hxxps://procreatewin[.]com/

Analysis

max time kernel
169s
max time network
173s
platform
windows11-21h2_x64
resource
win11-20240802-en
resource tags

arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
submitted
19/08/2024, 10:47

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://procreatewin.com/

Score

6^/10

discovery motw phishing

Malware Config

Signatures

Mark of the Web detected: This indicates that the page was originally saved or cloned. 1 IoCs

phishing motw

flow	ioc
402	https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html

Drops file in System32 directory 2 IoCs

description	ioc	Process
File created	C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_01cf530faf2f1752\display.PNF	chrome.exe
File created	\??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_01cf530faf2f1752\display.PNF	chrome.exe

Drops file in Windows directory 1 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SystemTemp	chrome.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

System Location Discovery: System Language Discovery 1 TTPs 8 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	AcroRd32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe

Checks processor information in registry 2 TTPs 2 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	AcroRd32.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz	AcroRd32.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies Internet Explorer settings 1 TTPs 1 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-661032028-162657920-1226909816-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION	AcroRd32.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133685380670563068"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Modifies registry class 10 IoCs

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-661032028-162657920-1226909816-1000_Classes\.apk\ = "apk_auto_file"	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-661032028-162657920-1226909816-1000_Classes\apk_auto_file\shell\Read	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-661032028-162657920-1226909816-1000_Classes\apk_auto_file\shell	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-661032028-162657920-1226909816-1000_Classes\apk_auto_file\shell\Read\command	OpenWith.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-661032028-162657920-1226909816-1000_Classes\apk_auto_file\shell\Read\command\ = "\"C:\\Program Files (x86)\\Adobe\\Acrobat Reader DC\\Reader\\AcroRd32.exe\" \"%1\""	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-661032028-162657920-1226909816-1000_Classes\Local Settings	chrome.exe
Key created	\REGISTRY\USER\S-1-5-21-661032028-162657920-1226909816-1000_Classes\apk_auto_file	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-661032028-162657920-1226909816-1000_Classes\Local Settings\MuiCache	MiniSearchHost.exe
Key created	\REGISTRY\USER\S-1-5-21-661032028-162657920-1226909816-1000_Classes\Local Settings	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-661032028-162657920-1226909816-1000_Classes\.apk	OpenWith.exe

NTFS ADS 1 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\Procreate_v1.0.apk:Zone.Identifier	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
4212	chrome.exe
4212	chrome.exe
5832	chrome.exe
5832	chrome.exe
5832	chrome.exe
5832	chrome.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
3300	OpenWith.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 64 IoCs

pid	Process
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe
Token: SeShutdownPrivilege	4212	chrome.exe
Token: SeCreatePagefilePrivilege	4212	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe

Suspicious use of SendNotifyMessage 12 IoCs

pid	Process
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe
4212	chrome.exe

Suspicious use of SetWindowsHookEx 36 IoCs

pid	Process
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
3300	OpenWith.exe
5848	AcroRd32.exe
5848	AcroRd32.exe
5848	AcroRd32.exe
5848	AcroRd32.exe
792	MiniSearchHost.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4212 wrote to memory of 1944	4212	chrome.exe	81
PID 4212 wrote to memory of 1944	4212	chrome.exe	81
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4428	4212	chrome.exe	82
PID 4212 wrote to memory of 4316	4212	chrome.exe	83
PID 4212 wrote to memory of 4316	4212	chrome.exe	83
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84
PID 4212 wrote to memory of 2560	4212	chrome.exe	84

