c0082b8f790eae1f06c50e849c8ce463fbbc4a2b5d2e979b777867123e69ec0d

Resubmissions

12-09-2024 10:11

240912-l8es7s1hng 1

12-09-2024 09:46

240912-lr2awa1dpr 5

Analysis

max time kernel
1340s
max time network
1330s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
12-09-2024 09:46

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

DarkRoom-NFT-master.zip
Size

52.8MB
MD5

83f3d5dc30ade49bc083c97af5bf35a8
SHA1

e00b0c63cd2f87d6b48439dcee0556e49e35d604
SHA256

c0082b8f790eae1f06c50e849c8ce463fbbc4a2b5d2e979b777867123e69ec0d
SHA512

0c8d23c908b6882d5fc6a9487362f44881074c3dd39b5f4305e471456759b1ebe6363e1330ebb69aecea925031145665be052d49515c16daf6f848f308665b78
SSDEEP

1572864:bdQPsHyN4YCs7ldZbSuacCHgTXaApWsu+sCgUbR5G:byPsHyNjbj6lHgTXBpF5TR5G

Score

5^/10

discovery execution

Malware Config

Signatures

Drops file in System32 directory 11 IoCs

description	ioc	Process
File opened for modification	C:\Windows\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSS.chk	svchost.exe
File opened for modification	C:\Windows\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSS.jcp	svchost.exe
File opened for modification	C:\Windows\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSS.log	svchost.exe
File created	C:\Windows\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSSres00001.jrs	svchost.exe
File created	C:\Windows\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSSres00002.jrs	svchost.exe
File opened for modification	C:\Windows\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSTokenDB2.dat	svchost.exe
File created	C:\Windows\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSTokenDB2.dat	svchost.exe
File opened for modification	C:\Windows\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSS.jtx	svchost.exe
File created	C:\Windows\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSStmp.log	svchost.exe
File created	C:\Windows\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSS.chk	svchost.exe
File created	C:\Windows\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSTokenDB2.jfm	svchost.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217
Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 3 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133706092319732932"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Modifies registry class 3 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-945322488-2060912225-3527527000-1000_Classes\Local Settings	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-945322488-2060912225-3527527000-1000_Classes\Local Settings	mspaint.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-945322488-2060912225-3527527000-1000\{A6BB6C10-3115-470E-A67C-67F13ADA9235}	chrome.exe

Suspicious behavior: EnumeratesProcesses 10 IoCs

pid	Process
1108	mspaint.exe
1108	mspaint.exe
1876	chrome.exe
1876	chrome.exe
2180	chrome.exe
2180	chrome.exe
2180	chrome.exe
2180	chrome.exe
4444	chrome.exe
4444	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 8 IoCs

pid	Process
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeRestorePrivilege	2904	7zG.exe
Token: 35	2904	7zG.exe
Token: SeSecurityPrivilege	2904	7zG.exe
Token: SeSecurityPrivilege	2904	7zG.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: 33	4848	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	4848	AUDIODG.EXE
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe
Token: SeShutdownPrivilege	1876	chrome.exe
Token: SeCreatePagefilePrivilege	1876	chrome.exe

Suspicious use of FindShellTrayWindow 54 IoCs

pid	Process
2904	7zG.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe

Suspicious use of SendNotifyMessage 48 IoCs

pid	Process
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
1876	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe
4444	chrome.exe

Suspicious use of SetWindowsHookEx 15 IoCs

pid	Process
180	OpenWith.exe
180	OpenWith.exe
180	OpenWith.exe
180	OpenWith.exe
180	OpenWith.exe
180	OpenWith.exe
180	OpenWith.exe
180	OpenWith.exe
180	OpenWith.exe
180	OpenWith.exe
180	OpenWith.exe
180	OpenWith.exe
180	OpenWith.exe
1108	mspaint.exe
668	OpenWith.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 180 wrote to memory of 2716	180	OpenWith.exe	104
PID 180 wrote to memory of 2716	180	OpenWith.exe	104
PID 1876 wrote to memory of 5056	1876	chrome.exe	117
PID 1876 wrote to memory of 5056	1876	chrome.exe	117
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 3544	1876	chrome.exe	118
PID 1876 wrote to memory of 4840	1876	chrome.exe	119
PID 1876 wrote to memory of 4840	1876	chrome.exe	119
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120
PID 1876 wrote to memory of 3588	1876	chrome.exe	120

C:\Windows\Explorer.exe
C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\DarkRoom-NFT-master.zip
1⤵
PID:796

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:4504

C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\AppData\Local\Temp\DarkRoom-NFT-master\" -spe -an -ai#7zMap9796:118:7zEvent13937
1⤵
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
PID:2904

C:\Windows\System32\Notepad.exe
"C:\Windows\System32\Notepad.exe" C:\Users\Admin\AppData\Local\Temp\DarkRoom-NFT-master\server\index.js
1⤵
PID:2740

C:\Windows\System32\WScript.exe
"C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\DarkRoom-NFT-master\server\index.js"
1⤵
PID:708

C:\Windows\System32\Notepad.exe
"C:\Windows\System32\Notepad.exe" C:\Users\Admin\AppData\Local\Temp\DarkRoom-NFT-master\server\config\keys.js
1⤵
PID:4956

C:\Windows\System32\Notepad.exe
"C:\Windows\System32\Notepad.exe" C:\Users\Admin\AppData\Local\Temp\DarkRoom-NFT-master\server\config\passport.js
1⤵
PID:3400

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:180
- C:\Windows\system32\NOTEPAD.EXE
  "C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\Temp\DarkRoom-NFT-master\README.md
  2⤵
  PID:2716

C:\Windows\system32\mspaint.exe
"C:\Windows\system32\mspaint.exe" "C:\Users\Admin\AppData\Local\Temp\DarkRoom-NFT-master\client\docs\images\home.png" /ForceBootstrapPaint3D
1⤵
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of SetWindowsHookEx
PID:1108

C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
1⤵
- Drops file in System32 directory
PID:3296

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Suspicious use of SetWindowsHookEx
PID:668

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1876
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7fff88afcc40,0x7fff88afcc4c,0x7fff88afcc58
  2⤵
  PID:5056
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1924,i,3239870191988151883,1707154549832204107,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1920 /prefetch:2
  2⤵
  PID:3544
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2188,i,3239870191988151883,1707154549832204107,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2220 /prefetch:3
  2⤵
  PID:4840
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2260,i,3239870191988151883,1707154549832204107,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2256 /prefetch:8
  2⤵
  PID:3588
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3180,i,3239870191988151883,1707154549832204107,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3208 /prefetch:1
  2⤵
  PID:4908
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3356,i,3239870191988151883,1707154549832204107,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3452 /prefetch:1
  2⤵
  PID:4276
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=3748,i,3239870191988151883,1707154549832204107,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3712 /prefetch:1
  2⤵
  PID:4632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4840,i,3239870191988151883,1707154549832204107,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4848 /prefetch:8
  2⤵
  PID:1948
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5020,i,3239870191988151883,1707154549832204107,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5028 /prefetch:8
  2⤵
  PID:1564
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4820,i,3239870191988151883,1707154549832204107,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4772 /prefetch:1
  2⤵
  PID:3652
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=4788,i,3239870191988151883,1707154549832204107,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5108 /prefetch:1
  2⤵
  PID:3696
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --field-trial-handle=5504,i,3239870191988151883,1707154549832204107,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5472 /prefetch:8
  2⤵
  PID:3528
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5348,i,3239870191988151883,1707154549832204107,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5080 /prefetch:8
  2⤵
  - Modifies registry class
  PID:5088
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1180,i,3239870191988151883,1707154549832204107,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5360 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2180

