hxxps://www[.]youtube[.]com/redirect?event=video_description&redir_token=QUFFLUhqbklibWRSakJhT3d1NVJEcVd6RkZVZ0VsSkdUd3xBQ3Jtc0tsMng2LVhqS0hDZ3RMLVRxOEVhRWNxcGZUWDVLVTYzSWs1YkdNR2ZNaDdjNUdqanZMdXM0eFRwQWtNdF9KTmt3eGE1ZU5HUkZhdHRfNldhbjBwZUs4X1BTM0ktN0l5aEwtQVYyempXai1BOXVFaXRhSQ&q=https%3A%2F%2Farchive[.]org%2Fdetails%2Fminecraft-story-mode-full-2016[.]5[.]17[.]1283-2&v=nFLL3qbJRPY

Resubmissions

14/09/2024, 02:40

240914-c5wswasfnm 3

14/09/2024, 02:37

240914-c4brbatcme 3

Analysis

max time kernel
237s
max time network
239s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
14/09/2024, 02:40

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

https://www.youtube.com/redirect?event=video_description&redir_token=QUFFLUhqbklibWRSakJhT3d1NVJEcVd6RkZVZ0VsSkdUd3xBQ3Jtc0tsMng2LVhqS0hDZ3RMLVRxOEVhRWNxcGZUWDVLVTYzSWs1YkdNR2ZNaDdjNUdqanZMdXM0eFRwQWtNdF9KTmt3eGE1ZU5HUkZhdHRfNldhbjBwZUs4X1BTM0ktN0l5aEwtQVYyempXai1BOXVFaXRhSQ&q=https%3A%2F%2Farchive.org%2Fdetails%2Fminecraft-story-mode-full-2016.5.17.1283-2&v=nFLL3qbJRPY

Score

3^/10

discovery

Malware Config

Signatures

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133707552402122008"	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
2044	chrome.exe
2044	chrome.exe
3180	chrome.exe
3180	chrome.exe
3180	chrome.exe
3180	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 7 IoCs

pid	Process
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe
Token: SeShutdownPrivilege	2044	chrome.exe
Token: SeCreatePagefilePrivilege	2044	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe
2044	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2044 wrote to memory of 4616	2044	chrome.exe	85
PID 2044 wrote to memory of 4616	2044	chrome.exe	85
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 3008	2044	chrome.exe	86
PID 2044 wrote to memory of 2832	2044	chrome.exe	87
PID 2044 wrote to memory of 2832	2044	chrome.exe	87
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88
PID 2044 wrote to memory of 4024	2044	chrome.exe	88

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://www.youtube.com/redirect?event=video_description&redir_token=QUFFLUhqbklibWRSakJhT3d1NVJEcVd6RkZVZ0VsSkdUd3xBQ3Jtc0tsMng2LVhqS0hDZ3RMLVRxOEVhRWNxcGZUWDVLVTYzSWs1YkdNR2ZNaDdjNUdqanZMdXM0eFRwQWtNdF9KTmt3eGE1ZU5HUkZhdHRfNldhbjBwZUs4X1BTM0ktN0l5aEwtQVYyempXai1BOXVFaXRhSQ&q=https%3A%2F%2Farchive.org%2Fdetails%2Fminecraft-story-mode-full-2016.5.17.1283-2&v=nFLL3qbJRPY
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2044
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ff9afe1cc40,0x7ff9afe1cc4c,0x7ff9afe1cc58
  2⤵
  PID:4616
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1936,i,13163401352697590933,16259548143448621553,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1904 /prefetch:2
  2⤵
  PID:3008
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2140,i,13163401352697590933,16259548143448621553,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2160 /prefetch:3
  2⤵
  PID:2832
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2240,i,13163401352697590933,16259548143448621553,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2204 /prefetch:8
  2⤵
  PID:4024
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3108,i,13163401352697590933,16259548143448621553,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3140 /prefetch:1
  2⤵
  PID:1564
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3124,i,13163401352697590933,16259548143448621553,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3172 /prefetch:1
  2⤵
  PID:3268
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4596,i,13163401352697590933,16259548143448621553,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4612 /prefetch:8
  2⤵
  PID:4444
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4632,i,13163401352697590933,16259548143448621553,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4416 /prefetch:1
  2⤵
  PID:2904
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=208,i,13163401352697590933,16259548143448621553,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5152 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3180
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4488,i,13163401352697590933,16259548143448621553,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4752 /prefetch:1
  2⤵
  PID:3056
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=5216,i,13163401352697590933,16259548143448621553,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4748 /prefetch:1
  2⤵
  PID:1072
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=5388,i,13163401352697590933,16259548143448621553,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5416 /prefetch:1
  2⤵
  PID:3012
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=4984,i,13163401352697590933,16259548143448621553,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5560 /prefetch:1
  2⤵
  PID:1704

