Resubmissions

12-08-2024 16:48

240812-va698szemp 1

12-08-2024 16:44

240812-t9bf6szdqp 5

Analysis

  • max time kernel
    149s
  • max time network
    149s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240802-en
  • resource tags

    arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    12-08-2024 16:44

General

  • Target

    eicar_com.zip

  • Size

    184B

  • MD5

    6ce6f415d8475545be5ba114f208b0ff

  • SHA1

    d27265074c9eac2e2122ed69294dbc4d7cce9141

  • SHA256

    2546dcffc5ad854d4ddc64fbf056871cd5a00f2471cb7a5bfd4ac23b6e9eedad

  • SHA512

    d9305862fe0bf552718d19db43075d88cffd768974627db60fa1a90a8d45563e035a6449663b8f66aac53791d77f37dbb5035159aa08e69fc473972022f80010

Score
5/10

Malware Config

Signatures

  • Drops file in System32 directory 2 IoCs
  • Drops file in Windows directory 1 IoCs
  • Browser Information Discovery 1 TTPs

    Enumerate browser information.

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Modifies data under HKEY_USERS 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 8 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 4 IoCs
  • Suspicious use of AdjustPrivilegeToken 64 IoCs
  • Suspicious use of FindShellTrayWindow 52 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Windows\Explorer.exe
    C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\eicar_com.zip
    1⤵
      PID:1192
    • C:\Windows\System32\rundll32.exe
      C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
      1⤵
        PID:3456
      • C:\Program Files\Google\Chrome\Application\chrome.exe
        "C:\Program Files\Google\Chrome\Application\chrome.exe"
        1⤵
        • Drops file in Windows directory
        • Enumerates system info in registry
        • Modifies data under HKEY_USERS
        • Suspicious behavior: EnumeratesProcesses
        • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
        • Suspicious use of AdjustPrivilegeToken
        • Suspicious use of FindShellTrayWindow
        • Suspicious use of SendNotifyMessage
        • Suspicious use of WriteProcessMemory
        PID:2716
        • C:\Program Files\Google\Chrome\Application\chrome.exe
          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x108,0x10c,0x110,0xe4,0x114,0x7ffb010acc40,0x7ffb010acc4c,0x7ffb010acc58
          2⤵
            PID:2000
          • C:\Program Files\Google\Chrome\Application\chrome.exe
            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1956,i,4245530574266484603,7284233365678256879,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1948 /prefetch:2
            2⤵
              PID:1248
            • C:\Program Files\Google\Chrome\Application\chrome.exe
              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1792,i,4245530574266484603,7284233365678256879,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1988 /prefetch:3
              2⤵
                PID:4136
              • C:\Program Files\Google\Chrome\Application\chrome.exe
                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2084,i,4245530574266484603,7284233365678256879,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2240 /prefetch:8
                2⤵
                  PID:1792
                • C:\Program Files\Google\Chrome\Application\chrome.exe
                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3088,i,4245530574266484603,7284233365678256879,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3248 /prefetch:1
                  2⤵
                    PID:3372
                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3128,i,4245530574266484603,7284233365678256879,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3280 /prefetch:1
                    2⤵
                      PID:5060
                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4504,i,4245530574266484603,7284233365678256879,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4484 /prefetch:1
                      2⤵
                        PID:1768
                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4628,i,4245530574266484603,7284233365678256879,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4620 /prefetch:8
                        2⤵
                          PID:2432
                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4956,i,4245530574266484603,7284233365678256879,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4952 /prefetch:8
                          2⤵
                            PID:2056
                          • C:\Program Files\Google\Chrome\Application\chrome.exe
                            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=3728,i,4245530574266484603,7284233365678256879,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4620 /prefetch:1
                            2⤵
                              PID:1908
                            • C:\Program Files\Google\Chrome\Application\chrome.exe
                              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4352,i,4245530574266484603,7284233365678256879,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5016 /prefetch:8
                              2⤵
                                PID:4312
                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5076,i,4245530574266484603,7284233365678256879,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4664 /prefetch:8
                                2⤵
                                  PID:3108
                                • C:\Program Files\Google\Chrome\Application\chrome.exe
                                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5212,i,4245530574266484603,7284233365678256879,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1132 /prefetch:8
                                  2⤵
                                  • Drops file in System32 directory
                                  • Suspicious behavior: EnumeratesProcesses
                                  PID:1356
                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                "C:\Program Files\Google\Chrome\Application\chrome.exe"
                                1⤵
                                • Suspicious use of WriteProcessMemory
                                PID:2204
                                • C:\Program Files\Google\Chrome\Application\chrome.exe
                                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffb010acc40,0x7ffb010acc4c,0x7ffb010acc58
                                  2⤵
                                    PID:3712
                                • C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
                                  "C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
                                  1⤵
                                    PID:3124
                                  • C:\Windows\system32\svchost.exe
                                    C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
                                    1⤵
                                      PID:2180

