Malware Analysis Report

2024-11-30 13:55

Sample ID 240806-cgs23szeqb
Target http://google.com
Tags
discovery
score
6/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
6/10

Threat Level: Shows suspicious behavior

The file http://google.com was found to be: Shows suspicious behavior.

Malicious Activity Summary

discovery

Legitimate hosting services abused for malware hosting/C2

Drops file in System32 directory

Browser Information Discovery

Suspicious use of AdjustPrivilegeToken

Suspicious use of FindShellTrayWindow

Enumerates system info in registry

Opens file in notepad (likely ransom note)

Modifies data under HKEY_USERS

Suspicious behavior: EnumeratesProcesses

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of SendNotifyMessage

Suspicious use of WriteProcessMemory

Modifies registry class

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-08-06 02:03

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-08-06 02:03

Reported

2024-08-06 02:10

Platform

win10v2004-20240802-en

Max time kernel

429s

Max time network

446s

Command Line

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://google.com

Signatures

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A

Drops file in System32 directory

Description Indicator Process Target
File created C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File created \??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Browser Information Discovery

discovery

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133673834155452045" C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-21-786284298-625481688-3210388970-1000_Classes\Local Settings C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Opens file in notepad (likely ransom note)

ransomware
Description Indicator Process Target
N/A N/A C:\Windows\system32\NOTEPAD.EXE N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\7-Zip\7zG.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 3160 wrote to memory of 3976 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 3976 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 2580 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1272 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1272 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3160 wrote to memory of 1244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://google.com

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ffbf52dcc40,0x7ffbf52dcc4c,0x7ffbf52dcc58

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1968,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1964 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2132,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2164 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2228,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2404 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3036,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3056 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3040,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3252 /prefetch:1

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=3752,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3660 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4504,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4792 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=4784,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4804 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4824,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3756 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4992,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5112 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5108,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5272 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5420,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5300 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5440,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5572 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=3520,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4448 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5304,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4776 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5600,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5404 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5552,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5344 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4880,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4416 /prefetch:8

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Windows\system32\NOTEPAD.EXE

"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Downloads\DoXXeR.txt

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=5216,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5548 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5252,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5156 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=5864,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5876 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5208,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6024 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6196,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6036 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6040,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5904 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=6064,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4440 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=1128,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6136 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=5404,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6032 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=3000,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5748 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=5508,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5468 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6104,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6168 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6524,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5744 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5832,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5328 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=6260,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6280 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=5316,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5280 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2728,i,10231478129038018093,150713964226477864,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5344 /prefetch:8

C:\Program Files\7-Zip\7zG.exe

"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\Ransomware.WannaCry\" -spe -an -ai#7zMap26574:100:7zEvent28090

Network

Country Destination Domain Proto
US 8.8.8.8:53 google.com udp
NL 172.217.23.206:80 google.com tcp
NL 172.217.23.206:80 google.com tcp
NL 172.217.23.206:443 google.com tcp
US 8.8.8.8:53 8.8.8.8.in-addr.arpa udp
US 8.8.8.8:53 106.39.251.142.in-addr.arpa udp
US 8.8.8.8:53 206.23.217.172.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
NL 142.250.179.196:443 www.google.com udp
NL 142.250.179.196:443 www.google.com tcp
US 8.8.8.8:53 g.bing.com udp
US 13.107.21.237:443 g.bing.com tcp
US 8.8.8.8:53 196.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 71.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 237.21.107.13.in-addr.arpa udp
US 8.8.8.8:53 3.36.251.142.in-addr.arpa udp
US 8.8.8.8:53 131.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
NL 216.58.214.10:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 ogads-pa.googleapis.com udp
US 8.8.8.8:53 apis.google.com udp
NL 142.250.179.138:443 ogads-pa.googleapis.com tcp
NL 142.251.36.14:443 apis.google.com tcp
NL 142.250.179.138:443 ogads-pa.googleapis.com udp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
US 8.8.8.8:53 138.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 10.214.58.216.in-addr.arpa udp
US 8.8.8.8:53 14.36.251.142.in-addr.arpa udp
US 8.8.8.8:53 play.google.com udp
NL 216.58.214.14:443 play.google.com tcp
US 8.8.8.8:53 14.214.58.216.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 consent.google.com udp
NL 172.217.168.206:443 consent.google.com tcp
US 8.8.8.8:53 206.168.217.172.in-addr.arpa udp
NL 142.251.36.14:443 apis.google.com tcp
NL 216.58.214.14:443 play.google.com tcp
NL 216.58.214.10:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 103.169.127.40.in-addr.arpa udp
US 8.8.8.8:53 171.39.242.20.in-addr.arpa udp
US 8.8.8.8:53 192.142.123.92.in-addr.arpa udp
US 8.8.8.8:53 73.144.22.2.in-addr.arpa udp
US 8.8.8.8:53 172.214.232.199.in-addr.arpa udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
NL 172.217.23.206:443 google.com udp
GB 172.217.169.3:443 beacons.gcp.gvt2.com tcp
NL 172.217.23.206:443 google.com tcp
US 8.8.8.8:53 3.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 id.google.com udp
NL 172.217.168.195:443 id.google.com tcp
US 8.8.8.8:53 dns-tunnel-check.googlezip.net udp
US 8.8.8.8:53 tunnel.googlezip.net udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 8.8.8.8:53 130.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 195.168.217.172.in-addr.arpa udp
US 8.8.8.8:53 16.173.189.20.in-addr.arpa udp
US 8.8.8.8:53 157.34.239.216.in-addr.arpa udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 8.8.8.8:53 play.google.com udp
NL 216.58.214.14:443 play.google.com udp
US 8.8.8.8:53 encrypted-tbn0.gstatic.com udp
NL 142.250.179.142:443 encrypted-tbn0.gstatic.com tcp
NL 142.250.179.142:443 encrypted-tbn0.gstatic.com tcp
NL 142.250.179.142:443 encrypted-tbn0.gstatic.com tcp
NL 142.250.179.142:443 encrypted-tbn0.gstatic.com tcp
NL 142.250.179.142:443 encrypted-tbn0.gstatic.com tcp
NL 142.250.179.142:443 encrypted-tbn0.gstatic.com tcp
US 8.8.8.8:53 lh5.googleusercontent.com udp
NL 142.251.39.97:443 lh5.googleusercontent.com tcp
US 8.8.8.8:53 142.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 97.39.251.142.in-addr.arpa udp
NL 172.217.168.195:443 id.google.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 8.8.8.8:53 github.com udp
US 8.8.8.8:53 avatars.githubusercontent.com udp
US 8.8.8.8:53 github.githubassets.com udp
US 185.199.111.133:443 avatars.githubusercontent.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 8.8.8.8:53 user-images.githubusercontent.com udp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
GB 172.217.169.3:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 133.111.199.185.in-addr.arpa udp
US 8.8.8.8:53 154.108.199.185.in-addr.arpa udp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 8.8.8.8:53 collector.github.com udp
US 140.82.114.21:443 collector.github.com tcp
GB 20.26.156.215:443 github.com tcp
NL 216.58.214.10:443 content-autofill.googleapis.com tcp
US 140.82.114.21:443 collector.github.com tcp
US 140.82.114.21:443 collector.github.com tcp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 21.114.82.140.in-addr.arpa udp
US 8.8.8.8:53 215.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 210.156.26.20.in-addr.arpa udp
NL 216.58.214.10:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 raw.githubusercontent.com udp
US 185.199.111.133:443 raw.githubusercontent.com tcp
US 8.8.8.8:53 clients2.google.com udp
NL 172.217.23.206:443 clients2.google.com udp
US 8.8.8.8:53 collector.github.com udp
NL 216.58.214.14:443 play.google.com udp
US 8.8.8.8:53 www.google.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
NL 142.250.179.142:443 encrypted-tbn0.gstatic.com udp
NL 142.251.39.97:443 lh5.googleusercontent.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 8.8.8.8:53 repository-images.githubusercontent.com udp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 collector.github.com udp
US 8.8.8.8:53 e2c20.gcp.gvt2.com udp
CA 34.95.44.106:443 e2c20.gcp.gvt2.com tcp
US 8.8.8.8:53 106.44.95.34.in-addr.arpa udp
US 8.8.8.8:53 beacons.gvt2.com udp
US 142.250.68.227:443 beacons.gvt2.com tcp
US 8.8.8.8:53 227.68.250.142.in-addr.arpa udp
US 8.8.8.8:53 e2c44.gcp.gvt2.com udp
CH 35.216.230.172:443 e2c44.gcp.gvt2.com tcp
US 8.8.8.8:53 172.230.216.35.in-addr.arpa udp
US 8.8.8.8:53 beacons2.gvt2.com udp
US 173.194.217.94:443 beacons2.gvt2.com tcp
US 8.8.8.8:53 94.217.194.173.in-addr.arpa udp
US 8.8.8.8:53 beacons4.gvt2.com udp
US 8.8.8.8:53 beacons3.gvt2.com udp
NL 172.217.168.195:443 beacons3.gvt2.com tcp
US 216.239.32.116:443 beacons4.gvt2.com tcp
NL 172.217.168.195:443 beacons3.gvt2.com udp
US 216.239.32.116:443 beacons4.gvt2.com udp
US 8.8.8.8:53 116.32.239.216.in-addr.arpa udp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 8.8.8.8:53 api.github.com udp
NL 142.250.179.196:443 www.google.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 8.8.8.8:53 collector.github.com udp
US 142.250.68.227:443 beacons.gvt2.com udp