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:2492

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:3576

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\154fd449-fc9d-4c1c-97ec-21a39819788f.tmp

Filesize
9KB

MD5
108482b453009103989cf231fb9525f2

SHA1
d49d03921a664f109d9123a9f218fca4697d5ab9

SHA256
6c6d92612e9c2bd1aac84874fb7227b7314c007814638f0b0abb03a7f072e356

SHA512
5ba5e0c6ac2ac1afb3140bde5c42d645dde87e3229edb6be49082deddcff0abfb7e09b11de49e0ad6f5a64c14056678615a242953b78edf555e8382d870dd6b1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
e7e4e3a44dfc85f910102f02f56597ed

SHA1
698e7962109e6679f59c9f65fb7aa1df98f285bf

SHA256
4c0e9587aef24ca32ad11a084dc5cf3af8333e788326237e7723ea73effda897

SHA512
737e10957096e7fcbbbc11bc1b91de379c87048efb1f639ec7ea577700a763c253033ef31b1a5fa192effb2c668e06c7e5ea82b849dc81795cba5ba64443ccf4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

Filesize
22.5MB

MD5
956dfd043714fee62ff7261bfe293c94

SHA1
6d63d0c5b31a57142082e4125dd18f7a1c608dbb

SHA256
375e6618205e468e0f6fd6c2d113bf11ae65d507b0679085d12cff7af4b2218b

SHA512
536d2c60b12474ef721495f8960f70342bad88f17f1d537550f488c3d656b2e465abe518b4be8b6c972fcc363f7b0410fdbc803fc58331aa7f1d22b82bcc03d2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

Filesize
212KB

MD5
08ec57068db9971e917b9046f90d0e49

SHA1
28b80d73a861f88735d89e301fa98f2ae502e94b

SHA256
7a68efe41e5d8408eed6e9d91a7b7b965a3062e4e28eeffeefb8cdba6391f4d1

SHA512
b154142173145122bc49ddd7f9530149100f6f3c5fd2f2e7503b13f7b160147b8b876344f6faae5e8616208c51311633df4c578802ac5d34c005bb154e9057cf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
360B

MD5
dd4286355c973c06ef7fced617f48ae7

SHA1
b068d7705491bbfbd1b5cab555cdf7735fe2bd61

SHA256
9fd57507d3fe2dc50b46f17709b8fa532e7f3a54f59957cb26964443f6465ec6

SHA512
5f7522e78d9f88aa59d54327f4a9f9d24706d5b954a190d4378db84916f6bfae9aa0156cb7814cb0a36cabdbb1835dc503c791a9e57efa072353a32528e94fee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
216B

MD5
31a79cbdc25077b90171080fcf86ce49

SHA1
09d7ac7175698e29851c306a36dca21ee0c4c4fc

SHA256
63fb0b3239252bc321dda889cf181583a0a6dc09c9994aa5ffae81f4d4bf2fdd

SHA512
9a4515884b1e89bb06934ca7649d5b28a666a61034ddbf13fb3934643fb5d7dc8578dfc6d4b27bac7baa10fcf94041aa8890f03af139928a0cfe9bb750a326b1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
264B

MD5
94f999de5ba7350f049fcfad2e0ebc3d

SHA1
267c6003169e3a4ca1be8d349e934dd7cdac5d25

SHA256
2bf19523369a258e6afe1ace0dbf7c26ef071708a5e06c8823fc5f83a1be6fab

SHA512
6e97bf7b0e40f1a84e91dcf5a0f06140d757ff6f323cc9a635b19261666d31b0957d3031795a78467cb599dfc7de05755d62b6c303442149a35d224e06daddd1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
bce11e5ae803cbf12faa38f966687d00

SHA1
a9a8274b387f54f29d425ffe0246bd4e8ad493dc

SHA256
efd2fdc98cfe14e55cd1ba81e5d7a14b199e8a965d55f04ce0ef032ba5d44e96

SHA512
2f04bc7605e12e1ab5be8e4fcdc404cc3d2d0a72fa9577d4843e5cd73cabaa2de2491da0b24661950d15b6164fc2ae34f137384f0e1f1b9565b882e358d6727d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
3KB