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://procreatewin.com/
1⤵
- Drops file in Windows directory
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4212
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffb269ccc40,0x7ffb269ccc4c,0x7ffb269ccc58
  2⤵
  PID:1944
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1912,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1816 /prefetch:2
  2⤵
  PID:4428
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1936,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1512 /prefetch:3
  2⤵
  PID:4316
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2164,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2376 /prefetch:8
  2⤵
  PID:2560
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3064,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3112 /prefetch:1
  2⤵
  PID:2336
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3076,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3252 /prefetch:1
  2⤵
  PID:2208
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4520,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4528 /prefetch:8
  2⤵
  PID:3484
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4844,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4916 /prefetch:1
  2⤵
  PID:4408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=4764,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4944 /prefetch:1
  2⤵
  PID:3868
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=5044,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4304 /prefetch:1
  2⤵
  PID:2596
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=4796,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5212 /prefetch:1
  2⤵
  PID:4636
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=4940,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5168 /prefetch:1
  2⤵
  PID:1564
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=4596,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4792 /prefetch:1
  2⤵
  PID:884
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5204,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4552 /prefetch:1
  2⤵
  PID:3484
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5088,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4944 /prefetch:1
  2⤵
  PID:2240
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5516,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5528 /prefetch:1
  2⤵
  PID:1060
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5560,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5020 /prefetch:1
  2⤵
  PID:3176
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=5068,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3432 /prefetch:1
  2⤵
  PID:2156
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=5288,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5196 /prefetch:1
  2⤵
  PID:2960
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=5164,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4780 /prefetch:1
  2⤵
  PID:1608
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=3128,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5244 /prefetch:1
  2⤵
  PID:2948
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=4944,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3192 /prefetch:1
  2⤵
  PID:5112
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=5740,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5768 /prefetch:1
  2⤵
  PID:4612
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=5892,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5752 /prefetch:1
  2⤵
  PID:1460
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=5952,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5968 /prefetch:1
  2⤵
  PID:3904
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=6140,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6088 /prefetch:1
  2⤵
  PID:1496
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=6272,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6288 /prefetch:1
  2⤵
  PID:1860
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=6260,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6264 /prefetch:1
  2⤵
  PID:1300
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=6448,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6560 /prefetch:1
  2⤵
  PID:4896
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=6696,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6740 /prefetch:1
  2⤵
  PID:5084
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=6756,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6856 /prefetch:1
  2⤵
  PID:664
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=7064,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7044 /prefetch:1
  2⤵
  PID:3340
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=7172,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7164 /prefetch:1
  2⤵
  PID:4236
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=7032,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6708 /prefetch:1
  2⤵
  PID:2832
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=6452,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7432 /prefetch:1
  2⤵
  PID:2060
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=7552,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6436 /prefetch:1
  2⤵
  PID:3160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=7572,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7708 /prefetch:1
  2⤵
  PID:4184
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=7724,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7892 /prefetch:1
  2⤵
  PID:424
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=7740,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7712 /prefetch:1
  2⤵
  PID:4328
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=7772,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8144 /prefetch:1
  2⤵
  PID:2248
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=8276,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8304 /prefetch:1
  2⤵
  PID:5188
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=8172,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8440 /prefetch:1
  2⤵
  PID:5224
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=8588,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8592 /prefetch:1
  2⤵
  PID:5276
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=8600,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8732 /prefetch:1
  2⤵
  PID:5284
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=8928,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8584 /prefetch:1
  2⤵
  PID:5384
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=9052,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9068 /prefetch:1
  2⤵
  PID:5436
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=7088,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6992 /prefetch:1
  2⤵
  PID:5760
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --field-trial-handle=7268,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7192 /prefetch:1
  2⤵
  PID:5768
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --field-trial-handle=7276,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7076 /prefetch:1
  2⤵
  PID:5824
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --field-trial-handle=6472,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8476 /prefetch:1
  2⤵
  PID:5832
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=7284,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6904 /prefetch:1
  2⤵
  PID:5984
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --field-trial-handle=6244,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7204 /prefetch:1
  2⤵
  PID:6116
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --field-trial-handle=7280,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7192 /prefetch:1
  2⤵
  PID:5124
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --field-trial-handle=7100,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6160 /prefetch:1
  2⤵
  PID:5160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=9276,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9208 /prefetch:1
  2⤵
  PID:5196
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=6456,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9388 /prefetch:1
  2⤵
  PID:5580
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=7008,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6620 /prefetch:1
  2⤵
  PID:2412
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=6648,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9528 /prefetch:1
  2⤵
  PID:4468
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --field-trial-handle=8216,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8268 /prefetch:1
  2⤵
  PID:4892
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --field-trial-handle=8224,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9572 /prefetch:1
  2⤵
  PID:664
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --field-trial-handle=6416,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9624 /prefetch:1
  2⤵
  PID:1464
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --field-trial-handle=9440,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9732 /prefetch:1
  2⤵
  PID:5312
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --field-trial-handle=10028,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9724 /prefetch:1
  2⤵
  PID:4308
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --field-trial-handle=10144,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9996 /prefetch:1
  2⤵
  PID:5940
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --field-trial-handle=10160,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=10292 /prefetch:1
  2⤵
  PID:5936
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --field-trial-handle=10440,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=10448 /prefetch:1
  2⤵
  PID:5840
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --field-trial-handle=10580,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=10300 /prefetch:1
  2⤵
  PID:5848
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --field-trial-handle=3620,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5472 /prefetch:1
  2⤵
  PID:3324
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --field-trial-handle=5960,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3232 /prefetch:1
  2⤵
  PID:752
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --field-trial-handle=8008,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4812 /prefetch:1
  2⤵
  PID:5196
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --field-trial-handle=7980,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7644 /prefetch:1
  2⤵
  PID:5584
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --field-trial-handle=7636,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7788 /prefetch:1
  2⤵
  PID:2332
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --field-trial-handle=7608,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7684 /prefetch:1
  2⤵
  PID:6128
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --field-trial-handle=5940,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7304 /prefetch:1
  2⤵
  PID:5596
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --field-trial-handle=6000,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6028 /prefetch:1
  2⤵
  PID:5496
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --field-trial-handle=5752,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8024 /prefetch:1
  2⤵
  PID:5592
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --field-trial-handle=8104,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6056 /prefetch:1
  2⤵
  PID:5396
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --field-trial-handle=6500,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7252 /prefetch:1
  2⤵
  PID:3376
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --field-trial-handle=8752,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7164 /prefetch:1
  2⤵
  PID:1384
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --field-trial-handle=7216,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9580 /prefetch:1
  2⤵
  PID:4700
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --field-trial-handle=8144,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7604 /prefetch:1
  2⤵
  PID:788
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --field-trial-handle=7964,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9664 /prefetch:1
  2⤵
  PID:1244
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --field-trial-handle=9388,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7932 /prefetch:1
  2⤵
  PID:5516
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --field-trial-handle=9224,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9208 /prefetch:1
  2⤵
  PID:1324
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --field-trial-handle=5720,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8132 /prefetch:1
  2⤵
  PID:5312
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --field-trial-handle=7812,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4840 /prefetch:1
  2⤵
  PID:4896
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --field-trial-handle=10712,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9400 /prefetch:1
  2⤵
  PID:5176
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --field-trial-handle=10680,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9928 /prefetch:1
  2⤵
  PID:5752
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --field-trial-handle=8828,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8772 /prefetch:1
  2⤵
  PID:5776
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --field-trial-handle=7296,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8500 /prefetch:1
  2⤵
  PID:6092
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --field-trial-handle=7328,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9760 /prefetch:1
  2⤵
  PID:4348
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --field-trial-handle=9756,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7548 /prefetch:1
  2⤵
  PID:5348
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --field-trial-handle=10164,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=10740 /prefetch:1
  2⤵
  PID:5360
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --field-trial-handle=10768,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=10788 /prefetch:1
  2⤵
  PID:5376
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --field-trial-handle=8356,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8568 /prefetch:1
  2⤵
  PID:5688
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --field-trial-handle=6344,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=10904 /prefetch:1
  2⤵
  PID:5256
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --field-trial-handle=6332,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6288 /prefetch:1
  2⤵
  PID:5260
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --field-trial-handle=10944,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8032 /prefetch:1
  2⤵
  PID:5268
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --field-trial-handle=8620,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=10932 /prefetch:1
  2⤵
  PID:2572
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=11048,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=9260 /prefetch:8
  2⤵
  - Drops file in System32 directory
  - Suspicious behavior: EnumeratesProcesses
  PID:5832
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=8328,i,14019872117451609331,17661758103836950106,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3216 /prefetch:8
  2⤵
  - NTFS ADS
  PID:968

