Analysis

  • max time kernel
    128s
  • max time network
    132s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240802-en
  • resource tags

    arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    07-08-2024 07:25

General

  • Target

    http://[steamcommunity.com/gift-card/pay/50](https://sc.link/qG123 )

Malware Config

Signatures

  • Detected potential entity reuse from brand steam.
  • Drops file in System32 directory 2 IoCs
  • Probable phishing domain 1 TTPs 1 IoCs
  • Drops file in Windows directory 1 IoCs
  • Browser Information Discovery 1 TTPs

    Enumerate browser information.

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Modifies data under HKEY_USERS 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 6 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 9 IoCs
  • Suspicious use of AdjustPrivilegeToken 64 IoCs
  • Suspicious use of FindShellTrayWindow 27 IoCs
  • Suspicious use of SendNotifyMessage 12 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://[steamcommunity.com/gift-card/pay/50](https://sc.link/qG123 )
    1⤵
    • Drops file in Windows directory
    • Enumerates system info in registry
    • Modifies data under HKEY_USERS
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:5072
    • C:\Program Files\Google\Chrome\Application\chrome.exe
      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffb482acc40,0x7ffb482acc4c,0x7ffb482acc58
      2⤵
        PID:1856
      • C:\Program Files\Google\Chrome\Application\chrome.exe
        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1984,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=1980 /prefetch:2
        2⤵
          PID:3356
        • C:\Program Files\Google\Chrome\Application\chrome.exe
          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1844,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=2024 /prefetch:3
          2⤵
            PID:3920
          • C:\Program Files\Google\Chrome\Application\chrome.exe
            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2168,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=2184 /prefetch:8
            2⤵
              PID:4260
            • C:\Program Files\Google\Chrome\Application\chrome.exe
              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3064,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=3088 /prefetch:1
              2⤵
                PID:2280
              • C:\Program Files\Google\Chrome\Application\chrome.exe
                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3096,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=3128 /prefetch:1
                2⤵
                  PID:4128
                • C:\Program Files\Google\Chrome\Application\chrome.exe
                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4440,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=4316 /prefetch:1
                  2⤵
                    PID:1712
                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4280,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=4260 /prefetch:8
                    2⤵
                      PID:1236
                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4300,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=4612 /prefetch:8
                      2⤵
                        PID:3012
                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4296,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=4616 /prefetch:8
                        2⤵
                          PID:1592
                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4848,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=4856 /prefetch:8
                          2⤵
                            PID:832
                          • C:\Program Files\Google\Chrome\Application\chrome.exe
                            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4568,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=4264 /prefetch:8
                            2⤵
                              PID:4036
                            • C:\Program Files\Google\Chrome\Application\chrome.exe
                              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=4872,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=5056 /prefetch:1
                              2⤵
                                PID:4084
                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=4560,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=4752 /prefetch:1
                                2⤵
                                  PID:2360
                                • C:\Program Files\Google\Chrome\Application\chrome.exe
                                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5148,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=3224 /prefetch:1
                                  2⤵
                                    PID:4196
                                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5040,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=3344 /prefetch:1
                                    2⤵
                                      PID:4944
                                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=4832,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=212 /prefetch:1
                                      2⤵
                                        PID:3216
                                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=4520,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=4496 /prefetch:1
                                        2⤵
                                          PID:972
                                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=3292,i,4111049874755000703,924244749355946625,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=3328 /prefetch:8
                                          2⤵
                                          • Drops file in System32 directory
                                          • Suspicious behavior: EnumeratesProcesses
                                          PID:4760
                                      • C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
                                        "C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
                                        1⤵
                                          PID:4140
                                        • C:\Windows\system32\svchost.exe
                                          C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
                                          1⤵
                                            PID:860

                                          Network

                                          MITRE ATT&CK Enterprise v15

                                          Replay Monitor

                                          Loading Replay Monitor...