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:4024

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:8

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
1⤵
PID:4356

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x41c 0x4e0
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:4848

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:4444
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7fff88afcc40,0x7fff88afcc4c,0x7fff88afcc58
  2⤵
  PID:556
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1904,i,8930286593301916423,12397179803876469961,262144 --variations-seed-version=20240911-180200.870000 --mojo-platform-channel-handle=1900 /prefetch:2
  2⤵
  PID:4436
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1916,i,8930286593301916423,12397179803876469961,262144 --variations-seed-version=20240911-180200.870000 --mojo-platform-channel-handle=2160 /prefetch:3
  2⤵
  PID:2060
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2220,i,8930286593301916423,12397179803876469961,262144 --variations-seed-version=20240911-180200.870000 --mojo-platform-channel-handle=2448 /prefetch:8
  2⤵
  PID:1452
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3132,i,8930286593301916423,12397179803876469961,262144 --variations-seed-version=20240911-180200.870000 --mojo-platform-channel-handle=3168 /prefetch:1
  2⤵
  PID:1768
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3140,i,8930286593301916423,12397179803876469961,262144 --variations-seed-version=20240911-180200.870000 --mojo-platform-channel-handle=3200 /prefetch:1
  2⤵
  PID:3456
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4480,i,8930286593301916423,12397179803876469961,262144 --variations-seed-version=20240911-180200.870000 --mojo-platform-channel-handle=4516 /prefetch:1
  2⤵
  PID:3320
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4744,i,8930286593301916423,12397179803876469961,262144 --variations-seed-version=20240911-180200.870000 --mojo-platform-channel-handle=4740 /prefetch:8
  2⤵
  PID:4440
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5004,i,8930286593301916423,12397179803876469961,262144 --variations-seed-version=20240911-180200.870000 --mojo-platform-channel-handle=5020 /prefetch:8
  2⤵
  PID:2116

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:1576

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:180

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

JavaScript

T1059.007

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
2c76afc5a2c5731743f37706c1fc87cf

SHA1
7e9b3c33b0e65d011882eae9d8224a3f2e30f7f6

SHA256
77fc781aa22f91c1beb606634a96088bfbbda95c1c2f08b679c281f2ffbb2dd6

SHA512
6cc81e2569857200dcd7f7c161536e9dd1fff4c9fb993fdc58c7f86b79b064713001de5d6af01136b4666439ce16532626559734549150408c8c101601ed8683

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
a7477cd5b97bdc3ee579815ff3279782

SHA1
9f2e73b4274f8b652e33060050f86006352545bb

SHA256
f5f22c46faa85c3452ea450a77c44db28a855ca35d5ebb35718e23e38a59aef3

SHA512
864d2756c498287871d6d1034b9e36f67e408e1c0b876f1a256e308ec751c8fc8fc6dd3153ca347585c744e473df98d30e1518d6606d8c4a88e6cf60657a8e5d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0

Filesize
44KB

MD5
77d4042d08ec378b5b9957fa406c3b31

SHA1
d0b56ca24d3f0ea91bd0ea23e4cd2ef2e5b424d9

SHA256
1515b7b45cb3f167daae92993baab7a9d8d0c5e459702d797848f2d64ecbd5de

SHA512
92de6e6553e50969b7068248ab32906547228ccdccd2904c7fab274581a07f3f027857cee3eac106aae05c2ac0e508b325212d17b5f8488b95fac589ca070ede

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1

Filesize
264KB

MD5
d1cb016e658d85802a1cd2a665c6aae7

SHA1
909e19da4cf3dd0124314c5b8204d71fe16fe337

SHA256
688e6cdf315e814dd8c9e5ccbcd08de85ee100d7e714540933bf97cd7e7229e9

SHA512
e403aa1cc3000ff8788d94439fea3495163c999c46898a55cbc7771442de7758f20b52a4847e5c3cf77cd5106a6e5bb8dd5bb92064857f79d7c626f3634a35c3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2

Filesize
1.0MB

MD5
bed93904a39830df2c1b5d19613bef17

SHA1
05abdec157b9f1362fd4a4837090ea27330420da

SHA256
2fd0961f323c3c39241923629d17711b9501b3f1503305229e0a4105f273e18f

SHA512
c726e37e3f600bf077974a4bb98df556d9ef9be37751f62d721b691bed285a9c82c634276a6a439f63e6c310951cfd60162b4091b7c2e7a32cc012ac6c45f0f4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3

Filesize
4.0MB

MD5
eb55a5735de9a4e3d3e7bdfb73ed0dc9

SHA1
a86035d929ac4000b5c852a8f62057dabb92ca04

SHA256
e099952e2c90f1edd863dea2decd1a304d72f3c6ad45e7902adfa1bab0d03546

SHA512
a3f13afbb1cbfd28eaa7b588c8b0c2abe0913d4642ac15c2d8b13a5eecdab274ab806786488754951d36d3778eb03c2d7bf78066f5e837906f25050e0564916a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001

Filesize
47KB

MD5
213af7ac1aa72e2c0c316743695b7cd0

SHA1
c93bf2de82958073a23b3a495356118ef718cecf

SHA256
f5680671f5dc330f962eb3de4164654e2c17284ac3a109f687ddabf104e25ce4

SHA512
d0e11f42a046682805d18a0a133df1c8c4272b94117de503dd4992c34f93e516b7decbf77496f45768aeb1a95f1493f74f5ff732e9b42efa6bff1b47e9b0c1b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000002

Filesize
232KB

MD5
d17341f8e4567037d856e6951d7be9f8

SHA1
f8c5d5af767a316690529d78c2bbe0b0c1cb09dc

SHA256
8716ed84c48f15cf082984c6abef105ac808087ae9eb293cbf531661181f519b

SHA512
9d0567faecc65103f01fc0e2483b888036c229a5a46ae25923b9675b9ac0620a110371817b49dfc8953120315640c1ecd1b327a1b5be3bbdef359f0aa0b2c6ab

