hxxps://www[.]strangelandproductions[.]com

max time kernel
4s
max time network
34s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
05/09/2024, 19:24

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://www.strangelandproductions.com

Score

3^/10

discovery

Malware Config

Signatures

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
236	chrome.exe
236	chrome.exe

Suspicious use of AdjustPrivilegeToken 6 IoCs

description	pid	Process
Token: SeShutdownPrivilege	236	chrome.exe
Token: SeShutdownPrivilege	236	chrome.exe
Token: SeShutdownPrivilege	236	chrome.exe
Token: SeShutdownPrivilege	236	chrome.exe
Token: SeShutdownPrivilege	236	chrome.exe
Token: SeShutdownPrivilege	236	chrome.exe

Suspicious use of FindShellTrayWindow 34 IoCs

pid	Process
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe

Suspicious use of SendNotifyMessage 32 IoCs

pid	Process
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe
236	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 236 wrote to memory of 1640	236	chrome.exe	30
PID 236 wrote to memory of 1640	236	chrome.exe	30
PID 236 wrote to memory of 1640	236	chrome.exe	30
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 2740	236	chrome.exe	32
PID 236 wrote to memory of 3068	236	chrome.exe	33
PID 236 wrote to memory of 3068	236	chrome.exe	33
PID 236 wrote to memory of 3068	236	chrome.exe	33
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34
PID 236 wrote to memory of 2728	236	chrome.exe	34

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://www.strangelandproductions.com
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:236
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xc0,0xc4,0xc8,0x94,0xcc,0x7fef79c9758,0x7fef79c9768,0x7fef79c9778
  2⤵
  PID:1640
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1112 --field-trial-handle=1284,i,15725297981985025335,6882472694503890963,131072 /prefetch:2
  2⤵
  PID:2740
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1492 --field-trial-handle=1284,i,15725297981985025335,6882472694503890963,131072 /prefetch:8
  2⤵
  PID:3068
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1512 --field-trial-handle=1284,i,15725297981985025335,6882472694503890963,131072 /prefetch:8
  2⤵
  PID:2728
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2244 --field-trial-handle=1284,i,15725297981985025335,6882472694503890963,131072 /prefetch:1
  2⤵
  PID:2896
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2256 --field-trial-handle=1284,i,15725297981985025335,6882472694503890963,131072 /prefetch:1
  2⤵
  PID:2216
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --use-gl=angle --use-angle=swiftshader-webgl --mojo-platform-channel-handle=1456 --field-trial-handle=1284,i,15725297981985025335,6882472694503890963,131072 /prefetch:2
  2⤵
  PID:1036
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=3332 --field-trial-handle=1284,i,15725297981985025335,6882472694503890963,131072 /prefetch:1
  2⤵
  PID:884
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3980 --field-trial-handle=1284,i,15725297981985025335,6882472694503890963,131072 /prefetch:8
  2⤵
  PID:1532
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4236 --field-trial-handle=1284,i,15725297981985025335,6882472694503890963,131072 /prefetch:8
  2⤵
  PID:1216
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=4196 --field-trial-handle=1284,i,15725297981985025335,6882472694503890963,131072 /prefetch:1
  2⤵
  PID:872

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:1412

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416

Filesize
1KB

MD5
55540a230bdab55187a841cfe1aa1545

SHA1
363e4734f757bdeb89868efe94907774a327695e

SHA256
d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

SHA512
c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416

Filesize
230B

MD5
5f86a0143e020d988f58f62b9573582f

SHA1
dcb8246ccad35a70d817c513e28bb1581c025719

SHA256
2bbd5e08553fb2444728aaba7d4cf7aaec7de56201c02490471620a6592fe054

SHA512
86bd60b165a2722b9d06caa16590ad013dc99d0c2272c01692600ce6e3930b80030b7d78ba7c3b80ef44cb28f17c867ea2abf43b5895dc04580f263de0ca9f9c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
50cc92964e19d4ff633bc1de13a9861c

SHA1
6bb4dc5b2590edb400a5c8c56ab4b671c32f7480

SHA256
1f6ddf32d25f0df9c14f1ac9e599218d41ee54416a77ce22f75eac57bed4a057

SHA512
47b955b8973df88b82a4066affb3acae4b2146dc3e516432276d56fdd40eb98a2948e6409c6c19f53f5f40e35ec6e0a4399a1d0aed55f9a4816437a50e63687d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
eb3101bf2ec4c509d129827e424385a3