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:5084

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:244

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:3300
- C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
  "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Admin\Downloads\Procreate_v1.0.apk"
  2⤵
  - System Location Discovery: System Language Discovery
  - Checks processor information in registry
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:5848
- - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
    "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043
    3⤵
    - System Location Discovery: System Language Discovery
    PID:464
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=34B44B1536755B6675EBAF556F2A643B --mojo-platform-channel-handle=1768 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      System Location Discovery: System Language Discovery
      PID:3112
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-browser-side-navigation --disable-gpu-compositing --service-pipe-token=BADA9D3FEB7F0A834D372DD59EC9D4DE --lang=en-US --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --disable-accelerated-video-decode --service-request-channel-token=BADA9D3FEB7F0A834D372DD59EC9D4DE --renderer-client-id=2 --mojo-platform-channel-handle=1780 --allow-no-sandbox-job /prefetch:1
      4⤵
      System Location Discovery: System Language Discovery
      PID:4160
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=149F9D4BFBC093CFEC442DD89DBDB3BE --mojo-platform-channel-handle=2316 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      System Location Discovery: System Language Discovery
      PID:5004
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=93A5FA775A9A6B6A32ED7F6CF5068ED1 --mojo-platform-channel-handle=2004 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      System Location Discovery: System Language Discovery
      PID:1000
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=490D97F9749996091F998D836A0A7B7A --mojo-platform-channel-handle=2328 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      System Location Discovery: System Language Discovery
      PID:3112
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-browser-side-navigation --disable-gpu-compositing --service-pipe-token=0B75CFAEBEF3A1807CF79E43796ACB49 --lang=en-US --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --disable-accelerated-video-decode --service-request-channel-token=0B75CFAEBEF3A1807CF79E43796ACB49 --renderer-client-id=8 --mojo-platform-channel-handle=2452 --allow-no-sandbox-job /prefetch:1
      4⤵
      System Location Discovery: System Language Discovery
      PID:3108

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4476

C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe
"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca
1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:792

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

Filesize
64KB

MD5
b5ad5caaaee00cb8cf445427975ae66c

SHA1
dcde6527290a326e048f9c3a85280d3fa71e1e22

SHA256
b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8

SHA512
92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

Download Submit
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

Filesize
4B

MD5
f49655f856acb8884cc0ace29216f511

SHA1
cb0f1f87ec0455ec349aaa950c600475ac7b7b6b

SHA256
7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba

SHA512
599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

Download Submit
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

Filesize
1008B

MD5
d222b77a61527f2c177b0869e7babc24

SHA1
3f23acb984307a4aeba41ebbb70439c97ad1f268

SHA256
80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747

SHA512
d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
d8cae4e0ab86a65f438bc303cb459486

SHA1
9a08d7f077d99f67f5b9791232e057e736425676

SHA256
96504cd72e270d6f951ed3e449292d1b4a46fcf9ec0a3ab14ccd92bb915b8390

SHA512
e5e08d1e55b2b21448acaca0eff7b511dc632b8a0326ab4c789ca9481e6fce634564e9eafc130efbc1a052c271ae980346e9c7162bb59dd4e229da0310c2044e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000029

Filesize
20KB

MD5
a1afe33ce7442502a96deee597945384

SHA1
fe34cd78635f5617cf238de6dc746058d6f88899

SHA256
f7eeb570c60aff1435db1daf3767c0672634269789870ef91c69b2b90a47edaa

SHA512
f8bca21c3fd79d63c8265f5dfcba95419eac697b42efb600e7c33d15dc5d9c3e0d0d360da39e14004facaea4cff4dcfc00d7437979283ce0a2b06916b69b8c80

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002a

Filesize
209KB

MD5
3e552d017d45f8fd93b94cfc86f842f2

SHA1
dbeebe83854328e2575ff67259e3fb6704b17a47

SHA256
27d9c4613df7a3c04da0b79c13217aa69992b441acb7e44bf2a7578ca87d97d6

SHA512
e616436f2f15615429c7c5c37de3990c3e86c5e1da7d75a0f524fc458b75d44a5be1a3648a628d63e1cf8aa062e08b538f2f2bc9c6a0b42157beb24f82c571d9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002d

Filesize
24KB

MD5
c594a826934b9505d591d0f7a7df80b7

SHA1
c04b8637e686f71f3fc46a29a86346ba9b04ae18

SHA256
e664eef3d68ac6336a28be033165d4780e8a5ab28f0d90df1b148ef86babb610

SHA512
04a1dfdb8ee2f5fefa101d5e3ff36e87659fd774e96aa8c5941d3353ccc268a125822cf01533c74839e5f1c54725da9cc437d3d69b88e5bf3f99caccd4d75961

