fffad5c4643c7ea4f907e823846cb1374182a1025bd0444372e3e0671bae1d40945e7dec052ae5fc2350c93fea78f9508db

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
110KB

MD5
e0a6f72dc66bb8a2658bcd9fa388c525

SHA1
6e4982460da84ed27c3906072bff8c5f9bcec265

SHA256
8ce0ecf27a6be5689c542da5d20f2ba27050334022c7c38226a9cc92115479cf

SHA512
48e5457ce9d2b453d5265a2492c7ff8ad42660512b64f3f849615ca22e4c379878c36f22f345aa5763e84d3628af7140773fe0ed9e154dd6cae190be093d18ee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
111KB

MD5
7de22f69ef05f3e57523d2e3f4cc7c3f

SHA1
785f8299dedcce24717b1b5e445a5bda905348d3

SHA256
345d1238a01ca79d59b67580233814b67af3496ac17de256085930e230ea7f91

SHA512
479980e3a72fe6425996617e94fdff7b5b132bc3d8aede42a31d6cd855bcc05d5bad2abbdc57ee1febe5699554f11d226059e699d0bdd1070cd7a1044060ff93

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
102KB

MD5
b1dc86c85bdfa2eacd6714e196307fee

SHA1
e157d1dc263afd9290b7e8bb5384922c40597f94

SHA256
19f613b615c94619ad8ea9bb1fbdd28d06f0533c42f0bb09aacd5ac354b93d7c

SHA512
5b221eb7d284ae6c3053ab9f4254eabe1b0a0b8528bc3bd32c3acd5c8323e2de83c5fe014838e66a7b569c7e733158731d749aad04cd0b1f95691dca69390b52

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
100KB

MD5
6302346326b1b66d2ecdf6c429a04948

SHA1
9c498457c5bd132bea46e129ac26acb8d2ce807f

SHA256
1d5c13dc6ab363b69cbf0a9841054559085377b944ffa12ad607a5099042e4fb

SHA512
d7f98a6714ef91bc5e25ec21ec8a48838e115aae71a2f7a0b871c1f394c21e8edc5fad660be7a65dd7e5e59ec030febc2c1b54fb738b4809f5f78a1b72c14e63

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe587579.TMP

Filesize
93KB

MD5
6a7f9a31f796f7d28ddd89b508f8902e

SHA1
3d85fcc3f082a2937a6c5353c34311c539a74435

SHA256
4c5ef75adffb60e75ddc00970076a5073c0d0c78b96790bc768a361cefe829ff

SHA512
f3730d8514c003cdf7d594516c07c0a72f942f116a2df60410a5c9c09f93745d38961ddaf0205cdc4e4016f46bce4da234182226967ba756d76a2d43c9939812

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\activity-stream.discovery_stream.json.tmp

Filesize
28KB

MD5
e854199d0a7fb6c62c4f17b45f4ac97d

SHA1
56e2dedd694f39724a537e41ca83f72a0938b3b6

SHA256
0b0648b35d3b0cda136078ba27f3f790aab76cb4b40b14996066d5e4a2054ed6

SHA512
c78234a9883065331833e45a85f9cb2a7653e6a03b9294c737d2d80cb43610e2d0cabf4be43b0a5ba50d163d9482a796bb88debe479a6440add8e5112103790f

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\doomed\12174

Filesize
21KB

MD5
a96ed5d496b29e7190c626dd071dfb45

SHA1
68ada262a578f18ac040d42214f2069e6d17095d

SHA256
82d518cf6179bca41577c1e2f9c1d1e07892e54e7f10fcee843bc96b4460bfaf

SHA512
0724ee28843e6e12648b7db812c6e20b80dbe9736e5d5b6e6a7db6b4c1895ede0801bbfa3a24421118acd62d8701e16141af779372270c18f4d596efe0810ad3

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\doomed\18740

Filesize
8KB

MD5
d81da8dffbeeada4a4935b96cd42e1c6

SHA1
9ab9240491d93d3739c70cb610f4bdc7a28772a2

SHA256
71dc73eaceb76d11aa8339533390acd3dd1f40b46b2119266c4fb6bd90d3aa8d

SHA512
40e41c4b40afadf5aefe6a554b9525ee4d2c2a25cbfcff92cb63c94eee68e1ba7d8072edb50358802a7211ec7852e30191788111ab2aa4a723a2f286243d85b7

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\doomed\19736

Filesize
12KB

MD5
f657c12f478d042d7dd7d77e2c9c8a85

SHA1
bf30bcfe2e3ebe792c470233ebce12afc5ed7661

SHA256
536d8f1a21fce23f3a3cacff0bdba37901afeaadfbf421e017d90721fda6be67

SHA512
e600ec322a7c8813a6830c693e03495870fdc990f50663e77fbbc86434f293ec08a6faab18d55b0f764f693c1672c6d6d68c8d9adf9d2934b7987dd1459e8c81

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\doomed\21166

Filesize
9KB

MD5
65a03bf31e1df91934d6ec7907f997ba

SHA1
3b5aa4338df3ec7545a86b22b588e91b8b3fdb6a

SHA256
d970e7af2ddec973942a7e922a0ec05954428e87635eb00cb6d1ce3a97f11d65

SHA512
0a751fbc64e1d89071128118fa68c2b5c26eec4b556e8a3dd442ae992541597aa793bdaa0a6e2139206a45dc3557b962e3dbcebf2dd30bd9ab2ac3ffff4586ae

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\doomed\23598

Filesize
21KB

MD5
205702bfd5454ef5ad3314b73869b590

SHA1
73a484287134d654ed4e135caf7bc902a6d91d02

SHA256
9ae7c5198dd1cf0ad5eceed564d97f3b0113dbcf763155684af5d9a728e6253e

SHA512
ba7dd3848d2775281a24c76f8100d7e599ce96a0cfdfc59f506557606a5bcd198de2fe68fab2bbf96c4e6910afaaadbc135bec14d24d6d483631e7c01b70128b

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\doomed\25560

Filesize
9KB

MD5
6a80647524c740130866bc8553714bd4

SHA1
61cacec3ae7f6bb61b3b255e1fa3033412548321

SHA256
2f5539dd1b26e9225261111043989c813faa61d0a476c7f1d569ceadb1682404

SHA512
ada13c6ea078cf50c1e1b145c71df2a6f27af64a0d26efb9489a90878d1408e54c7ac7a40ceac1b69662396d34f209161cf4ceeb5cbf7ef85d6829710a8e21a9

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\doomed\27480

Filesize
10KB

MD5
9d7e010bf20f7dc8ad49366b1fdb17b2

SHA1
c66c8da55b974d84e54a2736c403f3671cd81cc5

SHA256
5456dedae731dd15ca90436c4fa36c2b1f87d706b4bcd0d80a37124c347553e0

SHA512
3f269b456172f636ef9dcfb1de7928f8f9e4d48d01c8b927a01f79a659624a32987a23fc27b08eb120b5093130724f3f383729565c55e95009bf9506f4d7e58c