                                    Network

                                    MITRE ATT&CK Enterprise v15

                                    Replay Monitor

                                    Loading Replay Monitor...

                                    Downloads

                                    • C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

                                      Filesize

                                      64KB

                                      MD5

                                      b5ad5caaaee00cb8cf445427975ae66c

                                      SHA1

                                      dcde6527290a326e048f9c3a85280d3fa71e1e22

                                      SHA256

                                      b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8

                                      SHA512

                                      92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

                                    • C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

                                      Filesize

                                      4B

                                      MD5

                                      f49655f856acb8884cc0ace29216f511

                                      SHA1

                                      cb0f1f87ec0455ec349aaa950c600475ac7b7b6b

                                      SHA256

                                      7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba

                                      SHA512

                                      599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

                                    • C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

                                      Filesize

                                      1008B

                                      MD5

                                      d222b77a61527f2c177b0869e7babc24

                                      SHA1

                                      3f23acb984307a4aeba41ebbb70439c97ad1f268

                                      SHA256

                                      80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747

                                      SHA512

                                      d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

                                      Filesize

                                      40B

                                      MD5

                                      d56c90cf1ff6567d934977fb178605c0

                                      SHA1

                                      2ba4bf90593b46f86073a990dc239b2ef9c15bec

                                      SHA256

                                      e4961ea48767fcd80a6c626350ec730c8fbcf7c84ce5a5097beb96af7aac2fdb

                                      SHA512

                                      6dee81c94e4b04831a3087c3016666a06a001ef0f5da9dbb0a1102e2da6caf60dcbd479e47a18bc39a7f8da7c0a3024a05c2913408a8acf2c890e19b2d9ee0db

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

                                      Filesize

                                      649B

                                      MD5

                                      88644a302a89e1a02f6e366918ad49c8

                                      SHA1

                                      f299190285e1a1b40ada2d776826a2dcb530450c

                                      SHA256

                                      29890d069411adb5de341e48a26cd12ea19145db259b20b7ccc8ee9fc1904f51

                                      SHA512

                                      31df90415ea0be64577eb7ac7ecf7a858bb91e2ee7e32b6061d6fa5ee036ab93d81753061246b48f2f5d4e1be7ce8758d1962e349b6016c6ba9f8776c5297a5c

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001

                                      Filesize

                                      210KB

                                      MD5

                                      48d2860dd3168b6f06a4f27c6791bcaa

                                      SHA1

                                      f5f803efed91cd45a36c3d6acdffaaf0e863bf8c

                                      SHA256

                                      04d7bf7a6586ef00516bdb3f7b96c65e0b9c6b940f4b145121ed00f6116bbb77

                                      SHA512

                                      172da615b5b97a0c17f80ddd8d7406e278cd26afd1eb45a052cde0cb55b92febe49773b1e02cf9e9adca2f34abbaa6d7b83eaad4e08c828ef4bf26f23b95584e