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000041

Filesize
20KB

MD5
b02983ab2d2789760007f4d34a6c8c0c

SHA1
135d27aca26294535d51dd94b8e3cfba759c56e6

SHA256
94695cf58f9f8693eab5aba926f629c1894e3750c077e8410d544dbb00bbe9fb

SHA512
aa3947f8121428ac6216d5ec7f88d4ad472b552e3568f4222246e74a84df2cfc0acf40baca7a9d829a01fb622c5bc1b8f5c6dc80c67ae3757177e5af4730de05

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000044

Filesize
98KB

MD5
4acb2a0a76e36d460bbf4b3f6c896a42

SHA1
5cf00965e9fae2888fad9ba9cf97c9bc716f65cb

SHA256
d581c55f98bfdfc54ab881b3fb2a1008379867358d1f92c25fa9fc40ff94893b

SHA512
ff6115a17484b6aeb214c54df655a7b2713b8ee9889600d1526dce179c7105a39308149babf4b5cedccee6c77a0abab21db40aebe656bc68f3d7ebdb03d5647b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000045

Filesize
19KB

MD5
5be81d7ad6cc31905fc542da6f7c572e

SHA1
7e8aa144a7be977232b0fa8433cfdd422a1cdeb3

SHA256
7bce00c6824d69355bbbc48b3418183b4ebe106b6fab6d6c6884679a83e86054

SHA512
f5d3418399d2b20d1a7baef59b30810583d836ac82cc54d3181e5d21852fee36391e9d485b0832728070d0df4602df7d303aa76d55e0738a452184873a5a1831

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000046

Filesize
32KB

MD5
ab3a35ae414f63d6c7bd4a586c5dfbb0

SHA1
2218b2d05011e93ae56bea9e3c4a56ca9d62bc11

SHA256
8e1a330ada51fca15cec388c72a28c770f497cc0d505fadd11475e76bbc945c4

SHA512
3aa74da81a6a6af834f85d32ccfa051eb5157f3eb2f0808257b48b7991e850d08ab6eaf468fe0faf61217aec1eab38882cfc168f1577907831877e3a611c76db

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000047

Filesize
136KB

MD5
bbac0c6f772dd97474ca2cc0933b133c

SHA1
03e08664bf9112f979e7e733d2f95ec9eb22d839

SHA256
40cb05ed90415eaf176b52d9fe46891abd4f9e3afc18d8ba2f53d9187bf28034

SHA512
21d3689359a1e58991f7d59b87249fd034b6e1a593aaf2b1cf1de51d680983b55883ab399ae5be6ca7f376659b60b48520fa8973f65d2cd5ba00297ba9acb73d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000048

Filesize
17KB

MD5
67e30bbc30fa4e58ef6c33781b4e835c

SHA1
18125beb2b3f1a747f39ed999ff0edd5a52980ee

SHA256
1572e2beb45d2de9d63a7e7fe03c307d175b2b232bad2e763623dceb747729ba

SHA512
271d4a65d25b0a5d2ff2fe8f3925fc165d9b4345893abfd919061d78ffc5ffe8890ded35e41274ad8b860f06264b027cfea6030ec9411a4e03bc6d7cb4d4d228

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000049

Filesize
104KB

MD5
7651b1187bb58ac4c7be625337b35e5b

SHA1
307d969ef4137a66fe2793737dc1c546587c7f43

SHA256
0632850d01a46bc2f8c223155a4bf6c398b33596bb711e098440623f118c3968

SHA512
a81d2f768af155bdc642941404e7ddf95a2cea33c9374acb5fe32f6f5266e337fbef32f904551f61fcc9f9ab5a1c6a5ad130ab85b38bc2258e2f82c0ca1e9c7a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004a

Filesize
91KB

MD5
97023cd438c7055650179c3007b2284f

SHA1
c8b383a1bd8f0d2bb308db613c5db27b2d05918c

SHA256
345808698844ffabc31b5d98c30572706332c43469c5a80faf2d364482b31c73

SHA512
7d9bc35ea7828be1711290737988d5561169ed111ea96f674b4df56bbdee96fb234d665a7308bf1172883535536b01288efc273e2e625d26e3d540dcf32a970d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004b

Filesize
148KB

MD5
6c0daa90ea5e7dd0581744958216d8e7

SHA1
0a562b2fbbd27fb07cd1daae855a1a63624dcda7

SHA256
9d750fc101e5a7d2b63e370136413c28170e21c024497afed62dcf09e4b08ff2

SHA512
c93eb5c4f82f610f941bd480743c4eb7e7a508b88ca3fc50fed69ed95abad19c217e22973038d899e657f9bc021e8669616444c07748cba9d9aae07b482d559e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004c

Filesize
83KB

MD5
0732ceafdfdaed403692cd2885ba7674

SHA1
a1254a8a86bc6da10eb83da49d68bf802cfa03a3

SHA256
b9706357848af835ac8e7abb70ca7a4273d50e7e31b6f0678cd147ed4eaf398d

SHA512
9fcd65105e3dd64a807f51c5b9cc95e46a559c2c9198b736ea75f8839af04d2bccff5d1882d4ef5cb0d1b3a0107c1d04e2f0efb21e7ac4a8cb57f3d4927ce11b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004e

Filesize
47KB

MD5
90df0bea2b96fbfafad9f35642d7505c

SHA1
f8330926d18589bcc735ced2e7d7261929a6b2de

SHA256
1e45c636cd18806fe525f1e61ac42f276225de2ab8f98cd5ce372749963b3ff2

SHA512
84ec29876b8d91cfd5d8d47f2377054dccf3e70f9b6f3bb7912b552d2a92535081f8d6c2ab31da75cb0880add2cf6fc65713be935baefe920009a708a12e374e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004f

