hxxps://www[.]file-upload[.]net/download-15356258/Zara[.]ccCracked[.]rar[.]html#google_vignette

Resubmissions

08-09-2024 21:12

240908-z2lj3avhlm 3

08-09-2024 21:09

240908-zzrcjaxgqh 3

Analysis

max time kernel
299s
max time network
293s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
08-09-2024 21:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://www.file-upload.net/download-15356258/Zara.ccCracked.rar.html#google_vignette

Score

3^/10

discovery

Malware Config

Signatures

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133703035880201492"	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
4540	chrome.exe
4540	chrome.exe
4504	chrome.exe
4504	chrome.exe
4504	chrome.exe
4504	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 9 IoCs

pid	Process
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe
Token: SeShutdownPrivilege	4540	chrome.exe
Token: SeCreatePagefilePrivilege	4540	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe
4540	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4540 wrote to memory of 116	4540	chrome.exe	83
PID 4540 wrote to memory of 116	4540	chrome.exe	83
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4932	4540	chrome.exe	84
PID 4540 wrote to memory of 4928	4540	chrome.exe	85
PID 4540 wrote to memory of 4928	4540	chrome.exe	85
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86
PID 4540 wrote to memory of 5060	4540	chrome.exe	86

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://www.file-upload.net/download-15356258/Zara.ccCracked.rar.html#google_vignette
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4540
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ff89312cc40,0x7ff89312cc4c,0x7ff89312cc58
  2⤵
  PID:116
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1916,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1904 /prefetch:2
  2⤵
  PID:4932
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2024,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2100 /prefetch:3
  2⤵
  PID:4928
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2256,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2508 /prefetch:8
  2⤵
  PID:5060
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3116,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3152 /prefetch:1
  2⤵
  PID:3936
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3144,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3192 /prefetch:1
  2⤵
  PID:2064
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4520,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4412 /prefetch:1
  2⤵
  PID:2876
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4720,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4712 /prefetch:1
  2⤵
  PID:1828
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4940,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4952 /prefetch:8
  2⤵
  PID:3944
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4992,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5184 /prefetch:1
  2⤵
  PID:4836
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=5152,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5132 /prefetch:1
  2⤵
  PID:3304
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=5128,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5812 /prefetch:1
  2⤵
  PID:4260
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=5944,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5200 /prefetch:1
  2⤵
  PID:2316
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=4948,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6040 /prefetch:1
  2⤵
  PID:4972
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5144,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5296 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4504
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=6220,i,1361629542464261810,8002300201024525574,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5136 /prefetch:8
  2⤵
  PID:3528

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:1732

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:4304

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\25a1c840-5058-4e46-a57d-9fad204af1b8.tmp

Filesize
10KB

MD5
6689a47dcf53669fb8fb0ae620bd0d0f

SHA1
e43b79ab8cee2cb43924f9a7f32c6618e3830fb4

SHA256
4c35122eff471b1ca1096a27a592f4b03756bae9960a21873acbf8510f1170ab

SHA512
ddde971adcdf02c5f0b3d7ff8c80cbaa5fab26f5daad8e262a9bee724a43fb3c25c6dcab1807e60a06dc8d8ad4d3d4eae9facbaea4e57bb91d874b5936ee0a03

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\3301fc81-843c-463d-a814-027265565c6a.tmp

Filesize
10KB

MD5
5dbaf0761a942b3cd8e1ce96990b471a

SHA1
b19a2d766d49a5793e8295b78737582ae493f515

SHA256
3e61bb8e90c22eed514ed88fb907ac06fdb6fd0057d12f1b948c9e14f3ca9298

SHA512
0653d5b1cb592965d9dc03307cd602faa8453721bb36d601af1995c7b1d29cc994967a83b689b985d308188b8d777ff2f2adb8c78afda4c9e8a076ad5992b6cf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
5a964d4315e0e9a844c6cd518e2f6576

SHA1
43db1f5a9186a7043c331f8987d967f5905e7202

SHA256
e5b649928d34b9df7b032c0c5a41dc416dda75fe134c7f42645a403845d36c0c

SHA512
9000eef188c3bc408d7721fb510996ae7c74a5cc6ec969673101c4875a4dcc5b6b19a39fd617e2152c72cc1a45a70f3c97336b44e2135f274b46024d3193d84b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