SHA1
5b24a9e62094d7523a2b7def6047ebffbed2e3a2

SHA256
2d6ca6625aef72fa31625c66a5a6e418115b27594bc711ad5b403bf908e976c3

SHA512
765288fdf74a40c5242994ecfd623b4f08e3c06c97c67b91bd70749724d3f3627e30e71e09413d801cdade787158bc8cbc1b1d51cae201277b2abd9ef20b188f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
693ed4f86002bc1503f779f04c69f5c6

SHA1
b74bdece20017c28d2238e590cbfdfaeca9aef31

SHA256
03060735baf6991c6550ff2ba21a74207ce9186e5cf64cdb35b1ff2ccce3750f

SHA512
89b0a671919d4c81e4a3e8263c6f37420a91d86a6ed549f532035aea8eac79f915e6b1ab584af0ad52cdb3ac938f10d69e2f2d4b7660fa4b89593b56f88dbd70

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
adbb129d1624960460e512248f2f5613

SHA1
bb20ad552172161618d2caec240487eb317df0d3

SHA256
ef504a0a2d20d6984df21e321f85b591fbbf33445c3d7b1f50f6a131bcd6bc9a

SHA512
e37f345c57bda2372839f8e2195578ac9455ece968fdb5b9df4baf85819a2c0eb9e3c362ade632fdadb7112d3097e5ae46f1eb76d509d45b3b2c100c12944fd5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
2f5da0b7108f52d00e8f568e4079d583

SHA1
9829568ddc1d83a408c732d03a4dc48ac77c3000

SHA256
6c30665dc087d5ee9d25a531129d52351bec4fff4dded762528ed475ab60b3bd

SHA512
4d134ea5a682c7aef5ea23945210b30d3eee2fc22a085546d21806bd0df734347065e4606014d15ca124de6f0756b8e41bf191d6bc5a7b18e3e6b1eb5cd82462

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
ac36e2e086a8eb51686f1b6099b9e873

SHA1
f6d8f5a5c17e4a621f4c9d780f0717e05482086c

SHA256
8498131520909d90ff040fb58b283cf6de648dc173e3f3b40b3eb5579d86b169

SHA512
670d8a62baa18a74cd20a0ef3b7fc6857ba4ec6947c895c62681d0595bf5fba89b23307c11723a664b1f1b64f69078422a23f7f2a08c1831b4ea3f0a03a7824f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

Filesize
85KB

MD5
c0eb113bc341c6eae350b31b451284f6

SHA1
57a3b2df330dbcfaf3c516d17527f64a29028e10

SHA256
e33e1a77e47fd365c4997f081dff4998a03c0864eb7360d7c03a1785136290ed

SHA512
c446d4bd6db8ba0a19b2603ac8e99a78889b4f368da37962feb5fa546b52f4073f036f92278f82c41d86a08b875f27e0698f8f532c672cce236cdbed60286ad0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

Filesize
107KB

MD5
c692b716422e1607fe965e7ddaee5ac1

SHA1
f6bf35287f762110bb606102aa1984c2152b55a2

SHA256
33317e305b94dbe3eda1acad15a2fb886cb0d834b5856b2e5d5dc097a02e2aa5

SHA512
7839b213096e0aa6c37f59baff9ec3d7591d73356ac5aaaa2edf5508764260a9dfbd1542df779ea55162d442ac270f77a00f46183586ec19d11b38b4d49c04ce

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

Filesize
16KB

MD5
757c3ac6884b7c1e4a1283dc9ea974c1

SHA1
b8bb2dbd89c5bb03c015a89667f11325dfd2a024

SHA256
d51857c1d76fc8d4571b6fc36b32a8c3c77f12bd6d0a6709f40dba73a464db0e

SHA512
b8909339cee9f56bc6f17dbe00d182412bc4a6762a5f8ff9c8343e2c43faf537947e906ef71fd88c078d344ec5fe403726bb49d8fd87273ec9ab50a49238f4bd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001e

Filesize
20KB

MD5
d1a4a9d5260a03b0ed9a48d77f10f3fa

SHA1
e2325d4c4e759b9fc3bb453c5ed775151bdbc059

SHA256
69714a9a171fe5cde0e4b30bb8cfdf428bc61c1da869ff113c6b7d6432271147

SHA512
012032fd0e9338e33112b032196fca3efb0216a9f09c7d109091a112fe99a74d9ea02b2dd7aa9b19ebb77e227c6eb739e254adfffa2d09eccd8c621459e6bde8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001f

