f7908f4fca5db961066654736243cf95a31ea41fe28eab5a2c2eaafaa356e88d

Resubmissions

14/09/2024, 07:11

240914-h1eaxssakl 7

14/09/2024, 07:10

240914-hzcqps1hqn 7

14/09/2024, 06:55

240914-hp6wss1fkl 8

Analysis

max time kernel
1199s
max time network
1194s
platform
windows11-21h2_x64
resource
win11-20240802-en
resource tags

arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
submitted
14/09/2024, 07:11

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

OperaGXSetup.exe
Size

3.1MB
MD5

3487ada558b8b296d9d36833d8273123
SHA1

58bce514995aa27bc13c303db7ecf30229d7d4b7
SHA256

f7908f4fca5db961066654736243cf95a31ea41fe28eab5a2c2eaafaa356e88d
SHA512

456c2df36a7c6af710a2f41713ab6dee5a9ebd66c8f6accaa85f6bb884e6fa201cb5d68399328f9211edfab2af4092811fdda744a55d1c5d70a1bb1861c3c3aa
SSDEEP

49152:ONEyYYC1hqiJckG38dBFOhg5/6qF3rjb/h4CNcTCP8xphzSNtOSe+aSt:kEP1y3+0hgh6u/ZcTCP8BzONaSt

Score

7^/10

discovery spyware stealer

Malware Config

Signatures

Executes dropped EXE 6 IoCs

pid	Process
1372	setup.exe
4768	setup.exe
4804	setup.exe
3488	Opera_GX_assistant_73.0.3856.382_Setup.exe_sfx.exe
4880	assistant_installer.exe
1432	assistant_installer.exe

Loads dropped DLL 3 IoCs

pid	Process
1372	setup.exe
4768	setup.exe
4804	setup.exe

Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials In Files
T1552.001

Enumerates connected drives 3 TTPs 2 IoCs

Attempts to read the root path of hard drives other than the default C: drive.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
File opened (read-only)	\??\D:	setup.exe
File opened (read-only)	\??\F:	setup.exe

Drops file in Windows directory 1 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SystemTemp	chrome.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

System Location Discovery: System Language Discovery 1 TTPs 7 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	OperaGXSetup.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	setup.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	setup.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	setup.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Opera_GX_assistant_73.0.3856.382_Setup.exe_sfx.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	assistant_installer.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	assistant_installer.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133707715441793765"	chrome.exe

Modifies system certificate store 2 TTPs 6 IoCs

evasion spyware trojan

Install Root Certificate

T1553.004

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D4DE20D05E66FC53FE1A50882C78DB2852CAE474	setup.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D4DE20D05E66FC53FE1A50882C78DB2852CAE474\Blob = 0f0000000100000014000000ce0e658aa3e847e467a147b3049191093d055e6f53000000010000007f000000307d3020060a2b06010401b13e01640130123010060a2b0601040182373c0101030200c0301f06096086480186fd6c020130123010060a2b0601040182373c0101030200c0301b060567810c010130123010060a2b0601040182373c0101030200c0301b060567810c010330123010060a2b0601040182373c0101030200c009000000010000003e000000303c06082b0601050507030206082b0601050507030306082b0601050507030406082b0601050507030906082b0601050507030106082b060105050703080b0000000100000030000000440069006700690043006500720074002000420061006c00740069006d006f0072006500200052006f006f007400000062000000010000002000000016af57a9f676b0ab126095aa5ebadef22ab31119d644ac95cd4b93dbf3f26aeb140000000100000014000000e59d5930824758ccacfa085436867b3ab5044df01d0000000100000010000000918ad43a9475f78bb5243de886d8103c7f000000010000000c000000300a06082b060105050703097e000000010000000800000000c001b39667d601030000000100000014000000d4de20d05e66fc53fe1a50882c78db2852cae47420000000010000007b030000308203773082025fa0030201020204020000b9300d06092a864886f70d0101050500305a310b300906035504061302494531123010060355040a130942616c74696d6f726531133011060355040b130a43796265725472757374312230200603550403131942616c74696d6f7265204379626572547275737420526f6f74301e170d3030303531323138343630305a170d3235303531323233353930305a305a310b300906035504061302494531123010060355040a130942616c74696d6f726531133011060355040b130a43796265725472757374312230200603550403131942616c74696d6f7265204379626572547275737420526f6f7430820122300d06092a864886f70d01010105000382010f003082010a0282010100a304bb22ab983d57e826729ab579d429e2e1e89580b1b0e35b8e2b299a64dfa15dedb009056ddb282ece62a262feb488da12eb38eb219dc0412b01527b8877d31c8fc7bab988b56a09e773e81140a7d1ccca628d2de58f0ba650d2a850c328eaf5ab25878a9a961ca967b83f0cd5f7f952132fc21bd57070f08fc012ca06cb9ae1d9ca337a77d6f8ecb9f16844424813d2c0c2a4ae5e60feb6a605fcb4dd075902d459189863f5a563e0900c7d5db2067af385eaebd403ae5e843e5fff15ed69bcf939367275cf77524df3c9902cb93de5c923533f1f2498215c079929bdc63aece76e863a6b97746333bd681831f0788d76bffc9e8e5d2a86a74d90dc271a390203010001a3453043301d0603551d0e04160414e59d5930824758ccacfa085436867b3ab5044df030120603551d130101ff040830060101ff020103300e0603551d0f0101ff040403020106300d06092a864886f70d01010505000382010100850c5d8ee46f51684205a0ddbb4f27258403bdf764fd2dd730e3a41017ebda2929b6793f76f6191323b8100af958a4d46170bd04616a128a17d50abdc5bc307cd6e90c258d86404feccca37e38c637114feddd68318e4cd2b30174eebe755e07481a7f70ff165c84c07985b805fd7fbe6511a30fc002b4f852373904d5a9317a18bfa02af41299f7a34582e33c5ef59d9eb5c89e7c2ec8a49e4e08144b6dfd706d6b1a63bd64e61fb7cef0f29f2ebb1bb7f250887392c2e2e3168d9a3202ab8e18dde91011ee7e35ab90af3e30947ad0333da7650ff5fc8e9e62cf47442c015dbb1db532d247d2382ed0fe81dc326a1eb5ee3cd5fce7811d19c32442ea6339a9	setup.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D4DE20D05E66FC53FE1A50882C78DB2852CAE474\Blob = 19000000010000001000000068cb42b035ea773e52ef50ecf50ec529030000000100000014000000d4de20d05e66fc53fe1a50882c78db2852cae4747e000000010000000800000000c001b39667d6017f000000010000000c000000300a06082b060105050703091d0000000100000010000000918ad43a9475f78bb5243de886d8103c140000000100000014000000e59d5930824758ccacfa085436867b3ab5044df062000000010000002000000016af57a9f676b0ab126095aa5ebadef22ab31119d644ac95cd4b93dbf3f26aeb0b0000000100000030000000440069006700690043006500720074002000420061006c00740069006d006f0072006500200052006f006f007400000009000000010000003e000000303c06082b0601050507030206082b0601050507030306082b0601050507030406082b0601050507030906082b0601050507030106082b0601050507030853000000010000007f000000307d3020060a2b06010401b13e01640130123010060a2b0601040182373c0101030200c0301f06096086480186fd6c020130123010060a2b0601040182373c0101030200c0301b060567810c010130123010060a2b0601040182373c0101030200c0301b060567810c010330123010060a2b0601040182373c0101030200c00f0000000100000014000000ce0e658aa3e847e467a147b3049191093d055e6f20000000010000007b030000308203773082025fa0030201020204020000b9300d06092a864886f70d0101050500305a310b300906035504061302494531123010060355040a130942616c74696d6f726531133011060355040b130a43796265725472757374312230200603550403131942616c74696d6f7265204379626572547275737420526f6f74301e170d3030303531323138343630305a170d3235303531323233353930305a305a310b300906035504061302494531123010060355040a130942616c74696d6f726531133011060355040b130a43796265725472757374312230200603550403131942616c74696d6f7265204379626572547275737420526f6f7430820122300d06092a864886f70d01010105000382010f003082010a0282010100a304bb22ab983d57e826729ab579d429e2e1e89580b1b0e35b8e2b299a64dfa15dedb009056ddb282ece62a262feb488da12eb38eb219dc0412b01527b8877d31c8fc7bab988b56a09e773e81140a7d1ccca628d2de58f0ba650d2a850c328eaf5ab25878a9a961ca967b83f0cd5f7f952132fc21bd57070f08fc012ca06cb9ae1d9ca337a77d6f8ecb9f16844424813d2c0c2a4ae5e60feb6a605fcb4dd075902d459189863f5a563e0900c7d5db2067af385eaebd403ae5e843e5fff15ed69bcf939367275cf77524df3c9902cb93de5c923533f1f2498215c079929bdc63aece76e863a6b97746333bd681831f0788d76bffc9e8e5d2a86a74d90dc271a390203010001a3453043301d0603551d0e04160414e59d5930824758ccacfa085436867b3ab5044df030120603551d130101ff040830060101ff020103300e0603551d0f0101ff040403020106300d06092a864886f70d01010505000382010100850c5d8ee46f51684205a0ddbb4f27258403bdf764fd2dd730e3a41017ebda2929b6793f76f6191323b8100af958a4d46170bd04616a128a17d50abdc5bc307cd6e90c258d86404feccca37e38c637114feddd68318e4cd2b30174eebe755e07481a7f70ff165c84c07985b805fd7fbe6511a30fc002b4f852373904d5a9317a18bfa02af41299f7a34582e33c5ef59d9eb5c89e7c2ec8a49e4e08144b6dfd706d6b1a63bd64e61fb7cef0f29f2ebb1bb7f250887392c2e2e3168d9a3202ab8e18dde91011ee7e35ab90af3e30947ad0333da7650ff5fc8e9e62cf47442c015dbb1db532d247d2382ed0fe81dc326a1eb5ee3cd5fce7811d19c32442ea6339a9	setup.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25	setup.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25\Blob = 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	setup.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25\Blob = 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	setup.exe

