1c664b4e8c029d4bf45836f4636445177cc020c03d5fbbb2a35b27a2f5c860bb

Analysis

max time kernel
185s
max time network
185s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
10/08/2024, 14:52

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Bark-1.5.1.dll
Size

6.5MB
MD5

c5afebc4d9076df032ea86b096e25b41
SHA1

fb724dfbdaff027b9c9d1ebbbba18377fd47df07
SHA256

1c664b4e8c029d4bf45836f4636445177cc020c03d5fbbb2a35b27a2f5c860bb
SHA512

0a1a9459ad2594024c294937499fc99d6930e5bc757a39874fcc484ef50086467dae698e0b9b67aaacbe091195dc7ad174dea5d6af9f13c82e29af0c167d54b3
SSDEEP

196608:jDFT/qGdWDufv6GDSUpJedVJ6uiIMRy3DGb06Pe9:jZTRdiXGD9pvujMR6DU

Score

8^/10

discovery

Malware Config

Signatures

Downloads MZ/PE file
Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133677752582939576"	chrome.exe

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
3832	chrome.exe
3832	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 7 IoCs

pid	Process
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe
Token: SeShutdownPrivilege	3832	chrome.exe
Token: SeCreatePagefilePrivilege	3832	chrome.exe

Suspicious use of FindShellTrayWindow 35 IoCs

pid	Process
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe
3832	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3832 wrote to memory of 3960	3832	chrome.exe	111
PID 3832 wrote to memory of 3960	3832	chrome.exe	111
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 3680	3832	chrome.exe	112
PID 3832 wrote to memory of 780	3832	chrome.exe	113
PID 3832 wrote to memory of 780	3832	chrome.exe	113
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114
PID 3832 wrote to memory of 3084	3832	chrome.exe	114

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\Bark-1.5.1.dll,#1
1⤵
PID:4712

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:4244

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3832
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff8ad71cc40,0x7ff8ad71cc4c,0x7ff8ad71cc58
  2⤵
  PID:3960
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1980,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1972 /prefetch:2
  2⤵
  PID:3680
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2064,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2160 /prefetch:3
  2⤵
  PID:780
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2288,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2608 /prefetch:8
  2⤵
  PID:3084
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3172,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3184 /prefetch:1
  2⤵
  PID:4428
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3220,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3236 /prefetch:1
  2⤵
  PID:1420
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=3712,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4600 /prefetch:1
  2⤵
  PID:1504
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4876,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4848 /prefetch:8
  2⤵
  PID:4480
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5024,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4896 /prefetch:8
  2⤵
  PID:436
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4484,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5124 /prefetch:1
  2⤵
  PID:1852
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5356,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5360 /prefetch:8
  2⤵
  PID:4344
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5620,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5628 /prefetch:8
  2⤵
  PID:3644
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5636,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5168 /prefetch:8
  2⤵
  PID:1484
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5580,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5608 /prefetch:8
  2⤵
  PID:4120
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5368,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5564 /prefetch:1
  2⤵
  PID:3696
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5768,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5644 /prefetch:1
  2⤵
  PID:2028
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5528,i,4887122437447774332,3408044209967849926,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4904 /prefetch:1
  2⤵
  PID:4056

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:1672

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:4296

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\76c9d8ce-1d81-43c3-89bd-8033ff686749.tmp

Filesize
10KB

MD5
6bcb2ce6edba9ca1c331d179bdbfb6e1

SHA1
3ce93a0e1be8448aeff5e4d6232431e74dc510aa

SHA256
0409a9a2f94d99cc05fc162ce49286524eb15a5da050b5d703eb0544386c389d

SHA512
4686aa6f5e1fa3f4565ebdaa4211a4bdd64084cf6896d88b501026588281f05f08225bc0073d33ba00503145ce5f7c9bfbc83c777ccce105f400a24645ebe5f8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
6bfef4dcb94313e6e00216e04d0267fd

SHA1
d455474a0b0ddb0b5748829d972a5acf181d2a7a

SHA256
0e8e97802277fdc9ea64d8bd9ab1be2800d5cd71251fc65d1e5c5d7289e188a2

SHA512
7ba0f749a604823c0ec79fe43a7a45fc8457ed2b40e2df8078ad3b50ac708179f3bbeabf67563163abdf62dd98952e284944b32998e9887b70a15c42407bb507