Filesize
26KB

MD5
790bc527aa7cc08b417e0fdd6d9232bb

SHA1
bf0356d4b8f2b626a788b91969dcdf5dfeaf7fc8

SHA256
f4961015ac8f30cc0db2bc2f5a7d17edd2d99374aa70c2186479927b24a1eec6

SHA512
513a92ea6063bcff86c9ecf1df95f04bfdc6972ea9260b327db4e1f83983dfd71f491295f30302332c2622d4d4e252713a525123f7045070214292f369b0f232

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000051

Filesize
19KB

MD5
25783779c090e1e2bf2417529dc1b05d

SHA1
08e6bb54784bf1a0e33d36ff199de55c80829f7d

SHA256
80e322e8f461220d3dd9351032206f2f3a2d2600da6dc1e393b72659b0df5960

SHA512
fc07ba9dfa0d49b2ee545af3838267794850f719e6e8e2e689056104e496f6f8d9cf03993ce0b80cc804d5794f99ba2644479c59e1ace733b72eb1cea9b2dffd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000053

Filesize
83KB

MD5
9a4e88d36a14972b71615268ffcd23ae

SHA1
a7ae08c1584a0bac5100ed63641b4c890a75f777

SHA256
4d6c2be6a111c2c900f80510780e7008d4295b9c6d455631ba79d146969586f5

SHA512
92b7e4d1baf17a3a7ae400462136e5f0315df77131ba1250aad7d6d8acf3f63e86d0cad96d1993e170f6c994e4d16c6747bd7bbc962d16c20d8859212244cd8a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000054

Filesize
78KB

MD5
86ae34ff76f893b926b8a197e8ee5c48

SHA1
097ac4c47a4b2fb35fb79670766e366627c969aa

SHA256
c9d4bf8505ef85025230cdf2151569080cce32ce0338a26e689ad748fca91415

SHA512
ee7cee8031e870737a023962be82aea6a19605aa6aad8fc3a83bb0ac2cb7025004598d648a478fd06f42b5a1e4b5a654247a56b2f6702cd67b8c38086d8af906

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000055

Filesize
27KB

MD5
d44b00eaf066eb7050989509fd4e36c7

SHA1
f9c5a6144aefdc63afdadfdfba432a7f2921aa72

SHA256
81d81f58eace71c343daf95f8a2756fa914556bcad33ca241c127c4ae68c215f

SHA512
99f9f4b102f6eb4c6ff8868fc598c536397d247de9764a67548739662ae302ea79cc2f730d63b8ff40c8c285b2c9783bba96e37c72d9922623fae83219d6694d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000058

Filesize
20KB

MD5
87e8230a9ca3f0c5ccfa56f70276e2f2

SHA1
eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7

SHA256
e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9

SHA512
37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000063

Filesize
63KB

MD5
43cc09b97215698e9db8e497a6713a56

SHA1
d615cce9482a461d2293cb03e4941c8be1b28a8d

SHA256
37734f15b6fd252e570ef39ce0efd1e7f8ee2b1fbb35bdb30cc59dd3a865e880

SHA512
66255c736e71c6701a968c11b3a656dbdd1b6c91f6d6a487d416df692acc0e271495cfd02a35757cfab31e431fe10dd6303c910286bad99943729f3ca436d3cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000064

Filesize
18KB

MD5
8eff0b8045fd1959e117f85654ae7770

SHA1
227fee13ceb7c410b5c0bb8000258b6643cb6255

SHA256
89978e658e840b927dddb5cb3a835c7d8526ece79933bd9f3096b301fe1a8571

SHA512
2e4fb65caab06f02e341e9ba4fb217d682338881daba3518a0df8df724e0496e1af613db8e2f65b42b9e82703ba58916b5f5abb68c807c78a88577030a6c2058

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000067

Filesize
16KB

MD5
9c6b5ce6b3452e98573e6409c34dd73c

SHA1
de607fadef62e36945a409a838eb8fc36d819b42

SHA256
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc

SHA512
4cfd6cc6e7af1e1c300a363a9be2c973d1797d2cd9b9009d9e1389b418dde76f5f976a6b4c2bf7ad075d784b5459f46420677370d72a0aaacd0bd477b251b8d7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\96f7bd3df510ad8c_0

Filesize
361KB

MD5
ad85b760954a0cc0db3fd21cc6b839b5

SHA1
3844965b03e69c5640037c9e3430596034566a98

SHA256
ce170ea6cf31dd9f2033432a81fb5c15ef1bfed5d5e65bb2b31e3085d203e0e8

SHA512
671f9bbf3f8224aa3a5a28e00f7788e2a3020cc9d3e38463e4322813f41fde65366a58b47478b743c66d2ce22020977f200a4fdc419e78519db7eb53410a4858

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ea9b8918ad020319_0

Filesize
289B

MD5
2031002899a55827999511313d3cc172

SHA1
7481d0422340c0ce8e53ef9dd60223d0d9274fc4

SHA256
26bd96f700e76e8e7379ebabea9a4c11100e4af01b28733824f6e247382cecc5

SHA512
b93bb09d75516b8d276f2aad621353e16b3447844f36fb1026365777357750d974573b43533627079a82594b49858c2e62b7b47b246176a5286c6fef07180545

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
2aaaf14a745480efd9aa7c6ce4f37f71