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\doomed\31

Filesize
12KB

MD5
35d3e312589112087cac54d12f9d2c01

SHA1
3d3dfca2f19f3cac4010f75c26f5d0a601c1f4ed

SHA256
d666c85b9d96d346600cd122d23621e31d8f73aa3eb25b6ab3c13896cf34cbcb

SHA512
0f97d0ceb11ecaf170551cd901bbd1d349b4f1e60d9c94c207efb6646720d2de5bc280380ffe6d5f5f59ac42fd527bfba0ea8d79291e0e54db2d713ecb209819

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\doomed\3946

Filesize
21KB

MD5
48f95eac0e4a67ea8124297d0511af71

SHA1
d56991dfb3bc46105c4e4445f7d25a9cb0f4ce04

SHA256
b6b8ef78d2feaf0ef58858f9047203572d12cdc783af0702e386d1967552e513

SHA512
4cba37dd0aa96f00b892ed03f2da30594b75c33dd875ed0be5d226c1e297644a38698c537ffffed994e3b7885e2924630c9a4d49d99ecfd2197f88af023ef4a0

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\0274CECAA6504F87B2DCB2E9B5D658E1561078F8

Filesize
95KB

MD5
e304f293b4e3e25b4d98e39bfeb95f9d

SHA1
c65c73406fb878904033d6223569657084ec569c

SHA256
9caf6b5d65649736f21b4f0d82f9891deff9b677a576608a095e09cd68809bf6

SHA512
8b6f0b516b10258f2ad21b6f2b238395b8daed0328e6548572e6868867c6295da3d696d4d14f0c62a76b00a516632925a580900c99eafd866c7f5ebd899d0a14

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\2B51168B06502B304B9378B833386EEF6B47B668

Filesize
42KB

MD5
e9831d2d5559c6ed29454bf41c69fe71

SHA1
2fee77b969af0ec3f2d757e9f0caf2c5149a77bf

SHA256
9166bc7fe4110c86900f6475c5d5a2387f46c73cf7e93bdb8b5acaec71ab9df7

SHA512
3568a971868007c2ea5e2a43a3348602d248ae68b92698f8865efe53b8145d9ce37a517322601c9ba0ab34956462ea8010234721f12f436c89fa18c618b43c38

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\3BAC68DC9455172B4CFB13A3E55214E5E5E1A980

Filesize
761KB

MD5
58a84b7ec4fa55b14e60dbc52a4bfae9

SHA1
e008b272094cf6e605de226a8574e7421e9b999a

SHA256
95b920226e110c72ca10ce4f857f58745bddb47a5a5cd58779e08bd1f6b44adc

SHA512
51ace5de8fa99a9dead8934fa6034367675354328af82501c595a79e90fc2779b4ecbe912d18df21450022ae07dd59b3fc62e8774343f782fa0f7c0cd4760104

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\6127254497D0D6055EF235338948D0BE6E7BF3EA

Filesize
1.0MB

MD5
b92b036dbf96b038b6f3e3665d2576af

SHA1
2fa943e62343f0c6aa9b715903a7f12aa6197a9e

SHA256
609b0a47310561b33e5f694e9f419163aa84258448398a595be400c2c3652cee

SHA512
1abf05c931bea53c86133d5c74f114adb898bdaa432cfeec6800ba53bc575555150e72b59020ac871c6fb1823a1dc50e0e9addeb6762a7bc232828a0ec5729cd

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\66A23E5804DE18A50A237F41421583CBB3DA06F1

Filesize
13KB

MD5
2932a38e945f03c2bc15afaff71b1a67

SHA1
3ba3ae75bae5a86af851748d1964a090215180dc

SHA256
ed0afec6bc561abb51d71e5940a6d5b714db86ce0b14a898f0fca2901888f8cb

SHA512
59f87235f21648ee6e141dd91c857a6db21b5eefe574c42d206ae9ac1de63cd819d8b5bb86e47b8148dd772b8242afc21bb9002f2cd1e3ea2690da836dcf6841

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\68BD8EAB00570CE692A451C21D04298547854EF1

Filesize
1.5MB

MD5
d4b91939e500095d2cf365a092928510

SHA1
bbb47d1f4908ea51d5f2b40befc7458797c52459

SHA256
3981945cba99fbabb7d028b9ebd28244d9138de5c10e06b621bf286d26f294ad

SHA512
623245fabc591cf499fdfae2f1fe82f28602e6dd8b2e6b3d6fee8215e4b93f2a81d55e3a3abac56166c7b35a4bfb14a18f57648b6e29839ce4c3fd76d5deb290

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\7A6B04672EB5A30186FBFC9C83E2FB531ACF9C5B

Filesize
22KB

MD5
79385e1a749125a4a665219dfcd9e436

SHA1
e6a5a8b6419f6bc10130e831d158f21a92e0d8f8

SHA256
5a6e888fe52095874a8d2747e3b9d6c16671bcdd231d5c5058e181f6d3bab588

SHA512
981fd8fb07c78aec8274fae7bcae985ff7cf679c8bfd2e2d5f4060a5afc876559d70724fdf8eee7b2ae4c756d5bf61d6418a52a3de1f9c2e8ac6ffb97b15807f

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\7B733DBB541EAB15CD98AD04A63BEDA6623BED3D

Filesize
1.2MB

MD5
4a27fd2bdf7e112dcd94dc0e7433c767

SHA1
0fc82857ea3ee9275ed1b18ba08e76742b3995dc

SHA256
bc62141f1993e4a5779f94e89c0172b422d60679768d313b84eeef4f7bd57f67

SHA512
b4819576294fd5ea5df56a522f91a73c281d387397561aed73dfc4326c040b14da2fcadd1d5e3b33dda60f0d7dfd5687de727aecb62ba4cd4df849c9241846d1

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\7E1F2CD0898FF46C39FEB0702C099042A1A867BB

Filesize
101KB

MD5
7a94dd322b94ca3c4cccd417121e736e

SHA1
2983d0ab33b9dac531cf19ac9e2879eb4063e75d

SHA256
65bb485992256b1ff261dd01025d809de0b6071c04036eb380c6c7cf649c8af3

SHA512
3e5cd6a8fc40ed85b47fe993546d4f75f19f1ce260a0181f208aaae60f326ec9952bd47bfdaf31147539c6a6bb95fda86f36e38ddf90284c6e78bfb8fa1f7d7b

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\9271D8DC957990BFD66E1B12C76B4CAEFF484E92

Filesize
444KB

MD5
0e7c2eb541a7b56360cbbd4fc2ea8d73

SHA1
8d24c3107780a31c7cbd12612e7eac7fab3b4a14

SHA256
93d8d8e6063336c84d6acfe2a6d792422db3739efccb0875aff0b791d0a110cb

SHA512
9c897ae641dfeb91b603dbca22ba0cc82fd07ee985bef48f9955634804ba550fff59bb43285c3e66dbab73b6081a0d9cb105a85fc9e1abf5eed112acea0daad4

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\94A437759A49F51E41FA6A46E58A6894F43060C5

Filesize
493KB

MD5
9248dcc154934515d3792dc12d33d28d

SHA1
562b5134bbc300aaffed3802c14e22bf003b5d07

SHA256
9863187eb7fcd0434761e6080e1b9f5138ca619ee1fceac174a5a27a48593fcb

SHA512
c8fd86acd0009aac131ef90cb9fd1995e70596651f72c19576c46212e6ccd2b37fb5ca60585466e4064cac3e58170cd8a6412212c0ece3f8d588d5c57f222395