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000002

Filesize
37KB

MD5
93acf02790e375a1148c9490557b3a1d

SHA1
78a367c8a8b672dd66a19eb823631e8990f78b48

SHA256
4f2513f353c2cdd3177e3890f216ea666e4eb99477a56a97ff490f69a9833423

SHA512
e6354f4e4d35e9b936a7ddaebdd6527c37e6248c3f2d450c428903a32d77439cab78020a45834379cf814a79149c3dddf4e1280b9d06a7f972e5f8e61c463d6e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000003

Filesize
37KB

MD5
a2ade5db01e80467e87b512193e46838

SHA1
40b35ee60d5d0388a097f53a1d39261e4e94616d

SHA256
154a7cfc19fb8827601d1f8eda3788b74e2018c96779884b13da73f6b1853a15

SHA512
1c728558e68ed5c0a7d19d8f264ad3e3c83b173b3e3cd5f53f5f3b216ed243a16944dbe6b2159cfe40ee4a3813ca95a834f162073a296b72bbdedc15546be8f8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000004

Filesize
21KB

MD5
a6d2a865e9f16ea305950181afef4fcf

SHA1
082145d33593f3a47d29c552276c88cf51beae8e

SHA256
2e5d94863281987de0afa1cfd58c86fde38fd3677c695268585161bc2d0448a2

SHA512
6aa871d6b2b0d1af0bda0297d164e2d685bc53f09983e5a4e1205f4eb972a2017323c99c3cc627c3fb01381b66816e570f61d013d3775cddad285ac1b604cdc9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

Filesize
23KB

MD5
bc715e42e60059c3ea36cd32bfb6ebc9

SHA1
b8961b23c29b9769100116ba0da44f13a24a3dd4

SHA256
110ccd760150c6ac29c987ee2b8f7c56772036f6fe74ff2fb56c094849912745

SHA512
5c0edd336a6d892f0163aa183e5482313dd86f9f5b2d624b3c4529692d70720f4823808f10ee7870fd9368b24de752b343570419fd244c33ad2d9cc86007bedc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001c

Filesize
210KB

MD5
48d2860dd3168b6f06a4f27c6791bcaa

SHA1
f5f803efed91cd45a36c3d6acdffaaf0e863bf8c

SHA256
04d7bf7a6586ef00516bdb3f7b96c65e0b9c6b940f4b145121ed00f6116bbb77

SHA512
172da615b5b97a0c17f80ddd8d7406e278cd26afd1eb45a052cde0cb55b92febe49773b1e02cf9e9adca2f34abbaa6d7b83eaad4e08c828ef4bf26f23b95584e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
bc7de15b9271c7b07c86d21d0301e80b

SHA1
7cdde1e6cc55e117035eacf79e3617c39337c688

SHA256
1ba9286cc58067e9056b0d77c9a1d361dd8e34f2809f16f167eb541ee2bd5cce

SHA512
80eefb32aef7eca8fb1f460780802a3ea93d5e664d7817b59a4597c3574facc082590bc6578573f1dfd6eff6c3a6b2fac14af118a0ca34ca40c572ad25514982

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
01b44bc8156b14933dae78f982212584

SHA1
77f637b99c768d8c65f2e410f61977b6a2e4f732

SHA256
74f76a8ce9064df90b0c2d58baf2676ecd58192e18d734f568a06ad032e90f43

SHA512
be36bfb7454eb87b1c3df5a08e43df4848ee3d2f92b2caf7fc1b49053ac85b824fb11934d97786c4ebdb623c79e8f16169948679272cc95148f779bc553ad7d6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
83836fc5961c60e8d6b9479c4f48d886

SHA1
2d9666885f9834cd467d96334c777b94c9a3dcce

SHA256
35417569d0b93da2797dd1761211bcf425fcae2652063b4b8f246291011adc91

SHA512
759ac5fae5c497be8a73889e08283824f427d7ebc281ff858ea73b6c08209e0fe35ab621bd252a48636dfe2da32edf6702b525ee554af74ca53888fc5239baf3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
0fde972bb6e200a6d22a8c3d1d5ff579