Suspicious behavior: EnumeratesProcesses 8 IoCs

pid	Process
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
4676	chrome.exe
4676	chrome.exe
4676	chrome.exe
4676	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 28 IoCs

pid	Process
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe
Token: SeShutdownPrivilege	416	chrome.exe
Token: SeCreatePagefilePrivilege	416	chrome.exe

Suspicious use of FindShellTrayWindow 52 IoCs

pid	Process
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe
416	chrome.exe

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
1372	setup.exe
1372	setup.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4460 wrote to memory of 1372	4460	OperaGXSetup.exe	81
PID 4460 wrote to memory of 1372	4460	OperaGXSetup.exe	81
PID 4460 wrote to memory of 1372	4460	OperaGXSetup.exe	81
PID 1372 wrote to memory of 4768	1372	setup.exe	82
PID 1372 wrote to memory of 4768	1372	setup.exe	82
PID 1372 wrote to memory of 4768	1372	setup.exe	82
PID 1372 wrote to memory of 4804	1372	setup.exe	83
PID 1372 wrote to memory of 4804	1372	setup.exe	83
PID 1372 wrote to memory of 4804	1372	setup.exe	83
PID 416 wrote to memory of 4564	416	chrome.exe	87
PID 416 wrote to memory of 4564	416	chrome.exe	87
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 416 wrote to memory of 1784	416	chrome.exe	88
PID 732 wrote to memory of 2692	732	chrome.exe	90
PID 732 wrote to memory of 2692	732	chrome.exe	90
PID 416 wrote to memory of 3144	416	chrome.exe	91
PID 416 wrote to memory of 3144	416	chrome.exe	91
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92
PID 416 wrote to memory of 2292	416	chrome.exe	92

C:\Users\Admin\AppData\Local\Temp\OperaGXSetup.exe
"C:\Users\Admin\AppData\Local\Temp\OperaGXSetup.exe"
1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of WriteProcessMemory
PID:4460
- C:\Users\Admin\AppData\Local\Temp\7zSC615EC97\setup.exe
  C:\Users\Admin\AppData\Local\Temp\7zSC615EC97\setup.exe --server-tracking-blob=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
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - Enumerates connected drives
  - System Location Discovery: System Language Discovery
  - Modifies system certificate store
  - Suspicious use of SetWindowsHookEx
  - Suspicious use of WriteProcessMemory
  PID:1372
- - C:\Users\Admin\AppData\Local\Temp\7zSC615EC97\setup.exe
    C:\Users\Admin\AppData\Local\Temp\7zSC615EC97\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=111.0.5168.99 --initial-client-data=0x320,0x314,0x318,0x31c,0x344,0x74721160,0x7472116c,0x74721178
    3⤵
    - Executes dropped EXE
    - Loads dropped DLL
    - System Location Discovery: System Language Discovery
    PID:4768
- - C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\setup.exe
    "C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\setup.exe" --version
    3⤵
    - Executes dropped EXE
    - Loads dropped DLL
    - System Location Discovery: System Language Discovery
    PID:4804
- - C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202409140712081\assistant\Opera_GX_assistant_73.0.3856.382_Setup.exe_sfx.exe
    "C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202409140712081\assistant\Opera_GX_assistant_73.0.3856.382_Setup.exe_sfx.exe"
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:3488
- - C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202409140712081\assistant\assistant_installer.exe
    "C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202409140712081\assistant\assistant_installer.exe" --version
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:4880
  - - C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202409140712081\assistant\assistant_installer.exe
      "C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202409140712081\assistant\assistant_installer.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=73.0.3856.382 --initial-client-data=0x288,0x28c,0x290,0x264,0x294,0x1004f48,0x1004f58,0x1004f64
      4⤵
      Executes dropped EXE
      System Location Discovery: System Language Discovery
      PID:1432

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Drops file in Windows directory
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:416
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffb2d63cc40,0x7ffb2d63cc4c,0x7ffb2d63cc58
  2⤵
  PID:4564
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1852,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1848 /prefetch:2
  2⤵
  PID:1784
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2132,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2140 /prefetch:3
  2⤵
  PID:3144
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2224,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2192 /prefetch:8
  2⤵
  PID:2292
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3084,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3148 /prefetch:1
  2⤵
  PID:2680
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3092,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3280 /prefetch:1
  2⤵
  PID:2044
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4460,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4492 /prefetch:1
  2⤵
  PID:904
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4772,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4784 /prefetch:8
  2⤵
  PID:712
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4936,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4968 /prefetch:8
  2⤵
  PID:3424
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4968,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4868 /prefetch:1
  2⤵
  PID:3812
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=4440,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4664 /prefetch:1
  2⤵
  PID:3736
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=4980,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4616 /prefetch:1
  2⤵
  PID:3408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=4888,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5264 /prefetch:1
  2⤵
  PID:2600
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5168,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5152 /prefetch:1
  2⤵
  PID:3168
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=4688,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5448 /prefetch:1
  2⤵
  PID:2476
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=4548,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5560 /prefetch:1
  2⤵
  PID:764
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5396,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5208 /prefetch:1
  2⤵
  PID:2208
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=212,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5604 /prefetch:8
  2⤵
  PID:2876
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4648,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5272 /prefetch:8
  2⤵
  PID:244
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=4524,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4868 /prefetch:1
  2⤵
  PID:4652
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=5592,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5148 /prefetch:1
  2⤵
  PID:2272
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=5272,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4904 /prefetch:1
  2⤵
  PID:1048
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=5096,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5172 /prefetch:1
  2⤵
  PID:1596
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=4596,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5764 /prefetch:1
  2⤵
  PID:3912
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=5920,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5500 /prefetch:1
  2⤵
  PID:1468
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=6036,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6008 /prefetch:1
  2⤵
  PID:3700
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=6128,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5160 /prefetch:1
  2⤵
  PID:4368
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=6232,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6300 /prefetch:1
  2⤵
  PID:1620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=6100,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6088 /prefetch:1
  2⤵
  PID:1920
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=6040,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5620 /prefetch:1
  2⤵
  PID:4992
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=6164,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5040 /prefetch:1
  2⤵
  PID:4908
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=5572,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5804 /prefetch:1
  2⤵
  PID:4780
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=6372,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6304 /prefetch:1
  2⤵
  PID:3028
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=5892,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6296 /prefetch:1
  2⤵
  PID:3656
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=6160,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6176 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4676
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=6116,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6304 /prefetch:1
  2⤵
  PID:1468
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=5380,i,9848141473621872659,12247379513702475704,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6168 /prefetch:1
  2⤵
  PID:1032

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:732
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffb2d63cc40,0x7ffb2d63cc4c,0x7ffb2d63cc58
  2⤵
  PID:2692

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
PID:1692
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffb2d63cc40,0x7ffb2d63cc4c,0x7ffb2d63cc58
  2⤵
  PID:2988

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:2616

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:688

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

Browser Information Discovery

T1217

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

Filesize
64KB

MD5
b5ad5caaaee00cb8cf445427975ae66c

SHA1
dcde6527290a326e048f9c3a85280d3fa71e1e22

SHA256
b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8

SHA512
92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

Download Submit
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

Filesize
4B

MD5
f49655f856acb8884cc0ace29216f511

SHA1
cb0f1f87ec0455ec349aaa950c600475ac7b7b6b

SHA256
7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba

SHA512
599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

Download Submit
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

Filesize
1008B

MD5
d222b77a61527f2c177b0869e7babc24

SHA1
3f23acb984307a4aeba41ebbb70439c97ad1f268

SHA256
80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747

SHA512
d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
d56c90cf1ff6567d934977fb178605c0

SHA1
2ba4bf90593b46f86073a990dc239b2ef9c15bec

SHA256
e4961ea48767fcd80a6c626350ec730c8fbcf7c84ce5a5097beb96af7aac2fdb

SHA512
6dee81c94e4b04831a3087c3016666a06a001ef0f5da9dbb0a1102e2da6caf60dcbd479e47a18bc39a7f8da7c0a3024a05c2913408a8acf2c890e19b2d9ee0db