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\A953E44A5E7DA3968B857B46BEC36AEB2285F4E4

Filesize
17KB

MD5
6c008017ef080c1f346ffa42e64166b0

SHA1
152572ea0c118094cce1965f07d9bf8273a43029

SHA256
0781b3519c7aa5639c5de1be16bea6893b68f724efc72420177e5e7158416c9f

SHA512
8a406423599c171cbe571ef3eb008ff114cf3ad948681302d9a701f560a74d72019019c3665844b283d9e29d85d66da5e318df0fa6e3334df2e1ae079aff5edf

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\B304AB6F44726CED93B311C5AAD40D4D000828B4

Filesize
120KB

MD5
6f6a8c28551795e1c83176f0440a640e

SHA1
d8f8f78a0da1fbb3ed129a134b83786641016fd5

SHA256
a27368c760f6f4ac06313ec29ec0cdedfddbde8070d5a3a3ea953994d434f374

SHA512
6870c7fc76d9d782b2a45750f7a2716ef33e5d20665d27f8c4c6bd4f0d62d127d9344d88070885cd4f1151e02c5e7c4edb9bc53966b21638cafaaf7978146940

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\D459C3B3E822DEA39FD3F875D9212899995F1672

Filesize
138KB

MD5
21ede04bd1e1294c1f963be0f627ba25

SHA1
dbab162867c0774a3988a7c2c2240a0a2e942a6a

SHA256
8c549acc3eee31a89f1bf0f6dd2a3f4dc145db34f92504187e45cb104e5a073b

SHA512
2915544f8238d54909fd23a861dc934772a91d68a8b120a5eb1326819d591b504829bffe1636420db1314b9a58e6c2cc67c481a96b3b68146089654c376962b7

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\E13E5CAD25AFF50A5E155A0C245331FC8EDFA15E

Filesize
2.1MB

MD5
f29038f349f13ea9a608305509261990

SHA1
9b825275602c615500cc98cccae443b77696b38d

SHA256
800e19c6961db47dcefe2a75df364d0636b59bb733b15381663aa0abcb290668

SHA512
eb2c7f5e53a697f794586baaaa343f56c05b39ba92708b532f240abf62e2c6efb89b7391fa5b4076c129c32eaba92a300d1f3991421dc19c2816c56f5d70a462

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\cache2\entries\E3DDBA04A431871ADA1B7D660FD63609E079388E

Filesize
120KB

MD5
7bf9d87989892e9342b1d7188e332fa2

SHA1
0c58df9765476515647e5c12a555dce12cfb8acf

SHA256
0300c99ee930aa5ecd89801d125290523beb987c47c4d05f1a117917b69c8a3a

SHA512
173d6c08f2fc400848c0af0fefd0827da7bd233cd3fbb4eba26c726e69a0b378156fad769f71738b32affb065ecf4f2b1035f333991c79b40692c448668b3f15

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\cache2\entries\830616A271C775A91B060788EE6D315CAD823EE7

Filesize
25KB

MD5
329f1ba976b49a560cef490dd8bd633a

SHA1
5e9c3ab8513a8eb69eeb724befa44f6609dc93e2

SHA256
62c25856b37c7dd1c6154fcfc1cd823fffa8edb2c61d9548fd502d5803cfcd9c

SHA512
a4b39a590261be1faff0dccf44f811e6728902984078705e64e1041dfa4abe19d3b25fae1d92e83285360b4798062a024ba57f7e81e11c8004fbb405cae26581

Download Submit
C:\Users\Admin\AppData\Local\Temp\tmp-5gp.xpi

Filesize
1.7MB

MD5
249ef309054e14f7edf5b532045dedf9

SHA1
0c1937776942c89dfbef791f300e8a392f9b6627

SHA256
472a6d4bf81c0655b2e06bc7fe888865430c445ab51e6822a0a926cf08d7c22a

SHA512
e4861bcea27ce6e4fcb8bfc38b74ca12ffd5f11ae5d12106a39736e3a5a81709471f27dc71465996a901a28699874e3cdb25698aec3b5ac51eeb2542f334c9a1

Download Submit
C:\Users\Admin\AppData\Local\Temp\tmp-o12.xpi

Filesize
9.7MB

MD5
9bbc6e18ea17bd60e4e9f7e06d076dd2

SHA1
d31d425b5cdd977c7bb23a7b201636cbb1b798a8

SHA256
abb64a39ca7c636f4f2e2b79bb77af37f2182af6de6d965c31c602e7a63d4a61

SHA512
48976a8f4f94c4642cc7955bf3671583f09f6fd5083a5be0139005a030c168b11e96f36f4d3c07dc07b4d202a9709a8c4812dbbf3e9098f96c95cce35f736879

Download Submit
C:\Users\Admin\AppData\Local\Temp\tmpaddon

Filesize
442KB

MD5
85430baed3398695717b0263807cf97c

SHA1
fffbee923cea216f50fce5d54219a188a5100f41

SHA256
a9f4281f82b3579581c389e8583dc9f477c7fd0e20c9dfc91a2e611e21e3407e

SHA512
06511f1f6c6d44d076b3c593528c26a602348d9c41689dbf5ff716b671c3ca5756b12cb2e5869f836dedce27b1a5cfe79b93c707fd01f8e84b620923bb61b5f1

Download Submit
C:\Users\Admin\AppData\Local\Temp\tmpaddon-1

Filesize
8.0MB

MD5
a01c5ecd6108350ae23d2cddf0e77c17

SHA1
c6ac28a2cd979f1f9a75d56271821d5ff665e2b6

SHA256
345d44e3aa3e1967d186a43d732c8051235c43458169a5d7d371780a6475ee42

SHA512
b046dd1b26ec0b810ee441b7ad4dc135e3f1521a817b9f3db60a32976352e8f7e53920e1a77fc5b4130aac260d79deef7e823267b4414e9cc774d8bffca56a72

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\6824f4a902c78fbd.customDestinations-ms

Filesize
17KB

MD5
b3d9ac95d90d0fa617805388f5e01988

SHA1
e8e34dc6124baec650efc8075df33e08c638da4b

SHA256
9a6e2e970e24ec94c245b8b18e576db1efaef49cbe925f3dbd5ae1af1b93648e

SHA512
dc39c6855a69640b4b0bdf1b21d0f1eeb6d0ec841d672a3bfb1843348afa234972f215953b378a83f89246bb1d720cc46bdc7b270ed18fad723cd3a884f594dc

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\addonStartup.json.lz4

Filesize
5KB

MD5
03f876342db6b3a964556bdea3236146

SHA1
8dcaf7e081f41f594d79fe4daa855ada0857b50d

SHA256
97a777e5c811689cd39936347ff18eb101e1ffc3d12eef910f99a9784e657dfe

SHA512
574c1ec13bd1cf5b0d0933726a6388badee5e32668f7077e6bf5616096382bc6c1254ad474a861ebb04405ebb224958a3b5ce10c9a015523225968a3c5c9204d