MD5
c89bae278f0d85cc3fb4ef0e41d3377e

SHA1
e9af0464a81fcb6f2cb6f1ad5bb1e97a1de613f0

SHA256
91c13dcb989e980eaa0657d7af8f0b280a8dac22c6516d427f625384ccfd15f1

SHA512
d2146d2b745686ff0003cd421a9c0c0668fa8d0d4352873604fa448eb6302ff99a8fc6fea67cf6f7988f4970b2e0c587ad9e74fb8894fdb6632a30678a37f90d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
5142df313643892a14c020c71a2cbb1e

SHA1
8722c79d46b72f0b6a5734b595ecb06cbebaaa0e

SHA256
3e8e54e2c9c4d526d899f90b217fdedd44a9b22e4b2e33363415ce01934806c8

SHA512
ff1ecb9b2609f447313289aa44b773f46e57450835976db4e9b351460025bc7c89e35c401401cfd6c74fe5b99e9cdae73266e17f32305702419f927bbfe695ce

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
860B

MD5
3e570f19c724485aae413278e4ea7131

SHA1
cc046450ffd3dc386f235c100554fe771af5a082

SHA256
ef0ae30bf2ee0afe485666f34dd74d64a1c1eb1c167dc736773956f36f53ea57

SHA512
1e706ed7a3a29bd2462e1b82d677dd62b715ee1c6cdedfcc07c7e5aca8d87efe010d79843800cbed728feaf757448132d0a08a7157e69e88f0d3281448bff28c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
860B

MD5
1c80ca5f35cd6ad30f420e574b537837

SHA1
ceaa88c2a82ae2226208d5ebbc87a639f5c282c9

SHA256
547a3fa4f20c7b7db2a750cff95cd8126899dfd21044a61912c05756f2bd3af8

SHA512
0fa5080d16caae1896b464fb2fa68185eabe6fa9b314a9c5a02d07efb296d6ce60b1f3363463490c9698d9986aee7b7fc1e00a86724a035aa4e768e55ec17345

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
860B

MD5
5a2ca70b720fdd4a4723bcae07717847

SHA1
93c885bf82286f8740850d4d4300fff2f2f1b9ca

SHA256
5c0de75a089eaed3224bfb3498ee9001e5974adccb4d243f722425fd6ed06b41

SHA512
102d124c8ad51a4fe83bf960a02bbaf9b3fa1bc12fe529fc35d8ae24cc7e69c2dc1d6f5467b66fd0436501abd584ec32cfebc246d3def8dabe016de377eb0fc5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
860B

MD5
4608ff6866041fc77c91cd9cdc60bda8

SHA1
57435f202c53f558b99efe04119d64b79bca4a4b

SHA256
5af2d8ed1b34889575614c9ef5c376257b8c78bf35e561f23692a90912c07d70

SHA512
8a618a44db9f71787910e266d23de80115b18d506011c1db1cec7c2bc75939d14734f1ba812da01a9de6675c78583e198990b6a75da9cc5f8b80c21c6df50302

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
860B

MD5
c09bf30876d3f56c8ab801c86dc81ca2

SHA1
83fc50c1ba14b0ea437feb1c1a8431e888432dd0

SHA256
b2ee00689a2265cee57917c4854b2a7ecc6ee81c325b31878ec80e1f9db6e116

SHA512
27c61c309f413a6a245c664eb3b398992a2e1d28d1fa86062b4d5659062358f1b290d4c7fbe7c2e528561c67e7e9789dc954819da3b62ff2c99904bae1c87f53

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
860B

MD5
3175dff31347149ea0e13a80c864d58e

SHA1
c09842325fb6b5de76134993e057518c665569bc

SHA256
4b1a8b43626283ad7bd48f75eb1cbf369952b88e6f64c6db78ea6d5ae5a262db

SHA512
65da85cbeadb86be9f881a995419a0f3062b0dd8dc810bb5689e49cd48b71c9df09163c8f51bc159e84242c86552d0f9b7eb75c96ff19d205c41e6b1a26f2081

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
860B

MD5
4df31e4e08177feeb441501b2fdf9b52

SHA1
82bc82f570fe990260cae2df67861c7d99c2ca37

SHA256
605b63b6ad5751e8323357f0a9881c437e364f55f92a6db41b4586f6231f3cf7

SHA512
14afc9639008742789a9df39b5ff58f69bcb71de3e8017277456950df4c481b9a26435162b190ca999d39c5a78dfe61d4cc07e1098f8127ef9af0d842bffcce3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
eec867b8ada51f072d2e8d683bfaf710