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
5b3a7e31cec18bc24ca27364a7e1f4b6

SHA1
06a88698829ac60b40342716a373480b5a03726c

SHA256
a1e6cd5c22b88c84f786f4041bcd674babe31e6144438c0aba47e551147bfce2

SHA512
bd4835cce11e755b607645b34ae53db69d958f401528e5b1d0b8c486b4bad797ec72d24b373d707a33865915fbb2712639efe20bb65eedc4ea4b7c2343862325

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000003

Filesize
22KB

MD5
3929593b7caac2978227bc778b72a559

SHA1
8aeb4e98efaea201bb936e3edf66620c1f25fce2

SHA256
4f2e191f70efac741b0e0960119ce78a155abca2f56bd45f4a168136b0c7ce29

SHA512
15c502beeb9c34a21b01c2e66d691a5415892172aec0c3db4fbfd19bfc4cacee057f27c9b2a170bff56ecf3e7ca97f0f1fab72533c61474c21a4d0b591fbf5dd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000004

Filesize
23KB

MD5
1cdb4ca66f62d84f95bb44d1634291fe

SHA1
19bf7370fe05bd4f82b6b182323f32e773e324e6

SHA256
01e6801734013580fdde82abac6bb9a900b618f9933cc2cdce3becdf523c0a5d

SHA512
7f3535c257f910b27c58153de7c9f2684d2420f8e6fab76d821daf42d5be68702fd000d46e4a1a00153da62ea40052e4e2f0248df32144c30ba752af4ef10782

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

Filesize
34KB

MD5
855c706a914b05b7595d9d848209af69

SHA1
7e3d1b2ff4b147efbaf15f761d83ed248570ef71

SHA256
2841fe53df621df3cadc08f65946bdf0f630ecb990027f04d30f36cb791f6ac3

SHA512
3375704fb16ea8df3d222e42d6f22fb66cfb40e2e979e1e29b14335ce8743afa515842ab6b7df98121dd3d5103cac02454ac28461c670b05b1a84ca2d6b66d7b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

Filesize
25KB

MD5
0987cdfc3555c9db4204c1139f4183a9

SHA1
113c01910377aeee9ec5ac3cd77e8aa78551ad43

SHA256
b781702878f9945a56adb5a5ec71d7ad95f90fbf885779035004f977c890dc0f

SHA512
e75047fa2828ece1ae4f072c3e1a4e0a6ae2ff346c3f5bc0ca78e5e5e06bfe4f497132866b1c8dd1c23aaba6c93443cfb1cfcc9d0674bf691725659602e1aed2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

Filesize
76KB

MD5
012f71e7e66dd2bcf5fd3393622af168

SHA1
7da794757e8b29f3f411109ac548c52444ba30fd

SHA256
767b99301b51304d807dbb6d53f3759329ee729613b1230159cb2c62ea5e49d9

SHA512
7ef889c0f257132b22287353412c313fa8649543bff4cb48a7e160118cdcd8dcdb5f239951f873fb00cb4a9756ede9a12676f7d5dcd96de763461ca57d9b7147

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

Filesize
101KB

MD5
6a573a6c16860dbe5dcf28eead0f8e1e

SHA1
ec4a2a9ff15d9909fe8e375b34eccd930887eafb

SHA256
37cd89bd43a51ef15f36b807ac89590f1f57d42a0937ea6be713c2ac151c3bcf

SHA512
86c65c6500e45e624bd96a9e06472ead5c3788a97774908e85e2f2420d44db2f77a2b485ce9f52677f1bce886be7aed5a330911bf0815a39401f13efdd9c4cbd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013

Filesize
20KB

MD5
87e8230a9ca3f0c5ccfa56f70276e2f2

SHA1
eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7

SHA256
e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9

SHA512
37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

Filesize
102KB

MD5
dec9ea6f3393f153ed0ff9965d6365ba

SHA1
5ff8b7af30784979ca1f8ecd4d98b24d64891c8a

SHA256
656a3141da8e2213d44778e2b7d91341f66ae10416757e0c19d2a34ab7c07b88

SHA512
6ae2ee1e75625958492ecf5a88103d14abcae86c34c658de003b1152fe354194480957ad22b6f1286b3caa7af94712c48488389f9b6840cf15779b5394d93f91

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016

Filesize
51KB

MD5
ea483cccda1a2e186e55eebed5b7faed

SHA1
0826e7abd8ba797072ae22c931224aff870deadf

SHA256
78164902c033887a133a71fb05be9d6e35fe922e0abd96433a58c240b43cc547

SHA512
1510b305f869d5780248fb048ea170bef7a52b0ba19d26095c10c9241acc1ec63c72067e428c64a580b79a64c854a36d593c1d4ba71e375b78f939f5a137e8b2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018

Filesize
43KB

MD5
5a10f1b354336a3fff2ded058201b5ae

SHA1
0bff7a10cca8c47ab02eb6e39fce30a2ed23a4df

SHA256
ad5f3f0152deaaaa2c21dedb5a79efae47584ae417f9de7d840369e3ee20fbd4

SHA512
63d177717ef348ca37858610f7eb99db8239cba9b087a2eb8a75f0b68ce240fabb69c81111af89feb6c7d2377a0cdb8fa61da953d124fc474dd496e2d923b256

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000040

Filesize
25KB

MD5
52c8091a37e7873452f23b616878c25b

SHA1
2e75f17f2353a7678993124a1e0b0547e203f459

SHA256
a2f3ba093a509971c2d8188b8c814c0c73e9d80e622fc2c4ae0f94fca75258ec

SHA512
92e2f6d143d17168f333eef676a0ad928972e93679834af064f391b8485e03f7675c8459f8d14c60cae98b22761ad467c05242a5f9d2e14d9d57ea001c27bf0a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006c

Filesize
19KB

MD5
89ec274d591374fa2e0b7c43f3a5d10e

SHA1
45d4a33f3bc74aa02d7be66c04fcd629e968121e

SHA256
03345e0967668b0203c014bdf75c8b012b2d41146283aa04d7cdb4704a1f50e1

SHA512
26bca6712cdcc533dd069e5e10a339dcc9ff1a88fd0956704690ea5f32a7f25f2cf577bd4a45798ea6a98ddeeeae9ca323defd92ea931bf4620c50abec66abab

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0dbd765557a68f7f_0

Filesize
274B

MD5
546c4dc18e3053aae96e4e9682e985e4

SHA1
530a7c63b253cd90bea4065f425a2510b318d80b

SHA256
a1cd5a0f2077879cea72fc5e88e6f3e46da0897af72bbc5a39e18bf3593ac2d9

SHA512
a394db32bbdbab4c0d22fff536e3ce0ce72db7c3dcb473c180cdd1230ea8fb1be1e894099d3ab051305b8439037bfdb2f6471ebb149c18e4ade451e04268329f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0e30bd1219e3f5ca_0

Filesize
72KB

MD5
14a9a2e2f6fc0d6528709fec21c63df8

SHA1
f619d58e9379f9ea1f0902ae1522b1d3264f3120

SHA256
8eb938ad5a4c699340006371debeacaf02f8fb67897086ffa2f289c71b049832

SHA512
4df99a5eb8f4115907371f10d9b51a3047d8348788b39fa91f6cb7fbcf0a5b717366d00c30e06de397aa610c6e895300d07156ffc879fbd8bfa9d41fa451d027

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0e82feed5883b07a_0

Filesize
279B

MD5
556d58274ac218dbd4ebf71009bc3746

SHA1
842a8c55f0ea144e3dc5543c1861ba4cb1bfc5e3

SHA256
48484035d08bf60e8ba12cd13f65870de9e5cb080e78c4bdf32db2b1629c6041

SHA512
60ac92704dcb583b9481cc3ac56b7abe0b9f06a9a8f3079039cc993302fe0b64f9bcda3bc625a449959a6d76c0df36d74da9ea3828eeb35fc15e08f210b0787b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1ea9761c5b9cd4a8_0

Filesize
241B

MD5
df343bd277c70fc7468837c0485d0469

SHA1
1835ae5cd8b1413c78af2672f1d4a670492726e3

SHA256
dcb8f0652d4155ad92ba22ad75f8468ca7f829b48e8ae80c9490c4b63f8d3609

SHA512
9676a173dca84918de0f74acee059df82b3f94ddd9183674be3ec835cf26d34b96e0d5ed314f2835d88ac1c838e0f0d30e9143289ef49a0bf60499c06f7dc644

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\25c327c97addf088_0

Filesize
251B

MD5
13f092fec34acf9f31749a909f05bddf

SHA1
029b79503e565ce2264035e72a95d099bc879f7c

SHA256
b741ff0ab339681186a0e3ae030fab44087f9e87a2bed0c76e95b54884273a48

SHA512
9db6eec04c60140a8625f4c2e7a4fd60ac8e0025ed9e328b2a5e5b08932208f9bb6074a63db23aacc7757a5c45698584f29647f798c7c0d4b2db1fe89df13706