Filesize
32KB

MD5
b52a6714d8f826dfb95bbce8b6133118

SHA1
d379be1fa86367a570d4ca16aee342561ad25d67

SHA256
5f35a91b6bfb1dab5043b904531f8705d7c116273b178995688a4492c20fc295

SHA512
79eff5d17020beecbd294d777001d9612bd9923868406a6f5d45c93ce5930de059ab4c86b0fb7a884d123c91512bb385eab7b70a3bcf857a4ecbc6c5e7261d36

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000020

Filesize
67KB

MD5
f3cc79920ae637e7f65aa5a6c1852419

SHA1
daf23c595ee24a1e89e030a8921efce722f2de70

SHA256
b18205b3af868bd863f373e5b0444d14d1315fe5088d46b860ab473caf20dcce

SHA512
aec1ca316286912c1cc238096f3b23e60327e6a2523e0ac74c3aab426694b9c5f03201e39fe561e3398d64ab9c42ae1e3347ab424034149bf0285a2ac16eff40

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000021

Filesize
30KB

MD5
c154b4b286cfae4feeb28ddbffb9ebb9

SHA1
0f29a4f6746d6fd3dcae3f1d6fdcc6b8f57120f0

SHA256
f88eb66341a0deaa75eace7f0ee7bbf73dbcd2ec8186c24eed7e1ec0ab7ec6b6

SHA512
872fddfebeac1ac74d56f1259c3a6053ffabe0ac018538dfdaad3015351f2c77c5330f280193faad65e6417318cdae5aff975627db4c80f5cf527128cb7c31bd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\000006.dbtmp

Filesize
16B

MD5
aefd77f47fb84fae5ea194496b44c67a

SHA1
dcfbb6a5b8d05662c4858664f81693bb7f803b82

SHA256
4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611

SHA512
b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\CURRENT

Filesize
16B

MD5
206702161f94c5cd39fadd03f4014d98

SHA1
bd8bfc144fb5326d21bd1531523d9fb50e1b600a

SHA256
1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

SHA512
0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\CURRENT~RFf76b423.TMP

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
abfce7598a07d25e05a351f610660bdb

SHA1
cc246c9f2f9025877887bb4710a5406b84101e3e

SHA256
cf20a4e95c586ce80885bf8c6ec2e67ff384513ea04dd111407996f13bc049de

SHA512
2f564083a473f72224c10d68bd3b2d317ac13e49a7d03d2ee1f9a806385398db8ce6ab6c4102f179b6d1b28c27be9dffac8111bdfca730c69d3bdf5f5f57087c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
2a8970d57211b2b2346ed79d9df6267b

SHA1
013db82821c8460f396103f9ec2b37c5d2b23a4e

SHA256
e1332efa52d23acde8f4a60474eda79841117330f99c896b771752fac2c54192

SHA512
9b1a1f7ed0ce0aad9577410630a384a04d834a0cb333dcab81499a604eeb1fef0135f358384725d429108fad9e3afbfa7ff72bbc4a94734e5893f01e2e5e1ab3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
56B

MD5
ae1bccd6831ebfe5ad03b482ee266e4f

SHA1
01f4179f48f1af383b275d7ee338dd160b6f558a

SHA256
1b11047e738f76c94c9d15ee981ec46b286a54def1a7852ca1ade7f908988649

SHA512
baf7ff6747f30e542c254f46a9678b9dbf42312933962c391b79eca6fcb615e4ba9283c00f554d6021e594f18c087899bc9b5362c41c0d6f862bba7fb9f83038

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
120B

MD5
0cff2f301c30b9f5c8b3b5196b245722

SHA1
2ba5a87b4caf23d8c2d054a83968b6ed17ea3923

SHA256
e060f2dc0b10f0ee64afab8436902930770f89eca978f28bb5174fd473c956de

SHA512
a55856241960e40b83a0314597a044974263fc0874c29b2276f0aa1d45c7cdd3331d4a5c61e143e935fa4ef205bf9798424b2b2d1cab62668108222b2dfd6e08

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000007.dbtmp

Filesize
16B

MD5
18e723571b00fb1694a3bad6c78e4054

SHA1
afcc0ef32d46fe59e0483f9a3c891d3034d12f32

SHA256
8af72f43857550b01eab1019335772b367a17a9884a7a759fdf4fe6f272b90aa

SHA512
43bb0af7d3984012d2d67ca6b71f0201e5b948e6fe26a899641c4c6f066c59906d468ddf7f1df5ea5fa33c2bc5ea8219c0f2c82e0a5c365ad7581b898a8859e2

Download Submit
C:\Users\Admin\AppData\Local\Temp\CabA42D.tmp

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\Local\Temp\TarA450.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit