bbd05de19aa2af1455c0494639215898a15286d9b05073b6c4817fe24b2c36fa

Analysis

max time kernel
1043s
max time network
1695s
platform
windows7_x64
resource
win7-20240729-en
resource tags

arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
submitted
01-08-2024 19:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

zipbomb.zip
Size

41KB
MD5

1df9a18b18332f153918030b7b516615
SHA1

6c42c62696616b72bbfc88a4be4ead57aa7bc503
SHA256

bbd05de19aa2af1455c0494639215898a15286d9b05073b6c4817fe24b2c36fa
SHA512

6382ca9c307d66ab7566acf78b1afd44b18b24d766253e1dc1cb3a3c0be96ecf1f2042d6bd3332d49078ffee571cf98869c1284c1d3e5c1c7dc3e4c64f71af80
SSDEEP

768:hzyVr8GSKL6O3QOXk/0u3wqOghrFCezL1VFJdbq2QTJTw02Q:hGx8DKXE//ZhhCirFi2cwK

Score

3^/10

discovery

Malware Config

Signatures

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe

Suspicious behavior: EnumeratesProcesses 5 IoCs

pid	Process
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe
Token: SeShutdownPrivilege	2216	chrome.exe

Suspicious use of FindShellTrayWindow 34 IoCs

pid	Process
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe

Suspicious use of SendNotifyMessage 32 IoCs

pid	Process
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe
2216	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2216 wrote to memory of 2672	2216	chrome.exe	31
PID 2216 wrote to memory of 2672	2216	chrome.exe	31
PID 2216 wrote to memory of 2672	2216	chrome.exe	31
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 1880	2216	chrome.exe	33
PID 2216 wrote to memory of 2668	2216	chrome.exe	34
PID 2216 wrote to memory of 2668	2216	chrome.exe	34
PID 2216 wrote to memory of 2668	2216	chrome.exe	34
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35
PID 2216 wrote to memory of 2620	2216	chrome.exe	35

C:\Windows\Explorer.exe
C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\zipbomb.zip
1⤵
PID:2716

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2216
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xc0,0xc4,0xc8,0x94,0xcc,0x7fef7db9758,0x7fef7db9768,0x7fef7db9778
  2⤵
  PID:2672
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1168 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:2
  2⤵
  PID:1880
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1540 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:8
  2⤵
  PID:2668
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1600 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:8
  2⤵
  PID:2620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2092 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:1
  2⤵
  PID:2596
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2124 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:1
  2⤵
  PID:3040
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=1164 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:2
  2⤵
  PID:1312
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=1420 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:1
  2⤵
  PID:3028
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3684 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:8
  2⤵
  PID:928
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3688 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:8
  2⤵
  PID:1788
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3724 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:8
  2⤵
  PID:1396
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=1940 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:1
  2⤵
  PID:2016
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=3928 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:1
  2⤵
  PID:1776
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=3028 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:1
  2⤵
  PID:2112
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=2308 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:1
  2⤵
  PID:264
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4036 --field-trial-handle=1320,i,4795596867344310160,5966427598528363347,131072 /prefetch:1
  2⤵
  PID:1956

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:1700

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001

Filesize
209KB

MD5
3e552d017d45f8fd93b94cfc86f842f2

SHA1
dbeebe83854328e2575ff67259e3fb6704b17a47

SHA256
27d9c4613df7a3c04da0b79c13217aa69992b441acb7e44bf2a7578ca87d97d6

SHA512
e616436f2f15615429c7c5c37de3990c3e86c5e1da7d75a0f524fc458b75d44a5be1a3648a628d63e1cf8aa062e08b538f2f2bc9c6a0b42157beb24f82c571d9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000002

Filesize
24KB

MD5
c594a826934b9505d591d0f7a7df80b7

SHA1
c04b8637e686f71f3fc46a29a86346ba9b04ae18

SHA256
e664eef3d68ac6336a28be033165d4780e8a5ab28f0d90df1b148ef86babb610

SHA512
04a1dfdb8ee2f5fefa101d5e3ff36e87659fd774e96aa8c5941d3353ccc268a125822cf01533c74839e5f1c54725da9cc437d3d69b88e5bf3f99caccd4d75961