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2deae2ea968a7f6e_0

Filesize
92KB

MD5
2f1172dfdd9acbea6b50d95261ceb191

SHA1
ccef054df3c24d029841d1f48752ae6b2e6991a4

SHA256
cfe3e7f28ba4e8f056d083d7e213fb6e2ff8f36eed313b9dfbdd88e64608ab49

SHA512
cdb466f5a663010c0ca04ebb502f9e6d94e720df38d1d756b3362613b6bc93c978442a9c014776b66c3d228ce9e3af35064f56eab8f51c7c667c98e44bc55837

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3157ba627a4e76c3_0

Filesize
293B

MD5
104fd9af9b7e3ead114301c86d7ab608

SHA1
a550e789216543fb542769a2c08d172b0c7ec3b1

SHA256
ce9698b3b0a7c5135c9ce53caa317272c454150165dc6fe78d24b8e2d8526c28

SHA512
565ebe1e8e1e2d03ebb846619bff03d8f87b5639d1978dd01b127c7c17c9c76765570f85b3448b23960a84952a50ab5696dfd021d3985aba78359ba7f184bd5e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3702c32014a606cf_0

Filesize
219KB

MD5
87a61602d5ab8a9348b455bda0d514e7

SHA1
04c003b0bad9e9b50b99ef5591e5eb930f9ee5af

SHA256
1a3474524204266f091452bade89e9c045123e0541899c211472b2be2ab55ce6

SHA512
5217792b52a874e25af78135e4c593884072551d57a0c4dcbed734b5c7842ab78e0d3ac90e765fa790bbb1ef7d2d9e313b1484598e88b1c7fe9abd0bd1a7cacd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\65e1ec5b7a70bb73_0

Filesize
263B

MD5
1d677c7258a8966968295ca788853959

SHA1
4e242d6d66809fc2acfb742f31d8ff78ca8a74e7

SHA256
89d1ccaac0c01fc75968033a5f6a89de39dfa91a630af0ac5c631ab7a6c8518a

SHA512
cea35f9b1f2730ed89dee5e41aebd876661b0ace3197b43676db68e6b7ba057a854be3700b218fc7e890165580c9f92a65c8ea183cf6342ea7fe6aa56f103ed2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\66ff145c8b2c89e8_0

Filesize
258B

MD5
abb5a16243259b11e186b9a161037f51

SHA1
8450294f5ea9f20e2e49ade072ab35f365ba9230

SHA256
0570210f319b04886e6ece67b6b3286037ce6cce7ba44009a1fe55e360736675

SHA512
24e111b17544cd0d0ab421b7638d12e344af8d7fe33bbccc902043ffc958ef226472abfe001848aa3a44ff829d18f54935a48295212d7ae549deb174eaa37edb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\77f2ef9736f6dea9_0

Filesize
51KB

MD5
43ea2afa9e7fe1a348be5df599b7130e

SHA1
2ba02386e4522749c62869f66f0bfe03cd66dc53

SHA256
852b2bd5be99914c5c543ccb20c49a29d0a48ca1b9c7231df2121ba5d73fe2f6

SHA512
dd2ef790459e9026f348fedb5935d7bfd6ace305163013c0ba73a28cec928f13bc04b117a66283141fae010c6aa1015b9499f45cded4ba0d1e8220806aec08f1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7cca9b3272e643d4_0

Filesize
312KB

MD5
d5318b35105c301c8fe7200edfb094ae

SHA1
fe580dbbae3ff84632697e8d39b02afe669904dc

SHA256
60d65b1c6af524b49f56579090c8742fd3614a54c0d1ecf8dfc852a476c1ee9b

SHA512
feda5a8d73a08d8bebcc1a60ec4ea68927badd1e36a5edf39b372b5252c7997f3429a42034305854af9c61e6520e5bd0e1a0b5dd9179a5030cc69e655392d657

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\aa95286fb0801118_0

Filesize
509KB

MD5
858b1e1cb6f8e687823af4f57a9eca53

SHA1
59cf7a8ef0f743e0fb7578e8d6f733b18f891404

SHA256
d1c886d74d38728f23dd3729889368116905849f8d93e1af5521012742c1fb82

SHA512
d1996a2a481d8d154be395bac0cb5beb9bfca68d0c04c5de136aa91a20ae18169c33c57fcc681d0517fdf987d1c8b05fe81169d502b003ef6f4948133d2ded11

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e93e437f4d8013c9_0

Filesize
1KB

MD5
2a1e18f18ca9b12d75b9b0ae74d3e256

SHA1
267e5e3f4c55a592c79a0f08b6ab76eee177d67d

SHA256
e8a36aa7c6b730fe469d20a04a078217fa3df5b62a3819589dd7a91c1ea66aa4

SHA512
21166bc67d20e65094b9553b0d0ee9a686ce2ef7d6e51583140428f90eada8e765c917c29423f87a90e21e57e63132cad988109d74056071f0c91d3939734876

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\eb07d51f66505cdc_0

Filesize
260B

MD5
9ce4be92176fd42b6b0727709b3e9205

SHA1
692c6a49fce9665ad5fdaf12192bdd5a4724054a

SHA256
0a18da077163bae271ebb37a9c3e85587fdda9c197740d164ac9ad4bcd086557

SHA512
538368556f60ff43ce1fe04d0594b0751da3035f92953249e37bcf491f700a3ddc711429123c192a90921a6fcfaf8daf976bf870d1155703fe67988709c6469b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ebcc9ef6aeb13460_0

Filesize
308KB

MD5
574983197328e55287dbb0bebc8e0eb1

SHA1
87b4ad4711d02ee0c223096c7381980972c47680

SHA256
98931d9908435dbefa64c77ec33fa3ba04c1f1f23c57474f8afd54288ff5bb45

SHA512
18593470a632d34e64457f1734e85d8e87596ddf313840ac1e64c331b45862809ce1290af9deafd6c42379baedcb24f6ce9e5ec8f9b01ae75584a06072b17bee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f7791a31a11ba3e1_0

Filesize
26KB

MD5
3016e1c561ee2109f055d9b5e1603cfb

SHA1
0f4e95b73dfefb0dde411354e3f6c5ec2b688a5e

SHA256
597e08b4ef32ca60a3d577725094da34c4dcc091aa59930ef461307ed11233c1

SHA512
8a35f5baf0ccc6f480522eb84907785b9bb84809921a5bf6a52f86715b221a4c97a2b7137a1dbbfdafec2bca072ffa0bd79f53008453080bfa120da7a4b32aea

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

Filesize
2KB

MD5
dc689e4195dc332c7b6446f6e49b10c4

SHA1
87c2da8acb561ef3ca3d2bc1c01eb78b161af43a

SHA256
968dba33a29266e83171f3b05d457da1aa086c1557fa9d00fd82961bc884f8c2

SHA512
823ba370c76a7ee62a8320495f02a6b9518fcf00df4127be3b2f8e60488182af55711b51455246357a64faa20ea25a2dba3ff88680889ee3ec9215ed67b0dd74

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
74f272935e473e80c344d050b405f8c5

SHA1
a4fe2fb76ac7e6f726337ce64e83fa297190c5e3

SHA256
9354a9be9d545ed8a3500c2aa4ead365ec4e47c2ff46048b9a690b2c980823cb

SHA512
c46cd273a4cbde4687a93ad8aa44049dec31c48c293ac0723f20c3ebc26f5f61434373b9499ecf5b4060740d2f0d2276ac31a0496aa81c32f9e0d782e6ee5867

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
ccd1f1ce9ae609d1a70a65dbc3adcf3f

SHA1
2730457f1e27405bdec14b2e4628c9922e1b4cf3

SHA256
e46ca7a49bad3bee3cffee3e190cc570ff98681d46c6d38fc780c7146219800c

SHA512
64e6377deb8dc95768bdff1058ca1d59dcd157954ba4c49688c6739153a60e00cb25224c943749241b6764882832d179577b86d278804ecd9a5a85703f466396

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
6KB

MD5
f23e7a963f59b8ca4d1c11d53fc1c567

SHA1
b111a19cd4d08d03ed11eaf1648efcc6d85c9ebc

SHA256
ae135471cf807df6e9c779bdf3f62176037b65e51d8b6590833bd36e91edaf03

SHA512
1e27f92523e3d4f09ea5c8a54c61363cb79075726204dc73c10b0e2c17eebf947625fff634ce02d545e10dbd474be5ca701cae8223cafaf7b8d5bcd99f87cba0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
14KB

MD5
b08676932b397e4cddb88ae8b03a4df5

SHA1
f0210b7534ecb34eb0e1015731291fbcb1260b17

SHA256
a77e596706027e629f32e9272da18245e0e9883c66e82ac79623e4db634f9a61

SHA512
eaef51f6c246d72ba01b263458f2757cc15e36bd514d2295d06e71a1e9575bdf1255a087b31b944b5f15525c86105d1a5d4c14beb4ed08e67ee81ba7e0eb31d0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
356B