Files

\??\pipe\crashpad_3160_AHBBXIRTLHJBSLCI

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 e3821a3d0a0c22eb9103412f8aea0cfc
SHA1 c62283637098f143f8f5a658a83756e45ac10a81
SHA256 c5f9121e95e2d55c6438a362027a074daf7e3dbff974f831c9100e6c09219d2c
SHA512 26f3763751ebc32d2cfb9d874be9e78dc4f1c7d4f29b4899e8097d15015e1a6375e71d28a8d47fbc4b881d4adc07f831de8b370c8a05d046d414d6479bbd917d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 35d54e0e4fd0706711bdb4b774ab2fbb
SHA1 34f70d237345e1316e01b86b1ec3349e096bbbfd
SHA256 2b5c1b85d8790d6342e79cb65b46216a6a7dea315495447a86c5923bcbae44f0
SHA512 dacf3413bd2ce3d857643d406780011b26c393f294421b3ede568d56c6a14466858eea33e7633b0f4bdfcc6b6255e49275e50adb86c0090aa3c2f15e438ca32e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 482dadd644a95d9a4259d7e8182752e4
SHA1 ac296e9c2996fbeff841d8fbcf68f11edbba5dfd
SHA256 ffba7e4bc0e55d4003e48d0fc1ea6acbebff60a6f3aa902b1bf895a35708dbfe
SHA512 e1a81d528fae1baf551030bbf3be07e40b5bfd644c97f9fc159462c10488942f7e6a84a752eb752c8fb1605543aaeeb9524ec6e84ddd1802a482746962065666

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

MD5 3e552d017d45f8fd93b94cfc86f842f2
SHA1 dbeebe83854328e2575ff67259e3fb6704b17a47
SHA256 27d9c4613df7a3c04da0b79c13217aa69992b441acb7e44bf2a7578ca87d97d6
SHA512 e616436f2f15615429c7c5c37de3990c3e86c5e1da7d75a0f524fc458b75d44a5be1a3648a628d63e1cf8aa062e08b538f2f2bc9c6a0b42157beb24f82c571d9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 46895b72a016658a6137d79db9be10b1
SHA1 b75910793cfd9baf7e35a3eb330088d9b807aaf3
SHA256 db60406b1bc9a3ccfc56706efa0e90a8c0282fa15da1d7219c876929ea586a7c
SHA512 6f2c6a48abe4f92de0ce02a99f2e6339b29f80f8607fca1d5922e89d1dd1fb6cb3e0737243ef2da6603804687d982f43c6ecfd58148cc0e3085e1ba356addef7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 c801ebc6f7da231cd97b7b434696cc99
SHA1 5bcb8ad39c0ef53124f0e74370503872056b5a98
SHA256 36900f0e8d94fafaedcce2059dc18332763154ba5b4aa1f1c1e3542e140ad48d
SHA512 90b07b8819a5377cb41ed88a0a5dfc44d28b51cfd738a47596552a9eb2fad930b22c97d9e39cc644e0527cfec238b2f3449908d9a3080dd1eff0221e8b92345a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 b90fff05efd228524c32ac9ddddc909c
SHA1 83b2da321ef7e9fe794aea3c6e81a4a8397c709e
SHA256 7f2d35a5568d72132518acc7b076a7665317dd80c0fcc63279aca9296ef3bb07
SHA512 bbc8ac119425fabf5e880cb0ef18cd647d2ad3257779b04bf0a93fccc312ea8dc54ca694065ff370b545a89bbcc3ca5c4106579dc25b5117c5e45e26bbd62750