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000003

Filesize
22KB

MD5
778ca3ed38e51e5d4967cd21efbdd007

SHA1
06e62821512a5b73931e237e35501f7722f0dbf4

SHA256
b7e1bfadb8d9c061f17a7234df012df7842ab1aa8fb6f9579fa3f0a3b4a75bc0

SHA512
5f6f02099ca8079305fb7e7f43ae4344d522271fe30379c0854d6a81b7d8adf408a50a4b799b5f52e6ed162ba6ce7fe97e24a2b9719df780e75683d3aa103d09

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000004

Filesize
754KB

MD5
07777f459f700ab190b3157b66f7d158

SHA1
b1a37271d8326bc72973fa6237a38ebe8370d714

SHA256
566a5c2f661ed10606ea930a3703c431c1d8ae8d6bc42614481d21481f3b8767

SHA512
d549a949c654a970a5ea3bc8919053a7d8a469fd839759eea9d870a9c3795a9f1a51c49fdbc9c138f239cbb3feebf3bac4035e7559f960f9463c801161a16ada

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

Filesize
32KB

MD5
64c10f93926b45f7a374e33c90fc244f

SHA1
6bc05ab8a76324f7aa0ae98f58a549ba1b94c3ba

SHA256
2083c8e8acd6ec0180a8d7d12e1b03fdca7dde9d70a8e3409dc503b0d2536b47

SHA512
2f3d3bb311738f70cff15ce893b9b4c6dc7c9419fff470e0d4a9e0d7f79e6660b1c3d7111f3717f3a74a25bb4a74ead6c5716899bd9fac22b97981f6faf493b9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

Filesize
1.5MB

MD5
704819767c0a28da0e3a8d4eaf18ef9e

SHA1
9e07feed9bb0ce9e22997d80f2fbb98322290ff8

SHA256
0b3aedda7dc19e58a869e67b77a0b89ff9e797f499b7d648270c0833c2917741

SHA512
7bcf22d83dbc26e114d4cbdf7f1c44193a30542428bd1caef35b101db78e8a4b45bead2e736121cb3dc5a7b4eb57ebeaad4fabaf441c9a5700a1faab82b7dc27

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

Filesize
32KB

MD5
dbb3b15ca6316c746729b1f4782cee84

SHA1
4d52df6958cb4f30d22340850c08006b8e4decfe

SHA256
b918b04e25423a0a6723f8cc426e5f4435b4639b8112820c4dcc3614f9f002d2

SHA512
e8ad7ccae5126c7e19955dadc076e5000b21db4dcef319e8e4fc310057aedb4f840bbef322c711e7e25599c61b87e8b075db1f619c4df15e41109e5f744f8afa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

Filesize
18KB

MD5
8eff0b8045fd1959e117f85654ae7770

SHA1
227fee13ceb7c410b5c0bb8000258b6643cb6255

SHA256
89978e658e840b927dddb5cb3a835c7d8526ece79933bd9f3096b301fe1a8571

SHA512
2e4fb65caab06f02e341e9ba4fb217d682338881daba3518a0df8df724e0496e1af613db8e2f65b42b9e82703ba58916b5f5abb68c807c78a88577030a6c2058

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

Filesize
41KB

MD5
350fef14b9432c8888714f9d69ba79fb

SHA1
f02876195e3b3628384124d63cbcb3606a06996d

SHA256
dbb362d29b9b4111e7722bae880e8a79ef8efe96db4cdf7869195f5cd0066fc5

SHA512
8fab4f3151a81a2cf0465aaf245d507da97c230eeb86dd6e9cee798e4d8d953aedb2e7e4cc004fdc8a5f7e8af0ded27aeefb4c626ad61c95f38572e13d49d419

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

Filesize
18KB

MD5
c83e4437a53d7f849f9d32df3d6b68f3

SHA1
fabea5ad92ed3e2431659b02e7624df30d0c6bbc

SHA256
d9bada3a44bb2ffa66dec5cc781cafc9ef17ed876cd9b0c5f7ef18228b63cebb

SHA512
c2ca1630f7229dd2dec37e0722f769dd94fd115eefa8eeba40f9bb09e4fdab7cc7d15f3deea23f50911feae22bae96341a5baca20b59c7982caf7a91a51e152f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

Filesize
18KB

MD5
115c2d84727b41da5e9b4394887a8c40

SHA1
44f495a7f32620e51acca2e78f7e0615cb305781

SHA256
ae0e442895406e9922237108496c2cd60f4947649a826463e2da9860b5c25dd6

SHA512
00402945111722b041f317b082b7103bcc470c2112d86847eac44674053fc0642c5df72015dcb57c65c4ffabb7b03ece7e5f889190f09a45cef1f3e35f830f45

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

Filesize
31KB

MD5
2d0cbcd956062756b83ea9217d94f686

SHA1
aedc241a33897a78f90830ee9293a7c0fd274e0e

SHA256
4670bfac0aeaec7193ce6e3f3de25773077a438da5f7098844bf91f8184c65b2

SHA512
92edce017aaf90e51811d8d3522cc278110e35fed457ea982a3d3e560a42970d6692a1a8963d11f3ba90253a1a0e222d8818b984e3ff31f46d0cdd6e0d013124

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

Filesize
20KB

MD5
78b73f6aa644f6710b967dfd263d40bd

SHA1
22646bfd44ce99a80fa1ae71407e2fad328beb80

SHA256
397db50d71e076b5e90424581c013707ec0eb99bf7a8032fef7c20ba23a69d6b

SHA512
f9c38091594878a2f98686babdef5aa2a04377a00b1487e52f477d3fc4c61c2eb997aafe3aca68d614f8cdc5641cc93a97a42225cb49674fa0b957e1e69aad93

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

Filesize
232KB

MD5
fe990b7199dbe04d999fe8cd595ed12b

SHA1
69d4938f25f95527e0cc260c37c43725262129b9

SHA256
ea3e8477454ba4fd1798c7e1a427adc93e8982476ca6e614e92a564172171501

SHA512
fc8c16cdc11ff40336f80ac3e2617d3a447160eaa1f2f45def05cf2223acec250529564ff0f06e9f148778ee5d5a5a49738b760035157cc6e37977cd727994d6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

Filesize
55KB

MD5
545f0566e3b71cb3216f77494458c6d2

SHA1
0b56fad37274de50d22a472fc67ca0ce4d81e9ff

SHA256
58e72085ca43c871af34433ca78ad627a66cedbcbc8009d6aafe580971e1c557

SHA512
c9f3ef523fda25466c62a6f7808daa70d2fd3f2bd471038d94d08f515be4b1801e15ef0322fdd75d51a78edadd176ece5a92faf027ea3a444ccb0e22f9334762

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

Filesize
24KB

MD5
5c50b6822a6d326fea0d040f876af910

SHA1
95e7781cedb5c54336d40e3fa993e3258ba5715f

SHA256
1e5eb300808955addf286319df4e9aa3589ed3f6c6465dd85f587de865a3e10d

SHA512
07fe6f85e701d1c1feb1ea9fe4c76250ffe73abd5eacfd2ac58fbcb92137a4608ce00143edfa1ea1b35fc1734f86d99bfb315b59266c00bb3b9ddf225d9c62b6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

Filesize
93KB

MD5
f2266fe6405cca1653fa3b99a52332dc

SHA1
bf72f70b553ca45c6d1c61438fbcc4d2549d9745

SHA256
77fd9dec29c4916f343917d84bd73231bf00826998866af90a596c5d2b3e9060

SHA512
fb338c99700daa631d6133ef846ad0a09714968a834f0278e4fa0dba6414cec325c11a61db826814b1a3c0f6bebae7cca5dce624f3f009debef150c3f5ac0e2c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
720B

MD5
07d17164e92767072820d8dad86c0046

SHA1
e3b7f80f62af275e9c6b6ed9457254abff023879

SHA256
d1d8c4a44757d7c91d71f0cb6a644c744b95e10b25210ca221d498a08648dd88

SHA512
568e74abbf9c1317c8e8f1a796b18ac51d7d6bf36dc47d813ac806f65001459e3aa525a31a5c4384912473064285b5dba573c974a21918315f69b65274d1c729

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\DawnCache\data_1

Filesize
264KB

MD5
afcc2007c0c5ff01f73c28768552ccd8

SHA1
b703005af3b850829f45935aae240ff745727f94

SHA256
4841de2461c3bd18cdccbd8c8d9c2cb7cf0faddd685c4019a4fefa6c30494afe

SHA512
7f67221fbd928a95b5625344a79e4f017f46d99852055dd74e66c8fa5caab261c8671c937a51c67b2c4924fce03596b9a0b1aea8aa92a58eb894793565d0710a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Favicons

Filesize
24KB

MD5
a1f1c23f4a3292773d7475f81df159f2

SHA1
5903ba2da1cddb611f248d20451d5e620581dc0c

SHA256
6d9e3710787ae47fc7d06f1af7c245d56f485929129dbed93144d27f9bd28c5c

SHA512
b39414acd0a35b82196b3e22994ff1494b4236ad0db59f28f204ab131305761e5cfb385d8db206f5628571a4f14cf76516ef43cfdf44692004e1cb011f14945b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History

Filesize
160KB

MD5
89175bb2ebc49174141a330395619af3

SHA1
108ac901c8610ae6045dc39b54c707ccf865311f

SHA256
739fe4089419a07279efa143e31af29f179a7e7eb779ee73b947377dd992c53c

SHA512
0e80681c98d414a44abb90ac89ea764ba48678fff62a3aafbf3d30f60cc02f708e55e4483f7f948c4d4cadb9c1f4e2ca7bb0d25503c77df0be5c61b3f6bbb34f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Cookies

Filesize
20KB

MD5
61ce603f35b05e2f145003b70b91727b

SHA1
9a1cc2af0d5e2ca230db29a378f110d83b7dc8a8

SHA256
a6bbc152b9a6d3f584f4b986299f47d4a1298b9df8fdcd50d1dde74aaa07ab21

SHA512
a7379bb0f10d61f3dbfe46df34d8e64276ab71011b8b3f1a04ee37f032991185c5a9ca22ac52a9d7fecca5a8c821babba7047c7478b4929a92bc1f20fda36c09

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
6KB

MD5
34ab79f0d7af5d39c3b948d1c5282821

SHA1
0df096431a52eb44a2bbee3f5ba829fd8ce42c5f

SHA256
a4d7d4ced7ce43c61668985664f7ed63f6e966e7cdc7ac729afbad2e44d9ee8b

SHA512
4c311866bdcd38c580399584cc608defe95b1ab8efc777c3be6db82a771b3fcd535b3f80450c6fab791614a8937132424d8b925625b98d572534edf575ec10f5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
92afdd59d1a96a7620f5e5f56843384f

SHA1
39c51ade895c39b08ca34d4b6997ba6c8583f724

SHA256
2230ffc4f31d6ec2180f7fdf91f59bd530e9f12fe16183c3d243f49c8f14ac3f

SHA512
dc3c98a7d2191ae1aa6cc940efd369e1ccc32d5d03db6566147b0f621a317b337852cbd85b14c44b18cbb78f72821e949034bcceb3649ff660a8f8064e5fa132

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
6KB

MD5
6cc0cbac5f5592ba6304a12fd7898865

SHA1
f9165d5e936031b1a3b70c378ac24c85a432d794

SHA256
df5b1f60ec605a8e66689e5599f040fcb601abe70faf190ac54ca5f1ec50a571

SHA512
84b8658782a26648d6d9519580e957b7429954e77f60b75594484a79d176c02e3ce40116f891e4fcae6fff93d2a2a400fc693a517ba0b8fa06b4fa03870d5043

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Reporting and NEL

Filesize
52KB

MD5
56d3bf0ea3a99f7ca536fe9045d22081

SHA1
4d9b6f4cb21f76bee8665fe930d397b9a8cfb8a4

SHA256
4c8056c2afadfd268ba2547b0c0bd128c237465e646d1e8099e1896fbd12d87c

SHA512
828ca421eeeda53caa5d5dac577e8f0c1b340a494c42a041b251b92864b3bf326b39621e27e33074b5a65804927235ab1f5c8e7f6df003bb474f1ab3c8da507c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
356B

MD5
00e07c776b5d31942062f76ff32629d1

SHA1
691bdc358857a1fb85c36c91127c5ee8ab1bfcf6

SHA256
01c9d0766d2095f844db428df802f74f02c07671730e962d96ffd53558252df4

SHA512
6f06175aa65499a2a5e807bf0959f568da026cd9b1a2627da2f1bbbc74badc303b514b4f7005a47ab027ecf6a4d50b4d5be41248746573d74fd3415c159ef81e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
859B

MD5
0d1ec672880a003f137d9b7d3b1a9489

SHA1
73b1bd93e1cded105b99dceba5e0f2e4d442e529

SHA256
32f64755e4eb9434397de694e9e49bf4fcdc094242c0f99ff9b63fb9511c4efb

SHA512
4e45455ea303dee0cf4cb4fe29af597b31b83732c98928635b5bfbb75fea6c56d1989d767417bf929f5c2ef1462086add11819589ab7e401a2cd5a2e8c3fa849

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
859B

MD5
20ae3f7000a0686dee2e017c36e7bc1b

SHA1
cfb15c27bee7aacd5653c4373fb44910531fde8f

SHA256
a665d27d6571be958cd8bec53c3af271f22798101e3ae88bc68552f461f94433

SHA512
1d536c1fb672ddc56c9985f021568f38c4c5de73a2c5d33e519674689d0e0aa91c5956eb282b53e18a2473741f021f2e01c8f05e7e50aa95739a83f6de40c5a5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
859B