MD5
e5470bf4b7602f65e67b88adffad1697

SHA1
eb1e21f3c96687ae96c07ede113e39a7b844abf1

SHA256
8b58cdc39b54b2666891b55b52fc9d88b6fa3daee383158c9b419169891ae8d1

SHA512
9737f653a1770e15fe63c54dcee5c583a2c0c1ef328291f255f5a583265847426924cf449e7ccef4c84cad5bc3f59c78400721f2c9aca55860d849a9a20b547a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
b34e031e46d178e2a93f46287bb09f7f

SHA1
458c65b2a07c5e27903f2a8f47327407c82ede69

SHA256
2efc8d74000014ade4bbec49b1b23ea4705c59c83736f35f49c2147ccfd86fdb

SHA512
09f7c6bf07132c1c1bc93d766cbe8886aaef42961aac6d69c5d14734fdfcb8e73c616e4152abbdd1ef7a58d970eebe6b9bc0ca087083e6bfced65ee9c4a88c62

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
4e52c8d447d0ca1d028d955d6f3b017d

SHA1
6eda9b3c0a08ad20268f8d6d7c738b1efd589e55

SHA256
4462b141d2734d0dd9f0c74141ebd35759bc8a3d2eb837a8ed0eb5b282a033b4

SHA512
eb231646db3510884b0d82c6c3fbb0161229d97a1d15d427b948cd4f638b10ee409d1d9cdecc64b2c61b31ac7f0811e0d58641803d447bd2fd519d37a859020e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
28fd9e356daa8b2b2a4ad35be2af85b2

SHA1
26c3048180f050772fe8443474cd8c863fe493c4

SHA256
b211a6d3b75f8b49826e314cee94861c486a594c01f4059294444dd127e2dc2f

SHA512
c59bf206d1818e6ce5c4c86bfee87f026c7e616200264da55ae51081958a2b5bdf1e8414dfe12cae5e994189ae7359fba56e0676b913e8444cb5079b0cb1ce10

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
d03829c577f9b6b11b3e874bffd9121a

SHA1
a81ccc9620f4dcdc4858991ee5e45eee7b96442f

SHA256
3a0eb831944ad4c6fa82309ecb32032d6fe02698ab15f546ea796ce62536e626

SHA512
d07632a70c0ea101abf14e5fd0ab27e7ed5c88f83d0464b5d8365e140208d701fede60c9c1165d2735d0c7bc6d8f7a529afde922dc1ab2dec9d1cdbbf5df3899

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
4e9c18fd025d596a6ec5e96827b5dc87

SHA1
9f96bbf8b00294f22a389b41b82a60a4abaddc45

SHA256
973034c7dbf082ba3aee1020683f58406cd8e2c6dc68fc31ab7b3d9960786692

SHA512
5e7f41df936d8e081cee6bcf0d65b4a9bbab4888b1b7f64c7e7d671e160b68c5b3220272ad8eab3f4aec10adbcbb1e94da98b9efced9243f4a7e16036d07f128

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
5b7df60cdca5a8eb1fb8f790f0f42f79

SHA1
718515600d6d600e8af4a312c7f85ea2af74ddb4

SHA256
600a509371db80572d2670ebcce65cb3fd46c8c3c81da15cea47d9315e82e31f

SHA512
2740f03e289955366c7e2885f1fd5352a902f929812437688c86f9dd90ff86ee3f1b9822e7bf70e6db033e2052e78c6eaa1f02640370b08968ae732330ee3ce6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
df56331cc83cf41ce800399774aef027

SHA1
6a55c46ace793d3d5d8b65d2aba043ef68c4b893

SHA256
d24bfe47dc2db675a3c190767f89d7c83e3abcd3671a69b16be8a8f9eb7cc71d

SHA512
e458cbe81bddaa2921a910e0ef50ae74945e2f85474365191ad5edf22582e2e178276a2ff2925bd6029b361fa468146b83f754e0057e65dc4b727e9a068dbbdb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
482edded444584dfb37dd85b0a48b450

SHA1
9063a25c2c690098ff8ba8d5050487f33e14ac35

SHA256
fd34b759b76a165aefaba967024f0b69886493f7f850f88838c392c60cffd5be

SHA512
4af7a28fd2454231fad70be0a62cecbed386e90ec4fc6f8fd2b5362d6dd0fc97f4fb370db6f7f154e3f158714eed0079344908c819f4fea4f4b037a6ef623140

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
c339e337b74c1742444868f7f27a8ae4

SHA1
62c5318b658ca0b6eb7e19ec20cbab05ede4b69a

SHA256
c75584f7f19d256616d6ff2507727e40232193efd8aeae1df069a3dc50d4257a

SHA512
32bf89414c7c7f2613fe06d31c9075cce420f1a5b5132d144ffe5435f65bc77d3442734450db75d48d7437c2c4f7fa43f76c3e05057123a9b93ae96ce8d6aa44

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
e573b0e78122b704be7308a99fb54edf

SHA1
4344d5270d3236b529c75b91bb94c2782abc405d

SHA256
55e25df711f3912fcddeed819be097699756b3dafb2370cc2c71a52dcf76812d

SHA512
96c36a4aae26e07133433273e220551db751ff82cb15f30d8f1f10358bede0af4c38582dbfc5cebf66aaa6e193b8150c420a4c2d9df3675c479f396e6de97ec2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
851b1f8dba4b93f2cad41858d013e86d

SHA1
ef7899a5078c526f1c92b14aafa069ecc93d0401

SHA256
cedbd10408e880d6d2ce212b3540ca89f9a7f34848915885cd8c76e53c3e89f6

SHA512
e08af748dcb564ee656645273ffe8d4b1058b2bc216bddc0d802aa139d0898ceaed8fc7346adf20c070966272ff8abc89ad01814c3f6ce67cbc74b24d37a8aa6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
b2bba7f18a6e733aaaf63f1736bfa1fa

SHA1
bd9485902001141e22076b0b62ec6518202bc6b1

SHA256
274116b3846b3beab813266c12a0c5a56d51ce856d6cdf4f98241115e74399cf

SHA512
667d36b9dad24e1593a5cb20908a3cc308d18f30500861299706535774e16812fbedec52af1489f11655baa37c85b852255f1b610a441700ce2f9815a945e99f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
6e71c8cb9cca6682e098acb4165b34aa

SHA1
4ac2f623018fdea0831c0771c69431717a886302

SHA256
a0813a9992e727cfcc5380640c69082c7a0a4bf6d5fecf5e0476cbc23651ccb9

SHA512
85fc928350045ad4dc7a3c62cea812dcb3eeb5d06c7831d82ba2d4edae9f948b433a284b6d58bd05127a4c1fef55eab92252635002f7a310cfecd3b3bf1e42fc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
284a640600157b95f6d5eb3353ba4eff

SHA1
01ebdef646760bd1fa7e0fdf9978adcca94d5582

SHA256
70c1a905c3824fb786e0206c3c997a1d79555fb2f476a4b3965217a37605bebf

SHA512
4d99f0ec6f1c9ed97ef15f393f55dd5de7d8e90364d0440b703443feb484fcf35fb55351234ee3c8806c3468deed8d65f45874336a5a128f05125e22144cd0c3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
850e4793ba55981899c74ad4dfb4188c

SHA1
0b97a0abbeaa4c49bdfb2f17deee062f0bfa7258

SHA256
78cfcafcf4153dd0a23e2cc41fbf36605961e2b6bd6af68fe7e538aefad68a54

SHA512
eab0413218271c1da263a539d9a1e1ab5d70e33706aaf50157ebc28b75be174e2810b3c08f8995754f0d437e85e2f9def2a3df68ddd64a7251dc6161e1cfd70c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
19329af75f5f7e3a23051858bee022fd

SHA1
35ed9dcdca71b9c7b8f3f7a5c0d332cc1a01268f

SHA256
ee7281555aa34e997dec700dc63788cbf45bf2fb6264270f33be9f899ddf1e91

SHA512
a084b9e717153066002c9465d84eaeff9313536b95a8dbdd6512368d777609654c6b1461bab9e8578ab9d873dc3b82c31ff218bf6801cbf521614d55a8aeb520

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
fcc5a01d99ab0422bdc555c6390bfe08

SHA1
0b614914a87934e5bdd54b7d10a741d40fc82d06

SHA256
75937b899fb6f45032499064a73cc2b836dbb6cc5329c34102a5218155849b91

SHA512
bb5d181adc9ce5166379efb57291cb408f899d13fd84861dc97bdbeca921f34e998395c87aca0b2a6ca17c9889fc0b74015548e6569c84283704340b70cce652

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
56abf7acff1b66edda8afa6242492eb6

SHA1
8822980c5837266eebacd8e0d957d3494d867425

SHA256
f497123a5321727f3782c07e04171e356d1e9ae7460814afa577394cd3bb3a6e

SHA512
2f24636188a475a72a593eb28ffca3c2a965f94397b96d756328be6f5295476e496ea9eb29bd833e32e554c36efaffec48a0a84f9879444412811649cf2eb103

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
d402fca17c524fb55e6324760b9692c6