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7c0ebe135ec48c0560313727e36783a8
SHA1 c6b507969f8e93aba56f2887cedec26386b58338
SHA256 49d6c23835c5a00a8ed565fa4499d48cb97802ca2f17839eaa172df35c948311
SHA512 72575005b379ea1b9745135541ae8aa661d3c7907a239679d1b9f6833320eac6e309b9c443c93b1295c5a3cc698a49f9008f60585cd5682e47c811269cfcf6c5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 be9a6cb451c4d664d2a8dcde583be3de
SHA1 8fecb7e4c11b1eb8b15d00009401087755e13125
SHA256 ec7cc22b5d203d223e34ae6ea5c70d23f953b7c0bc9660953f13e383bd8e5cad
SHA512 be4cc0491a69a590af5f78b841bfd0a7616c3afddd4503a8a55f06f0ec8a38b2156a41bff6c636fc2ec1e8ebaf4e19f4144aa08fe89a0b176d95be45d3f6e2ca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 cd5fb5042ae3e04d084e72115d634a33
SHA1 17a6e00f3f8bd07c10bb6c6e7057749f07be7ff9
SHA256 f1f9f8c9506ab950fcff9a0de41c8c8356ebb9950a43859659f416438a457a9b
SHA512 ed10a87301ef2623bd6b70758e7547c2345a717e6bbdb6b7e2d5751c219f307367945df4c640a4e6bff8c9b47300d881e92428723f016d19a1472b924ecf52c9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 fb91cdf0f6e44f947ef5d8fd762e6458
SHA1 80433e884491023911e7470dbb7ab647de5269d5
SHA256 9bf1c1e3bd16263fe091f84e7c1bd16d0fba45f37012e4e0fea97957d832c10e
SHA512 b96489186d11e461fceeec96fc81582ce72a49042e7f7d90d1150be11972aee9b126d905efac27eda5aff27577ab631767663f707a04ad2aa08b27e5d5d73d23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 b39248f05db2e584f55c74b730043db3
SHA1 ef2274fdcbb340bf62828180ca094c2e3c2475f3
SHA256 7c3a7c88e74b0adbb5f3c715360b71b701daded4ed780051c8c16adc1c3ecb99
SHA512 85fd7ea0efcd75ed6ca06a5aef796fd80a5795062ce5676e77450f8e29c10633314155a7a622e15675aec90c01ec69236e528e0f61c851ec5c7e861a037c7945

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 001c0e2d261d8776f3b0218c67479d4a
SHA1 f2724dabea5d1c78898ecb36a7dc13dca9e9ff9f
SHA256 54451a1a9aec5667ee8e5efa4d3f4b18a94ab42c7909caa7fe1eef4b8328f4c1
SHA512 3ac7245eadd1ee257046958a88104abb6bf420b91cda77f16fee411fa2103f9320115b579e594a705802d156906b1a56cc0a9df983f32d074cd29235b2789374

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 bf43546889aa33f2686374728973be4e
SHA1 01ba44c3384fccdc5ba348ab48921ca592584e68
SHA256 978b799f0f662a77f5381be4b3ded88bc1f864129f5e41ebae55901f9a4ccefc
SHA512 078d44d52467dfa9607ba6fee80f2eedd8d9ec12fbf99e0ae1528e76f29d9249a9c187440c7ff8d8ae06ebd8cfcbc904b416f3335c9e40898236bed03b0de4b7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f82f9226a510b00b058e615bdb0fd898
SHA1 d4d8c3921ecfecd16efb20a8c194da2709575950
SHA256 864ba6d9c714492b21d4d37b720e458cf7f2b2ac7fc1c768dddc3a9563e404a6
SHA512 0d4e2423449c16f0b7bc2aa8d663678280fe62da941e4c9ba2695ceb29c7c4535588989c3c844a32a0daa6515dff9eed1b183c7c708967d7bc27cdbda8302859

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 05baa8bd835d0bb021d3aa08705e209d
SHA1 4b54b0f6ac82b3b8eb05c9c5a01d4288715e9aaa
SHA256 10e15e1b2a08d42d9267ca0dcdbd8f6e1a4535a6971500642eea1fa934b55cef
SHA512 581fbe39488eea18f5ade592657b718b497c455b33bf0147ffdf8fc097b96e6b60e40d0cf433aa3d83164735b8d33ad33685696318e9f8697189bb53bd294764

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 68496f7431b84a73552e4caa40ba9eaf
SHA1 7035a37d3528efda25bd49d1e32d8f760f2a9420
SHA256 8019dc24fc3daf295a9471dd89d66eae35c7c9bc25f40f7baf68a3ebc7f80570
SHA512 760616b5bf6c1e5b51d5238250c7a493183fa205c6ade9ecb416f8db46b1f52ae793bf66f2acee4443c17668ee39c62103431d8f5fcb00f4a8be8001e1dd6ec0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7cc7b5d045553a75d4bcbab869f697c7
SHA1 fd93c88ff2a018ec06c5d14741bfd2cf1a101155
SHA256 fec8e31289df24c86d09f5a07f629b03c2d83865b065599fa4f852d6c96bb308
SHA512 217ab4b1cd007e1f6c5c0148a411c52d75a2a4ea9ae5fa3b89cddadc63f888cdba80f29078a27556218ba03d56e965f8e36ff72939cc0de70514dd87ca69fa5e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 e8c227412cec55cb2698560e54107af5
SHA1 0ff8809b6162ca962d7ea4a7ebdbfee163bb60b9
SHA256 d7c48cd1a679124356d47d843810090010061f86bb4ac4ca3f8cb65bab49d455
SHA512 dc9b6e1e5e91bb91bd31f1197514109251e90ef9db168faa0f19f2a9cb7dede6ead4fce928381e03a8979caedef89fa42ec66230dedcec98ea51d89e65fa7f55

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 dac28d62768434dd2fb7250df3553ac7
SHA1 91f45f1ca2393fe4aa2f720494ac815f2a965592
SHA256 27a68cb2fade0012171b29924131c78544c977fcb3ceb09203b7007f3d9d5891
SHA512 25b7cfef9047965ea329b4b9cf532b181bb55a4c0a56e251cd14799264b9951c68e3a6dbf99bb13b295647855f103378500a3ef0f4bdadec4906cec07b2690da

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b05ca464c25e4ec956aa90f34377a367
SHA1 83ecc8ae14e81f319bddfa5366be8954073de477
SHA256 b584b71b78ab103001429d60fdfa4cdec7631ca522b9e341e32edf60550fc595
SHA512 4383bf362639cac3c52f43117e912985a57108d2124b0a944aeb490eb24ef63bdebf7bf6a581ebc763c8638bd0ad7107d09e428b0693bfa44260c4d5b6d8bf01