Filesize
212KB

MD5
08ec57068db9971e917b9046f90d0e49

SHA1
28b80d73a861f88735d89e301fa98f2ae502e94b

SHA256
7a68efe41e5d8408eed6e9d91a7b7b965a3062e4e28eeffeefb8cdba6391f4d1

SHA512
b154142173145122bc49ddd7f9530149100f6f3c5fd2f2e7503b13f7b160147b8b876344f6faae5e8616208c51311633df4c578802ac5d34c005bb154e9057cf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

Filesize
24KB

MD5
c594a826934b9505d591d0f7a7df80b7

SHA1
c04b8637e686f71f3fc46a29a86346ba9b04ae18

SHA256
e664eef3d68ac6336a28be033165d4780e8a5ab28f0d90df1b148ef86babb610

SHA512
04a1dfdb8ee2f5fefa101d5e3ff36e87659fd774e96aa8c5941d3353ccc268a125822cf01533c74839e5f1c54725da9cc437d3d69b88e5bf3f99caccd4d75961

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
960B

MD5
444dcd67336d21727988e49d727e27f8

SHA1
4b8c0dfa251fa151e8fbf0a0a3e777dfe6231612

SHA256
51f647f1d34600de717eaeb5474124d0569953fb039479f9baa01e479332b7c7

SHA512
c98500ff7797ab0ae35392d12780c2efdf50b036d3499e555889c2672b9fb94ffe0d0d5c85687aa1c4c2a73e56206e063ba079f6c83179c7de89caaf5d5b98b2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
984B

MD5
5dcb94624fe962ba6b1d921fe6e9c675

SHA1
f592def68e5cd8a77618af7f39b25f4cc8840447

SHA256
54a320ff4792b353d75e9e711447cd7ef409442e5a27bce10e1bec3a3b27c1d3

SHA512
4b4a1360a83e75da3943bd2823bf718124352fa5f00a56bc1df72733de98736370c6c0f7890c2d4f398c717b673233c8384e58e1cfab888f85c54081354478eb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
936B

MD5
db5b48c9ae0b758202885a6274217af4

SHA1
b4fb4a6cf77b827ca3d910c835aa63a69533e08b

SHA256
d5d3fe1bc2300f4c5d354cb2fa8b5032d45f4913d60a8c95da22c5260be01717

SHA512
428cf98f81f0150cbac3a76382a3e54a0111efe4b97ea53c8d1090a3f80d57b003d30d7c91228935fd7092cfc1bf3cb279f199d6561bcc1991c2a4521d70278d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
7KB

MD5
4f9b72fa9ab8a308802f759e36adcf86

SHA1
7600cb94ca24140fdba1fc9cf03495a9b9e4a9c3

SHA256
6fda5b6371459f62c78ebef2fe948bb6eb42f09b6c904cba521769a6543b31d2

SHA512
56c73f5f17f33629cf49e4bc122767c300dc8acab6bbec85bc209df57e9ae0d487a9096d161e116769d4fdd193859a6738db8f2bde32907bf858d9dd747acacb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
6KB

MD5
6379a79429e270a601add751c9fdc547

SHA1
c7edbb1312e2df66c362b160e6ceeef783329d85

SHA256
ee491387ff1fb5473239c9feb1688844f77116115d57635975e51494d08c7835

SHA512
4275912549a98a99549559d67e66f04509eaef6151ccd01a9f0bbacb4b5867e616bcf921edde9ee55c0f0863f773932a030c04114e136f8889dc272af1533f55

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
524B

MD5
6edfeadf1dd6cf5529f3c9d447f8755c

SHA1
2e6308e673b6a43da64d0f031083bc3d5c25b3f5

SHA256
a3f07ff09a7f36f8eb1bad6d54ff9699146eba94093fc5796b1e74dec9eccc85

SHA512
147a14dde264832b2aa5daf420789a6aa7afc197544e8a5d30f354fc2edcb6c67d69042e3a86dfa31c8535397c47e90ccc2f917c7c9a325d33a4e7c60dab78b2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
524B

MD5
ceb66c96d37676fd281d70a7316e6b56

SHA1
f8ca9fb4a9ab574ada03f42a2e4c18b7880ac84a

SHA256
69e32de3f68736bf843bb2e965a76e9b220fd0acdb3798e6abf2846bd6d50b0c

SHA512
bce668d02c4cc2512744753d429d96a87a3ecde486577d0d06d17e5f741c60be62c7b73b5369345814423af6123101909557042dbbe49d918511b2ae5a88253a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
524B