MD5
b5d80f948190efc8989765bdd638ae57

SHA1
1acc9841249ed367af6bbf952ef530ffafb0d34d

SHA256
62da74c4406070b39c470b04d36706f097b7a7789e77ab7d7b75fd901cf15969

SHA512
07478efecc30b309b74db6a582fc1af9e0e04fd466f6440da75073f3277af6778e7eff8140a55783408c5599643d9b7c274368845561533d190f333c7e3d68e2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
8e5793384c94dfcaaf97d4ef48f012c0

SHA1
71cde85e54a0ee684d09c81661397d069fc481a1

SHA256
e7a51f4ef1549d5212478ab9970b028dc267018e2aa59a6b1c63167a8a487533

SHA512
662bb5d6f86c8e2029c834fcde5d143839501dd3e6515cce4b9c50a02904237e747f696dd22716a98118aeab9aef97a916c4ca5e4072a5617bf07a230009c24e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
aeb6bb77bf3c9e8d498c42ce1e45e10d

SHA1
1aa67f09b50bd2edaf063ded35f8504a5cf69229

SHA256
d3c730c58403e3c3d68d98cc1c16f0c17b87fab73f065b02ca50c9e129e47804

SHA512
2769db9e0316717b8a77e55f83268b4737b37d28d7904f59a7de4e8d7b06ad9ed45065b57dd454ed051555405da67fd4d51490262feecdd8a769be0354781892

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
cae292ce21728da2b9e17885a4203971

SHA1
276ef66cc612f5383538fddd96ff309c01f40c80

SHA256
685904d177696e9f163f64d835341a9a00ec59a6c7cfb979ce729a3241634dde

SHA512
b99cd91b95349c97c859dc5d92af66b8df5f608042d071487da4b7ff3f83f74e505f89699b7ee86d9ae0d65643dd78ce2a379401984667a0678ad4d085103a33

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
a48ef8e7da81840b10d724a52d696915

SHA1
4adbe0559db210f1213239ca94f118b58e5dde8d

SHA256
d33a59c1f5470d22f101a64b8ca36252fa5718cfe962554a89db3d101550a82f

SHA512
a4e162014509e37c659db2cde283f890216dc77b1b5e88e55e08f49d1c8ca7b52804422d0fdb55c4d51b70ce32cc55b949b620a1cb449319ab4c7e2f044bc4ae

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
9a9953da195c250d717aae24c4038275

SHA1
96e23605af3e4e0c17102c8aafddce71e3a93279

SHA256
a138ca49a4ad49e40255e518e725c5329893ce348b147feadec20c1d8008eb15

SHA512
014879c9773a5b23086dfaa2b71fc4532c4c2445f9c9b8e2a8f78079b556275afe8d776e4d3f1d129d5056cced1d4cc46cb8fc27008b20351e2fc46e3dad7122

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
2fb2bab63c520514cdd6089f1ddcdc98

SHA1
8b8b62889a559b2e085ab66f269b9d2377f684dd

SHA256
957478a4afd90f1148173f0950fee29a392a7a160f89c71455c632a1c6675976

SHA512
2af77dd8193441a039eb1062d0f512f57ae7c97fe61c88b03d71acad31bce788efeaa470ef136bcd898e7ee8ac9f5c8ae1a5ab1791e187423831b9af12d55656

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
05b8be8aa6dd766dc48cdb1ac67aec01

SHA1
7f1401c3c7e03260cc2fc519c3e86e361a598dd8

SHA256
4dff58fee7108d57147c2f18eb98aaa2f40426c0391685cf35da0736b0d041e0

SHA512
4c91b4b89c2082dfa70032835f8a94241ea4801ea61ee177cf3b6d0795a6b9a33be545cfa4972d068273b196717fb4199acef2e215be11e8a5ba5463dfe2d831

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
d76ce3f4a7681e9e3702306550599716

SHA1
e4dcca9db43356453efc39f6092a4e7735b31547

SHA256
6369a9aa2ea08a22d0ea4fbdbdbc0248d08506b9ae4a587b6eace9c012717a21

SHA512
06cc16a438358612f13f6965dc993e53f24a46e9a329df51a043f73a0aaf244934003e826d1e305237dd6c830f85198bfc8a6d5e3ce4beb354d767433803b93d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
d35f66dc9f9934dec5a879a6d2d2b407

SHA1
46be72d2623eac977b9b4db6df4550f97732f549

SHA256
72ac6769b6c9af24a3e540c6a6857b143275feda213671dafdd72d890cea4fab

SHA512
c18ca1b8cc14be61ac6eb881e4ea68a4b4a9a329839a38b4ac72e4080c64bdde3d561bb44fc30e3f0ba2a573f940830814ef0019779138665b6a709cd14d6516

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
15c846d4a8c682742aa23ac24fafae29

SHA1
110cb858f50b59d7d88f4b73147921f39a2aa852

SHA256
6c3fd07bf660896b1c08f4d262325aa1da6073b4ce84bacf51a66fbd8910d84d

SHA512
7a3914e4e1c49b79387a3d5da37d35f46894a806ac6e2994e3752e735ebb22cc8dd562099dbb42a26c8aa44643378876b7f87fcd566fa9cf8a7e3fdb5cd856c8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
e3896987587e712e6ea81271f0d5fe41

SHA1
54770300b941f51db9f4c83ac249f361fb399abd

SHA256
62fcb129ccdfebd4c15ebd47eb27b356dd6717a936b944a46bc35fe73766c933

SHA512
9bd3bf5d6473c8cc14cb1d8ead9c9c57908c7859bc6e1f93dd5471a1ec24616c6b60b85ee856f09e8c03e8a6475f7f53cbffd54084897c5909a7692591881238

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
a37fefbd3db738b21e6e9f17e6799538

SHA1
2c8f8c33852f831c8ec86a47af7188599cb6ef73

SHA256
399fcc2de48b9463ff482fd1cdeeae56ccf76ed9d0d87740034e985b1aa459a7

SHA512
0398a498b45920ab4906d9382d167c07e17e81f08149887a8693f6f216aefc689d27bca9707730977cb239505324aa332c6ec9c6209e70e7a4dbb57cb2636dd7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
245eea116fc6c07b88ae05567cb4fdd7

SHA1
2a2836df429863a27f800e356484026700b0662b

SHA256
b8518037aaf1f27d43acab7694ee42d5381eeb8ebd1c7ba02edeeccd599df016

SHA512
9ce00c71160444146523051008ed958dfa779fa20b827dbed35c908d3c65a7c20e97995469072dc1ca6bb8d3ee27e1e95844463616a72796aef23c985896d43c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
1a328c8709338884d07b37b73e065f00

SHA1
05544a144c9da2293f58ee24a38d6d83c3098285

SHA256
c7eed3054792a395a4afc963f320b156244d1024872a27139cc571b4e64f8bf1

SHA512
02a47524de51f5fff571634f1cbea4ce85e5d1303eff0033d296397ec993ea894437c976e7f31d702b0d45668f7762ac74b0254ae7a592eb24dedd7e0e10f049