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f15e051f61c92e8934538cd12feaa32e
SHA1 52b0440a9b5dcfc784d1cc05ec7399742f40b912
SHA256 b55103c7407af190ccc8ec35247168578b603a5100921c53306e104766dcf545
SHA512 9b846a107ffd9075f86ee532b11b37f1422182037156896a2877d7ec5af9c5c0cf0e465acc2513b59ef482f1cadc6a55ebbe04dc0a3343a4cfda248dd51e25b5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f762a353725175e9bde82a2449c642be
SHA1 efb3482fab859fba08dc3fd55ab6fa0d69217556
SHA256 50da64d41dae394a6905708fe4ee8487f53cb4aca9a8ea74a2fabc5998177cdb
SHA512 59abb70b55a91f8bcbf87e171619c71fdc557d7d773ff145bb924b124d76c3cd4a1699e56e97516f62d63ff2c2a51ca6f31aca90e92308125194503b2ef2bebb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 49ba5ea03fc7ae78f72ea283c34e87fe
SHA1 fc109915cbaaf33d8082c2717e395640a45cff52
SHA256 e16e24f0b30d15b1644ad5029672cbd912af7b4ce83170eaedd3f2fb83ed1545
SHA512 007aa7d8e6c0cb4c663d1e0160659b0fdbe5290239152dcdb9c2d549b9d830018a88b2a8bed37d34f64f44527e7ab69f9a17492588834edcd3af7b0d891ab6a0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 e88c15c25cfaf9c581850d838a856068
SHA1 1f43520949dc11654912f1e54a380585ef6c22af
SHA256 5fffb1f313f5ba9c31fc09302cd5db537aa207253efd412062c1d54376a317ba
SHA512 b28d3ca20a690551892b2d516866d980ddd984425a260176f4eb1fcaa109251fb97513a9bc7c8ab64efdf4dbabf106ae91a90ac72216dce2fd629ae39c5be47a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7f79e1d02c26e4ed626a7284cf6317da
SHA1 2cfd147cf3ba75e8af05be07be7079cb5abe6ccd
SHA256 eca3fdcfec5a6502c39c9f22479cb1b0ccc3a0c297e30b6b79381eec59b22b09
SHA512 2cd9db3ad51ceda99fe5723a7990c9d4c8968501932ba848b46635a81f804d0d8f6db28a2c2a68f93925a8d2fd9733c98c910c959ac1b1c8fab1c1a5de3ca591

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1716e050ae694b0ff787db1919f01df8
SHA1 3d6620cbfa64f1956b2f09cce5764e7e67e6ec7d
SHA256 d0766ac83c11b43e6afed0ac162c61aebe11ef5ed70ed077b469ba38dc1fa22c
SHA512 c14f0cda3b78775b92a10659c8e9dd1853ff3b9c2edd21ad4ff5d8694f25e963d0cb08e51451d7ce9cfc13d55f0b15b00684cdd9838d854b597bef7e59382eb4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 1f2fbb76bbe105e7d402e8b769a01e1c
SHA1 07ebe591eed4fafe04d20526cf0be9843b07991f
SHA256 9fa26b138defe457566af03f80b776f12a03c5f71bbdf1b1b3877b93fb5a5005
SHA512 a16ad12ef8be3f2916a820786eb1d98d9fb780a9eedb659256dd9ed43082f56baa0982bb173cdd7733509f616c1602e6c4e272ef894730767c163c55e49ac73a

C:\Users\Admin\Downloads\DoXXeR.txt

MD5 51e3e9167027c9889232cd1a930d25e1
SHA1 7cf969bc1b218499ac4170316b4cf822fb2cbf57
SHA256 a40ca055c24be45f2b3abd187dd0fc9559a5ea9034bc4242fc018395dfb2fce6
SHA512 8258dcbbbe01d302ba8d3a46d295ae52161a54a017cd60c870d6508a0a01626ae469d9593276416e15f8925bdf7ce6de98ac11d626432d26ad13fd690e526884

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 be5ea33872fdf88001c4b39ef9f6eb09
SHA1 b92e40e29567e3426a2dd101a90f7c1412e9860c
SHA256 f509c1174fa559938921dfb295b6f281b55fe96eaf7950e626a72c5599330ea6
SHA512 1ecc8ecfc2d46d645e467b18c8a4417b32b5d028143e776c56513e29375e1886144c8f5bf3dc03deb3e4e9c40737ee2023eef826fa2c84d796f2927c3ba0bd0b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

MD5 9a25111c0e90867c7b8f41c5462abfaf
SHA1 0619625d479f31cf145c2e3714de0df4a69169d1
SHA256 41bb42020f1beabc9e72913ef6a33aa264556ec829ac70fd92c9c9adfb84803d
SHA512 0fbc3c64d6f5acc2c0dab67924b0c669fefa994f449240d1f6b78dcac3538343938a4fae972726156189f05806d3aae0e333035df52605ffe28886b82f31ccdd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4920b62f285dda232451fb1795aebb0e
SHA1 1bf7a1c585159c0f35b289ab35f4c9921c448fc9
SHA256 608f45e764e87642b36cc5226282d479a5b722e097d917641f679f614948d3a1
SHA512 de3fd1a38678aa30ba14292b5f13e2301c4dc282edba1c23f0efcb17098daca2985b5393c0f3386f073171c984bd9180efd15c2ac92d4ccf7e9c6dbc0521f44d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 68715686a516e77be3477af7b1e3be39
SHA1 0cb8eb22eb3fd69c4fbd1d26b87d35f58ac9dbf3
SHA256 d49bd4830faa36cd86ce576c9c6608548abe0e0eece1bda685b77452367a1262
SHA512 f13894b5717faf7f442087753fc03c023e67fba6f7957cb41d7242d842ff8f364d726e6d5bccbb1094c6e8932b60996ee972b1c5d017cca66cdf561ad0dd9d14

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1ba3a19ea566b69b4d0975894a046a98
SHA1 503f8d80e139e6bf505de071e6e35920bbb09777
SHA256 215766d66b60da78c93f48612caff8afeb3ce1a68cbc8304e51d168c27398bcb
SHA512 d5dd6099c63a1ffc8998fd957b45209cbab8d0eb8d2bf8bd63c9df30ea8758f3b7cf48c12b1f7f9576ee5c51c55ab04a0bae0f7385f498e71a9c3e4e07537349

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9adc8a4a922cc13f848dc35d9f021769
SHA1 39af13de96925ba3b6807f60c4f8cdf573935232
SHA256 5e7e7e815abb2ee2edbe133f9741ffcd90db58b99d568aa61ab346f33fba00a4
SHA512 dd4794639fedc6d4b9442d4b6b2cffa0ef784942693ef4e8778ccbb0ef8a4e42060722397ba9cc8108ba9f6756ccae00370418936e14376fc6683effbef39b49

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6261b59162720740f60ea3d168eedf18
SHA1 5b33b1d701134c6ee606216c2673d0299bddb3cf
SHA256 2a2a5297af2878a1a66ef0cf8039e1c54d829c3d364bf82d13163f580eed80b5
SHA512 af10d9a420d2c54e54a78ec29db34db40607350b97b4d01f3ec34bfdbe9842212884cd3bc47dd8bf7dba3fe7d4e2f82a984be874d1da34821688fe23b091a2f0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

MD5 86a162abd8da8954c9489598e624c97d
SHA1 26832fbf83ba9b9458e4975a1db3370249e7b2ad
SHA256 64b9cd4a4ee6a195eab971c9178340b8925480628386ad7fdad7c6223cc73395
SHA512 a6e8f9b27442c940ec121d53c25130e2727d28c0e1ea6b57a65dcfaa0e16a76de7243652e3c9ba605da354c36d90b8884ebfa7a823dd160dcccc28f7821daaa6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

