hxxps://brave[.]com/nl/

Analysis

max time kernel
299s
max time network
244s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
06/08/2024, 10:41

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://brave.com/nl/

Score

5^/10

discovery

Malware Config

Signatures

Drops file in System32 directory 2 IoCs

description	ioc	Process
File created	C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF	chrome.exe
File created	\??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF	chrome.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133674145178100837"	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
3412	chrome.exe
3412	chrome.exe
4128	chrome.exe
4128	chrome.exe
4128	chrome.exe
4128	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 2 IoCs

pid	Process
3412	chrome.exe
3412	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe
Token: SeShutdownPrivilege	3412	chrome.exe
Token: SeCreatePagefilePrivilege	3412	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe
3412	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3412 wrote to memory of 3312	3412	chrome.exe	83
PID 3412 wrote to memory of 3312	3412	chrome.exe	83
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4664	3412	chrome.exe	84
PID 3412 wrote to memory of 4692	3412	chrome.exe	85
PID 3412 wrote to memory of 4692	3412	chrome.exe	85
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86
PID 3412 wrote to memory of 708	3412	chrome.exe	86

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://brave.com/nl/
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3412
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7fff226dcc40,0x7fff226dcc4c,0x7fff226dcc58
  2⤵
  PID:3312
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1904,i,9159984884690699153,17906693573104542227,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1900 /prefetch:2
  2⤵
  PID:4664
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2148,i,9159984884690699153,17906693573104542227,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2160 /prefetch:3
  2⤵
  PID:4692
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2260,i,9159984884690699153,17906693573104542227,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2256 /prefetch:8
  2⤵
  PID:708
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3116,i,9159984884690699153,17906693573104542227,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3144 /prefetch:1
  2⤵
  PID:2900
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3124,i,9159984884690699153,17906693573104542227,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3176 /prefetch:1
  2⤵
  PID:3032
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4740,i,9159984884690699153,17906693573104542227,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4620 /prefetch:8
  2⤵
  PID:1380
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=4988,i,9159984884690699153,17906693573104542227,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5044 /prefetch:8
  2⤵
  - Drops file in System32 directory
  - Suspicious behavior: EnumeratesProcesses
  PID:4128

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:4336

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:2124

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\8361674f-9e72-40c9-b0ef-2f73f96a1e68.tmp

Filesize
9KB

MD5
9c42516ddd90bd85ac658bd68905b19a

SHA1
bbbdce7517b17c0649a547126ff36a8bf3a62211

SHA256
4f1c4cd927fa154ddd49cd68d49a23be0bb522db529802dbd7b3d00de34e32b8

SHA512
5160c258a0a6fbd005df25182ea5c0599300ce3b2474bcb99e4f4549cb08e11232ec8fbfc441a0d7b320d2f20d4c03c38339f599ee4be53b39f4e003da53b4c8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
408B

MD5
55afa8ffad33e0c8c4fd1c96b3e6df35

SHA1
810f6b68b1d025a4287eda7a4bd60847db4dce0f

SHA256
0bcce63385e092e2fd5cab1279bde405cbb5a5dfc06b5b0bfda84ff1f7cb1b31

SHA512
f12e25b916bab241ee7c7d8a7d61381370515f3784ef833f4130f31854481db3411259db5735e972c961b1ccd2b0451687d6a20ebaae5c6d84de3567fc5ed7b5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
ed98bd76205c727d66dc2e9744e7cc88

SHA1
1806025ec0db40bc6e578aac4755b358d2dfffe6

SHA256
4baa4ac1514d7c513262f1d2bc88005206cce17509ff1ecff343862600658c7e

SHA512
0c54b73924194bb3e4a7c0f8f8ea46ff2f091713ce6a175d80c3a9cb1698154b6dcfc178c80af9c398187492f0c14e1a0d79404e8b763746c68104591414c558

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
523B

MD5
8fce5ea8365de3c27c47ccf7c65f4306

SHA1
2743ba9825ee5101895669d67c7d0a6b535f6824

SHA256
a5b9135c3fe65e04941350bf1c0fc1f09ed54f72053c2c2f976fc2c15a862256

SHA512
268e84498caa562acef6ceea7b8abae978dbb6eef727a9db03365206797700e95ad51fe23b79bf1c0b385bbbf8bfb3dd49ccf176f659d9274145e22518bb77ba

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
1ec8deea87b503a6ecf48d9daa267fb7

SHA1
f1a0fa49c6091a9359f3dd51d731abda751e7b41

SHA256
c7977c979825d91e10d03ad44fbb30cfdce6bbb579c4e9b9c580b528530dc613

SHA512
832e0ed899a1e505085c52822c8e296886aa0eca1a0f6f0ea17111f1fce8f2b1e8c895d8a5c1eff0fb6ff2b29d364d7bbb535fd4288de24d59df68ebcbe53748