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\bookmarkbackups\bookmarks-2024-07-15_11_+ftwiIQfjYtrlniJNZ3V4g==.jsonlz4

Filesize
945B

MD5
5454384ec38638981ce5e67157b8f07d

SHA1
20da940d1b48d7c555b5f7d050fcc26b9fcaa217

SHA256
faa28431b2b70bce1f1552ef63266622ee731b9a30a3b314c9b6d6e0bdc07e11

SHA512
5526c70002b23f106dbb494742fce905cba27979f8bf8f2a92832232fb34b6bf873043f0b54f88567250f358e5fdd93438f5211318ee303ad71615ea85d1f2f6

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\broadcast-listeners.json

Filesize
204B

MD5
72c95709e1a3b27919e13d28bbe8e8a2

SHA1
00892decbee63d627057730bfc0c6a4f13099ee4

SHA256
9cf589357fceea2f37cd1a925e5d33fd517a44d22a16c357f7fb5d4d187034aa

SHA512
613ca9dd2d12afe31fb2c4a8d9337eeecfb58dabaeaaba11404b9a736a4073dfd9b473ba27c1183d3cc91d5a9233a83dce5a135a81f755d978cea9e198209182

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\containers.json

Filesize
939B

MD5
94a3843fad8c45c48b0e07342df3dfdc

SHA1
d55b650208bda884d573afebd90830a3f4d7c201

SHA256
854ff2076f71097b030c302a1ea71d8e851d2920b9ff5fc8dc8f16c91ba95b72

SHA512
4d2a6b2a223ad81bb97195abb27685cf88453caf5769de154b373486d5245f02e0c0f664281d8e3bb33bfcdf1d6f7b3d9602303864d4e56481382adcb0b932db

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\datareporting\glean\db\data.safe.bin

Filesize
2KB

MD5
552ac1b997932214c53b28fdda1b0b78

SHA1
20292c5ba7891a3b0c799c9ce81707f0ee3853a0

SHA256
d0ed8d5fa9e5f37b19c0d1f01e2afcbc9790029a267bc03989387fd8621456fb

SHA512
bbe2b85d7cf0449b6f60fbc7e106c839710f80067792e7e351d1b61acfbacdbd9811b1a5f7eee107e621fb9066e72ef35052849937bbd6f059968f3e37d631b2

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\datareporting\glean\pending_pings\75ca6de8-7179-428d-86c4-478aa57731fe

Filesize
587B

MD5
e31638fd5a2c25b112bf567c93a31055

SHA1
f392a200303c512d113ed47c89cb19c8a1dc911f

SHA256
80878eefc64b134b8f6d3f62c05ba541ecbbd0d6fac2d563f2d79b7f5d6b629e

SHA512
f42d031b31d79ebf10f8247845803d9ca133e528229f10029959cfa4ec5e99ee690a99ae340d3d2acd6b46bd65222c66f7f3c767514db7c34dc9cb3d0aea4638

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\extension-preferences.json

Filesize
1KB

MD5
0bcf208899396bcb6e659783268d3b67

SHA1
89b0cfdd4f7bfc36e9263cff6432080429a3eb49

SHA256
0013ff84e9c5a777f6f161b7cb6bafcc3fe1ec554300e97be2361196af214c21

SHA512
f45d7288b84b08c977d55ef0de766aabab0223f027b1ee6cbd2e29f179d4e6555a479c13abde15a73b1335b37721a17c32135ff3f8ea04323d6e9a68e1c4ab24

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\extensions.json.tmp

Filesize
42KB

MD5
86d8d9dc9fc22bf7ab7aa5d512ee3e1e

SHA1
f88c250907df7fbede92d2b86e15bea9640b0601

SHA256
762a972fc58a9eb23a883f9d3c76a0ad2d54ea6734c345d75b8215b112a1de0f

SHA512
24b32f126a4bd7d27843ee1fa0aad7ed2207f75fd1ab2753d8919a70955427ed504d874e6fcd7b10a5b0c0ba49a47d679b37b3f7bef7d6d5446460b784de5062

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\gmp-gmpopenh264\1.8.1.2\gmpopenh264.dll

Filesize
997KB

MD5
fe3355639648c417e8307c6d051e3e37

SHA1
f54602d4b4778da21bc97c7238fc66aa68c8ee34

SHA256
1ed7877024be63a049da98733fd282c16bd620530a4fb580dacec3a78ace914e

SHA512
8f4030bb2464b98eccbea6f06eb186d7216932702d94f6b84c56419e9cf65a18309711ab342d1513bf85aed402bc3535a70db4395874828f0d35c278dd2eac9c

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\gmp-gmpopenh264\1.8.1.2\gmpopenh264.info

Filesize
116B

MD5
3d33cdc0b3d281e67dd52e14435dd04f

SHA1
4db88689282fd4f9e9e6ab95fcbb23df6e6485db

SHA256
f526e9f98841d987606efeaff7f3e017ba9fd516c4be83890c7f9a093ea4c47b

SHA512
a4a96743332cc8ef0f86bc2e6122618bfc75ed46781dadbac9e580cd73df89e74738638a2cccb4caa4cbbf393d771d7f2c73f825737cdb247362450a0d4a4bc1

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\gmp-widevinecdm\4.10.2557.0\LICENSE.txt

Filesize
479B

MD5
49ddb419d96dceb9069018535fb2e2fc

SHA1
62aa6fea895a8b68d468a015f6e6ab400d7a7ca6

SHA256
2af127b4e00f7303de8271996c0c681063e4dc7abdc7b2a8c3fe5932b9352539

SHA512
48386217dabf7556e381ab3f5924b123a0a525969ff98f91efb03b65477c94e48a15d9abcec116b54616d36ad52b6f1d7b8b84c49c204e1b9b43f26f2af92da2

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\gmp-widevinecdm\4.10.2557.0\manifest.json

Filesize
372B

MD5
8be33af717bb1b67fbd61c3f4b807e9e

SHA1
7cf17656d174d951957ff36810e874a134dd49e0

SHA256
e92d3394635edfb987a7528e0ccd24360e07a299078df2a6967ca3aae22fa2dd

SHA512
6125f60418e25fee896bf59f5672945cd8f36f03665c721837bb50adf5b4dfef2dddbfcfc817555027dcfa90e1ef2a1e80af1219e8063629ea70263d2fc936a7

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\gmp-widevinecdm\4.10.2557.0\widevinecdm.dll

Filesize
11.8MB

MD5
33bf7b0439480effb9fb212efce87b13

SHA1
cee50f2745edc6dc291887b6075ca64d716f495a

SHA256
8ee42d9258e20bbc5bfdfae61605429beb5421ffeaaa0d02b86d4978f4b4ac4e

SHA512
d329a1a1d98e302142f2776de8cc2cd45a465d77cb21c461bdf5ee58c68073a715519f449cb673977288fe18401a0abcce636c85abaec61a4a7a08a16c924275

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\gmp-widevinecdm\4.10.2557.0\widevinecdm.dll.lib