MD5 4fc8e8ea9a484559df43ba756de4b9c3
SHA1 40d86bf7f9a58165c05b58d2a03541ea2d18e3d3
SHA256 15401250870e80475056b2645a4d112bd412ed2940d6e5d60eefb3a6b6b92d55
SHA512 875eba17dbc64bed5c89a488d38da8d3466fca03ec05f06e1176fc3ebef38e0971feb99251bf6f8590220648b3f032c9daf5ea47fe595ee0be8a836626dc3379

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d557158eb220d0f67cc76c6bd0b21074
SHA1 d6c8b6c7cc7f17ba1b2094e7daa9efaa291d5585
SHA256 bcf0ba6c1625eb9cdc7a577d24393fb7eace2a2f76f02aa870054120700f77e4
SHA512 a8a41a5e968f50420575a9ea7a5f2d5a7904f5d4b869e443217a3b5fd1d105da1c44c8793b28f5f6acfa384ccee45f334964121e4c754e13d0a536bd0776edbf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 82fc7042ee9cc1cf32394dc68ada6c96
SHA1 601141a1ffe20c5bb63f2d43ccec8355bf52403a
SHA256 4512b708f3beea24999a2c93d5ed2cd653662f409d88ccca8288bf1944ecaacb
SHA512 3643df7d7243a4a6cb8741e092ccbab7ed8b60cf36b3652837d2f704b200cd880ccfe294fa3a68e90cdcabf60d833f61401b26b300b572d264268ad63c62df0a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 a64e13e249669817ae451479b9f9195d
SHA1 c3638a22fb179b36a2dc26266aff9f8fe6a406b4
SHA256 c795d28f352b24f5806cfa01744649dbf82c08c3e4f032250a05f213f0a41b4f
SHA512 e717fcb10c11b4dd6d702fb0704dc6d6edff73dc3e6e2b6d1a90b569dc176cb722617898fc8093d7bf836801aaaf75015bec7eab74c0aa3c5a850a28df95aa06

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 96c9925a54115cc6f7924bd569defad1
SHA1 bdf3f4ccf2f2e6a6f5bd90e125f6271cbe7511f4
SHA256 b23ab00044594bc389e4b7438e42b6a940c9e68b8f43d4d4241c4bb0a7bf824a
SHA512 74cbb1700628c104adcfab163998c02aee265cda3a1a161c5ab8cdcd03265c511ca90a39a71f27d2acfde710f3bff38c02da4430726bb9890681112d4884ee86

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018

MD5 61867cfc04a6af4ffa9f354827a8d73b
SHA1 9920cbb0a710f9193eb89dc2b7bc3cdd99ecedf7
SHA256 66aae39f1fd7aa398d911ae9bea59352994090a098dbdd6d821e4ec75eca1c06
SHA512 101de2d925cd5b5a347fe2fe174fe61e593a2d96e315d59feb31e0ad1e4ef62b7927f53a2ce5148631ee64e82db5faec898a39bbea2e362faf4ecd5a70163354

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019

MD5 7c3fc94fee5dc9035e6ab2e5a8e8a818
SHA1 f60c7b10488b0589ce196c71f8183e1157ed4615
SHA256 607376107cd6ded76acf1938b0905cd55bb5cef5b833d4cb3254ef91dc3ded8e
SHA512 a6c3dbcb8d641262113811c4dfa54716f9975d815fe39b322389adeef134a6deb881a5f0a22a9257441f79d08bbe35b6a5702f0de42437eb428317aeccb65218

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a

MD5 9d808b313dd04d992a92b7c6628a7847
SHA1 8563361ebce8ec7e1f3fba7b39fb7de3dcc48cf6
SHA256 682fa5e63b4495f9960d4293e6dfabebe0579d30d1a2b2607337c396f0c60fbf
SHA512 0a0dfd6f7c438a2a5c3e32f6d5ab6705293d74cd675750703285c90bc357ce975d9f64af1fae43f3a941eb811f9dbc2a694fb38e1ebd0fdae2eed544e6e327ea

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b

MD5 123fc7737048a85c6511d2e2c1d4c27d
SHA1 02a12aeef8d6004c62014ecbf839c26c166db18c
SHA256 b9fd3ec3dcdf936fa9372c788f21b814590561a0f7cf655fcebe2b29fdf5f437
SHA512 a44227df6090bbd92c0f206f14aa3e9154e759c5f381f88f1a2cf448e9e1888b3ac7071273cf904d36e9a96df1122fd05bcac40a5422d975e865a67454c34aa6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0ecdfaba60c64a3dd1ac07c70df060aa
SHA1 bed116712db9e6188fb17be0e6b4f6dd123ccd6f
SHA256 e235977db0c32e04040c450d9b7829aecb58dc65c8aaf46085f328862e24e586
SHA512 a125d2aac94ed1754733809f463c0e9b5caf9f60ed4a742ba9684410cc4b661174ecd9b2b1ff01a789ba5d57f44554b19de1472ad619dc824a67c1b74c9f69d7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000023

MD5 a6d2a865e9f16ea305950181afef4fcf
SHA1 082145d33593f3a47d29c552276c88cf51beae8e
SHA256 2e5d94863281987de0afa1cfd58c86fde38fd3677c695268585161bc2d0448a2
SHA512 6aa871d6b2b0d1af0bda0297d164e2d685bc53f09983e5a4e1205f4eb972a2017323c99c3cc627c3fb01381b66816e570f61d013d3775cddad285ac1b604cdc9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000024

MD5 14c460a1feda08e672355847ea03d569
SHA1 f1e46ac6abd71ebbcdd798455483c560a1980091
SHA256 d1161f067875a5f686c1732a442f340142c6a03244f4dd0bc0f967596f6cbe3f
SHA512 cfd6e743986ae5074e73264ee1f311fc00a987bdabeeafbf55f5dd6ef0794ccc393507be9dc7e38181f2f10897c300edc297976acd3fb72da2bf560ec260af91

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000025

MD5 ecf848914187ace4c8a757028d19b51c
SHA1 7fc0a198f47f74c8a7c7814ebc35032ce10fd441
SHA256 ec13ee490d2a453e28fc99dcb950131112078f684a1c68089a17aa508c792ca1
SHA512 81bb10663afae3cf7b8d63e4ecf37e68a29d4c43159b5a12fd31b433cd27aa8c96319f8d5ac05a37d57339fdbf24ca2974678a0745ab8b93fa2323ce9f7f31bd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000031

MD5 9ec8ba204f6c45d71c998a0ce1dd714e
SHA1 e6790bc2fc03148c9d9cc1b3a91f4c5df3d8295c
SHA256 a4daad6848500cbb261729ecded45a13e2f102d666cff8a0e2bf5991ea5e5c9a
SHA512 d30fe0c1f7589354e7b228a5ca4e522e198c6e7ed30186c54025e991c7dc9a324e1cfd243ed2009aed863c01c3b341ec88bd74aca019e13ad52f8dc2ff3c6ba8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 bb8204842807bccb52990043d32b2867
SHA1 d069cb642d72096845b86ccc71794471bc7a96bc
SHA256 dcad498102e3f5b8099d3e9b997d8d150f4b79439b1e6b5d26195833b18da622
SHA512 b828127a66eeace440cbe6fb2b0f6990090869000493b259294bb94916b8a7ea0b7003d75eb41bee36abcb2dc45e3eb948b83b0189eccb2444747754dcfecc05