SHA1
146e6d659a59fe37744c56e4c08b085a25fb0ef2

SHA256
a3c2fa9305bfdd93be0225049e354589e549b6807530e98051e0dd8cb8787407

SHA512
7b07b18ef75086042f642de4a5f55118b602f5c3141c8bfa315b7b293ffb9173b2e9e2f1d608718fc85ab53ed3edb7326ac581056b329a253c1b4f4cf329e2b3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
1154d19d245f9473269bc660152185b9

SHA1
daa9a23db912f89395bead835f8f4a6b54596298

SHA256
e8dcefa5513c94138692491ffe87b5fa01b75ee5d7a59c3c857014e1b63a88d4

SHA512
ca2c3fa83ad0238ba1da4980b3a98a1bf4549d122e8da88a05fdd8faa5933f2dbc430588a63251d37e9f76051f540a954c273169869db995567c6d9ca739c625

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
1201fb36c78ef73ad47a5fa356bcc8b6

SHA1
0bddd00bec7ebb5260a91375730d7e6c9b1f7a8f

SHA256
20bd89ec52dd0bb6391cb9a7caf60a37bc0cee840666de4cb63a96842afc2560

SHA512
bc59868580f3d435ebf45988d124e0f9d6d3c4a39080dac9515f435d8d66c1686e75b3e10fdd3b4431a570b88172db8e46c37b69d18484160dc3e3257ebd32d1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
59868979479b0dfc05edb9822690c5c3

SHA1
02098ffb66acb19dcd294e61fbb9d6fc8b5fbe85

SHA256
a1e668f96a74dad49325984e800b061fb7057c346f7a0e48833648b9eb625522

SHA512
07077506dfd09eb9d3a3c2a708a387b78ba4ae3c3d84e5b8970dacb7fe50a3d9de96df7cd6792a2586c50d6c17a750e07e5684e384cffb766fd6ab8e2abdf869

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
c1a59713d9057d38b49bba0d6db85c11

SHA1
818d3cd913903e554af7afcad383bc0bb8e912aa

SHA256
19d7a6496a25e5b5e64b368ac066b37ccab366acb9f52ad87abf4385389ae56d

SHA512
a7d91f44558cee59058d4f318db43a4f16fd2eeed623854c8e7dcacb847f28c802fb21737981712a2a6149b2b9d2acd04e117b183d0ba89d77c06d0e86726b2d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
0b72dc7553bb84e3a151c8c85fbc54f8

SHA1
eb730431fdb960712a902540ea48d98c76ef5ee2

SHA256
7507c9f3871f6018dcb47d6a7a9a966a8550eb5090051cf8db733a3446db71b6

SHA512
f7da1b41e2cbef036b12b0699b5f8e56da3743cb6209080714ea7bc57a1c32ddaa8089755588f3c7c39f949d62fc36172d1257b1603847e9ad8f2d27e862e9b3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
faaa24d77d481ba82d9dc9f727a456c7

SHA1
010b76f0ab3fbb379cc0fe6713bb9e88e11e3893

SHA256
a66ba6ac5af1fc02aa4871ce60cf9708820c03a80de290d7e61c92c9e26b6c0d

SHA512
8571a662994cb7095c473f8136e5f91b05716fd51781d9c8052e081c162237b980fff4bc2c6c565358257d694e55324ec2a79e1aee79cab1922760a045f49ffe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
4f631c0b276feb063860e418ae03109d

SHA1
a4f909e174916d310b24401a482b8b08881422dd

SHA256
43024c991f1eced37b0e3be1915fad784352073761ad1ada05a3d97079f867c7

SHA512
8a5c3d8f87a841d1483607493c0b1fd5955d76a1edab87bd77b2310acb840dfb496c743fcabf905f21112a9a50cbca62386768c69778c647aeabf1078d026cd0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
af0ab2bbef9b691030a8940f598b7599

SHA1
b75e6572ce37724240740e0107e532b4e3a991bf

SHA256
c15860c26ecb839408c9808bb171562acbbee590f1d4d894f10099bb78a0652c

SHA512
325f3ecf541515d309f778018a7db8caaf8ec744d4ba0038eb1bab9dd726966b3ecafbfe07fffa7d9d77cdd474d72a1bbba4ab59f85e3fb313b2c4dae90baf6d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
17a644770ba7783defcd546523e3b1e6

SHA1
8f4b5e64be963660ea2c92b4566fb211207a0341

SHA256
fad81690f9dfd4456b360264cbe986c3bebe65d424cdc2e81b8b7cb2a50714c0

SHA512
a12fd015d618aac58b519d91fc6fc266030ea1e88685fb2cfc10377ef77dc3a48284e7d02eb039128f590879aa53566f9606fb4419e7dc40a8d89c84ef18260b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
f112b80c62405666884af9aa8b7831b4

SHA1
f18ebc6faa58ae871244b9a78f8b38e4dd85d92c

SHA256
4735abb2215de04bf013c04ed74d1b6c7d8eb693719fd05a8f4fd07a320921b1

SHA512
94ed45c149824a44bb20eed5b728a2c32f14b0673b1109f8d819c2ada9ec6b3bc9b572881f4db380872f378dcdb52044567e0ff23b72a85d7dcb6a173e0a90c0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
1d6586c5c42ae2cc0ed65c98e5657de9

SHA1
1880daf7bbe66235366b2242ce03f132c5e144c4

SHA256
cde1db11aa10ccdc31205e90cf1b677e19a13ef56d7a76082b70a0edc29e6a13

SHA512
05d75abe9356fc4646984585e3442280c8ba417556e1f9df70f7f34af93dbb5744286435c5f66cc28f34b3dfab92ce31b54b158ee6244c60f271c46a8e5ffce0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
dc1664829fa7c4c66dde7aa73a7bce6d

SHA1
ad5a64a6aaa3addf15ab71dd51e04cbf3d845bdd

SHA256
7db346499305537f93903b79d8d8f1eb0cbc0f41b4ebf70cebbc9c31a29ddc31

SHA512
22aab8e9da719a588a13fe5b2ea4fb0a49f05b5d74e30f17f7185e44d3eee225dbb48f9d8e7cac81e0a27c5dec1f092c8518b66f1b7958e3dbed8bdbe4de50ce

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
1134847e634edae16c457e20a72d9c6f

SHA1
499e395018c2b372288308a6045bdc4c5dcc70dd

SHA256
8df4170e33815e100b7bf6bf4514a30dc3260e490167f2da0d687de42a8257bd

SHA512
88086c2ed68cd711904863afe12b7436f6cda761f80921e1cd85366bd9a37e00fe329ae7ec69daf040502c4dd41f547e9df460592b2803f30c52606436f80dc5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
dc4f2c9cd71ae156d1b7e7a120a2aecd

SHA1
8979c51b9b46ed87e25fd10bc5eaaf405ca76c68

SHA256
a600158ba0549f3de1b0c70aec96c255ed240f900d235b19391ca5ded8e20db3

SHA512
eb1caf43f37355c218cff3dfa4df2b8a70d0163af19055ed1d9365fc5d2e76e32b3e64298f11acb3582b9657bc457f5a218dcf9fdba6c4cb6040eb335a1155a8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
3f7b49e2990f95ea9c02694cb369af86

SHA1
8992cb6fd58660f72a3ea2ca1c8b65fa903389da

SHA256
d1ea36c3dbc550164a8816ac18534280b63d931fa8d5711383bf5699f8219417

SHA512
3904d869dc7ffe5f5bb5a478786862767b09bc96df2a98b696bc3d495a50202e3082a7e74a9551bfd8ca9657707282225dfec6b354d4f86b53f0f17097ff9b0b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
be260bf98a875b9d98ea354bc16263aa

SHA1
ea433a6d786026980617107361317d5b89ac1b82

SHA256
f48e8d96e64645654b4c5e43b75d98a18d1c38e5ae7083432e4ce7f4eed9f5b3

SHA512
f56afa32990627b43add4a3e3b4d76410f7fdbd3416e93e160b8969b357e2665e2acd0383549df3f600bc84b900e36c3eced2b91b7a850fa64513d0ca68a5db5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
8d69767b9d59c9d643c1ff3fade35257

SHA1
9dc3efb5864c563f50af83d2047f9df173499cfc

SHA256
e550ebef6e9d9044be9f8dbdaec91b647e596a6d5e6da51de20d2d4529aca30a

SHA512
54419b3eab6b6dcd999e5650b772258824b8c10de3e03b934b6602d8f8c30ff025bec913c2aa07183e4fc4109fc6d4c33554254196c3fd51c4daa20ab9a3027c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
3c49072e042ca71dec0510e44ceb61f3

SHA1
30d6097a445435ad6d46569b3c85661837b9f3c8

SHA256
3bb1699312050374a37ce75fff42e3f39db3cd1384f65f82f71d6b3a1d43158b

SHA512
2f175e73b09e96a3c8a97fdb4f7817231be72f3f3420e2386766f0ffeb822ff4d387b90d6c26d4fcb0271854e0b23891aa2051d2b5cc08036712e876097f9c93

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
923cdb0d01e142192e3b34ea6bc442f5