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

                                      Filesize

                                      216B

                                      MD5

                                      c054e2867c2a5af3a1e75d627b46d653

                                      SHA1

                                      9ea2be7c59168a9bab26d38decc4ffbd5080b262

                                      SHA256

                                      f39c5bdf160542cea8102674c6958c8b5ab195977486e256aa1dc1859606a84d

                                      SHA512

                                      de4881c870be02b10e878e50401a8bfbd19c8a28991a3d17a89385cf00fd9c8218c4f76322a28c26fe19bc2465abf8cf6825b2813fd6d14884ea9292d132228b

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

                                      Filesize

                                      552B

                                      MD5

                                      5517ab8a3dddbe7f986b1dac72277777

                                      SHA1

                                      c5d1960fd23a27c0b4863b8885f647b82ae3271f

                                      SHA256

                                      bda51b4c7d895ebf19a380e0bf6d5fcea528ca8ac098fa604e79cc2901a274ad

                                      SHA512

                                      e0e00fcbfe1f5a2763833210059468c37c9ea237d2783596bfc23c97ac10cdb8e1c56c460c4891bded910febc99bb36d078530dff9b9c83f537bc8dc48630b86

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

                                      Filesize

                                      216B

                                      MD5

                                      ea08fc262b5d57a24f546d2d1a572ef2

                                      SHA1

                                      ae87d073a74402b710b849e5b574034c96154aed

                                      SHA256

                                      ace8c27f943697c88799012e37cbdcdae51203066f8cf0976ef5854b81d09958

                                      SHA512

                                      d584922010ac01ea084b0679e22e328027ec530a05a0cc72a92c96e93e168719e2bbc1306396b7b4fe57c3daf63ecb7c1d3a1c6f3d276a03a3180bc1d9b2eca5

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

                                      Filesize

                                      2KB

                                      MD5

                                      159528275492239a7f4c8cd80b966189

                                      SHA1

                                      d9e4a21db6bd84765b9ec756aa62cde82e10ea04

                                      SHA256

                                      2ce4a4c8a5d74bb89afda3756f644e426304cb524d6a876ad5e660766d117a13

                                      SHA512

                                      aade25d8648ce62a2e09da683de04bf261b84367b35d1059f3b690959f5506ffc6554bb9e112eff5d9f6e73a03f4ae4c3972e495387f4bd8e2ea4b8d92930354

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

                                      Filesize

                                      2B

                                      MD5

                                      d751713988987e9331980363e24189ce

                                      SHA1

                                      97d170e1550eee4afc0af065b78cda302a97674c

                                      SHA256

                                      4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

                                      SHA512

                                      b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                      Filesize

                                      356B

                                      MD5

                                      ae43b6c8887dd5aa7d04f870d0c088ac

                                      SHA1

                                      4d90f4647ded9c085368d8cb8363ed0e6fba7e76

                                      SHA256

                                      917a1908847aad5e58c8e664d124cb49fa654d64a58d8b21655d542a271a9383

                                      SHA512

                                      708486582efdd9f9a5c1cef2db851f24d0e15d9de15948660437fe9562130ea8dcb3521f4e45a4d2e5a1f49ce4a1f39ee85498a3736625a0e2266d1a3a162b0e

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                      Filesize

                                      352B

                                      MD5

                                      99a52464981759d3f23a1dac88ced429

                                      SHA1

                                      114ba73b0e0873e1b356af0d149d7004bfafe005

                                      SHA256

                                      0932291f9dca6683709c074c80480cae6188222ff644f1f2591805c5e8d99720

                                      SHA512

                                      7eed569f386d2b8f25dfc581c72552a366e00009a17db6a8fec9b4b05a3fe893b51835df1b24bab199c67b6524f48c7287e932301b5ab0299079de665702d53c

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                      Filesize

                                      352B

                                      MD5

                                      b4ecef1a9034357699ba944b7e8d6490

                                      SHA1

                                      04288e94cbb2c67bb186ac02f38de948a3a03d94

                                      SHA256

                                      6f4f2c60301813858586584ef781d396f455be1007a6b3e4f725e7056f5c1d34

                                      SHA512

                                      284e760dd118f7f07516d2af4ec2918f1e1d65bab90b3be142785731fe464a177b7e3a9da5596b475c9b9f7f201ccc5c3fd60aee348dffc55de9e07c78ad880c