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 1b70c546fa43b2b819de0185c3e01c69
SHA1 5f6869eddbf96650631bb825838e136d0c3fe567
SHA256 435508d0b58d7e6e64b26e6cc794b671668ee2bfd8688b8dfc725937ba85f883
SHA512 c5e721a3da6c40d329c0ea3e493aa0d12ca774a599cc55abbf5b751882dabb08318b7f84588b9288ba1af7d3c03ebc1dc310736bea5adba32b2ad432b0ea5740

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f3eb943a6b4c41444e6e6619a468928a
SHA1 edf9aa52f08ace98005a827c234d843c951ae317
SHA256 647b64d5eb8c5b6b0cd17efdfa180de6d9d39d9e4057c65e1f2c96430c398b00
SHA512 fd5e6ebe22dd114fc654c21d48f8e1e3ee9bc51886e2659c30a8114010dd06e9b07fb643b286b97f942216c11497d9efc87924b5bf273fc62577e8ebef04c61b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 54be8145be8b7460e48f06363ea92bed
SHA1 a54f7132509a22eafe261645e8e7ac3d494ad64f
SHA256 12d8a6521df5e2de8d82329cc0957887d681103aa860ebb3e6183431f80f683f
SHA512 96788d92b16a7b5531a760fc88fce911fba9d98c5a730592e84d2d65cde547ca40ba35352336a755ec87ded30f3c91b60fead994d49c79c4ac064f3b8f37205f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7ab60892b9824393993c718006f2f2f0
SHA1 707b41fe028530e682800b07a3c4ef4d3de56eaf
SHA256 eab2e1acb47489b1b5cedcc9b96f226eab69ba2f1a2bfacc29c6c7be46f3474e
SHA512 3722f5152e9f6829793a8354fd087470dceecc53ff3949ed016d558d6d0c10ca251c3d19f6471510b2f5fa95cdc3fadb3afb0a582c88359c29da6edd7bca92ea

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6dd54d2ceecb72945130b6b03d9b9c6c
SHA1 08b029b47e1b119742948b785e0403c0ed37251a
SHA256 562e499b83487d27dd1babe3541d7a89730f115f992ed12d6c6ddb3968371581
SHA512 5cd4e337c3e590afa603fe51418f2e99a283145154fa02fe64ae075ac8ea1e9bbdc97cca5b131740d75eac9357902a23780a7ea51dfa6904a46ae4d2691563bd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2639567f598ad51550de84a2509fa0bd
SHA1 0b23ee844e9962855239511fa2962583521dce79
SHA256 72e126bac0eb78a55d326ca600a4291b74c9bc0cf555bae40eec0aab719e1ed7
SHA512 23301ecf969a93080e14933cc1d2c6606b1307b5f4671b27615edc0f0117b3540fd068bf47e790cf64be073ec78740377888d5f02aac73e1e3d1d0d357c1cf84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b2de4c33ed8c8d97f9c537072f618d8d
SHA1 84141eefca956bccdc03b619f205fa6e737b1eb5
SHA256 67bfcc6353414446ba438f31084f84f1d0acf127d8ce4d40165eb80792a5447c
SHA512 df2bb20fcc43270ce219de09c216a59f8d4aaefd6779f6907c6299043beeff14b122f90ac4bb44260ad63c445710317f2a1c4f0a53153ecd1f8f2fd97e4cf1de

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4f5e25558ef65ba49efa9eb8118c7801
SHA1 86f8c21317836f6eef04cc78f7e11d9f29a389ca
SHA256 52cd4f092343c3e6e08b24fffda03ffd9f98bd986f4343204157872d57bb503f
SHA512 ab76c0fafc2d50356dd51d0b8cd957133cf9162396cec5f280053ca4f0e804ffdc2fea09ccf9ff5c99294a346ad3ba17e2e2e5be8ccc31a1e233eeba24d7a4a4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000039

MD5 f30b3adbd12ee3ba8ab0cd893cce815a
SHA1 5459a76cccb9e142d63bc55374e8ad91fc745691
SHA256 bdc003b7a18d5eaac6d285fb402fed92e1adcf485ffe61ccb86d74b9daced864
SHA512 600f6a21667dd707d8e8c5edfcd4c267966a553c506693c3ccbde414ba48ceb84e50abcedc907a951354d14f719aee997271e15ea298cfb351ee0987137de09c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0ae7ca6f5d468aa5b6492415e3562422
SHA1 9fc999007b769b46e3fdf8e312ab14ec67c61348
SHA256 4c3e8253d293b510bf1d3d314d444812f68cda9724d6a7d02a77c77cb9c96a31
SHA512 f23d4ad90660ea83f3170446589d31add91281455da95a0a5d75cb0ed6789152b369cc88f4523beb591f0cbc6c3a8cdb0dd6b79b8fc7bb2838cd132f68b55415

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d43de78ca9677a0789913aa9eeebd0cd
SHA1 5b7ebce23941cb129664131cb929e2ccd0a74aba
SHA256 299f231d450b0de0acea8818713fa7db9398a36ac33ddfb15501252d83069863
SHA512 573948521551f2daaf342185d5fd158badedf3058b94f6b4d39514cd1f4a3369ce305f0b9c4d278f0beaede9a0472244e1ff2188871a4d4826b1f11aa90842d6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0fc0d7ed8981f35e99d2cbe25597a6ea
SHA1 c7a7f693e0f1e88f3e221e4170006705907b6a3d
SHA256 11ffec545f24f8f1cf60272c9324f881dcc62f86682d4549cee4aa66b72087ae
SHA512 4f69bf9bce835743d9cb3d93fb2cbfb61731bae8f67c8c4d78ca5f4f05374560cede8d91c9d4a1d087ea975a5267476f624d5a6511b611cca186f87eabdba896

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Search Logos\logo

MD5 8b51c4c5ad3978003aa242ed48396df1
SHA1 2d1b27a1845ad33dc5ac8840f37990ef4485646d
SHA256 1be8cecffe0ab0e7661da01c2e238aaa4331f670c73e48518d16f0d71def5ecf
SHA512 15ce8237c16338d7b308832cdc557dd1cf01b2b5748ee100f18ed5a25306b7e00dbc81fa31da5b395d0b5964a4b63abb0c838f34a08a8a532bcf7040ff243a6c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