SHA1
9f27cd2a30dce1d27d55f50ad1c558e8c395a0be

SHA256
9d45a60ee5c03dba47b01448f63aa794c0b1907e9eac0ab584527c841089aaea

SHA512
9b628d28bb57f5052058bf9d835d592347722b26a1f4954c6e5064ed832b909aa55d0934c80b9b4deecc7f93b32e78ac99d980d1a932749a20265b463acd5432

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
691B

MD5
e19cb1745e37d22ffe22ae757e3019f4

SHA1
f6a27e9e2d0cfefc1f152fa7307f6e42b1f209e5

SHA256
c9f9db5490bb31a016ceb717bff040060289253a627d8a6b79157b8dabcb99dc

SHA512
00fd3f4839f888f9b6529c07e6d634cc24cb199b4ad6cd506753c270315932f5d60b1040585f59ac3bdeb6b6c668bc2aba82dcb8bc7503f9b981b6209e7988b1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
99c75d1adec8f3b060868a337d97bcae

SHA1
644779124ceb9084cadbdc24b0042d970f4d3958

SHA256
26f0fc43c0f60cac58ff03f1e2225e4dee8b2f03f029183464a58f79f9e4f1c4

SHA512
ac3332a9a213189653ceeea01b65b753d023019886baade226b0dcde45589e3058a2e214b50ffc8b0cd625cc50ec85b94d6dd12d0a295e0c9ba9decef6811148

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
2006bdb011411054de664fe58bba7091

SHA1
af1867e77741260ac209c09ea1d3d98c5fa4930e

SHA256
e91b4d60ac2247579518e79a4c453553b6491ecf4c12b8dac47c6ec1f199e420

SHA512
6c58d2ba03aad21fda1b8b135da6d29548bc70470b2b84725a97ea3c910705d936eb6386252c7da4f1b6acd46c8b0cda2f7129c4f85f0ed95fca8cee5e509b88

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
2a54d1f453860da0baee973ecc32ff25

SHA1
037b4a22f6165a40ad587ae49dfee63171e1a414

SHA256
612330ff35dfec8201d7c4bd59b9c4a35d7a0384656cd2cfd7b85dc29a13ff4a

SHA512
e8c8044ebad9cde2afca0a7be92d2eefb13393b358c567e41bb99f7f9f850af743809c8873e87062656113969801063835df829305c645f0f1420e945750d88a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
8ab1d6780651bb4e0860bce40e0ea691

SHA1
1d1ae6ccbb8f9d43f889305159c3b2a06bcdc446

SHA256
c623a307d781f4526b721f601df8f0daf67e03e025f47546b2729b54fdf05d37

SHA512
9e3a3e48e6979692daf64360542f0b5f07afa7d8c7f3258185e1520812db2e94741a8064f649c6693eb59aac9a4e0e29a88e73e47afcd00001089f406962fc47

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
659590756f3565c7c36ef72e6a3cf7db

SHA1
ba488c964bca6952c65668b5e39deb6c9c4aa677

SHA256
be5a8482e8a00057409f71494129d0cb3678bf01ab661d08e502927028a859f4

SHA512
a3d6a02da80c8c8112c15de689850ab6c129edb06ce18423f44e3522a017c4b29b89c33f74b3209496ae40b60e0655a3f0b8409d67551cf3146c83962676d3c2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
6b8b768ce3cf856cf31e4e726dedc077

SHA1
5896b55175a03d154f6111db5fffdce00d464478

SHA256
e0d5f0a6fcb07878626f609328ac0990acf310d114ad0275907353ed1cfeb085

SHA512
dd51fa583ef78083026ecfa66e4998238d070ab28c9396161aaa9d16eb02ab2d5f6ae37abe1d967654be2e8fb52f3c49bc9e41037e1906cc89b9ae63dfa0aa7d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
9d64c0e8055a701e665644c3a58de192

SHA1
ba5055332d5182ca1b921ba217042ac1d0adb7f0

SHA256
356222444fb3d7be0b69a36630c9713c99e4c524590d757d219bc5f3518b30ae

SHA512
c2b27d634f3f0789c89fedb15dbe9fb1a97082101a71b8c14744fd807f0b3ecd25e0eb58f401668e1040bd7f28e3bcef279dafc65ea2fb22d6fb1e0a98df6dd6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
4331700bc4bb2e4fdd78690f379eaf0d