                                          Downloads

                                          • C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

                                            Filesize

                                            64KB

                                            MD5

                                            b5ad5caaaee00cb8cf445427975ae66c

                                            SHA1

                                            dcde6527290a326e048f9c3a85280d3fa71e1e22

                                            SHA256

                                            b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8

                                            SHA512

                                            92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

                                          • C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

                                            Filesize

                                            4B

                                            MD5

                                            f49655f856acb8884cc0ace29216f511

                                            SHA1

                                            cb0f1f87ec0455ec349aaa950c600475ac7b7b6b

                                            SHA256

                                            7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba

                                            SHA512

                                            599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

                                          • C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

                                            Filesize

                                            1008B

                                            MD5

                                            d222b77a61527f2c177b0869e7babc24

                                            SHA1

                                            3f23acb984307a4aeba41ebbb70439c97ad1f268

                                            SHA256

                                            80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747

                                            SHA512

                                            d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

                                            Filesize

                                            960B

                                            MD5

                                            049c19966708468371ba04fb697e9c48

                                            SHA1

                                            4291e2086c7bc2bb3e223b7ebe74831307a4dd5c

                                            SHA256

                                            ee19051b0872167489e126c0a52edbec6b8f6559d024186058c12aa344936415

                                            SHA512

                                            31a4d3745fca4027e6e4220459d4cf11dd8a79232a46ed8eb45db06052f59e57bf12d02197a9b15121401e3d1b94bbc09d619f1d88aa8114c17a2caa64258d40

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

                                            Filesize

                                            528B

                                            MD5

                                            6ef37a53e5302eb2f6bd0f8ebda2faf6

                                            SHA1

                                            a5a0dfcdb483c7da48a96f07eb4a5a04e895b63e

                                            SHA256

                                            1e5e42eedabda29e47968ea1a80c6ffafe35a255779d54756fb265ce293a90ce

                                            SHA512

                                            873bec806cd55a32563204851a8e71eb5c73b25d612cdb5c751f9214fe33c7e84dac13bcd196791169c052a6d190ee561e5f9010752f34986fd89242149a39e9

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

                                            Filesize

                                            3KB

                                            MD5

                                            17de574997a4afce8bf500d3ebb8c134

                                            SHA1

                                            a8654def89b937c4e2ea16d5370158fad5458b21

                                            SHA256

                                            5754cc2e22ffd50729fd32a4e26199c9087b857b7fd00f9b8d638a818cef383e

                                            SHA512

                                            ec5d8f710d9f1a8e9c7344c35d197e97f82b54f9df65c8144195b2cb1afb5d374a7ca3a6bad847f1f07e0f66c7a718d7b173dd287f21f0cf6d069440114b724e

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

                                            Filesize

                                            1KB

                                            MD5

                                            77cdfd236e8d67ba26c983408872cfcc

                                            SHA1

                                            9bcc36ba498823d40ba9a2e8bc9d3d4f573f5985

                                            SHA256

                                            069796b6f0ff0a7ab27d220afe1339a68554e696e270ac99e3c10fda750a63be

                                            SHA512

                                            868ce7645db63951a5222e37a87c945a5b7b6280f42f6d35a3f9cd7b1b93145041f46c73ab9d8aa32c500a6672c2f1665b2a93a8fb4a8c77c6a6302947d03350

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

                                            Filesize

                                            4KB

                                            MD5

                                            a31c031acdab7aa779c23c81c8eeb711

                                            SHA1

                                            adc963c08de28d33b436f782c9c76bdd8af4d9fd

                                            SHA256

                                            ba6bc063085997d1c77aacfe493ebb087557e3a757501b7ab3ea3e75aff434a5

                                            SHA512

                                            90b7c0e82295b0e2e09c9a92cde443cd232e361ee0d48d02be9d78312514d126cce22c4e50af7f892803f92b9a69ee35dbbaac3723c97f007cd94c601bb85810

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

                                            Filesize

                                            2B

                                            MD5

                                            d751713988987e9331980363e24189ce

                                            SHA1

                                            97d170e1550eee4afc0af065b78cda302a97674c

                                            SHA256

                                            4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

                                            SHA512

                                            b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                            Filesize

                                            1KB

                                            MD5

                                            42620fc0fbb476b1c0b70e792263861b

                                            SHA1

                                            a2f3b69f21dd0685fb90f1e85d86b96e36ad3e3d

                                            SHA256

                                            07a8c88fb7d23694ecbec9d45727d0b15277dea352634bda277a388010bbebb8

                                            SHA512

                                            eb424e7f22e7593d195583e40fef47de960d6c56bb640e35f7a72da606778afcefd9bd475e0ca1c1ac67b5cf743faba5e6b418e62bcae25df719a132f961f426

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                            Filesize

                                            356B

                                            MD5

                                            9ae3905de011a00c84401473a5e3c139

                                            SHA1

                                            4400f206924a58eba2aca7e2db663b0ce2c854f6

                                            SHA256

                                            13eecc41e05b51979f60089087c7decb9621eb0f2d0b389b8fa6473103401fb0

                                            SHA512

                                            6ae82e7a376a7d5aadb768e1673458918a8b135dbb08d75deab3d41e30fcb444de86f64cc1d51fa65d32789e09d3af4ac237f48ae45a7a3de290cc4540d49e7e