MD5 1fed7050c0bafb6ddc7e7cb9d4c8be8f
SHA1 578f52ff18422e4f1f8beaf7e5a331f8ad900b14
SHA256 e67719ae7dc9321139b1dcfeb0ada897a1c7ffd2f89844e46bc8ca85f4038dff
SHA512 ab44617a67ec6160e66cd210e243e099a6bc9c5a703a0369f4d7cd695db4f808f7147874e0a5a97ac1de13c7d4649ba3dca53254efca155396c05076a24390ba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 45d8cc602a5bcdc172cb0302c2808be8
SHA1 a108195ce5c94dd198d7bd3b70954231cb2d7870
SHA256 872f9838c352573b0770db745fcc62590f73b7cf74cceb23d8e96b276e14255a
SHA512 d699d9fb23f7b02329498829611d899ea0d3e5f28b828ffce39c9b526bb179717e2f859af8ee939156a42f8eb4fbd14c82954ad7fc674eb780898cc7ae994475

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

MD5 87c2b09a983584b04a63f3ff44064d64
SHA1 8796d5ef1ad1196309ef582cecef3ab95db27043
SHA256 d4a4a801c412a8324a19f21511a7880815b373628e66016bc1785a5a85e0afb0
SHA512 df1f0d6f5f53306887b0b16364651bda9cdc28b8ea74b2d46b2530c6772a724422b33bbdcd7c33d724d2fd4a973e1e9dbc4b654c9c53981386c341620c337067

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\42ee1f1b89a1e57c_0

MD5 2208e86a2232ce83485df996add77759
SHA1 28413d765acd1e820cc87acae08322066869565d
SHA256 cf737b2d2d3c25967ecc8afa973a0874c67ca5975d3c44b2bde5e439f775d6bb
SHA512 304da1562078fc1fc36fa87ec6572787818a11bf4db4fb23d661bb39775f662a794e445d6511a01d99882b83e0ed85b08c619f3316c3dbe6847cb44d4d3ee077

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\78721783d9d760a0_0

MD5 f9ab7e9df0eaf96aee80c75e5bf86211
SHA1 a52b5189265fb41877d814eaaddcd0e2d73b5c04
SHA256 28cf0b4f0eb6ad81b5dc5dc2d97ca106bab84302973fb83c0c0e37546827a847
SHA512 19a467e693d01b4e38716b30ebf400b6b77fb1811eb91723800363783bf761f4ec5e054bbb4e572be5308c8c87e90750dbd1f883ba8fe348db5e0d44603b3890

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\febd7fea7224e2ae_0

MD5 77c27b276f1a4de8bb6a4fc7361e34f3
SHA1 f6e8a5031da4a62691495f254465b11843a8f8f0
SHA256 c69c4d603bdb9568fde671e2393d2567f6ada62f0b834f3262f2da78faf6f9be
SHA512 9ac48ab086c20628354b6518a446c74c533ee0fe21d7d29b8237884026f497327aeb63d5ed8e3c53ef62526f7ca8b78c960c76de34d21ffda1ac99bc91f41cb7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d7c1f27802643d54_0

MD5 dfd4103f7692afb3bb0dbccff8dd36bb
SHA1 b2d8085e5296f5a0f13aaa068eea438d4ac7dbdd
SHA256 41baa81551bb899cf2cacda2160c8d88f2c2c0e83e0e135b0f27771ec09d769f
SHA512 c826a4c29d53cbbc9a07838a7f2fa4df066df6cf85b0aa89c3f135769a065b5cd01ebd865a4fb9e7f075e15a86c148814b348365847277d597b453413ce82eee

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 88c24eb15738c302aad8b3cabdeb2edf
SHA1 9cb3963d9fd82b6596025485904b953b0807f014
SHA256 2f2f75bb59f0b4131bf3237c2a9223ee3fc3e6683c64cc0b150f462ef1711005
SHA512 bc3515ad8805bf69f20b0945e0ed2c9963216283ae4bbd939e12c3ca8bae7e9960e294506ee64cc586d55515783fc2504215b4f7dca8db17d3a31487b4e81e15

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002c

MD5 e947e95a0fd8df1e8c8eb7cae1f96f09
SHA1 22f36705b4a47f05fae77201e936a5c65cb05bfa
SHA256 14fd0b00467eea3d8b863e4aceb343135fa64e8a3b4098d58765199a9d2062a1
SHA512 24b9a4b0b5ffd6ae11ea6cc76d88da96cd0579254dcd463e1bc5ddd99d9850773ae861594ad053d4d07882d4970267aa3789940a4eba63c0543588cd9b293dd7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002a

MD5 cfff8fc00d16fc868cf319409948c243
SHA1 b7e2e2a6656c77a19d9819a7d782a981d9e16d44
SHA256 51266cbe2741a46507d1bb758669d6de3c2246f650829774f7433bc734688a5a
SHA512 9d127abfdf3850998fd0d2fb6bd106b5a40506398eb9c5474933ff5309cdc18c07052592281dbe1f15ea9d6cb245d08ff09873b374777d71bbbc6e0594bde39b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000029

MD5 1d9313f850dc7f90dbc817920e650fbe
SHA1 cf05a1ca3e477a5295c6b82cddb21364ef9a8c93
SHA256 bc1c1dc9729b72ca481ca91597830682b83fc30c2637f9c73c762e748583dea7
SHA512 d0033fea8fe30ecba6d09580b20cbeaa0f927c7014ab2b788f6e75580ce58e07eec3e53a74228d22f7f95ab6ced8cfcf63633aa1fb1e969569d8a9708e7474c7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000038

MD5 6cde00d4c70f65945125b46ffb494046
SHA1 d86ea8b9520beaa539c88febbaa73c14783106b0
SHA256 ff91dfca2f1749052b460ebc05256cc222dc8ef7408aa515661bffcf65b20f88
SHA512 9a423e5f783c1f08085577fccd454b9be7952636710c95b98b99795b4fd790c3bf1d8bb22fc39288521890d0038ba5e157f57bb7d9ea0e745544c2db5ef6b2ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000037

MD5 7d10a6106e8f9e85ae68e310ca2b8433
SHA1 32046f676521ae8b100c0ef88e5e19e1cc49cfe9
SHA256 0c00f8f0acc2ac3079edbb2fcef864743e5ad79da49241f6f28cca83984f7204
SHA512 78bac570118c28fad9bbe3ab261668743ceb81a0229c9bb2267db4228bd9eab1bac1bb07185347cd3fb80a6af62e15e587278a577f215020368399be897864b6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000027

MD5 2e23d6e099f830cf0b14356b3c3443ce
SHA1 027db4ff48118566db039d6b5f574a8ac73002bc
SHA256 7238196a5bf79e1b83cacb9ed4a82bf40b32cd789c30ef790e4eac0bbf438885
SHA512 165b1de091bfe0dd9deff0f8a3968268113d95edc9fd7a8081b525e0910f4442cfb3b4f5ac58ecfa41991d9dcabe5aa8b69f7f1c77e202cd17dd774931662717

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000028

MD5 3f78316b5485dea877ff986c00eb6b0d
SHA1 0ce8623b7e34098655883d3674b4265bd73bbb64
SHA256 0ef4b35cafab7842d4aa4eab3e9fb270d8d89011125c08d49c5260c3cc246929
SHA512 1056a68735f58a8b6795f28407fd03e645d2fa09bf6fc73d47f6db09e4ea57704a70094a6b70daeaee4b2c747e648958a1b569bdb489636c7cdd2ce01b2eac12