SHA1
34ebef3c0ff6c9d4a00e7d2ff8129c2d14d159a6

SHA256
121c1db47115d64bbcca2c820b835a7033bd738032eb5cde9073d393541c3378

SHA512
03e570e1d92120efbeff244c42e985a5d25269a0833c4e347ec5275051203f409a7f118b44696b0c1b3cb8c334be7ba371b990888903364707b694fe4efea6bf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
5eae1a76fef0cb6feebea53b0cbfc95b

SHA1
7988f40af7b5fb6cf2a543df6e98bb57223aaf3f

SHA256
bda9635b18c1649de1e8abab08245f45c50c32c7466a586d1347b5bc66f88276

SHA512
91536f4e06fefbb27d4c3d961d2fc4cf8515818139cb9c0a063419c52858984a713615375c0a8789da9fcb89721d96716829ef0205d09b2a1c620ab45fdd1040

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
7fbf565be86697179da4ed3a0c35ad68

SHA1
b2fd5692a469465eb4f8c48a0f5ba5ca8074431d

SHA256
04770aaf7fa18af7f87e776b7d20624955310d48567dffd1cd5b7c48c647527b

SHA512
b73fae0a8ad27f9315014aedcc8f444699713cdc5105712de95ec5cb31d553585213c5ae510636acb337e05ef191dc7c1b3ecc5da07192c76d3bc7c09a004d52

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
15KB

MD5
97f09719a6055f1b537aa39719edbed5

SHA1
7e5a5afc133c94c933d77badf1ddf5035eaf8a56

SHA256
d2f1852c91cdef0dea34ae91ff04916dd543dc9cea254d9a2eca5f5f17ad7535

SHA512
c14213fc2cd20abd94f72c225814703487cd93b51dbba5958c7e6084066859ecc1d6c4aa6836db82b9081e699762de4e0bce2b2c004b95b666d0a621c585b23b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
194KB

MD5
af76053a82b51724ecd31a776cdad135

SHA1
090bd35e9de425d2ef7774a256993fb966a56dc0

SHA256
e8f58c6ac4894ad32190fbd92ad5b59d5ffcfdc3d15eba4436002e84f208f143

SHA512
f53197865269879a858688229f4f663b62a852263d1931777fa2951514b15d62fc6f02433971f05b8ebfb9909ecc1d1a035bdbf7328120ef4c5796bcd4317123

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
194KB

MD5
d169aec710fbd7d789bb4c2985681fb2

SHA1
81b5cfd136925b7eb7923a0ad3e31735cd35373c

SHA256
c10938ff8ef839c066becdbe432673d0065c81c227d409debf0e94a546b653b5

SHA512
db174c9d9fa903a2994915bd1348969efbea2a1a0f5e916f7c32a0fa3c60162cec23e49b54da5ca50939b655b40d7c6f5972321b33f794c91fababc9b350eeab

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
194KB

MD5
3c7b6349b5383a2d5bc4f545a9f6a8b1

SHA1
cc3057b3f70b834360e11200ffc71e67c8c73e6a

SHA256
ed13d979e25d489ce22922a6625756f5e7e0b9c400f026f124e5edd57a747a3b

SHA512
87beec1658189c1ba25e218cbc508600d0a67accc0781d9efdc1f5c7d3d2af6f8d089eedac2596482fba2eed647062cd1eb6320b9e002703abac5e2237e9eea5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
194KB

MD5
2cc3350185abdd4b678c945932c1003e

SHA1
fd508704fe7f9cac53881939527ef779141b881b

SHA256
35751095965fab950da4afe2ef8447bd94d470871a552861bb4fa188fd7f7434

SHA512
57001dbc7bd2eeabda01493b832b938408f5540c1512be445ddd6ae3b4dca59babf46a63ef0acbca6604eee013c8fd24c0602f06eb3e750daf5403f5a955cdf3

Download Submit
C:\Users\Admin\Downloads\Unconfirmed 2995.crdownload

Filesize
6.5MB

MD5
c5afebc4d9076df032ea86b096e25b41

SHA1
fb724dfbdaff027b9c9d1ebbbba18377fd47df07

SHA256
1c664b4e8c029d4bf45836f4636445177cc020c03d5fbbb2a35b27a2f5c860bb

SHA512
0a1a9459ad2594024c294937499fc99d6930e5bc757a39874fcc484ef50086467dae698e0b9b67aaacbe091195dc7ad174dea5d6af9f13c82e29af0c167d54b3

Download Submit