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                      Filesize

                                      9KB

                                      MD5

                                      804c161b3129b49fbe59c24fe36cbdf2

                                      SHA1

                                      c2aa33fedfc4854f826374140b58f6f87166ae6f

                                      SHA256

                                      79d1c6e3c996c329516198e083e344e80a64eeb1996802b09d128d57665f4496

                                      SHA512

                                      10e16f400b9d52d437c35378e718953ec750611d064b0b8d38bd7a28d846b5a8cd62b9d00cabb02976174411fd08ef45fc720e2e132e9a8a4a43ddc2e70af54b

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                      Filesize

                                      9KB

                                      MD5

                                      99bc598158f10e19632cbd171f3ee632

                                      SHA1

                                      b5179e7938d69bab183ceb2f5f7d2640f2b84c91

                                      SHA256

                                      4835ac64990d0f54168739929e09d4e71eb54e3b1f642e4ec1229449f5e414ac

                                      SHA512

                                      dacb29ca63f59d0ba5c052d351c4f8492fed1bde48a6868addf928074d084cfab410a01ca5e23fb26e2271fec8b27f701403143ed622f72b258c8580e34b8231

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                      Filesize

                                      9KB

                                      MD5

                                      09112e9b4800a13e888a5c9c28e2cda8

                                      SHA1

                                      424762a55150ad46ab32635512f999229bee2ef5

                                      SHA256

                                      b2f77e3ff3e043e9a4dbf3295e02d7b6da8f3997b9e2a3b2c465bfac0afe131d

                                      SHA512

                                      b31628abc5599a360d64aab83a075acba431e7a4e05070d95476a4b74185391e764d4475044fb6082a05673099c5749ce4409298cb49f806d224b818e73842d1

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                      Filesize

                                      9KB

                                      MD5

                                      f07c6bfe1af5fbc22b03a95328c62ac5

                                      SHA1

                                      89ee9f9f3b6f6486179ac9dd72d244fb41dab167

                                      SHA256

                                      bec2b764e0852ae88f1c869485bdc93af2fb131530756d1967b15f1db532f5c9

                                      SHA512

                                      c61349ef76ea6912257a74bfd035510946a16ab3a0d2ed8f02e76019c9485a9606fa78fce65f8fe254f78bd2ef42dddf8dc2d99249999132364b7bd173252fd7

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                      Filesize

                                      9KB

                                      MD5

                                      9129f267e1fb36e244b19b969ebca465

                                      SHA1

                                      6f065386c8c85568e49e2a486e5edff9b55f7f94

                                      SHA256

                                      45c33a33f51ed2bb9033fbdd275daf6199f44c828386e15078085dee0f94f07c

                                      SHA512

                                      5d9015ad6a9ffea9be08f58137a5ea19d6ba782fdbcfd570a415811f471532cbcdf228fb1e3edcb5eafda36fe74c512c7e7a42045531a2e1d748bfc443fde153

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                      Filesize

                                      9KB

                                      MD5

                                      585ca8ca541041bc47e1f063ac940c8d

                                      SHA1

                                      ed41c0f89850ceb23d4a35810a6a926a1422dda1

                                      SHA256

                                      1b225d5ba096c0aefba1a15be39776183b2fe00d6c109e6fbe430f9cbea3b8e0

                                      SHA512

                                      54d7e3463a85c8928b5bc442bcda0d54cb3ab647d9096f5db9214c306f2a1ffcab97d0c7bc712da9adbf6c640a3a61b98cd76746f1f38e0017722bacfe1ad2b7

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                      Filesize