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
168B

MD5
301b74d809ceb0d322ee3106f32eb710

SHA1
4798a1fc8ad5674048d060210367fad77ceb3419

SHA256
768060439a6922e4a0123d30e5ef03cba3540cb8654d460d8004da485a5fb7be

SHA512
fb06fada543a3440af01382f6afad0ac2e9364d7329d5cfc8ce10b6ded19204df8e65b3e5297c84a8df3dc550072fc47ed57c12caa7580d7a55d3f6abe9c33bf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
0d44367f0c8e79467aa93508cce087b6

SHA1
7affb1f8ed538509c825d8ac8134b0f3c5f194cb

SHA256
22a84135f09b2dd109c0c7a9fe78ea6d9ae4c1a511535366a7623328b391e2dd

SHA512
20ade1ecf206bfe00f751b35d26a5fd7bd32c29eca9376314de96a0c92b624a07ad28b61c5047776bb07ece49e76e3f3ffd0cbf30435efa3dd04e46bd6b11acb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
3b999fa129d6e2e67c399836c48323dc

SHA1
5ca6b190d9b5c49a7195a84c7d5da75803503dea

SHA256
2b0a8323ddf2e4024e0ba5d5081b128194a0fb3e2575ef40d7b3f486341a96be

SHA512
4a9225c6d5c841217dc5abacf51351c567dc31dc21833e1e0c1f9e412de378ddf6caa29ff1faf5f6b07da190d8f8841c0d90e0bd89a2acd4e650d6ad408d9a08

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
2fd08a1759acbcd509f9b450b7b5b354

SHA1
c026c14df23ef406cbe82cf8408ba312d41acd64

SHA256
53972bb91730e348dda00ff2ddaea16a716c6dfc11964c683da8c7b8d804dd50

SHA512
347c2bba76c6244557619dfaf6ed722361a60a396ffefb7563376a98c3e24e57b3657318a199fe1388a8a8d23e0846ba990040c1f5dc171b29a829d339cc4344

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
68863842bb879ac7cee48262dcc9e04e

SHA1
225885f0f2aa85990ea933dbc2d23d1b5cf58ed9

SHA256
858b89510936ad412cba2b757f7784840dc74099e6c35c994d1f115533b8cfa0

SHA512
7260fcbd3276fe69da96426fa4e277fca85f7591463e820c260dd55e291cf8d5a205b067c758c4018d830115186932b518788aed67ac3ce0bdd92eb2fc58a6a3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
363B

MD5
69987e3470fa1ea53ea5d4752af039b2

SHA1
d876e6fccbb43e0e7ed899a956717cebf4301c9c

SHA256
bc62e4fe9fc56ca0258a52f3996d4badb8e89f5c5f57d86a4099fbb6721eadfb

SHA512
cab7db4a095adcc3420f01a4003d04d70874fdb0de3daa7bd3c34a448c648510755aed8ef225a77d085c2264feaa82615546f8768e571b808b37e542a914f219

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
363B

MD5
768a83558a36445c1c13366ae35fa467

SHA1
7057f7535c00cf5597f52913f770e74c4e2dfad5

SHA256
d71cb0c86a8e33954e899bc33d912f01f758b316ebd8a08570e6f1c8b66207fb

SHA512
a463864842f61e9285d6fd04165c271e11d2a2566e57f578b4bc8ede3c31b3d609af78891d80cd61797855ad842dc10a2ec8fa2d5b2f56484fa1e7af134a31f5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
cf7b238cd28f064ba77154abb768c0db

SHA1
fa3efa1669e4f58ba32a2a33dfb611476577cb73

SHA256
b9fa2aa05d7d3f5426c4b2d9695a14a10be05371adcdca8698403e655220b0e5

SHA512
3e7f06bb9351d47e65dfbb4c7156e69c118c6aef093e169fad9a90b64718d68376b25d193fbc60fb70ed82f34c2560cf5a955faf173ca3fa0a68796334c3699e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
ac95831779944dc9e0ca700ada2b674a