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 15f9ebab8530171102536613d26ab16e
SHA1 f55a3d66f517ef20d1dd30941bbeea2e2def7c4c
SHA256 6fb8729d91b9946f6810e94258b445d206fa13de0a5596d819f0ffe70f92d031
SHA512 25b2671a183916be9f3e040aea4f9d74f35990598ff7731df58799ae6da51948a6a8fe40052e5b145853e0e4b22d233f4b5059be5d886dfce7914c1108ac1438

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 dceb5f9f3cb520a3325a4b9e53e41661
SHA1 5ae6e11c661975f0490eecfbce2b3e1110592839
SHA256 7b0ccaa0ddeb761235a5c6b9929052f3472c8ba339b3fed483a2f83eed9b4fb3
SHA512 ad3a71f17605c112249d66ca1413849cd6d43c351efd387d0bfd04e71fb7f1cf2bfd5986a43bfa3848ae69a7ae4797b76bff64d69234a07cf0a29d05d0ccafa9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003b

MD5 f4b32be8d1dcff07d4965a097b0d572a
SHA1 2571e233398a7fc3f19eb46a51c92a9d1fad1fd6
SHA256 dc61a06817c12afdc8167a6bc493f8f4e03327960d62358d4a9ef06525c4fac9
SHA512 3d09adc5ec56578bf25ceea99181230c43d13b3b78a4de35f6a79efd324c9ee45dfb75af25526481f94084347fc4712c93b096ef393c3257d73d18b3bf377144

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 baef7120dad8a93f1709d3714532e1a2
SHA1 760facb712d8cca7171496f97cda76373f704f35
SHA256 45b7e57058fa12e6c6695e5ca0f0cbd2ef05ba36845472814d563d65803bd0ff
SHA512 45939b8e157607c33beaaab960b3e1b1494de17c3e9036f9848fd76213b0fdbe80be4a78b00e797e0f573c3194c48f7444c9b7812a8551c159d70244bbb5110f

C:\Users\Admin\Downloads\Ransomware.WannaCry.zip.crdownload

MD5 efe76bf09daba2c594d2bc173d9b5cf0
SHA1 ba5de52939cb809eae10fdbb7fac47095a9599a7
SHA256 707a9f323556179571bc832e34fa592066b1d5f2cac4a7426fe163597e3e618a
SHA512 4a1df71925cf2eb49c38f07c6a95bea17752b025f0114c6fd81bc0841c1d1f2965b5dda1469e454b9e8207c2e0dfd3df0959e57166620ccff86eeeb5cf855029

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a3c4afb578cf1bd3c1e2127873f6a2df
SHA1 706ee7797fb4f3656892defbbf13e8b5096f1492
SHA256 783b94c68003c8733330e7fcfacde6f27921514be51a35ecf606a6af96d67345
SHA512 4f622756a79508a5ab03181f97776072152165b31c0f3f9ef2b1b82835fdd7028bb3cdbc50bff2ac923ab309bf90267773a20adcd06930b230a79ac99772acc8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 e27120c17d3cc6e3380b9bae124365a4
SHA1 3c13164438a7b465e919c359d11aea726fb8cc38
SHA256 ed21572cd1b5bf8a4e273f50fb85ed736a732318aa9f897b02b7e403b5d5cfb2
SHA512 b855944426a721db14806252a1efcb47ede3b6ae4325acbffd6543c2f3967bc87705eec34775213024eb2598ca90a5d813cbe77cb7f8a9688177e00126645829

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 fdd4362683dd850a508a3694015d3b56
SHA1 82a6caf88afa5af8c695f6ca0e18880507cc827e
SHA256 d8f2a357157940f93ccf1a1fdb646d6585addce49bf512b070e57da16b80fd1e
SHA512 1bed15e38806969a3764f096a1613ab3c9e299ff743a9dbb8562a820748b18e528c9facf6693eab21ea7dbbcb66101053941056f56f3819dd1562c79e168de7b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 09c6ebd4c8ccdeeab8c3ea2b23069549
SHA1 0ad6828d2e9f9c96c54eea21b06cc83975d79c0e
SHA256 eec361c806207305fbfe5918e910d38b05368dae37c427bb6064650d5578b5fc
SHA512 6da807d244740133f64381634d57d3dec6ff0fb1d08b7e8dbcc93cafb10668114d2ab5f72252c136c03550ddacb690c35e28e7a302b4f6d03c999f3754141862

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b26496ca145744cbd7919ddef22671a7
SHA1 eb873de1a7bca98b79e0cd2961fe6b925d11abb2
SHA256 3c8f0a6625858f71a68856d5acd27a7f6bb36185d8a25643b7a4274fc055eaa5
SHA512 c245226c6dae1a2520fa8868f3c288dbef064cf45cb201a8c8ee27fb1a9e4c2ab1433afe1fb81b3fc3ffb694f13ebb4627ebac01c1c0f7e1d138221e155503ba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 f0c1d2e0f63ef4c399ff57d3cb40300d
SHA1 f53344c40c4101674d4e87b763f27a927cc8b3fe
SHA256 1fce8ced6463f19295efc196de520cd8f2a1a37151f855746a97d5d0dc190c12
SHA512 5c1de97f97c607d2520b78adb92f4bb49d5c46bb37654bdbeb1961c92cc2dc35809f211946f37dcff6465b43981669ceb6d4cd438d846836f157e1742111a440

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3df4e4924f520c177f7f38b115ef8ca9
SHA1 d85f6d0c202f41ad3a237375bafb828ad4c1507a
SHA256 7bf6ee3d2f9601d635736748ef43aa53651a27dca0daf43a16061ccac74638e7
SHA512 ae59543fdfdeceb7bf0a545b736ef380fb65edefa6dbcd98ad8e66bbaccc25bafc55d3557e599d842fd9079890d692131178498e5b5f57c3f81da0d7eddd96e1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 5b26166d3c15d09c1f0ed2fadfe7214d
SHA1 19287d5517a3b11498f3d44b3d11ab2aabe2ac3d
SHA256 111daebb8a37404d24ea6b614aa3548b2152356e209e55d6fc5e939b30ae8b28
SHA512 b13cd5c81f27092758bba281a5bb9de9ba1c77ea680c9d03469fbbe198eca7933f4ebbd5d53e8213bf417409c13ed2b3de0fa1067ee9a99ed59e8cafe75d96bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\DawnCache\data_1

MD5 fe77627a800179d55bb7edd0814cdd3f
SHA1 361921222557c9e1f32ab0013d1e7ca50f5dfedd
SHA256 b9205cea580d5451b79dcce95c0671f2795cdb9c8918737d357bdba3eec68777
SHA512 1ef9aca8e02e205acec30073b6e051c3d1ca46f1ab64ebc97a8041340f019de6621e7d6b592ed5a112e4e7718a139dbde06d0c3aaa9e43da918a79b62e6aad4e