                                      9KB

                                      MD5

                                      79ef9f64a2a2dd33f0bc52ae7eeeb68d

                                      SHA1

                                      0db07f89de14517b875e486ea5db41f6f7eff940

                                      SHA256

                                      86595d0801066bef19c65275c95d244bb3e5b0ed5ebb0d160f8c66f145b5413f

                                      SHA512

                                      f39d18b324d0109d129d902ec11bbbc598b39cf88cb8ffc71d1f53769da16c673855d659e48b9319137f0695cdc98d62543ebb9f5595bb3a5782e77340ba2060

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                      Filesize

                                      9KB

                                      MD5

                                      0aed6392eac15c7997dbd0052d1e04a9

                                      SHA1

                                      309a838b03a5c90279bc7ddb40d9b83069ad2023

                                      SHA256

                                      7a0f9e640f825f0ef763be7427fb8e8f151c263600a7ea6b3042eb21df414dd5

                                      SHA512

                                      c3508bd5251a443af077972062597d426f84c433a64b7cbdccf8d5cf7fb0226a6d5bec08dc87529e9ce5ea3e43b9fcf9afb100dab932e7b4aada71af2069c6ef

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

                                      Filesize

                                      15KB

                                      MD5

                                      745e3d8cfe8d5ec2bca1ac0a5c6be7bd

                                      SHA1

                                      5eb5414d62dd0364394a3662f3fd04d82e7365ba

                                      SHA256

                                      cc40ab265e41763cdb9dd4f4ce02f5381e26bb8080b63ef8f1b7a6ceabc1a2bd

                                      SHA512

                                      966e1feb9a2f23148a745b99d05cf9857d4a89ebf84e01c8712b6e1b82b833889c36bc332618917ac03fec44de7b7cc5dfbeab25366bef185199473a0a8b3fb6

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                                      Filesize

                                      194KB

                                      MD5

                                      8055c383634b163e4b8c1e968e3a20ed

                                      SHA1

                                      678d8f0e4ebe774a957fe07d3c12ea0b16d0552c

                                      SHA256

                                      668fab413106a70230cca8b7754240bc4437bed2d8d5cd09a479acac1ab19fed

                                      SHA512

                                      5a32050bba403552c27dcc3af42da1f2c1238c1701cd91ed260855310692d447a08fe235e389320fad69699c00542beef5c74ed40974bfa55e01ddf62c9a9601

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                                      Filesize

                                      195KB

                                      MD5

                                      2fbf5533b9f25054647658d3ec01309c

                                      SHA1

                                      ba4d06646028726211dcbf2991a7153c6772a11c

                                      SHA256

                                      a1f2d16980d2c2be04d3578d0597bd025344cda754f661b68eda7c61fd16f53a

                                      SHA512

                                      084ee58ded866ad87b7eef937f23282b48194b5b582482032d1d452a1b75be917a5ed53cc6cc1afe32d7b66048d83c9220bafbbda4bb9adadda6010d0c4d7fb3

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                                      Filesize

                                      194KB

                                      MD5

                                      45b5b5aa6a1c48d71de4165d0ba1f5f4

                                      SHA1

                                      826a662468c5f908088a0cef4f8b1febd234ee0f

                                      SHA256

                                      8fc512115301d54cbaffe21ca06cc8bfe752e084a165924fee28450fd25f04ec

                                      SHA512

                                      360a81ef08a09eb10bfb49956342cb806de57bbdde9641c7c1605caa8ddab1de63f1861a357de686d297560258e3f2cbab8aa78c657f37de900330562c2cb695

                                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                                      Filesize

                                      195KB

                                      MD5

                                      01fef09baf8976842f7f7b5c800d6e69

                                      SHA1

                                      eb6424025d8a3dd815fa6b39f732f4de9655fb1b

                                      SHA256

                                      ba7407a734de8272ac826d849e937400f7c6559d3e116baefc1cb0042c250c3b

                                      SHA512

                                      17e42e8ce195fa888a9d39a13c6154962e950ac46a9023a0309b0d3c15ca3568f7612e55165d24816325d166b4b6c45194d03a9967ce4c0720f42a7bcfb1db76