SHA1
5f1568c7ac7c2bd5e55970694369a16214738188

SHA256
d9f4bab35f544befc3a81e4be301dac9cd7129ba8ec8d562546d4db1e108b9e1

SHA512
f975eeea844ea0e426ef5290b35b0f1221fe96e9672fc8835d383f27ed85f65b96b43ecd7cd7eb3a18d6807dd71ba67a5083a2c2d0504d1dac553cd23c876cf4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
960B

MD5
5f23cd9120a801a9deda9f3cffbac210

SHA1
94526a055c14ceee21504ddad42dea1fe1bee311

SHA256
415ff613e3bf8609754ba51022fe1a9917839822aa5b187d2f56bf74dc8a2919

SHA512
57c4dbac32323ca39696273c7f2320f39d4e0355e9727d8c21a0dc151c42895c48a7bac6c6b8b011c95c3180f1a8b5de8ba8a08b0e7bef9d32977407a2955875

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GCM Store\MANIFEST-000001

Filesize
41B

MD5
5af87dfd673ba2115e2fcf5cfdb727ab

SHA1
d5b5bbf396dc291274584ef71f444f420b6056f1

SHA256
f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4

SHA512
de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_en.softonic.com_0.indexeddb.leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_en.softonic.com_0.indexeddb.leveldb\MANIFEST-000001

Filesize
23B

MD5
3fd11ff447c1ee23538dc4d9724427a3

SHA1
1335e6f71cc4e3cf7025233523b4760f8893e9c9

SHA256
720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed

SHA512
10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\738d5a0c-76cd-4914-b543-34d5d418fae6.tmp

Filesize
8KB

MD5
f74e78ae55c0c95da9c38494e47bd97c

SHA1
02153e18740c67879a8eab441c00c62b7611adb6

SHA256
ddaf2c7f6376f9e55f1bc43dfb92cc0ff83aa0704855262ff8a6544e1f045bf4

SHA512
54db7dba922b4fe5710c513c1b0951c1b73c831663319cb69402f6b5c67b1094f4c71118f12857d05be19a3bb0a2f2c90b854253e5977a23a56ed65dde64aef3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
42KB

MD5
c54ebf7e1acc0e39395bb42a699454ce

SHA1
6e20df1ad8d846434297205bbfcdcd9ae7a2b1d7

SHA256
dd01682f20e8721a96bc109809784cc77d7ef4c61bd60bdf6f27ddddd0fbfa33

SHA512
5f57d5c90911ed79e3584d744bd3865cbaf60301e9fd95c46cf41e7bac87f42798e75f7a40a37a8b859b5ce7c27c000bc61f1127ca4a6e329cc6e160cecca962

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
858B

MD5
eceabf98c7814433341987513cdcec21

SHA1
208dda0503f8191409f516ff8064a9b57a11048b

SHA256
96ceb3148b7ec7fbf5db45125677cb279d9b6bd6d9a256ff105dc159cba4a0d8

SHA512
34032d7ea0e0197e445531f39f135ce910fb6b8c382988b1cf1869b5afccce98497f937e9338a734cdfad29d4a348160394faa3c5a360477ce933b2bfb52df42

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
7034e93186392061cd41833c353b94a0

SHA1
66ce7b080f599e76bf3401a6898ffbd514d4d092

SHA256
1ff5c7fd393a349c77fec6aac77ca7448e52fff423964d27b2ce297e22d64b65

SHA512
8dc2d17e0aa74c10400a14a2b67178e667dc1668fa096f7ae23f60b26c16418281b90499f6c1c9ec145909a47df15290b600333eac6ad372648e3867ee5487c9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
36d818d7e38a3b366dfe46d3d9740c37

SHA1
088cd62ef8748942a13317b8f0b3aba916c38dff

SHA256
67abc36023a45b7492b83f3c87a9721dcdde6477f8d7c08b2da880d7b8d3d022

SHA512
89d158bd5303e0e81db97232ae73d24b8ee34bff81ca64b95bde2f7a90d8e9baee2e3b531dc928efad269bec479e654378c48c0a9aa1aa26fd32e1d5a7e15bc7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
8b948001ddba6aa19f38f6538980da89

SHA1
1e29f74ba57b4a5e6df0874ae4db4414817ffb1a

SHA256
ea8d96d6cfb52cea098ed8c59e53e05a79638fbebbd759ad8dc58aa429ac3b3b

SHA512
354c15493b2e58f2290a87f6e5cb0b67b7a8a0ab002084f2934b1e48336861ecba445e1d0ec8f828c3befa351e31cd8b29e438ededa6296042cb0ee629ed284e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
73eedc5c858c4506100fe68830840967

SHA1
efc1799bf169658bbf4a3ffb643038ee4184d3b3

SHA256
8b00f56196cd2128a56a11a228b178ef0a8245f859a797d6fe437393a88ff705

SHA512
dff075467ea291cb98e7778e3998d67e4531bf0d27f8f560746a7e5dce811b09d51779cd5238f4a2aa95268224333717a3bfeb7444ada8bd880d7f76416d21d4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
b1a87ab531442e2f29c91c600601db81

SHA1
376154c8d6b86f8b82add5245a164f43c9a25834

SHA256
923a2f9fa41030fb4d78e3a082f885f23537465a0f8da79fecc4b7b022538664

SHA512
379fe959dfd69ecb74f9668058c38e6ff5918e15043e74c7da9369376b02dd21db5e2497595bb73585eb601fef1b7e7716a0fdc6acb4cb9e2701ffb7ebb3541a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
4f74b0d38a68b8756896307a0e9765f5

SHA1
6d28c4acd79539c847882defd9eba2597d78b3e7

SHA256
487af1c9d01cb4450d8ae532bcf4632f81784649730845ce742f09e62641bbfe

SHA512
65a76eea54407a3a87699884944945f3f469230cfac83b239247c7a6e74e1e4880ec55a3d96ca6a5d81226f76d5e288319805bb247bcfd5740ed991bfdea3b59