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
8016c2c16c514b580655fdd35e50c952

SHA1
318b253e8a42fcdf1031927a605c475021a10a85

SHA256
1b0c32c5c863690c796586d609a3b1b42150a78c587efbb177663ad69b3444b3

SHA512
b81d4f9bb6414001b5edbd0ab25d870dd260840044352f9311b41054ad3701a85256956611aae1fd2208288b692df9bcc317c4cdeb6d53ad6bdc4e0abb544c36

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
a1d94cb96e2cc535aa95efa96473e79f

SHA1
29a719afebded083620a7583f7695ccae1192df4

SHA256
e7667480e756a4904eb3cb16aa56d86a396e9d8ca1d65d4acccc2b46d0574930

SHA512
d6a7a1b16f81163884239000785f097ba7888dcb8598a5159efc8dbdb5e1ba90ebd5ffd78593404855e97efa189d9ec7b162e0d155a769665a145ebd5b518b54

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
4ddd409b7621b9de0ecc179384beacca

SHA1
48be800126e1ee62c327d8212a058d502c2e1db2

SHA256
3b59139f08119fafc65a92026d246b943c49f9e221e4f24a922cfd59ae4c5b5a

SHA512
ad173c77696c36b88942a53b5de0ef5b55fe96834bf56e0a64fb93973d4a56f7652692cab31077f84bc6a45d59ef8750c772ee1242684856655a6ed8daa905b1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
703530504df189f17ec89f1cd6319018

SHA1
944b045c34750c4df15486101480dc702460d7df

SHA256
e63f61e9e661c21558fa85ca12351efed276cdeb7a00afc11ca94a9e7209f243

SHA512
05edb58c79a41bbfb1f430237f7443f7c8bc62ffbdc874a4bb675b78cac2ff09639673d65b0fa7ab064c957b06917f17a72e939a3999644611478990a988c557

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
74319ae1ed935a04ded7157bf3e76fa9

SHA1
0a584b73888bfd068229871f6ccb69dc2dd9b0cd

SHA256
a9b23d7f32d8c1a8f7dc686559b588883c87921d69d14619d54d2b96f967a13f

SHA512
49971d53c08a28e7a6df9ff4bb1d901f06d0c827cce7f99ebf1a3a117f4426560b982f120257ce07e0fe2a0fb6afdfa1d5b847411e21b00a6cda00292030ffb9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
79d9350b0738ce1f5de4784fe8e3bd27

SHA1
8581923e6a8f7daed89435a6b3b72819d6b8f4e3

SHA256
785a39701246ee981bd2f195b7e9f59e3e5a56c0929aa96185f419fa6d03f32e

SHA512
ff647c9ec1e35b0c2752c3fe723069b39b1d1027ce520c5c46f79b72ed29f0239c10d4e5f36525e05723f9a46454c60ed507b43aa2f72399edd3bde24216bc66

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
38bc6c04e930b49cb923a8f05e8d8bda

SHA1
548d1cc850fb109ad190a0257b69cb7270f7a091

SHA256
4290cac8539e6dca45f454a4506d731fb6485656512fdb3837dc9e05f526fa55

SHA512
9caac27c8e956eb7fd90cbeccfab25a303667068b2b6d7b9a8515a49c0b8182488b4798a46b014952b03b5400b9e4bd38064585468af84cf94e8a928a1fee549

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
d4d236f6b1e372b8edd873571351441a

SHA1
b5cbe6af4ef2b64ea911c831dfa955717540a93e

SHA256
68d0806e3620a2cd524f4b3406f335fe805b3764cca31e753c59217f3b845370

SHA512
03381f26184e57bea1d98338b45aa9f3dc8e0ec4d461fa575992af9275b932b8b5658a9de7a09ac4a6f7a8b1cc9b433775d19607406dffe2519ac27a30b7480d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
f7818cd6ee9931ad583a66c9287c9541

SHA1
63a95cdd71855e4b655b57606baaf5ab80dd68bf

SHA256
10bba9fa842c2cd398bb48e807ae8cfed33726ae29464c2e70d29b77376b6f4e

SHA512
0a33f37b681d1935504a3cfed0e66f0804484d8fe9cf11d112aedc464b8db8a83febae75265cca034b71ba2a9a2cf398c0c869c34b89651da783f3732bad600d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
05a3a6a3e1148f51e11ec1dfeadb6119

SHA1
ff562150c710e985e0d0fd9277c243a07e90fd9a

SHA256
30107ad2c90265ed551724e6261757d9fbad23c27dd3e33968ddae725635af14

SHA512
8160e47d2eb10ba64fd38a6b1ed6176371bb7b27ba84dc7d593c727f2fe039ff3eb0b98ede94d965f814a2bf1d7deaaa1adbfef84fe135e511da6a4403c0ce76

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
f9e9944ecff143c540420a67691a830b