MD5
1d59da6ebf31f0b2198999c73da79ece

SHA1
5626429e818b531d0f0eb17be43576aefb601143

SHA256
33d7d1ed3b08a2e91057d43914da90f66c6212c84be7a6431501c90ab715c644

SHA512
e89f0d3e7b15139ce4d2f203f4d116272b2a65cc39459514e80dc3feb701efbaf58f81763777cdd09d8a98095f45909de94c55af2460351e29a8a17debae0852

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
a8f4c9c39df0687c861554da04109931

SHA1
99fec8dd09fc5b4b2a69373531b605c26f192467

SHA256
05bc22199c71b2e70f6690156f733e2a841492d964bb5dc111cf9fe8c37ba1eb

SHA512
44c504ebf17e3edec77198c363f9a03c40dbe63cc560e3ad150abeaba7a9801eea441c56091b13667b6a1f29531bceb9c03e6ad02d1d64ed9cb7e657967c0afb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
fed0fe2db3c6f7e810b9f297b00ef85c

SHA1
2e3ab20ae5390bff76c8dd28399ba4a8e1e14fa9

SHA256
68bab2a77181bddb70d2c897226c72516dca6b7ae0e488bcc3011c86188c9c38

SHA512
99e8e7f5a8b4316031937fa3a6ea3d63cb038c4a3b17bab50a492c88720446f0d7be681328c463c654678f5570d4a6d118be4a5a898de9b14aae6194dfc0d8ee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
c8e75e9c3aace2d0cc8263f8000e77ef

SHA1
f9b63d83524e508e82c065cc777a42d240118744

SHA256
4ba4aaea233a6f2c0e01d4c50e48e04f5455d2b3fef0ab9faf961f4f598da245

SHA512
598e0f3073f57c0223b2fde72a90ec0cf5a6af9e63dc96713863edb5b3e9615ca2e8219d6493dea1fe163f32fa0cb808ddcc2f10b6be473c2bb489e73f35ccf2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
fce6455e31bce5542f627bf7c049e9ec

SHA1
233276b3cb268acd53af4c16e0468dd222891283

SHA256
caa38c80321eada7c029c5d3381d1a6e930559e9f0cc74ac894be512737ef35d

SHA512
ae6f2d88a37abf8f99baaef09ccb55c164a405e054acf35078e514b07748f14101ae17f50d819079c2a69dbcd982c8536ebf2b1334036c02b635454ff05be298

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
c44efc2fd4b0a089569fe4a67972bff2

SHA1
73d7cee50cfd30a4eb7bf550533f70fffa21af53

SHA256
a29835a10102b59d5687c72da77cb9c232f374dbeeb588722027c7a1e0e27066

SHA512
d5451307edf986254008c72e457502f88606f0d19401f0b7f881dfb614bae2699b67a95e3e570a53cb5334cbeb4e90017980f0da576cf8e07c5d1b98ec7ac5b3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
f70a09cdd94e7e2d5e0827deec8cdea5

SHA1
787f29e30058bb3bc9daf8314d0c52901fb4ff20

SHA256
a5fab349f098115731df0f1f2fc6fe038907fada27098c15cbd623836588a08a

SHA512
db47112a424698632bafd586a541e92a412a030257424cf10efe8724b6953ac18f94458548706b53c98215bded3bc0d0362539dfb639c2ca394d235f7b187a4c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
f4b087cd0837086e7c9b6da6925f15dc

SHA1
1f64f05098222d3e1b87f02929135bb6136aedfc

SHA256
874fb15916b09ad8ff9187b8935caf34e0dd2d08f2f4114257a2f8762bcda633

SHA512
223fa0e65290b572b35faf0d7565d07968224c9ae37d711f575ce5952388961370995fa30c2b9a7531bdbb59129840b2077cabe8f6948bb1fc8da7c15c3af37a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
16d4f04f80542d95c66058db24504fc3

SHA1
e2d2f7321d3d745cb364d17fee276ab2310acd73

SHA256
b2a783430fbec46b01f097f379878598067036db5d771636ff1ffd6d86a5e933

SHA512
c7d3fc264a7e31757bbbb17e3b865669b1f0518173c6e8b7ddc85167493cc777766ac9952503571ed9690e79fa49e0f94c5bc487d37883c9c696fc8a93ea52c2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
d45476e8d9e801f0a8e42c35617daaa5