SHA1
f7a6d03c7ffbb11ff705b8f374f51d6eb8fe0d80

SHA256
e72adc6d83b9781f9c7c71350cc2c493e1a53840fa194edd083be52c7eea3a58

SHA512
21cdcaf8851d55a2546294c8936630322b302b3884e3adae82dc8ceca252bf315d2ea72a46c5a30f78d41f5679a1419c1eabcad54a9d99bc494f0dbee7e8f118

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
13fe06cde2675e3c0ab03b0dc9f53898

SHA1
6c591ee9ca9e5ab825e0136785da7fd7acf78de9

SHA256
ce7a98bc6646814a87b3989d3f9cd6aeeca669ed9e7072db24adfc70fbd453af

SHA512
be0d9f7647585eaf1742ba8807763693a2ca6a8253043e3f9c1bb8c4f52e27ee7f68dabfb5f49bcfb8bce045fa1c3f11690cc86969cdcdaa86356085bae94c49

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
6db079168a2828094d0f3d20f5e968ca

SHA1
184b44fed9728420af32487a0607475411f36f16

SHA256
dbfaee3b784e868a6b754dafbdc5358df6fdb45fd83b1fc44bd8a17b0277d029

SHA512
c78b89ede75f5653664de2cdf5bbaa6e776575eaf8c817d676ded09bbacb6eef425c86255406f24fe40b0ca6d620b3d2754cd9864d1df115486077cc102f52ca

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
79d1e0c1bef040dddcab345d45f0150a

SHA1
d413b616ed7627d213a572f854a21ccd0a6c9fcb

SHA256
6f9f1d1e78909d63be7e158484ed9b29d237cc51047143b2d97ddec75563fc50

SHA512
8afc50c83af402d248f9d08347c2adac66549c688352178af5abaf4fd29cecf3609a7725042887fa3b6d10d4ed7d855c0dac66610b1b1ac73d17c2de53f1973a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
4bb9bc2cf4fca6d469ecdca7954103e8

SHA1
dc5df8ee8943712d6d88c917f4e1d4870f82d562

SHA256
573788ee880c091c2bf4dc3b0ac4e2f75d3417dc46451757f9dfed7404d3f883

SHA512
94e80253f3e76b20be44366ef21aab5248ff556b96c009c8d5e0e1bb3b74314904a670d382d2896ce2a1d9947722345df4a4726bcd357d3e52c6f8edd9ae3195

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
9aabb34fc31243bc635d88f9c925fb39

SHA1
d207c6cdeef2385a37570f1ec3fd19a8f3e4d46a

SHA256
9307801063e500b2a926d618f1746ff6d70fdd65b1f39be5b7f4745c3789becf

SHA512
68ac962a44eb1c94db7806e30870eb260df2f0f51844b3c078c6c9a80a867e971a442925e17dd126603e22864fe0b20e0fe23b25072a7839cb4440e2d8f13bf0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
579068bfa006e0c7959bf8e405cc26c5

SHA1
06402deb20780cd7fd09e3f296b54abda7c2d6ea

SHA256
c83a7649b26e88ff8e297e5726912bd1e5b420026a3a83853faa07cefc4a96ef

SHA512
f639df063551eb6a8bda2e4a7da0cd9bb0035c418e49ccb4e0bd9b0ec8488de1a2e2918e9390258095809f84869d0e20fc4fedc2c28d823c507ed6c48bb50113

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
8b9c6dde84fb9efad3940f85ba68f134

SHA1
f23135972282579c49759e3be139a9dea126ba01

SHA256
c048d9e5714573a5e8c7643f35278c86776bca90b087dc6e37c807f1ad1bdd2c

SHA512
2ef0e1496d6230e2cacd80274557797f5e694f6698f5a237bda718422f546355646a4e0601de78c5d97950e7835cb452cf67bef022fcbd57982bc50ec1998f21

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
eb0c9ee637995c390ce3259866a7a685

SHA1
235757197065927f811517803f3330b09e92e136

SHA256
65d7592fc2be06c4bd1258a0cfe15a861d970723d5965b2d1990596fe3fc770f

SHA512
8fac18deac6273e32dab16e74fd6a23c7bd6304114da476494b32c36ac8e22160c2fba15cb6066c1e7dfb36a51a022d1816b24fc587ad8c609a55d773af059a9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
63ba80cde1c4a8d9e2e9b1fe2872e92c