SHA1
ec224ea94359091f1e9354c59e963a52a858e15b

SHA256
49750802b93e02d8d5a5bc64599e1b053b161fcd38d73dd547474a859d991623

SHA512
ea9629967632301e57493dfbd5c24dd1fc399b500ec8392ce85021237ae99fbabf299f09da212b72d97f5ca142ed31a95342c97f0bb7485cb42b58eb93427015

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
ced3daa8514b57713df2a166e345e6b5

SHA1
bba838970b921744cb32f02c286082eb225e30d0

SHA256
fd4d962581e493a359a7daff805f1a337c065fa0f5f642dd136eef24bb04bd26

SHA512
4c33d8be834a7bd09dddc6b45dc8fac346475babde2adf6c2fab0b1fa626a391e509db36b7762a3bf43a78b175bd2629f0fb804208ad3d9019eb6fa45d7f06bd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
0544fc6c03d74e9a7a61268315b9f19d

SHA1
561c3c1d029ac4fd62fc2993562a19151c08f078

SHA256
e7ce55827943cf8845f9e923b3607a42405ed4a0ad1eb4f36db020e96e80e1de

SHA512
a6f9d4ac5309109b13c5656f3d0c6639d22093db969449661b2af5219dbec4fa0bd88dd5bcc35f9937e74c6bbfd50873fb7125d0aa213e72e3f3f1cf56b852e1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
0c46769997548e18e11870b9b8fb3695

SHA1
39df649e5b68d926bde720b30125e4d7a7185712

SHA256
42ecd013fef2ae14f9e646e5142c276a44ceb098b79f28d9296a40fbe8a6ed3e

SHA512
670a8c8c85c23629116a1b7a8f99f7c364eff8e8af037e65e6af83a9db9fdcfa064557537269a39745389dc63bf8467fa8e704623d8557907ad9a41d25605a36

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
dda7e3e479257fadc8445cebd1fccdae

SHA1
02509c455903010fadaf53cf6720b78f4f838960

SHA256
f7a0b5d04c5212f56dd9501a9d48f224e3d2cdd563116f86447110d53db00131

SHA512
a079e9a646e0734a5bc913f21c9e2870a26fcc706a5e0e50a88e8c877141b204fa948fcced46f04fddbad4aa880e2f3a83fb74c9f255a1124c1a46ebb5a4d3f4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
b77da1e83c2e53b6c8fab350c67b00b3

SHA1
b67c5cc798aedc4a9fa0871b2465e2f5f0591ccb

SHA256
3ee29fb6f4a8c004e433be0351dcffa7d85a63bc19896ddc0d05eb732f6caf28

SHA512
b419ac1810632b3724080e88e5c42956f637d1b214f23a5b68901e18f9cc81f8bf0a384c32fad881eead7fab6e833857183fa547123b2dcd89865c627d9886fd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
d64b728f56d134ced325f4d3bed97986

SHA1
9e5c16aa0f11995a47d56d4462efb18eea03dc2f

SHA256
0e35e2419ebe9566489f1ca4f85ad2a1979bd0e94789e0a35130bb1a6273c8b0

SHA512
4e417b2cc2386c7eb055cd62cd69b60f2f2d7c8f21655615a135b4922aeffb922983c22f126dd268fff524dde16b6b75adc770d87e56d782c5f646a3ed09ab07

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
e1251277805917046d14730d465aef36

SHA1
52a27f836d0f1e1848fde977e3750e89f87493d5

SHA256
b4103e7fdbc422ef953f56055c0bb78751a37631f90c7259f13a178d573842aa

SHA512
73c52c96b1cee111f59e379f3ee9ae6e7be9ef24c8d300e363ebfdcf4431ddd715db44de5e9a8eb3a45a9581bc058d4f72b1d82db28e4ba8f4acfb9c883519d0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
99KB

MD5
3513a9f615a1e91069d8bccaa2bf165d

SHA1
4430e8ae185b56e3682eaccc0f9b519d3e7f1026

SHA256
bccc04b24fb09455ffd39b2612421e16404c7b24c381fa05ee24aafee101916b

SHA512
f2ee2583a66ab163cfd0734307c82b808642a7b305a59ba464484f01b21c655d1c41ae4693942c4b213b13b2b1ec41ae05d28322eb4c22a5bc59c074eb817037

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
99KB

MD5
f308de1aedb7e034107090bff34ffa99

SHA1
32ffdee593e4a323d8be07501049e19383d4cbce

SHA256
e289423eba0ce9fe6bf50f577b6d253a5dd13f30be57c2fdbf4f7241c6fe17fd

SHA512
a9d4079f24545bde576f55255659d7f447fdb8ea72a500a210cdafe254fe4fbf97f03badec6a94fb0ed11d85c8344cfc54fec5b0bc969dfb1d0e333cdac7e550

Download Submit