SHA1
5ce2d9aea93d3fd7e8a3b23aaa22823acbb10bf2

SHA256
5c4eec518a6a5e819ad41e52118139f14d7e94cd3b3b1cdbf80c66b26e9454cc

SHA512
7d02c3f5f75b86c1f09181b7d70c4a942f0daccf7055e7366807358d00de0bc1f0635191a74599adaa1480dc57d625ea49873055f918455153f908a64bd7fda2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
d33da0d695d2fc86aaa1742215c8a577

SHA1
bc98fadba6765d082effde5f0dae034d2920455b

SHA256
1017ee6202ad982e9f78f8a9b6b73800e5363f7b4f4748f5dbf7db5666d5a123

SHA512
664dee4891713076a3047f72b5bfca541a9ef269da9015e0f56cce4f26a53ca32758ee071072443c078fdf15b9b22144a78c602e62c66654b4a93705eb2997ff

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
841042bb18577f25c918bd76323c2a93

SHA1
e91dd31cd078520cc153d2b14f553a130f5acd01

SHA256
ed66dc818ec6473bfb72a0cf865bbdae8b40ed14ee573f6d407a4616d1c6bbad

SHA512
51491bdfae9b01bb71b265afaef064825fe52c951057c1f27af50d0c9c3e4f915499225c8909e1f56248a50d7f6470507b6e2f1d5634a4ecba7236fe6163075f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
86c57e8034e437f92b8a33897dcde1f8

SHA1
8a6b96847bfd4f4818831029044be2e72f9aa9d3

SHA256
5f0e755b5b794bfed145eb7bf2d067409d72659dbdf9cd001b05a38037f4d87d

SHA512
9de8294ade49a18c64cb85e5b45acabe14ed9adaf9b6a7e0c7bcf40feeaed244d06c2b6d2569fd4bb6622e6626c0f6db7bee9c51848d17dfa446c805b62d421b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\c941ea76-7875-463c-830e-2175fc380a6b.tmp

Filesize
10KB

MD5
9567195cd5386b8ef6fb3b7245bf69c6

SHA1
5128774a0459b4c0070f75d0b8927a92116195e8

SHA256
04e9f500aef2c222df7cfe35779ccbf29100f7187ccec6f88283af24270e9f1e

SHA512
4f1df19b89c850364c96dfe3456e5a2bd295db2a48b1450d74bd29a6002112b20a8a99df9c5a95db2f285d1988364f2a3d106f0dd6fa980e85765446852bf12b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
99KB

MD5
c57a9009b287ef32249b5b012e2b6658

SHA1
93eb75cc1e8d051b867f13f156b6b805bf9dd90d

SHA256
07ac21edb452a4aeedca558fa384f3b961072803479c80d7a36f85822313e314

SHA512
013112f4bc7ac17080a33ccd98a68955c9490150fe2e11c426fd9f36447c3c1ba04a582f05936c390bb3b86881907dc4bc00d444523b9372b334148b1346d98b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
99KB

MD5
0f7bcce78f20af0784ef67d28d989301

SHA1
0625e8408454a6e8e4fa8fe0a9ba1f68f79fbc5b

SHA256
5c8fd0c9e8f4b5b55b131181dc55b517408a9e993eced454e5f09581f3fe9ed7

SHA512
dc6953a8d84353d8a4b2320a4ed7b9fd759cff2df2c6ece9bbead84897bfa898204b4fc0c0cc3766820e17d128c5b93a012740d0166b3be2b41ba32b8a71872b

Download Submit
C:\Users\Admin\Downloads\Zara.ccCracked.rar.crdownload

Filesize
4.5MB

MD5
fd65c0d0ea95c0f7f79c86ca5f20ddd0

SHA1
5b0129a1412adaf2d72a8caba7cb678046e814cc

SHA256
16bbb0d47801e2ce34307395b21a4ad1e8c3545a1b50ee4950ee60c45e8c13de

SHA512
7c512924febac2fa171902559cc01bdb097dcd435febfb10f7095157ff42f39ca4e64ba4d435f7068b9b9a6754279e2ba42535212ddec221a349515f334ba8b3

Download Submit