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                            Filesize

                                            524B

                                            MD5

                                            dace3b8f27895f41f59cbe925f34da43

                                            SHA1

                                            51ee73ed3fcab190b99e3dfad20b542a61b0fa47

                                            SHA256

                                            36180430c25f3b2e715e418b88e378d2004e1656a8af8c734542af5d265bcbb0

                                            SHA512

                                            125ba264861e6192c10abe6afa28012aef501a32b1954694d1ea9d3a7a0f56f9b66fc24051daa3e5de4ae04554966829da71094ef4bcd3b6e8a57ade595d1da1

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                            Filesize

                                            1KB

                                            MD5

                                            24c17057374193cff3089cbc00e99e29

                                            SHA1

                                            f4a2d399927de365f7520d9566a2e2c574ca426a

                                            SHA256

                                            96d9e3ea3442c15f8ed58f388f883e34e6cf9bbcee276a4f9815cb0a45387b8a

                                            SHA512

                                            e3f14a6237182a4c721c8fda5927041df792b0857dfbcde015484c20fa5cd8e9b33e5817b7d66a5b11e6b4ac7deea84e7fc4e49d7926c0010f07e9577d8a9e8c

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                            Filesize

                                            9KB

                                            MD5

                                            5909f29a3c3b5d40bc151c2ee0ac4866

                                            SHA1

                                            8134583a62254b61fb10a7daa3037befb22178cc

                                            SHA256

                                            d8e071fa5ddc124443848fb463d38b40e3b6131148d6283f259c8135a0366100

                                            SHA512

                                            70f779173742bac96bbe68a16d2494da1d1b08d82f6dc1c0d89a8d8f6416a51182f4375722ac8b871a799f7cc3673dab2e1894d31863e319ebf18213a6a57b6e

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                            Filesize

                                            9KB

                                            MD5

                                            a5ee492a77a7801e0ff9f4dd0c14befa

                                            SHA1

                                            c8b107b9b5e2888f3eced23911e404bbdbe8b780

                                            SHA256

                                            a7df02a4a38d0ab1094b7bcc7df40ec3df33a27ad5b3f83008ed712a8a684bd7

                                            SHA512

                                            9acf729c872833453a2593cb01a290383bce6170629ccc006b9c6f2f5d48036ecc839300eb7b616fc9281e5dab406329a2d41437afb8b77bef606cfa69d07ecd

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                            Filesize

                                            8KB

                                            MD5

                                            cf444a0a069baad509308c6b9f63b981

                                            SHA1

                                            a5a9b28f659f4f6ade8136ab041d790e475afed7

                                            SHA256

                                            56574e00953c79718247c507058c5b01bfaa58af25a9672a39bccedd0044a6a8

                                            SHA512

                                            a8cb4d99a7e200ae1b157ab7f7835acfae5f5e297ee4ddbdc50e3b95f304fce2c08f1773188171684a4c91e6d87ab05cab556460bdbba48cca242a3375980275

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                            Filesize

                                            8KB

                                            MD5

                                            907c684b5bbbebac83db21a1947b2f50

                                            SHA1

                                            d1298219ce1f41650132c3e46d6bff4045e13513

                                            SHA256

                                            9cfda36ac2ae3353db35f9b0dff0ca1867bf063c3ef6cd3b50578ad3fb57c97c

                                            SHA512

                                            3b0e1070ccc7a7f195d6b73adf8b47ade6709d11a4b30ba8ac063fc0d6457b1d10b3a01bf1b446698e525b197b3c18725333191998b810f417507e459c5ab2b8

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                            Filesize

                                            9KB

                                            MD5

                                            6056d7291b4b24d5566bbebf43452eba

                                            SHA1

                                            fee8ec7c041bcc30bcffc09596be5f7703e42429

                                            SHA256

                                            d15e55dd541e37e126bc3f09bf48f6c0a0d60b92628208c6b9c78d48a1e59df3

                                            SHA512

                                            7dcd6540d8f88f5293242ea34b9dbebf78ad4e2f2d335e5064473227fbc311d925898a72c635799dd1f1de03033f5b5b7f41f1ece6ecfb5f9d649b774fa9d58d

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                            Filesize