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
069cf92a51a7441149d1cd0cff6deb9d

SHA1
fdc2ed2394844139f94f2751c0e2cdec188b603d

SHA256
344816e0efa56a59292ec6708eb9edeacad72c24224aa0a78b459214f91a47a4

SHA512
45905130a6240192cbfe9dbfd7986ba85089c25d79cdbc1eb77413dce571daf0936a378fb081747240556d4fc3b3b5742ead635b8ecceb0b81e7c32697b82706

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
a6b28582c77f1d34faa72801cf68ffbb

SHA1
a46196c18179a29e098678f4f94a1fb03fdb058a

SHA256
c14e4ca0fdd619e5a54f819c97e85647d10c1a803c5a33b8709233dd259f9497

SHA512
a6e646fb23bc6966dae5b6ef5e8da1aece318350a0c0b1992e863bdc21d76ad0477af6557bf0a32f98ee7ed84956bedc6a6bebde4bc4884cf83d24b841d6cd95

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
ddf0a0e5938fe51ba5211c3e49052a19

SHA1
302b4c1829b485785106353a3fcdf397ea81cad5

SHA256
1a6ae487b64bd93cd9b79071a51be755b1f0490f1236164419ea9eb8a0068c41

SHA512
2c8d0515b8b33461d7fd567440e07e0de772b41c0d17976a9625bed6516a514c0e6744d1e1121b7824e9c92879d21510d62781339e865f9c4c5287dea02238c1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
54c9e7b4fc55d68aaeb02a0753cb0b08

SHA1
d59257c29ab964824925b531a14d002d43c6eb60

SHA256
4996bde992a643d7774b805def65dc0a8bd3d8c64478971a9e6bde1ad074c7a3

SHA512
02cae240a5a6fd146b7edde029bec19839699f2bb0ea63029c4f572bc5ce6c464246b589c520506a268024e85ce14caafb1a6d84b59d6973f8c7ecff818417a9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
8fb1eb973ba682911b4dd3e4d13efd02

SHA1
6d2c2f304bf201b0fcd7866f4369bb2a9af4ee33

SHA256
10085f1b3c759019ed60d20413058109bd946e3fc87fb56cd2878d78edc569f8

SHA512
35cab5cf1e8c91c7c337dc24f975b0884f4473979199ae9062917215cf7f939f928d47890b226d869dcf9f2b12ec0bcb6587357463a9468ec7053bccdd353e11

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
fd8d232bb6897851f9a2e365abeec6fe

SHA1
d6565fc351cc674f0c2ba5440a884904bd5889cb

SHA256
e4ea6e27ee177508f93211585c1af3c0366e0d9052ee6bf93c0c8f121f39b290

SHA512
5b57043a6acfd0235d9a85404f577c88da452646f8e322eddfb4690af34d9362862b1bbe979de634fbdae0d37a08202e6e5dfdadb5f946f4e4e95bd845e3a5b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
1b13afe197599fbc84d302e9a8702073

SHA1
70d02de638414064318dcd337856d51917d43284

SHA256
da4f4f75159020150b3a1110b5b78b3900356b98c24b11899a9cbd60c4bdf486

SHA512
c9d2ccc2e4d3e630f73ef5f5d19e2659b3fe6234fa96367e0ba28f69d17e754e0e7502e29185110f1371fce09fdaa0e8011e58221d796cc576791229999ce9eb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
7604cf13ea8b60ccf12eb1782f7f8674

SHA1
a15a59c5748c27ca0439ee6e8ff446376d03681b

SHA256
9d45add22a013d6271b37c54d6a7b6b8643a1dcbd0f5d55772117097a2db6265

SHA512
81cd6d94470d2dc2994f6e1766be9cd4e9b8f9b66064fc67c764626b4ad79d7ea822f3b00cfa29b6484c07d7c4978fc81ac923f0e0006819e4dfca3a2bb7f02c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
220da9c96c0c121f0a34347eae4fc380

SHA1
2cd81aef4dce2740cfb69616450149ce4efa6313

SHA256
f6bb5c8bda36a7c694b39ba1241e2cc9e265e2fa32e50bdbed7e43394c585602

SHA512
2c73b73b378c0c23d33947319b77e0c58b4fa76aff2f0822ba7fc21752d1e07650fa7d0baa8fda9fe7cbe9253a67d4bbf88347702c5b4be3b76d6b61ac15e861

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
12KB

MD5
a586d54bfa1911e1c5579087538f7291

SHA1
593e7d8203f63d282771efb50965aa461c660f58

SHA256
6dc99ea09791d8dd9416f0ae6071b31cca038e8d11fb5149e49571766e0b2014

SHA512
bf2919879ad0bab37f7fc15deba4ed8b15da7270af3c3f0df87191419c809d06826c81aa163c4f30b16b8d8cdf6b124f651ee48246765a0fa1eba9eb1fe459e1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
37caeec471df58b61ffd021ff8d8ae81

SHA1
344bd1093b83aa0e28eba363d66a11f170932dce

SHA256
af187bd5be4c3658d80e0af087590d05bad3c0669ef508d434bc3dcd778238a6

SHA512
2c7ded32a0b82c8bc8bd96dcdd5d772ea2f50e7397d6ef651e5eb0e067601b81397d6b9f79df92d4efafba5eae505484bd3a9412409656b86754ab89df1ad385

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
dd29b5cd4aba08bddc0c89ffe2944b0a

SHA1
2f38b7eaf196fb1e9d596f13b76ee2c417defb41

SHA256
5c06c4e6c9d8e9e7372b526695150d5500837ff17cd34cc8e68218a2f15366c0

SHA512
15e498b142f812c7db96fba8a45bba73b6eee3191647ded8ba1f14e6846976d681c0da66ce6ab4ddba7421f9b2f8728bb1abe3d32b7b60c669bb1f41b8e221f3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
f6ec709451a4a22f99826f65e9d5230e

SHA1
c523f699d68561c55fb97fb329024f3c0ea5d0a7

SHA256
6d7677fabbd1b84bf4f5aaa8dc3cd682f51d2f95dbce69a3536d7c18d4c51b71

SHA512
042698292d2bb37accaee539f7206bd90ede53a6cc78682fe31c227d665abd7824a1c5631de7b8547e28eca6435989f3974f8ecc97abd0c0f76235c04ba268eb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
120B

MD5
024bbfad04fcacac769312ef9d144ab2

SHA1
4d46c1722edb5cc15e6cb4af34da776b0644e081

SHA256
a92477f66b9560382cc18d05e18543f20f86f11c157878da4b560b468d90d00a

SHA512
6ea15dd18758747e873a0d88f47bf41e1882c7ce81f2f990bfb34e72c942956697ea32f5c52a6fa9513ed981155d4fffd336e8faebd9362288e0af2d4c559810

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\2\CacheStorage\index.txt

Filesize
76B

MD5
a7a2f6dbe4e14a9267f786d0d5e06097

SHA1
5513aebb0bda58551acacbfc338d903316851a7b

SHA256
dd9045ea2f3beaf0282320db70fdf395854071bf212ad747e8765837ec390cbc

SHA512
aa5d81e7ee3a646afec55aee5435dc84fe06d84d3e7e1c45c934f258292c0c4dc2f2853a13d2f2b37a98fe2f1dcc7639eacf51b09e7dcccb2e29c2cbd3ba1835

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\2\CacheStorage\index.txt~RFe592428.TMP

Filesize
140B

MD5
baa4951652b44a6dc3f815f8f2a2b3ff

SHA1
40393437c6f46273ca1e78b43bd347afd45bea2f

SHA256
9b04f05241c688eede89720db3d85cef5738bd5f92701d9295f85496785bbef1

SHA512
d791e66d7f5186e63aee3a5cf46f898382a668c2783029c9eca96a122926499ecf3829c9d0c66f709c48e90aaefc6034ac387384f88dc8eae3cfac050c28894f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\a23e6acf-8702-44df-8064-db7a50b91428.tmp

Filesize
9KB

MD5
affd3919e81ec78830fd1eb4b9aefffc

SHA1
f31538a8ba59829b0ab9ac013b30e06a3357d874

SHA256
c559726d89883be324ca8a9da35df0aa76dd3ba0c5de0f5994333e5e707a22d5

SHA512
1f98c2163c8379521c0e11dfaa8365537b64a47d0a72aadf1683c8cf9bccbb9555a102ebd4f65012a17a80a704e424dbf2e2594c19c575a75174a3b3d4d2f632

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
99KB

MD5
59d583c11f9da194b787eaa11bbc504d

SHA1
d5199f3f543a5546dfe4060998fc69d075728169

SHA256
eba512ca5ce3ae7d4441c21da4d08f9f921fb921511ade20c1670a946fc7f4f8

SHA512
f4ad182d0e14649ecf10c78379211bbe3f9e4bde97a13a049cdd444d8f342d54a8d28461e511faad1f129c3070b35ad830142037fbdd30c24300eab11eaeff5d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
99KB

MD5
de5ed3c5737a23f385a4f660a7e4761e

SHA1
6ef9d106677a8d6b9d25d1b83ab3bf0a2fbb5e15

SHA256
f3d69b7d52d1be8cf672b850b082e7101b7bc782d375c83401ba3435187d0adf

SHA512
01d5a8b74939e68224fbf230d31d68424fc2977fdd69cf54f2467c04a2f3070f99b15f32c34056deec5a6e3298b03ab8e17f61e11538b55159433fa17b83698d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
99KB

MD5
1c8f642312904bf05fedf01deb762fb2

SHA1
48336cf01441d7a84ef1a1c20eb606b35d9a0b9e

SHA256
5b793b9b6e5c4c72257d9a5fc0df0a3c53a7bd1be22e60e53fe323d2ed899802

SHA512
c12b5a41b9840e7315cdec72bbfcc2287ccf563639291ea0ea26b9ff775c0c4cf0748e6adab412c48f22bd29d980025801bc55081170fa25fdf236caa98bc407

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

Filesize
264KB

MD5
f6d7bd76cc6e40a8ef7612d05885227b

SHA1
b4f0b42ede4811f336c55483108624149787e31e

SHA256
a0b5e6b42870ae0891b6045f6962d608c92b1b7485309992ea279ca1e62f069f

SHA512
211ed51d5f35c598c1235a0e93183cf3cc578b9882f29dfa83ce28a1e4b9814340578a25d1ad52ec3eb05ef642ca7feaf9400d50396f1c788957997433d699d7

Download Submit
C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat

Filesize
10KB

MD5
30f9f69bd4cb3ca8ed4af465e6bf3b72

SHA1
1f7bf3625d683c1af38485d1eb39152949648749

SHA256
fbb114871abc3901711a5f204cb370f1cc1602ad89fa0c8155288ec72e4eaf36

SHA512
ae96746716d0b47912c191ca52db48ee40aca9591444c1f0ffbc913346be1fff1e9f71c6e66cb4c175fd308e04a504367dd56bf84920f94c65142cd8508258c2

Download Submit