Filesize
1KB

MD5
688bed3676d2104e7f17ae1cd2c59404

SHA1
952b2cdf783ac72fcb98338723e9afd38d47ad8e

SHA256
33899a3ebc22cb8ed8de7bd48c1c29486c0279b06d7ef98241c92aef4e3b9237

SHA512
7a0e3791f75c229af79dd302f7d0594279f664886fea228cfe78e24ef185ae63aba809aa1036feb3130066deadc8e78909c277f0a7ed1e3485df3cf2cd329776

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\gmp-widevinecdm\4.10.2557.0\widevinecdm.dll.sig

Filesize
1KB

MD5
937326fead5fd401f6cca9118bd9ade9

SHA1
4526a57d4ae14ed29b37632c72aef3c408189d91

SHA256
68a03f075db104f84afdd8fca45a7e4bff7b55dc1a2a24272b3abe16d8759c81

SHA512
b232f6cf3f88adb346281167ac714c4c4c7aac15175087c336911946d12d63d3a3a458e06b298b41a7ec582ef09fe238da3a3166ff89c450117228f7485c22d2

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\handlers.json

Filesize
410B

MD5
e7a65c5ead519a7b802f991353c26d3d

SHA1
34cc3c1cf9bd4912dba5fa422010934e46419fa3

SHA256
0e5ce92485da953757f615bad034a43032b220da18f8165dd85347851b56b2d2

SHA512
2a6034449ba6f5da8a77870ae665064047cea2460aeb4c8c0b62b308a403fdd30648150209aecc31ab1e50b6d9d94a1f51d3d7d50bbf35ec1b742bff2dbe788d

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\handlers.json.tmp

Filesize
476B

MD5
44eb7fd7f7d9732ff61748d39c82a0b8

SHA1
8a92352aa59e399b0d7e012a3dd1fa77d9d21ff6

SHA256
141b19659c217f33bbebe7a3af44bfcdefa28486430750df21e8f73ab0ff5f12

SHA512
15cf8b68d47775aef83bea33ff9c2abaf3bbdbd7bdf48838c8b55d369e2d2f1cb98e3598881eb60d7ae827080f980f81896d8e97d662f6a08a1e73c2e6f6fcb5

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\key4.db

Filesize
288KB

MD5
fcbc77944be2372e710710faf51cf778

SHA1
09c44179c030f12109b6f0d0da37e89213563b0a

SHA256
2c96352d2676fc8b142dde6d724bcc1530fa59aa232fe79e8e0012c10d2f611e

SHA512
eb0be50ab2585b9d54df6477e5adbebce65c2ce4e3636b16e348544ded974058ce045feb7ec5bc0934825c81441775c9ceafc66bd3950618f04984a6fa8a3018

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\places.sqlite

Filesize
5.0MB

MD5
4e8dc2cf2764ff1f85b6be9a90a5b4a8

SHA1
98148498e802d73c66e0f0dd56564a8be974a3ae

SHA256
76cfe24200f7b6b196ac5fc4cb0293a5a0357f0c97ea60d42d983886a74155d6

SHA512
6afe209f4bdfbb89f7c0e3d2fdebd6cd228bb4fb6f3e8954553e59b513be68fa5ac6928155820d843d8fd984954d37c630d5b08c8851a23d84ee147cdb6ce748

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\prefs-1.js

Filesize
7KB

MD5
cd7f8e46d669eeedfb478c02854a61de

SHA1
0b9365d87a92443939ea9ec6995f83ba3a0d14c3

SHA256
782591ad7db3ab63db3efbf56c9d553f50035f07e3da8fad8653d50b9a2a6f1f

SHA512
0332cc5ef5b096686e3aaa18db080988c4ced33607e2bc9db9d4d12fdada67911b7d656797edbd0d596c39d4329183142cde66bec704e46d856ff9ade90b8dd1

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\prefs-1.js

Filesize
8KB

MD5
5b185f34e6c7b144a94d498a7964bbb2

SHA1
4605f4252ae1e146ca621b946b2520df6ec17a75

SHA256
d900a3bab7fc6a9c1ed25e4ef477c40b50a199920ff2d4c88ec6cb26ca89028e

SHA512
1ae089e2bafea31bc5847fd5db6fc8a26a829f4efa0eaa9820d69b738219491a9850128c1bb92a610c5f291478a517cc1fdc15ba6a0ae0748101224e6197763c

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\prefs-1.js

Filesize
6KB

MD5
e299745710017fbcbc2f98a8230c9186

SHA1
98ca6f0440df6b720c55ab062a94398a5aa971f8

SHA256
3aa7ccb0abeab3bfec17456ea63593d78b30d9c06a82ee3426c5dbe51f2015e2

SHA512
49e07b084e805c599793f690389a9151fc9dcc3c1d6e7343fbfc2a55af8dbc4fdc2a289008415e5f764d3a468fe8f856784ecd4070346edbdc1c47c19fcdfa0b

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\prefs-1.js

Filesize
8KB

MD5
f8e96061ec7185fa4752ee4fe85cc270

SHA1
5ce80ab63cf407d40bffdac33953a1c312da221f

SHA256
4f533e8dbc0570aad4f7aa49173fb90b20aba6e6142a0b4f69f0ec240c132a59

SHA512
17dd9ed2acc61ce3ebb66dab826ef92a6bd72458f8979c4f904473ee8ea70b3ef4c47e5856b06eefb2da828a5aa94b2a3336266287508a81f3550d30e5c41205

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\prefs-1.js

Filesize
6KB

MD5
b4de71274c7b250dba7171c34e497b3e

SHA1
c840a3b2d41bc8d88e00c030abcc2087cf9e8884

SHA256
3be9c29565e9854872f84a13c4ef33380eb1b2771d0fad34b55f6f78a8cc8313

SHA512
ed64a4dbca6a75a87a6248bc240ae7b7cc7ef2dc9ac9ebbe338f1b09de555ea79859c8616534b7764b4421f9d3030191a320c6a4ed4dfaa0b6c8c9bbc86d07e5

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\prefs.js

Filesize
1KB

MD5
1e054abe2621972940919ca5c4fce1c3

SHA1
a2c9c21da31d8f962c77af04d502e50f0e356eb8

SHA256
ff378ca28ceb199f9a20b0b0b6ae9b3e6cb7f5ec460d0bf1548b9725e7d5c8ee

SHA512
7eea10dd84f46b1ef11b20d03e7561806523ae9ca18d0bc6f7ef1993b4da14bb479a09ca84d83d97f5fcbf099cc8ecff246ddc7bf5e9d9dc4b9b9950901842bf

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\prefs.js

Filesize
6KB

MD5
eecf3f8a22c944477b009bc027eed246

SHA1
d8eb4bbad2eb5149ae064620289ddb80ca02b987

SHA256
5c4c0f03f564b2e64ce1c94517df71346c778244a14492bdde77fde08a71bcbe

SHA512
c2d666b4daebe875d67a67d9d9958c3892cf6e224ed6f2df4a9a4020d73318602ba2aaa57ed564b0ce83735a5fe61a7174039495ee309e3d7fd2612ff51197b4

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\prefs.js

Filesize
579B

MD5
4975ad0a555ed22e5ad5aaaaf8100e86

SHA1
63ca75b845088fb227cc48f77ef940b3aafa479b

SHA256
191c36b735e89340fed0439669b8e6ddaaf1b531a08dd1d02245a5c648411c33

SHA512
4b529efb5a6f31b8830ee618e8858d94a1d5ed0e1452c49c578685ba7a3ff224752bb728196900a60cf10f0ed63a553a435fa597d22632af2136b1ba281c20a0

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\search.json.mozlz4

Filesize
299B

MD5
e4b66478ecde473b6d9c95d7a4350d37

SHA1
cf125f3ec9060bf59a3e4449b0fb151eaad01c5e

SHA256
4510c82fc9289533b0dbaf0a2a70a45589814c06be7e9adc395100ff18d5fc73

SHA512
0fef6926821a19f686d0291db9e7efb1a60cd6d13d94d4cc6fc3eeb06be3807d697debde0a5a264b430d449482bb26666b8273c7342e99d592e9b516027c086d

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\search.json.mozlz4

Filesize
280B

MD5
41d220d4783f67d2b57beec20c135229

SHA1
6e97765e77920b6010fac2cb4abf1e3cea106541

SHA256
5d1881e74d76b95bad59439bb5c7676258a4ae6b6d853074e93b5247cf1715dc

SHA512
dc30ddc4c8cfe598de5e24bc88cebbe4256fbb21a0b1db6c2ec15311053e7d8be6a93a0bcfcfd8a02543f8b9cf9b15a5840154b272a2df71d59d7dfd80984ac0

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionCheckpoints.json

Filesize
288B

MD5
948a7403e323297c6bb8a5c791b42866

SHA1
88a555717e8a4a33eccfb7d47a2a4aa31038f9c0

SHA256
2fca1f29b73dd5b4159fa1eb16e69276482f5224ba7d2219a547039129a51f0e

SHA512
17e2f65c33f47c8bb4beca31db2aff3d4bbb6c2d36924057f9f847e207bdcb85ffcbb32c80dd06862ffc9b7f0bd3f5e2e65b48bb1bc3363732751101d5596b1a

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionCheckpoints.json.tmp

Filesize
53B

MD5
ea8b62857dfdbd3d0be7d7e4a954ec9a

SHA1
b43bc4b3ea206a02ef8f63d5bfad0c96bf2a3b2a

SHA256
792955295ae9c382986222c6731c5870bd0e921e7f7e34cc4615f5cd67f225da

SHA512
076ee83534f42563046d25086166f82e1a3ec61840c113aec67abe2d8195daa247d827d0c54e7e8f8a1bbf2d082a3763577587e84342ec160ff97905243e6d19

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionCheckpoints.json.tmp

Filesize
90B

MD5
c4ab2ee59ca41b6d6a6ea911f35bdc00

SHA1
5942cd6505fc8a9daba403b082067e1cdefdfbc4

SHA256
00ad9799527c3fd21f3a85012565eae817490f3e0d417413bf9567bb5909f6a2

SHA512
71ea16900479e6af161e0aad08c8d1e9ded5868a8d848e7647272f3002e2f2013e16382b677abe3c6f17792a26293b9e27ec78e16f00bd24ba3d21072bd1cae2

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionstore-backups\recovery.jsonlz4

Filesize
3KB

MD5
63465ebac7e6f1369ea953dbb24de03e

SHA1
b137f05638ae1b4dd5e4847cdba5e98773edc961

SHA256
9812dda73b14736b726fad17ed468e7303e365edd31ddb691e883b5e9198dbc5

SHA512
eb96af531603c4a8e7679d806482457aa4c7037fabbc56e8d49c430e84e5e3718bba140d7069dfedd92004431bf25e326aa13a8ffe5b6df965e8963097b48645

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionstore-backups\recovery.jsonlz4

Filesize
7KB

MD5
325e4ba0330d9f29b66ef030531546c7

SHA1
69c32a6e76f1ab588f314359f81d6d629168a827

SHA256
e09a929bcbf39853ed2744916845f2882f1a186828d6738195cc600a3bd88e99

SHA512
2c371fc90ce9a60efabce11a8bf374f3d74e1a4117523fd5679052447344c143b06938e687d60354ee481c38d956b021c43d49780b045cc86bffa686440ece7b

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionstore-backups\recovery.jsonlz4

Filesize
3KB

MD5
7661d7f084d53c0a51d01d7040639f11

SHA1
b54cf3b3a81c58fdd0bbde724f73719565dcfdd3

SHA256
82eda55feec6019788c2dc9c32a186b836a666fa8751a7a81b6a3e40c57572d3

SHA512
db707f07d8b417202d31c9a3ead4dc3872b8eb9904863d8bde038608985725df48ddaed7e46c87ce113149a87a525b54968f717b5d86f1489422d6e6223d19df

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionstore-backups\recovery.jsonlz4

Filesize
13KB

MD5
d739cc3ba1d57172a95b4a21ed6f8027

SHA1
954e572e3bf3c98fc77f6fe0989d308d3096ff6f

SHA256
8e193ea97353c164de8926b90328e8b6e1f7cb4e1f4769c5b8ca2b939779619b

SHA512
1f2528ced6931babfcaef401b13ee46eb17d5907f62180d3f29ffb93c4ae563eea227e473dab2d777fbee821edd6d18706ba815afcfdadc2da476452ad372e74

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionstore-backups\recovery.jsonlz4

Filesize
3KB

MD5
1ab5afaeb0fd21c54bd05ae8fbac7c47

SHA1
a28a154ce3e53d8c648e69e9df26044887e2df8f

SHA256
ce7ddfd76a74571d5108263f21d163fda02676d4e2e417d92578f6251cb06ac5

SHA512
d90a27d68bdc5735bb2fb8996305eb7ec91efb3b26fca90ab201d10a9d9de20355fee2f64a9d961ab6bfe1f52f7ba93ff13fdad01aa655a87709f8b50f70ba74

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionstore-backups\recovery.jsonlz4

Filesize
13KB

MD5
be276eb61048adb5df4eecec4365fbc0

SHA1
2233a462662ae296b8e654325da7a700b1905bb4

SHA256
be8511258011a329c2bdaa53761fd66b04e591ee2f2b484a972778e641c2faf4

SHA512
3feb0b97c19ed8aec5ffcc6a2870fdcde8bc422920e6fe194e15eacccbbad76508ef9da3b02df641d8c39cc0325618b5072bff46a38350ed63e3f78d98d02a4d

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionstore-backups\recovery.jsonlz4

Filesize
13KB

MD5
16d06e073da93e4003fdab6cb2654569

SHA1
7ba379ba826f44ebcf892512a2bf07442ac0139a

SHA256
410ccef1631de859c3f81f966e499a1a281e0022970a283880d4e15e20035ae6

SHA512
fece7755fd3beca79062e82295ec05f5c6e424739804f70a7cafef1220a51b74bd839d16eb8560cdad0033c70e01db9c0a2bd87dfe81437999d08151c8792d9f

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionstore-backups\recovery.jsonlz4

Filesize
24KB

MD5
5a7038434a58bb1284703301073605fc

SHA1
187843377330aa82dcdd9f9b1fada70ac44c3d50

SHA256
859bcd1aa77ee5e3a3a5eedf3df307a624f95e02dee7f1059ee682678a5fcaaf

SHA512
1b7a46ee172763394a7e93e93b99b1a4c09b7ae6e691a334d6c1c5bdeb9b84e0ddafc472d3dc81385cba56ef86bde5838b1045ffa77a62a30a46503850b31fe3

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionstore-backups\recovery.jsonlz4

Filesize
13KB

MD5
10416bc0bd61633b5d413be12ab6bedb

SHA1
1d384cde6f5f8661420335c7ebbd623146f1ad95

SHA256
2e608b69595ffa964b4d4fb96717f12e4eac1259bf571e755e69508e9305f90a

SHA512
1616d94632d5e8e6f19ac03ff381c9150a65eab32d8b9e1f0174b664e9a415e71781cf3a536e0582de94c10a913b48f179137264e44e2414db5520a98c032b23

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionstore-backups\recovery.jsonlz4

Filesize
14KB

MD5
307266608c2074053e12fe8f661eb8aa

SHA1
4493ea9bc3c027e71d29a6140899d5aec5aad375

SHA256
29428b9304da9e1924fdb0f9381437cbc86c2c4ca96d8cb5b8bdb8d0264b861e

SHA512
3c0857834d080d54e2d9518a4735eaa33834dbe521c198df3387c97ccbe018f48c1d45b3de7903c451a373f1ec37b41071f4667a8d927b323d72e72cfe2f6922

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionstore-backups\recovery.jsonlz4

Filesize
24KB

MD5
6587b096ea991fd5f20791ef71b4e133

SHA1
c13d45d3c7259dedf17400d9e5d923eb6391c261

SHA256
9860a57a99fb34b654dda5cd93399ee9335a32c1419a4e2df8bbeb33b3cd391d

SHA512
60caaf76635accc5031aa0c26d3751d829970d95d8101fbbeb6479266a7572ec9538f5fb1aabbabb94fa6a1281266072190a6e06a551d84a98fcc3709bfeb8c7

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\sessionstore.jsonlz4

Filesize
471B

MD5
1a54a0dd0d36e9b8e4c0793f2d4693fd

SHA1
884e9916ab9b5368c9213f2afb8792e4b181ae69

SHA256
6430fe33931ce0247b60ad8d5bcd2c88c121731f4c9495538f8eef129b0844aa

SHA512
82af981683486ab9de030c85d4b7969acfc384305da30725a740c1d952095b19765e8c8d43136482f1a05d93a4104d01955219bcc3ed511a3e01056c16fa9813

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\shield-preference-experiments.json

Filesize
18B

MD5
285cdefb3f582c224291f7a2530f3c4e

SHA1
f816c3e87aa007b6e6d31eb6a4618695a7d83439

SHA256
704d28223a4320a853df4a19d48c7015cf79d56a5317cc3475b6305fa43dcc05

SHA512
8f1decf1e4b5755fce8f165daae115f45d6890985c9c4bbb33a6f724cbfd26db75f6da06f9ef675de20fe755da9b7f55e5ee37124296a12a520a393da159bd58

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\targeting.snapshot.json

Filesize
4KB

MD5
cad6cb4fa483ecfed6a86b91d5da542a

SHA1
515142ddb34e1cd402db215b5dbecb0f29dea5b7

SHA256
3188e6b6511f497f14a82d2cb28e576965e4ff4abf768cb1e0a749d8b93afa32

SHA512
7cbae7a3aa6584408f78ac1203c1537fb2e42028315f97c65679258006dc6c421b919c8efbb871b590638677fb15cbf08b2565d48423097b1ca1e029132f5697

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\g2g09tst.default-release-1721011682183\xulstore.json.tmp

Filesize
141B

MD5
1995825c748914809df775643764920f

SHA1
55c55d77bb712d2d831996344f0a1b3e0b7ff98a

SHA256
87835b1bd7d0934f997ef51c977349809551d47e32c3c9224899359ae0fce776

SHA512
c311970610d836550a07feb47bd0774fd728130d0660cbada2d2d68f2fcfbe84e85404d7f5b8ab0f71a6c947561dcffa95df2782a712f4dcb7230ea8ba01c34c

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\cookies.sqlite

Filesize
512KB

MD5
7f22843b4098b673110d871cc175125a

SHA1
0bd69ecc0b54603e5d780bf268602c0abfe5c904

SHA256
9f367336127497a65f5a78b36bf3b98039391b1e974a6dcc0d00f1af808870e2

SHA512
68b0a68cbd03c595d94db7f366c37abbd4f19c6251ba940e946c6f7d6ac97b70db4893690194f234012c347a930d2756971ab3c4d7abb3d1fe31a16156ef030c

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\datareporting\glean\db\data.safe.bin

Filesize
8KB

MD5
86f7e6eddd5e50a25742c482e2d5fe7b

SHA1
19b605451ebdc7ba5306f0d7b45ba3dd065b03ce

SHA256
ae669174dc3a4764d1aa99f51ce16eee5da8de89fcab5b3e675232bc0ad6a6fc

SHA512
333ad50edeff388840dde51ee4676e510578277a6e23af683d606a8de3cda05a9bde828e91e3ffb11217e295891ed59fa219d66c384b59bfa2133e01cc6422cd

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\datareporting\glean\pending_pings\0b770084-80e7-440c-b4e5-d67ea9f32069

Filesize
734B

MD5
5b68bcf930fb67df779fa64ccb3a6bff

SHA1
865c0065cb1763e6aca8135c487fe656f9d89488

SHA256
dba7dfa99b5452a5cb2aa59f140f30462514ae8e92e025b80147f30b3e4c8043

SHA512
fd3527c251642dd3437bfef46702d917f3489e1e5582b3b90b6de5b71634bff6ccc3c2364f34074a600ce0584f1edb258aa02e8e3f0b3c96b3a0eb08cf03cd25

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\favicons.sqlite

Filesize
5.0MB

MD5
631a19bc4a087618e20fe33814db5d9e

SHA1
5c1e4f9f4d5e3da9c9805bae434f63b1d9afb2e8

SHA256
ed2432d2be2e657af5e2e081b2ef29c09101a1c80266f110a7a88ddf5511fabe

SHA512
b87296a37543730ef4ff853bd52d8460d5b02e271a6e7965daec2c99849a2b58ad671f98b39bd174a46d1dd59b3e1359b7fe4f1c118e2758a62f5e70459c5223

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\prefs-1.js

Filesize
6KB

MD5
6fdec8726e85cfb626bedfe0589a521f

SHA1
df207dfc93965387fb7d8a4660c2ccd3c9d1142b

SHA256
1917a0d65afc41d7c0e845f9d3606d5dcd4c2b4107c278d5f7b89979f09cc136

SHA512
13a260a89e67d4a9480cdb5abd8832fef0f608064b3ec7215b68e164dae059371fecec4cc989889a96dbd670a31cc383539dc783aeb8cfd3a8a0e5db4982db83

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\prefs-1.js

Filesize
6KB

MD5
4a0ccc854d742d117ed120d76c881d58

SHA1
9cbe4a2d8a044d2cae3f723a1a6474b380827cdb

SHA256
7001045efc1a35b97656f24b9b44702018459e25fd66f177350ed4938a0b1dff

SHA512
df40cef6b47a040b93e144089e2c74ac993723403b227bfd7836ae15a5cf5576c3426953d924bc562f27af1d72a168c315eb674145b2182ae351ff424c5ca6bd