                                            9KB

                                            MD5

                                            4a5482df8f3e4cb6c69b7addd49e9121

                                            SHA1

                                            119bbfb2b48c916fd6a3b20693596d6537db98e9

                                            SHA256

                                            9837a45f260587ebfa1944bd40e87290455258b123964d6b2330ad8ed4f0c4f1

                                            SHA512

                                            29da124085227daead6efd0480c835353a3abe9210c8639fd6d2c17fa892920aafbe20a98f5b49911353d1c7d30fb76f958a8d92af4e915824d8f4e9827a326e

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                            Filesize

                                            9KB

                                            MD5

                                            c48239ad19988a2bedd253e1a14f8064

                                            SHA1

                                            014e8289f7daf30b80c1165ecb48bfbb892236d6

                                            SHA256

                                            21e6d1c24375f1bff6e1ab5f34b76ffdd9cedfa39de14ff0e5a81601085ca7cf

                                            SHA512

                                            33d92a132a3e2739c49d16210cffbd2275516ef8851c189251e1d6dfe55eadc92eb7ee4a97ba5f2c4135425e3ae5edea16f65950d6fa7fccd58a9c260364a544

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                            Filesize

                                            9KB

                                            MD5

                                            91b1fa4cd2ee6e9f7895220078040bbb

                                            SHA1

                                            49ea21f97d4a1b3a6d99b80a1a3f7adad0dea208

                                            SHA256

                                            e963a7a4eb5435216b856241ae7dcbdf89712cc459b94288e1962c2fa2831be0

                                            SHA512

                                            5ffd5acd4ea9881a9e6ed3f0feb8b9f622974f4f75cd0c390ed6451b086b4874601af9100e3dce2abd78548589d98062f872d01865549e15275f62901d022821

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                            Filesize

                                            9KB

                                            MD5

                                            a4f5dd0db651ba4dac367284218225c4

                                            SHA1

                                            45f2f5a2689406ce10baaca82d5afd695b7e4a67

                                            SHA256

                                            7106283af7d14889ea6d139564e576c6f0936d2293b9eac10f68fa487031b7a1

                                            SHA512

                                            adc86aa489ef591cb49f0a05f0af6bc37697776a0e1b024d45ed4687f6a865c5b60a2976dec7358b18564cd881399bac579b93f4b7bc994fb9b452fad5797767

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                                            Filesize

                                            100KB

                                            MD5

                                            73351226dedf3afcae58c3fb2c4ed421

                                            SHA1

                                            3a199ded54009a18d1740f7a51e940fe2e81ead6

                                            SHA256

                                            9f3b4b555c0fb453c2b20b26fbc8e42a5d834c4ccdf99f09a6975ac4e9a72f77

                                            SHA512

                                            4056ca29e6996c2c1b635e8ec415fb3abfd887e7a391741f01573b7836c47408438366656e04ddd3631e065b9b24a19a2e0bb316ae634ed7e6222f3e4c848ed4

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                                            Filesize

                                            100KB

                                            MD5

                                            fc910b62581d812c0b549094c5fecbdd

                                            SHA1

                                            7677921a2c2c44f28f07e542b7837c10649634e4

                                            SHA256

                                            fe299d1b0f8bec90d3e177a1efd1c9087580c007475324e588d83e3842a2e27a

                                            SHA512

                                            a969954d363cdb760282216a4365dd3bac813a83da9e7c1339e32940fa24fae0958a45c7ac8a5cf01def25fbcf598e5ef02e5dd1b9558cfac22e6b57aebfc292

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                                            Filesize

                                            100KB

                                            MD5

                                            ad294773a1ff51ba830ec95e3ec56b0d

                                            SHA1

                                            a9da3dd822a2cc0e5acf16dfa1cf25f45b13de12

                                            SHA256

                                            eda7781e8efbfa3fb42ea75c270f1ce5bcf316db2c7fb4a7d60417830d5a62a2

                                            SHA512

                                            86f6c8c4bb5fd3f654a0734a0c83451dc17770e5a3a3458b8d5e00e3fa0d7bbcb40dd1e02a1ce00ca39a514bbcd16e38f34e1085d7ac436094b545dcadb9ea67

                                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

                                            Filesize

                                            264KB

                                            MD5

                                            95f6a06db3c3d70f3e9303490ee08749

                                            SHA1

                                            591ed8b9d0e86502959b7fb6e24bd7f13321711a

                                            SHA256

                                            409dfdfbdb7c45fa1e9570a58e608a8185c55b2975b749a9606da4eacb62cce2

                                            SHA512

                                            0a649f4cbd5eabe87010897d19a23c1d31cfa62c8f152bcc7bc6ea4ffc61e5e223e43829776f5923f168522b9d235dac918a4a4c7ff46ff80ba4aba46e86a71a