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
15KB

MD5
8de22f0cb2210ddea233b3c425a531be

SHA1
6259324d729205361059246c64b882c2aa686723

SHA256
64b0cbe43a8159c2758741084e3331c65487b594ca7b25bf80b134d38d82d4f8

SHA512
9aa3a752a848c1de8b432ecb789c46d1b16d1d997f5b33e468e2159c108bf5d6dcb4330b0bc9969bf71c8aacee6fa220077513c6adfad6666687f130e4546d6a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\09e645ef-d314-47bd-99ce-37f2d0f4077c\index-dir\the-real-index

Filesize
2KB

MD5
fe5dec31d240215abe6c22eb07b8adb3

SHA1
66a4f542c25b372c42f8a8889f267488b3538ecc

SHA256
c61bd32e16ca62c227ed3784d3d4ec0b338d85ddc22b97f946059a17b2e60d00

SHA512
e6d363585bab6988f605a21a8ecc633d0c22ccb0cc2c09093a7fd98917fa88b583745284abf36b44c61e41fa7c8ea49f9cc23b03b3c41dd129469d43f733af43

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\09e645ef-d314-47bd-99ce-37f2d0f4077c\index-dir\the-real-index

Filesize
2KB

MD5
09f98a0c50ebbc2e28e384a6e20755df

SHA1
b80e989adc15fa0f87c39852c740bd91ffa2c0d7

SHA256
38cb405c9e744dea1299ad09df59d21f054052f7ef3657b6e2dba629d59cc639

SHA512
52aec6eac19ea18a91ac623bca4a85f67abb10e92209eaef233bd6fee193021f10325291a254f751ede8fd4d62c72d5057a9baaf0751bf7ec16f4f5009ce2aba

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\09e645ef-d314-47bd-99ce-37f2d0f4077c\index-dir\the-real-index~RFe68d455.TMP

Filesize
48B

MD5
1ae9c279dd0b1d47d23249a92bd0d601

SHA1
48314c06583c6a9876b04f46029af68a0065a3d7

SHA256
dbd1fc5d31bb6220140abcc660ff7e74642e4ec5592bdfc3b4a088ea16e60a16

SHA512
b635d48dc1535a13e98540ac50728fdebe7e6f0bf73f3350c2b1a692c352b482857612ec92062301ca357b31dc82ba89ffa6551049c4e8676237d92c67ff99e1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\46b4f2fc-4341-430d-ac83-ddb6c795d3da\index

Filesize
24B

MD5
54cb446f628b2ea4a5bce5769910512e

SHA1
c27ca848427fe87f5cf4d0e0e3cd57151b0d820d

SHA256
fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d

SHA512
8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\46b4f2fc-4341-430d-ac83-ddb6c795d3da\index-dir\the-real-index

Filesize
624B

MD5
5e2bf71451bf9e1198a55f6e3977d50a

SHA1
575851fe51bc0715bd9c7fd6f1078b841cb9ef7a

SHA256
0ef7a3dd81421c708775fdd80787dd5a89a5eb8f0930f23fa54bad9f174bb7d2

SHA512
0897b1f7d0a25843e128230ed7685a16e6b73f9b78b4dd7d12b3784b2e1f9ccb228af78acb063a9ce1ff0f106a177296b3c4468ea072e22054e3ef2db1fcb0f1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\46b4f2fc-4341-430d-ac83-ddb6c795d3da\index-dir\the-real-index~RFe69306f.TMP

Filesize
48B

MD5
dfa59ba924bb8089ac5d07de31d8645e

SHA1
65dcfa9c7fdd3f0a5e128a04960c28fa8960edb0

SHA256
3d31897306e5bfcdac304ef6ca039f22610a0af14ba8acb77378560a6ad2d6ab

SHA512
4df7f10a46d6649db979455f22bf23ed6b217d13380c10d8632d9650f22663000c40780a12438af4f7563834b4692cfcfcee812c818615a405fdb1dc690b2396

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
176B

MD5
5327ade0732aac9d26fe5136377f89ce

SHA1
64f0e80a236184a209b4fb6be074e5d6bb8dbb36

SHA256
1cce901f7c56600792af75fc36541e44778338db85343c3b8add607996f6ee7f

SHA512
a6108f1a0ee40d7a44c9d4fd696d28aea083fcd0121d583655d3ab79ee0a680840d81fa6ec74ce573f4c8821500b4566c27caaefd6a50056c4a905a66fda9be7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
178B

MD5
d723937b70f155afe1ef3c1bcc383674

SHA1
01e4082de961745eb60ef4eecc8dd1dfc2e25032

SHA256
00ec6becee657c25e4e9a80cf7481d3d03658ca7d7617604a34671acf185a9ee

SHA512
1ead44e5b8b529a250ccd0046674ffbcdb9831469dba38697bfabd338f915c44fa474eba53d1f8400d53f7b5330a7e25446990005b0b9d6983931058cdd2f53b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
114B

MD5
45b3168a38cebf4b739da38070186d5c

SHA1
4d72a642f86512f6e9115a5f052fe020b4c12cad

SHA256
922b95a6b3098c77e23d68c9e794788be5f93112633a4e147e08b04bd3ca7a08

SHA512
3958ca635e2f7e66a6b64b49a86fbebaa43a2521f0d85a16aad464d427dc22e7f2caf3a12a1f5580e28eababb1e50f3ae2e3d85ca63a3925642fa12e46c2095d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
187B

MD5
952f34ea63e078590284ee05d892635b

SHA1
7663a08835ec48843fca98a71880ce6e182a52b9

SHA256
652b5c4d371a28394700c5aaaf1a9404473da0aec1501be3468645501a3c7f91

SHA512
5c9b3092f6ffa70b6e8aab6cd058da9128d9ecdd8139f0c7990106de89782ddb10076e6802b8b3bcf8f120674a9079d138a6fce9dbff5683c821deea4b8c2589

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
112B

MD5
99e84f6b350f662a9eec026103c30949

SHA1
906546b0db9add44c2cb7be164e44a9adbd70ed8

SHA256
022ea6f47f522e52672300704214713b7dd661f5a802c21b41313c3f0d22b5d2

SHA512
3e00a13506c2aef557f039836c5a7ea0be8d183290082ebcde4044cf78281f46c5edeb9810570acde4507534dd44e13f79c1d48ce07287e72f5d90a9bdebdb7a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
183B

MD5
7c0d8d6ce366d1821f475aea17db5c93

SHA1
3141837d4b9aa0a91ef08a07f83dae70819c86b7

SHA256
5ec5d38fe623a652fbb9f3d92328e116cbb5cd2ed44ae25035bc89218b034fbc

SHA512
44d3a3dfe070b2623fc7b697673038de670fb1fcedbfa025695c0dd693c99878fee021f9831e36731fe4471af1e7b6bc028b4f402605ff289877d96ef0c508b6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe6897c9.TMP