SHA1
c70ef75f5cfe2db94c30f042d7da66c788f3d867

SHA256
9c7e67b66a10d40d15b70c1e2c26e5dc9da79fc119f87ca76aa236688bc70293

SHA512
899b34db56955c74417d7bc877b0539b27f1198a020f959e26d9a21f06919460df9e7b2a3b95c2d52e912d7d6da6d6376b3ba72fdcddaa5a806dae5957e673a7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
c02c60323368013289ffa34f0fa1a280

SHA1
6cd12dda251315630242ecdd8dc2a0f13fb42889

SHA256
1fc2c8081e20237ad9a284ee595fcdcca0df436ba2c17186422acb672b938d7a

SHA512
2aa2cc9231895b4582627f1a75241140e70c2a31ee29bf67a29c3272ccc383b48bc320a90dd07622ca94cdfdf3687d5e2a87d6361858e174a24cb57808f61814

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
da8f26ddf3b0ca873e5f591feadb411c

SHA1
1c6a34b48ddb80169eff45cdd56111c7a0ab8b70

SHA256
fee76621db118dfbe980cc5e276432aafb87c45c64307d0c9d6277549423bd2e

SHA512
29fe64eb6afad85b7669a11c128e3af902d5f3bdd65cf8c38bdf043ed8257aab5f476cf11dd6df333984b7ec4701166d82f39d884f3447b4a12e8eed821bd9ae

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
56e958b47253c8dc0be8d047f878b136

SHA1
bea14fb39d65a7eea9c669b6869a0fe6d9fd68fc

SHA256
9794fda0a5004c20e8e236e419538df488a02815aadec84750b5f845b0ab46cc

SHA512
6139dfd587a7b1882c7177179f4d126cb0402a2fb49798a04a0bd78a9ddc2d0c10a40dda940708a86e7fdd41884af4c87708bb37c59e014bf937187d08f9dffd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
aa287b5ac217948b58e2a4f4db2ea18a

SHA1
2591a15bf76adae882e5384831be349643c3d997

SHA256
b22ee498a893bd8772fe0ae1f6b9a754c7a50c5c136b36d68855daf95471d9f6

SHA512
8fac5e0d5d76f559a0faa0457e7c0160f9b6114534279dab67cbe9f5c0637cfdbfb5cd4cacec8ab8f7c866113d7f98bc0e665837234584baae971564d4b66f44

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
91904b428df4ef2d215d85d26ec57746

SHA1
ad5954f91437e05e25cf27496e93139041ea90f2

SHA256
15bdc0a739fa158c885d28dea5d861ada238d75ceb821c85416e4e271fff6278

SHA512
4e018892d1487900c443880e935c26df1b70d1e1b6f989550458051776187a05666d2a6b7da8928bfe4bf5e88968a6351e8e36a5385b6b206c7f9a0da314a9f1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
d784cdd1454f982042d1f358822e221a

SHA1
8dcbc8aaea853e634b4b5f4c0bcb5f78caff8c80

SHA256
7c8be29ffa65e3d0cbb55ef1e125dd8fae4b7c894342e21ca1a81f32f15e4188

SHA512
e27386e62fc63cdce37da12caef6c737f4eda6f63dde2df4b3a0b89a79185a717bb1dbc283d20cc36fdef35be8e2571938cca85879f2d7565967c66d5bd3578e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
9517d7200550eff7a49d0cc484afac4b

SHA1
198e3b39184f5ad64dc4809b68b5973b0e106a5f

SHA256
e1c8ddd676bd8c0ecb08a28dd1dbaec64eb4334d724c57fcba31c44f7df92eb1

SHA512
150a7c7dcb20f7dbbc2ba772eecceb975c4f0522b562e59b1b3ed08dfadf0d1fae43264d6ed6a4a37161de2401bd770a56b7d0d8beffef739d1cbeae31deb215

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
2ee602b048e419b7212b1081d8e48bc7

SHA1
364d98dc9dbd6ae6c37e68395e3e7b791abf88af

SHA256
2852324f128e685e318d9c7f3267bcf84082b4afa0a199202a2a8bcbb32681c6

SHA512
601d2b7dd33f575531bcbebbdc40b956b9ca902892a5053cf96927c6345e88c276c13a09b7b2448cecb5797936bb5243626b1536de2047f3aea0c301945db1d3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
883330da7b4e7628d39624845a98e3ff

SHA1
8e35b2cfdf922f9ce3b10628ae9fba8e0c0004af

SHA256
7c50888571c28aff4f154fa474e8b01c24fc9718e3d6f9bbf2b3f952c51d2590

SHA512
d2902fba6b0082dc1b0896e1fcd596098c27018b546b670a84465eb280d3fabe641e944ef909f8d67b3fff36d38949211592c8e17e6602c035b88c51cdff606a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
0b3edf6cd41b15776ed1a8490b750e2e

SHA1
95c5c6463e060be022ec58aa7051c1007f7ad32a

SHA256
05337948e56ffce4815b68218d3e85c3bcf643036fe7ce61d2cad75ee5f78014

SHA512
6a64ee6ef64a1595b43b9aa212d8b5a44a972b4bad377b131502612186373de92f4d79d4da83fe28ea80920f1b4236cd19213958f0794391b2590993f34808cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
b6e669b9e3b9819e4921828680923109

SHA1
4246bc3a9405a2bfb9d52812153cb2faadc215db

SHA256
068ff3e970af6309e9acf1b406384c00cd53d4f960f80fdb613279954fa840d2

SHA512
9c3e0ee24008d4c8b66bf0ce1fc7a61b014b98096707ed223c511eed125807b64abd7c54b61c142d18fcd7bf5fbba197b8bca5b91f8fdbe4acebe5ae95440eb9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
541ffe29df3292845ebeb35d6b7a4a09

SHA1
97ea666918ad190bfe7f8b8f21ef82684706188f

SHA256
b55c34d054c14d73aefcf0743dda0fc2d39bc220698b9dd3c86cf9b908330518

SHA512
8df01d62bdff4ce690f50bf4034a1736fe45d1f19402e46f40fba1c9d6907cb146161937e38dddb906b97029998ae6e0477811201c048afd7fee1da508a241b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
2b8d8f1f739783ea66cbe2afc13df578

SHA1
94e104a696bbcbf6b4176164086bc497d9763ae5

SHA256
2aa677df2fad44fa53e131df2bdb76b3a7dbed6fdc17691bca41e3bdea7554ba

SHA512
336126ea0d93da85a44deedcfb4e10829bd83ee1d3f559a2187524b6d686208acd272c64da41ee26852b7f493eae30f704001321d018ec1f709ddeb21f1aa949

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
e925bfcfa790632be57ce6a317a8ea0a

SHA1
fd65055c835d9a3843c9024c962e063d832f8215

SHA256
a3cd570e136ad4b96bc7b9077b90da74619ec3ab73b41cd1c37dd8e38e9dd1e2

SHA512
b22664fe631a3b19481344fcce22f011cdb2acde6a7bb3e9485ac305e78041d5f1d62c397163fcf010708a7638108903808dea1d769f8262ea0244948c7cfcb7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
3cbfa74faf5288ebc8294ba43c0e2dfa

SHA1
c3526f9c464ca1540809787d86067505342490cb

SHA256
4f2a830ad107a9faebc431e9c03837096a8f573526b7f5471972236bf8622871

SHA512
aafd5a3871fdd1afa535f6b77b7244062d3e25fdfa8025741c9ebc2635433f35d85f92b4faf43e9c55d67137aa45bbf66ad0998efec92ecd19d4e3791302b0fe

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
2278c6566c65e348bcafb4fac8d18e8e

SHA1
d5916060b2655db9892d2f75d4398a2a75fb4429

SHA256
d48f424df37c620ddc30f03b9cc605caefcfb75f0444d24f3ae1eb9a94b6509d

SHA512
2487d576c62617928f6718af14c86282ced2c21b3f790e82a5e75d812064a250ff72bae37281a62cfec0d700af6d52ab9a052d57aec108cf8a3710c5aa4235a4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
4f9b69c502e1baf2d4ced805e27aba21

SHA1
273bb9e92331c8c0ae62ebed795cf23244c86899

SHA256
3687336990d62d94740d2e6322e7cdd0c96d66e072c761486305c45299b3efbd

SHA512
cc86470e5d6eba9b7917f1d819d0e3a8c410faf3c4f6b451e36cbce2007559789bcaf5744a773b197ffe48122c2895b4eb21885eff8ebe083e58fdf67ce7155c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
abe6a92abcb12b8521a5a74a2d08a35a

SHA1
39c348c2b4f609c105424a2c782f3a4f3f9ec926

SHA256
4b2addd8a193b2a73631c482587c3acac0246ea51f1c959fe8b5635884fb36b7

SHA512
961b35ecfec3ad94683ccae003606809addaa0ecce3e05b683d9f472f72505106f06c470312c7c2ad7e5b82dbd3b5ec42f2b1a063738a843841251a120651c8c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
529b4caa85ecc69ec37a1873629e3d7e