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\prefs-1.js

Filesize
6KB

MD5
e28f727f1c12c809877fb45af10dfac3

SHA1
bffba3eb604e230ffb0a1dec34be9f9e95268d23

SHA256
c81bd334fff934d42362e26461a7937565dcc5936ebc359221644a07aae62443

SHA512
9f0f11776fa4c41e381a0d25aecbe649ec43929d30b0cae4f55fb85d7c40d606101307b371fc3ad20d75cde19839ca1e3b5de221bbb7b3d635810e9889df300f

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\prefs.js

Filesize
6KB

MD5
01747ae2eea4db5d8a0ff970e2201d13

SHA1
4bc37eea22c1e9d48084e7df91c0c910cac39c5d

SHA256
ebbed5785c0a7a664a10ccfa407b1060a3b0ef0ae4881e6b8974099ce15024a0

SHA512
005e5865a4a1c7822262b9bd385e95623022c8d37607fbfa2e5966c516128e7972a1efaaccb82839624156e5bfb9ff5afef37858c3aec9f4a357ab4946a772b5

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\sessionstore-backups\recovery.jsonlz4

Filesize
4KB

MD5
a30b14d7f237b969fe345ec8120a1fe9

SHA1
b6d323707515fe8d7d327d4b50a75b099efd9e52

SHA256
7db675eb8baca75da1a0936075e5aa9786a6bb30b01b6c01d55d02f36a76601a

SHA512
4be253c14ae3abdb28cc886b88a238b2981d8a55f65458f3e672a50bf658fef8e253f5fc402c1bdde1c7a85c8202ae1c67be26e8b2a26a9c20b47920cb324f48

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\sessionstore-backups\recovery.jsonlz4

Filesize
5KB

MD5
4f48927da91edf714200bf782535f867

SHA1
391822cc452c8e354f4505f7fbb76140c595ceb5

SHA256
373c1f5cfe851639bd633a14523241c420d01590fbd419d10bf7ad5688ec9eaf

SHA512
e49a52289e2a96d915334115cb1dd254898b4bca7f835465b5289f3e3c707219c8cd50fddc8fc0239dedac5b111d156cc30b575b801c6e475da8fa789cb74f35

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\sessionstore-backups\recovery.jsonlz4

Filesize
1KB

MD5
bd829f05339392ee684932cd2856b970

SHA1
9d82498290485d887c6c859a6053e01733b1805d

SHA256
97566c7824caced2f20468569cbe61a7a165b4157d284260ad36138091ae7e8c

SHA512
d29c484548eecaf3a5d78b9aff958a1180e6805cec664c52bbdded743b0e3011959db439a72ddff5a1b9adaf339004ceb9498bd09bc611a0a1289c113aaecd44

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\sessionstore-backups\recovery.jsonlz4

Filesize
2KB

MD5
b80773a96e77d83c651a7268875171a5

SHA1
90fe3c90b8737a5e349fc9c64f1421c5dfd248cb

SHA256
a3b7c58eb2269f85e0b488dda22ccf4aefce96a9d2db78eb8d74a6bd2f034278

SHA512
a08035ee490a26168458e4189a561ff72d2b566d549ab265759cdb6b7e45b0d61ea25b0cfe1b15907de7427cf59ad15f21de0a259748043cdcc28a8bba2622a3

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\sessionstore.jsonlz4

Filesize
5KB

MD5
c5271bef16e14de7cbabe80e08292bc5

SHA1
d6ffceb797968a54f4524e041cb1fef03a8a1145

SHA256
ccf02cdb74788921dd19c2736cbfb30d7212a8c1e1b8a3c4ee88fb24595517df

SHA512
32efebcd5688748b3e69d1249d9ca42488e8acccff0cf74b4e22f11b8a71f4891f8516218eb1736d9727d150bbb3e76389167a8b9cd76b39c4d52ddfbfce4bf6

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wjyk7j4u.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite

Filesize
184KB

MD5
e7d901ad03d22078f4c42ecc83c3bd45

SHA1
13ffe2ced2026e6b99c39a96d006c7832a72ba17

SHA256
fddee54013f830a84e74dce5679f6e4c3c71b4c5c51ecdf58bcef7e27eba4f17

SHA512
8e7373116183db845f03c74e28effbe85b53c6c109f0a1a867fc4daa2944c099846644c5b6ecfa6408091d097a08b3f1b8cedcbeffbdcfaa14147f6b76663ec9

Download Submit
C:\Users\Admin\Desktop\Old Firefox Data\wjyk7j4u.default-release\crashes\store.json.mozlz4

Filesize
66B

MD5
a6338865eb252d0ef8fcf11fa9af3f0d

SHA1
cecdd4c4dcae10c2ffc8eb938121b6231de48cd3

SHA256
078648c042b9b08483ce246b7f01371072541a2e90d1beb0c8009a6118cbd965

SHA512
d950227ac83f4e8246d73f9f35c19e88ce65d0ca5f1ef8ccbb02ed6efc66b1b7e683e2ba0200279d7ca4b49831fd8c3ceb0584265b10accff2611ec1ca8c0c6c

Download Submit
C:\Users\Admin\Desktop\Old Firefox Data\wjyk7j4u.default-release\storage\permanent\chrome\idb\2918063365piupsah.sqlite

Filesize
48KB

MD5
1d16412c89d4077054c2b933c6e9d5bd

SHA1
367dac58bc7007c4170b03781c2e382dde0ffff6

SHA256
0f9d4b2bf4fb68e8eaa1b7ac3fab9e8bc0e20c8677b79315fb97222dac901e13

SHA512
c87f5673d4287cc5cf9c5f2c8ad673c889d78de7950504c1587beae26f3fe90b72b469556dd8f9017dadca9292e583e297df70d96f9425aa25a8c0e0688a4b75

Download Submit
C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-web-extension-firefox-unsigned.xpi.crdownload

Filesize
10.6MB

MD5
7feb8b38683fc233ff51dbfc619d3578

SHA1
3e133c1945dbc0b2cd5426de394ffa37018d866c

SHA256
59b5e86aa416d12d7b4a1da51fc0609293e1424c4ce26a286116db9e652b727e

SHA512
0c5a65b1141615ebc2a219d35e124113e7cee5da54d3d43f215b8e4a555f3208d7a1f4fab323ef974ac3474b139b46b3ca9de112a5da23c392fbf0e95bbe1eec

Download Submit
C:\Users\Admin\Downloads\ruffle-nightly-2024_07_15-windows-x86_64.zip.crdownload

Filesize
10.0MB

MD5
3893270406ef3a4e01d12f3e9f278fb3

SHA1
ad0d062607916a4212e275a8736965fedb76cf99

SHA256
0ee2cce2c3f49b323b5250be0db0d2c03f8c2a33310c5de9e7b88c027c68e6b7

SHA512
06206d7f70fd7b7c0f2d25cf258f18c0065ba38de849376d678ca6051a76dc15591581400e936f1f2cc861a5c6e0ecc325d4d2d9bcc583d6997b4269c2aabca7

Download Submit