Filesize
119B

MD5
99eb2e76e3b625429966f69ac5edbec9

SHA1
0584c29802dcd0bad946152e9d8a81256ffa2222

SHA256
aa16ecfe9686020b9174421c91b496bf98cdc2afeb5f74ddd324af38867571b0

SHA512
392164239900da993b29f47c01d9044099a1ba17e644e53fc988af8065ee7cae2095e795a1a233a1fbe9f23fc7e43ff1d49c4c3e63957ee0c04f9864f5015aa1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\000003.log

Filesize
5KB

MD5
4009a0286daf0582c7bdb2ceb8b5c4bb

SHA1
e3e9853e549183a9501503d715b6ef333acc2346

SHA256
1becf00b2f3d49f9fa738aa9dc236b20eb246d0a348d7aabd25fddc5d41ba214

SHA512
e454ca9d1d2d297ef25f881c563a703cc61ac808949b69a40b90445664737e4022ac7c774bf9940061f67ef5297c3b28d7d9c4011bde57731306ae51ce334b0d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\LOG

Filesize
333B

MD5
21d7da96dacd7dc7b84bd0cd366b3b23

SHA1
650edd6016cdc9531e9a8a4122ad0aae8238b5c9

SHA256
70ea35038713e2e1ab73b0dd6a391595940ce0441518d864269f46f2ccbba573

SHA512
a7dfc9d0b8e17e6941e5a751923c88b21463eee289603fad5a5cc962ba8376ed951aaba4f9ac8cf14ce896f8067c767cc6ccba861c9853f60461b9fa87656f98

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
120B

MD5
13c767cb1792cf70a4b8d0c08771f607

SHA1
0fff6f9ef26cc1ee7a29fec6b141b7aa7d024500

SHA256
d9d6c3d48bbfeffbdad972b5de4734227c5c6149afd1641cee146418b961395d

SHA512
342eb0605606032c2c73c008df450025565efa5c22cf3785673209cbf8ba38d79f99e7cb3a8d6321716a7081edc3c12407599f5819c8c1ba79a2c3fb6957633f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log

Filesize
6KB

MD5
c5d5f2cbd01a43a22a8d6990fdc000a7

SHA1
8352b536d3c6a9f158165d48b576ae2348ac962f

SHA256
c3a6a483bf01e2c8b1857dc70288c72627781e53ee99839141b29df2f41e725a

SHA512
9a7167a0beaa9b9481b40fc9a67dc585b0722c53e32f7d776ebc9ee8fef86e2b16738e50cc488f9904764c78b0d645238f964e29c6833223ba0e38750ca883ae

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG

Filesize
321B

MD5
10fcaff7634b4eac8cb34017622ecfaa

SHA1
a0db5fe04555725e3ace45ace622a3b103e990a8

SHA256
4730f77d844ed594db5123d82e29ac3a96376070ae5abb5ee238f6e44685e07c

SHA512
6ede43cecdd35c6912c7ace46e6ad411d48feb46b8b1e433899d0d76152d297ea311e2f2fd42cd5883741a09c8958e3741710952c354d4fbc4205c581fbfad37

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Visited Links

Filesize
128KB

MD5
d031c6c36d80f50dcc7381ca5bcbc320

SHA1
2fb2e6d8f8695e7605eadac676e9eb46db99e01d

SHA256
f8d5ecec2671f7ec219f0817dd1d983e74060381b0818115558f1990c2c62e59

SHA512
c23b73368b18c03767263d35f4b1efb21eb5ffbdd5e65a458c93849d14980dc84d448156fd85fff0a50834d27086d63c285fa21db731baf2fabea63a1cca34cf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir1876_1010188241\Shortcuts Menu Icons\Monochrome\0\512.png

Filesize
2KB

MD5
206fd9669027c437a36fbf7d73657db7

SHA1
8dee68de4deac72e86bbb28b8e5a915df3b5f3a5

SHA256
0d17a989f42bc129aca8e755871a7025acb6292ce06ca2437e95bedbc328fa18

SHA512
2c89878ec8466edf1f214d918aefc6a9b3de46d06ffacff4fdb85566560e94068601b1e4377d9d2eabefdc1c7f09eb46b00cf4545e377cc84a69edf8e57e48b2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir1876_1010188241\Shortcuts Menu Icons\Monochrome\1\512.png

Filesize
10KB

MD5
529a0ad2f85dff6370e98e206ecb6ef9

SHA1
7a4ff97f02962afeca94f1815168f41ba54b0691

SHA256
31db550eb9c0d9afd316dc85cdfd832510e2c48e7d37d4a610c175667a4599c6

SHA512
d00e2d741a0a6321c92a4aab632f8f3bafd33c0e2875f37868e195ed5e7200a647b4c83358edcef5fc7acbc5c57f70410903f39eac76e23e88a342ac5c9c21cd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir1876_865481304\Icons Monochrome\16.png

Filesize
214B

MD5
1b3a4d1adc56ac66cd8b46c98f33e41b

SHA1
de87dc114f12e1865922f89ebc127966b0b9a1b7

SHA256
0fb35eacb91ab06f09431370f330ba290725119417f166facaf5f134499978bd

SHA512
ce89a67b088bae8dcd763f9a9b3655ed90485b24646d93de44533744dfcf947c96571e252d1ad80bdec1530ff2b72b012e8fff7178f1b4e957090f0f4c959e0d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version

Filesize
14B

MD5
ef48733031b712ca7027624fff3ab208

SHA1
da4f3812e6afc4b90d2185f4709dfbb6b47714fa

SHA256
c9ce8dbbe51a4131073db3d6ceef1e11eaca6308ad88a86125f221102d2cee99

SHA512
ce3a5a429e3796977a8019f47806b8c0671b597ead642fcbfbe3144e2b8112d35a9f2250896b7f215d237d0d19c5966caf3fe674165a6d50e14cb2b88c892029

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
207KB

MD5
eaadeff072dfb177a5bc234da2fef6d7

SHA1
ab9318aedf393a328927937bd52a4604ad0f6a11

SHA256
e9d38753f5f0af2efbac863ec57d83351fc0546e33115e2d72682efc0ee476c4

SHA512
c3e3ab423a003a1c1fd2d59910b8a38e6ad22e85ab67c6e7176d02bed4fa8e7c41657ae39e3e862e42b81b41e43d04357e987f4d71a5c10f0d06cde2269646dd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
111KB

MD5
58fab7b5186a441169eef421aa40259d

SHA1
0f1b7a12ba0ae5a1aeb75cc951d435327b4f135b

SHA256
6950f1f6e3bcabc31236a960e5b24f0f72c7d9df4d7b26b5f04742b143e29c3b

SHA512
a739a977f1d1759d9fad6140f6dbf1a3f54608d340955fa50d9a67ff43ddffe7028b53f53e238870aa0e2d91e0ea7c8cbcc3f1e7f1146119d01ab9ed1e1772e5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
207KB