SHA1
cce1690ae8505262050084d21bdc7d2bb35e9a5c

SHA256
ed928ea324d7f5cb9c45ab90a817134ce06e705e8e932d4b3e5f6108d374a557

SHA512
559c679812fecd4373c1b2995bdce7c7007c13f8004a65b78b74a537d81ed58b6c10c8210a487b83a7908aba8baf3ba7a5865e433af6783706a10a112795ce2f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
2577d605c198b0016a8e153bb3f86fc2

SHA1
63d4b4619dc5a301cf7c136ab7612bbeafdf2d5f

SHA256
4db8b3a29919e74950b886a1e2157b6d6f75f4b3962161a5aa5563db3095640a

SHA512
4b4f2256bced29bc61d5d88d29ba8e807d1287fc0217609f766726f1146b843d42ce3483d9da09d287b0541bc7a904af604b3c1dd0e92b7cdad8bf339f04dcba

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
301aa46b9c50b349ccb244e6ffdf043e

SHA1
b06121192233955015b07629c1c5b82d9b67b3b2

SHA256
c4fd4d19ca70a6a0ac86ea2ea644b149b0fd6af43b3f8c133f90b200549ad09f

SHA512
fa03f47bd5242b8e6306bdcfebf35bc5270ec8c818d51e3a15f40f0fdbd991f7e736d2bdc58180309799d9f9a34563625efd490cff8793d65ca38644ba8ad0df

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
81d619d82148cdd010b234a69b29b4b5

SHA1
b31fc4568676fc243948b09d09b830dc59152042

SHA256
10692672e002bae68cc11ff706298f233b536ef4edb48c1d7c7e0917f360b10c

SHA512
0994adfbc42e0e60e6361df6981d5a7d2e0b08ec2c059a75b963234cc96eb53202402ac7b98d006a942e8a847e8e23d6ab430a05509368edaec0da4d0f6f9159

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
15e0ef68c1bd8601b6c1108a928e2234

SHA1
bb85dc5a2a0f2ab90e14402de954e11b64a7b9c7

SHA256
238188eb190ac8b3facee8b8e172a0413e19ead26e6a88cb694dda399be1b842

SHA512
1aea9b0624b5a12905fc4c876333fa7077c5f9a0b01538dbf9348c408fc9caf9605c7436e03ec5ce7f53ae0fb2f251f50f87d258478f37d88fab5831754643c7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
69c23fb6fe1c277895c2d46f8007ffd1

SHA1
88a21edbdf04e8898ced873a96520faca89cf473

SHA256
1dbff18c40532d168676795678746627b845a2184318bc917b382e4adba002cd

SHA512
936eedc1923a244d4eb380e704196086d9205d6af86245b181ea758b4567260ff7e2018cb30e4320d4a3c8b326971a88119ea91c3544579d503daaa3519d5915

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
15KB

MD5
b7c108b62db553d638e0803fc2cd1575

SHA1
52e6048106aafaa30787e08e1a579e2686e8a732

SHA256
c123d687fb4fbca172e7eac891c2ba8394a551c8725b599fe9e807dcfbe68a6c

SHA512
7009fe76250f856b6bf3d0fc96ddd0c04429aabf281a905d79254e38d6995e2eb2ea1da5e2e6fd1681969fb0d8c3aa94e77a653ba52b6580bff210f9f304e7c6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\f76319d7-2235-40b5-9337-07e94d63dd37.tmp

Filesize
11KB

MD5
1324356d3fb5af9e0c84cffb04dcfd6b

SHA1
a9fe8afa41eefd9f607009e42f52da3d3471f5c1

SHA256
6e7c894247e3e51ea35807d552c40c9718bfecb0dea14fc3e30262482384cd06

SHA512
d70fa6736259407ff7315fdce0d9569ac8f81274ad6463b42e418e296417acda1fa7318a8c1e741adaaea6127196c8e4287f362949c283cdab532d95b0e7078b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
210KB

MD5
1268327908f6807bc8fc914f4386832f

SHA1
a1637f9f964a4f68a6664ec70f7ceac04b52fca8

SHA256
a020f97ac5eb9b68d46a283c2560927f8704aadf5a9852fcc5d72dda999deab0

SHA512
9dde673bc04f75b0ca9a9c0ad8199751495e69b445a908373c7bf8c4a95aafeeb99b3b450a09c6c897c96b3ff1a6f7feb594043491c47d6795698ca74aab831f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
101KB

MD5
5da12536dc3824db974247e208656253

SHA1
a64bc2defe9ee5887781056360ac19623446b66b

SHA256
0e52764f6b3b23ca463f06262200a61260e6886b35e18b9e66b64237f1db3ef4

SHA512
4987baf18b88ea611918accf9396d45313895134de531fe701b9619e4d8a84e1f02bcb2dda5c775155c7a44f6207d706f2bcd441f4fa2e8ba31f690ef8f91380

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
210KB

MD5
afb3685f4a1dca8c3b0955855ed557fd

SHA1
f24a829ed78564c87173730c0f2f250639e9318e

SHA256
02a92eb92c6132eaac068e911bf8464e95d162809b16ecfeeb6b9c51c16c4550

SHA512
93cd885c751e8f9e2ff044c578d52a36d1c71a008fd21d52c3908b212203775bee433d0aca8320234552d9d8d750518545a4f3c979c6802bbbf2c35e456844be

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
239KB

MD5
fbd36650e37f5f22009bf6355efec873

SHA1
604f1e8cebff97989061b9d9051746506d4829ae

SHA256
0cd0ce822a84269e1a0564697740c4b812ba9b0649d48b0ae37fb430c052cb71

SHA512
8de4a0e34dfbea456a396c073a660cd8eef00be11a5b2b762445954d83385e234812a3fe624365c6cd2875d0786ce4d6d81acb69347772d410c7f787683363eb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
210KB

MD5
e9c13b42a1d44be85d79fb05a094983c

SHA1
17baec1492e3994fc3f83f5d536a3c27c6cbb340

SHA256
16a65f73dd451ee9ae5571a0c295936b364b9afbf453f1adb83e417d8a813b6e

SHA512
b0b307c2b9b6df8495f0b215d6602e0364038e7b3a0179f5d820660489755dcb148a6ea194cce459ab3c760fd3f003416ee790b3a589b66708335519383c4acc

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202409140712081\additional_file0.tmp

Filesize
1.4MB

MD5
e9a2209b61f4be34f25069a6e54affea

SHA1
6368b0a81608c701b06b97aeff194ce88fd0e3c0

SHA256
e950f17f4181009eeafa9f5306e8a9dfd26d88ca63b1838f44ff0efc738e7d1f

SHA512
59e46277ca79a43ed8b0a25b24eff013e251a75f90587e013b9c12851e5dd7283b6172f7d48583982f6a32069457778ee440025c1c754bf7bb6ce8ae1d2c3fc5

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202409140712081\assistant\assistant_installer.exe

Filesize
1.8MB

MD5
4c8fbed0044da34ad25f781c3d117a66

SHA1
8dd93340e3d09de993c3bc12db82680a8e69d653

SHA256
afe569ce9e4f71c23ba5f6e8fd32be62ac9538e397cde8f2ecbe46faa721242a

SHA512
a04e6fd052d2d63a0737c83702c66a9af834f9df8423666508c42b3e1d8384300239c9ddacdc31c1e85140eb1193bcfac209f218750b40342492ffce6e9da481

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zSC615EC97\setup.exe

Filesize
6.4MB

MD5
241331bede4cd250aeead156de3225c0

SHA1
4e6ebbfda62706203c7f3016d136560854841358

SHA256
b476f1c8521db36255a862af284f462eef77c4fd5233adb002137af7835f5e86

SHA512
9eb8f3970645315c73e80cea2af9364d8aa68d4e3383cdf21dd0393fc74857538639793e995a66b6bd58f086738981ffc364a06b23b129fab380d0e59532d712

Download Submit
C:\Users\Admin\AppData\Local\Temp\Opera_installer_2409140712078171372.dll

Filesize
5.9MB

MD5
4510a03cd9a85d34ad47ed84097ed4a4

SHA1
a1a761249bbbe8dffcb3fac37ed570c89e130379

SHA256
cafaa2ac106c340ca91acbbd483379cd3c2273d2cb795349db6b07c7272c0433

SHA512
95b4b9de8818e025608f7a77b3281e879bbaed5bbde6cfcbbd4bcb1b6c6cf09706b68061b7264d90c3374c2a0072f91afffc5b617fec12921407c72b63b2be62

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

Filesize
2B

MD5
f3b25701fe362ec84616a93a45ce9998

SHA1
d62636d8caec13f04e28442a0a6fa1afeb024bbb

SHA256
b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209

SHA512
98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

Download Submit
C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports\settings.dat

Filesize
40B

MD5
60862668e2ccbb1c29daf1fac548175a

SHA1
a2cbdbd67df79fb7f72f2656e5088eadd67fe59f

SHA256
a0088d6a6c4620cf46279273c8c6de453356ef0b7f1a700d35a489335d8d460c

SHA512
4b36b9e74f5750ab4ec42b2abbdbdc593f6e6311c8bbf426ffaadd5514bf6f15482b45822914997173fd5efe9cef13beac0da1a7181546cde349f61d891b1733

Download Submit