SHA1
65b1b8be325bf8ef5386b3a82d0167b288a6b2ea

SHA256
a3fdf55962f0a7e4e0f227fe50ee872a16fae573514efd721dafe9140cc0541a

SHA512
cd8faaa4cac9f73a330f7672cc77ee1f4ddd54ca1a427c8c268675ca3767d9414e1c0f7a6f36d5f7823bf28b2aa9b27dbd66046832c163296e8276388b7d1e0c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
2f7b192f4a575178329847f162dd40a9

SHA1
4c6d6f51f28cb14f5750598b270fae169f1d571a

SHA256
6ded85379e1c181618a660c3b09c51b8ef4d4caf46827a2f5bb4c2700313f3ef

SHA512
c3a974d5afd8c4a0300006e76f70eb38841fbd1b4371812a0ce8607ee3f90358a20337b9157bc72860aa15a6eb3568403659b1036d039745a2cca8090fd03fd7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\CURRENT

Filesize
16B

MD5
18e723571b00fb1694a3bad6c78e4054

SHA1
afcc0ef32d46fe59e0483f9a3c891d3034d12f32

SHA256
8af72f43857550b01eab1019335772b367a17a9884a7a759fdf4fe6f272b90aa

SHA512
43bb0af7d3984012d2d67ca6b71f0201e5b948e6fe26a899641c4c6f066c59906d468ddf7f1df5ea5fa33c2bc5ea8219c0f2c82e0a5c365ad7581b898a8859e2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\d4a895cd-0080-4e35-a4a0-e6f30315fff7.tmp

Filesize
6KB

MD5
660e25c3338a32c2e7c029e824a299ca

SHA1
f203c4b40878f241c58ce65d215edba97bf297c1

SHA256
cf4846716e804d6927c8dc7003005dcd28aca6e78d393af3e90fa8f1891dd930

SHA512
8378aadc86ed827b5f0a844a89703da254743b294e537334a0a8193a186ada80f9112e6eed3b752451f06e9ebb796e6171424a5f4918edb978073c16337ecfb0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
319KB

MD5
a0e4e86c4be1ed1ecd726761c5f7c7aa

SHA1
6b4e094905079473c95130d6cd8fda3e8ca6923e

SHA256
c4b7df70fea6dafc0b1e1a594e6a5f31c7f214b1a201522ba7025c8b8bacf031

SHA512
c8a9ef1627d4852f6e63a69a83fc2bf891bbaa3fe3a1c347ee3c060353d40d4b094db3c9abdd342620528b7e6384cc14ef35d7e2fc90aefbc90107d75b1699f1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
162KB

MD5
a14ba00c3dd49357e81b1075876c1e35

SHA1
a9a44f796f59f9dc2be6172264fd234636f1d2b9

SHA256
bcf679ae09c33e1d9a74a7ceea7b6114893f8bae199831dbfaeedb63c09267e0

SHA512
290cb96d6eb8eddd27714bfa5d95a6793bc44b12bdd1514a9dd115d799934450500c4f32cd336a7ef938217b2c2af903a3aef8bfc5b55a095ef08e920dc46cd7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
350KB

MD5
1a8ee00c81517d0e1813ffb7d0e0e6cf

SHA1
01a173ae9624f22cada4a9be8ded42cfc941c55e

SHA256
1d0251cc0c2e19db902ed71f2f884c635a69b329f962cdccdf73bb8250ddfeca

SHA512
cb5aef00c7474c3f1a8de10046a6832b13e517fcaf453c949fa1d785504838224b5e0de634c1199514eac96ec040a679eaddf1178c4114b04d6e138c9ea5853f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
319KB

MD5
b39d663bc35f78a93401a3b1d1e8f462

SHA1
4099dd5ccbb0f84b8cfa8817db12dec9350fd37a

SHA256
11e07db4bf6b8503ef255a7b8f7106625d757a44f73046ee16f195d0b743b003

SHA512
875012b9787da36deb97316206d0b9acea9f9bf424e9ba8ab6103e86ebbe62447800062a8982d6f41abc124249d2366af4e1c52d45c1f5d56d692ee4fb7a64f2

Download Submit