MD5
9cc7b806d1e60482016547647f49c441

SHA1
b63374e91aff1c0d712a013f704bb1318fd5a40a

SHA256
a82b9c22fdfde1b76b5e6f22d5095eaadef74ae50c29d848e3700691d7f1b2ce

SHA512
057d4bc0e4bb30837be55c960f6d34e4ea7fbec317b60ced7993a14570fc535b8ff53b2e2a91b4d076afda2a04cf1d6276b7b86871edfce723f78d39c8aa114d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
207KB

MD5
65aec04eb1c04c93505afcd0abd12836

SHA1
de4668924956cae7e9d53eda84a01447b6194ce5

SHA256
1ab354f1d44c38912698f6ca5ac1c59ee714f710024ae5afcd9dcc39480294d9

SHA512
5ccf389900634e55d9d1c664756890ea25226a02e2b1f245bed2999b957e6b3782f716f5efe782d9997cfa6b5e2c9b45326d3a7bf4f6211270aa7b99eef4072b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

Filesize
264KB

MD5
6a0318fbb7cd2c97193bb79d826811d2

SHA1
ce63fedc2b75c75de42975067d56991d34c1b11b

SHA256
148f6e685964dd2f484afcddb56458cb852d7873d3f877aa68e42e14c74471f2

SHA512
a52db7d1a064627dc99841ba89a2a655d19ad364f2ad594470c58924f4f28e1fbc34e0422b386db29b399cd40d6e22985dbaac7ba000c6d94e6c0382603d832d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

Filesize
86B

MD5
961e3604f228b0d10541ebf921500c86

SHA1
6e00570d9f78d9cfebe67d4da5efe546543949a7

SHA256
f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed

SHA512
535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\segmentation_platform\ukm_db

Filesize
28KB

MD5
8128bcac9ae05bf7399b882d6b45e3b1

SHA1
ffcc87bfaae419c6f6808c0d4bb79e101f1d43b7

SHA256
c114d7797b631532058a823029cf11c94e937a17c17d6a14166078387684e52d

SHA512
557739afc58bc1f102c6468062592986df536e3a2fd134551bcd7faf3fb69e4532e20962af5d50f551a4a3ab96d8edf65340af097840a1f1f5510425e4b6e52e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\segmentation_platform\ukm_db-journal

Filesize
20KB

MD5
edac01b6d908c8cda18843a4bcab7c4e

SHA1
9cebfa031d9806f38a24c20936ee8bad91c8b2de

SHA256
2215b2c4a1ee6f9debcf775913658975819ea850f57a482e68c9a5ddd291dffc

SHA512
ed782f8491b76220ef15c6b32d508673af13dd055f4ab9d29453a24893a605b62099c912f671717237a29811aeec66f8528646d3bb936a0c8b382ce300672927

Download Submit
C:\Users\Admin\AppData\Local\Temp\DarkRoom-NFT-master\README.md

Filesize
1KB

MD5
6e41898de7f5dca6ff360223d4ce1d90

SHA1
08de107ba414fac623d56b8c678204ef0ed69cc8

SHA256
02071c57c42a77379635d3696a45d3f8b73903400eaabe95f7a9eabbb8c1b0d4

SHA512
f373995af56576e9575c9c1f00b97924c943512b4d45436df797c158406646a1acdd03ff48f6dc9b5016695cdb78a37b5c19d1df4dd7f3edc52f4ec782a725fe

Download Submit
C:\Users\Admin\AppData\Local\Temp\DarkRoom-NFT-master\client\docs\images\home.png

Filesize
536KB

MD5
6d5b3397b8c033aa2041370a46234624

SHA1
02f5371538e9e830e416f7eccc01e7706f6fea77

SHA256
9d626289232ef07a1fb2c40a469df618bb1e66cfcce56047fae9fc36b04a6438

SHA512
4d0d78024fdeb9330e3c16f903c3b412ed65ab689ba30d9d754521ff8b3060b5fefe88fb4bd01ac36e1743ef6b48003a84daffb09ee4f67d74398bbcab51b497

Download Submit
C:\Users\Admin\AppData\Local\Temp\DarkRoom-NFT-master\server\config\keys.js

Filesize
1KB

MD5
aa7612c8dd02d312572e68097c4a0484

SHA1
d6acbf795271bb2373af0e96767a461d0153470a

SHA256
4f6c4eeb687d55024f31fef99b5c1fd1b960d474420fe8f765364a0c2a9163fd

SHA512
1a538e12dddce43a54472eb533af2c1686f61dae981e28a990cde77337786e6f736092b469509839b6d447ed02d13cad596fcf17a2954d7519aec2cbcea60eec

Download Submit
C:\Users\Admin\AppData\Local\Temp\DarkRoom-NFT-master\server\config\passport.js

Filesize
3KB

MD5
7ea33abd41467d92cb6c5d7b548fe319

SHA1
075eb56118890b954fc2d64f103972682f78fca7

SHA256
96a1adc925ffad5a563cbb6a1aaf2d89a31bb242d751f44e6ae6aaae8751646e

SHA512
bff76dc556e2c50636c0fc105fc14e77b2161f8a486f1701e7e3f3b9166829bae0590d3e99fa790f9f7ef74f0ef6f8ada034ed0439b1fcafe5eba9608332af26

Download Submit
C:\Users\Admin\AppData\Local\Temp\DarkRoom-NFT-master\server\index.js

Filesize
818B

MD5
6ec816f686ec4cdbf084c798b000b2db

SHA1
219b4c3629ca47377f3e4fc381058b4c4479d1d8

SHA256
88f65eafbdca383fff8c92ac5ec4b1bb2c41fd489c9521ae9e5bcaef10e73631

SHA512
ca6928156f78f23cda4664c93b77f24fb5c5828f636de7d1c2d00d53142a50191308b93b2b27eb0044728bd124cba3c6e896aff01acd60c42c0e2e876cae9114

Download Submit
memory/3296-295-0x00000214F2D10000-0x00000214F2D11000-memory.dmp

Filesize
4KB

Download
memory/3296-294-0x00000214F2D10000-0x00000214F2D11000-memory.dmp

Filesize
4KB

Download
memory/3296-291-0x00000214F2C80000-0x00000214F2C81000-memory.dmp

Filesize
4KB

Download
memory/3296-296-0x00000214F2D20000-0x00000214F2D21000-memory.dmp

Filesize
4KB

Download
memory/3296-293-0x00000214F2C80000-0x00000214F2C81000-memory.dmp

Filesize
4KB

Download
memory/3296-297-0x00000214F2D20000-0x00000214F2D21000-memory.dmp

Filesize
4KB

Download
memory/3296-282-0x00000214E9FB0000-0x00000214E9FC0000-memory.dmp

Filesize
64KB

Download
memory/3296-278-0x00000214E9F70000-0x00000214E9F80000-memory.dmp

Filesize
64KB

Download
memory/3296-289-0x00000214F2C00000-0x00000214F2C01000-memory.dmp

Filesize
4KB

Download