SHA1
a2c5c072e9ba0c75c785059bb13514b117b24ade

SHA256
80c2af0e28e17b2c4baa5701711dee3ff58d6c84fed3dd0b6d2e3baf6a748edc

SHA512
bc821783688e20a92a45ac82052b31b397680238a924ec90ce15de256fe87104cd1582ad4958ece257075e905a2a5448a4e69f09d37d444d49362cc2c858fd5f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
43c1b2542fe3b59f25d11cb5846aefb2

SHA1
37e9ac9aed23b705791e8079cd4320ebe921a420

SHA256
05a30ebe9998f85949a4c570e6e926ff877128445c1f2e67d091f4e1ee749861

SHA512
5c8784cb91c23df063dfa0c8b8c5feb6b247431c5fefb796f9f609261abebe9b3659288b4642023ae73b0642082806d131dd631fb489657ef2cac33152272361

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
a2c4b02c39cee15874dcb42492ec59c3

SHA1
6efb2421f69ecfdd6db1a342e187aeda3c57dada

SHA256
587af6b7a9df3b3baec6b73286a952d99ab2b935c8c25eacc994b5d70c06516a

SHA512
e566b8e34f233a833010a4a1b38f584b0932083449bc0857f1bff81dcd1f33c7759402ef5c2a609a1e746a4786ddd9c4662e2d9d06d70ba0094c07283bcafcc3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
99KB

MD5
94168b64327513c5d79df3966a73ca75

SHA1
612f4b717fc1075bea42fe3ef850fda9b039b087

SHA256
07fe8019344ac8a564c582e08fe6d1331a8890668fb58d070129c536bad7e9ec

SHA512
729a5abe024a74c7655da0ecc9c01b293b736993d1d67dd5acb4ec83656b61b4249dcf0dfcfd47173a7a31474c49424a94a521c7256ff8454bc27b8d4becd1c3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
99KB

MD5
fa045f597e7a4246600ce5a0f3292ca9

SHA1
b5aad5e0476fb6f9fb6f1af563388d4b2f685ead

SHA256
db1c7b4e1ad2973ba85f575f11974ccdb29dd70db2e9a8b3c06bcc83b1a7081e

SHA512
7f5b2604977230cccecd051e663f679e85ea5746edb72be12c178161a5975641793b31d60cf183715df9c027238fa4066461ef8b81b8670f4807ea82ea86965b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
99KB

MD5
7703fd99a64a077c8e22899b7be4b534

SHA1
9782e82aa3b539eb1ed054a87f302f7cd3644fd1

SHA256
a853154585fe521c08c35a90ac3f215554b4b947354425f3be2d5e216c0b796a

SHA512
81b8ad2f2dfaee049d11daabaf6407b0dcba81dba5239633d735007fdfc75bdac00e7e81dc96080cf09c3bc0e79757be738f768da2de9f7e659d0ed7a1e95a73

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
99KB

MD5
11a4b02b7e6275f8ec344e0042dbcb94

SHA1
3b5ab234f872940c3af08c3ac3625ad8ccc7ae9a

SHA256
de7112b1dcada3a9d3d75f97015daccb621f5af1c9d22fcdec66ff0ed4f9d32b

SHA512
07620b025f0902c96c5ac2bb17966e3438dc4af52e72a17f58aacc70ca0eeee341c7c27545c65d63aa6d65dd5c4c4fb08c7dbdee98ff1cf904cb7aea7fba37a2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
99KB

MD5
73945a20b6de3afe0ce43070c9f1a49d

SHA1
e4abf676a40c47a5979a81f6b6dfd8ac1a2deafd

SHA256
ad948099eed9cb33ea7778ff679df0a72beb589021d947337f560c25aefaa936

SHA512
99ebe7302631a4945259b7ec7a13a537fb14d9ca5642bb6fc8ad94ca5451cd19367eeb7ed2b05dbb0f0efb7ed480fc053f31437838cf8f47134ff3597318a687

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

Filesize
264KB

MD5
2cefdda30cec32aa15780ea81c8bd575

SHA1
10921feb5e0835d05ef0dcb9c57ad8d3f6df726d

SHA256
4835b39981de24cea8bf74c5b52905f790860ebfc6c3ec041e74f54872104bee

SHA512
f0cb93a7e1b36d2bde00601b2583a2ae0492f54e67737af313c95c21c60706605674ca1d7c6493e9500d4877b8a2f6416e70a238beee840656bde7fa05289560

Download Submit