hxxps://ddec1-0-en-ctp[.]trendmicro[.]com/wis/clicktime/v1/query?url=https%3a%2f%2fclinicaputumayo1%2dmy[.]sharepoint[.]com%2f%3au%3a%2fg%2fpersonal%2fglosas%5fhacputumayo%5fcom%5fco%2fEeSbIX4nBzlEratSxjF5En0BtRbz3z5rzETeCuhxmMNFeA&umid=912af1ac-d7ef-4576-94a9-899446b43f0c&auth=8c38a99fbfb8ee9ad7cfc9db516a19b3e760bd1c-0c37e5947901c96c5dce1bbe3ca4ad211d2ea523

Resubmissions

02-10-2024 13:39

241002-qxzfpayejr 6

02-10-2024 13:36

241002-qv9tmsydlr 6

Analysis

max time kernel
135s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
02-10-2024 13:36

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://ddec1-0-en-ctp.trendmicro.com/wis/clicktime/v1/query?url=https%3a%2f%2fclinicaputumayo1%2dmy.sharepoint.com%2f%3au%3a%2fg%2fpersonal%2fglosas%5fhacputumayo%5fcom%5fco%2fEeSbIX4nBzlEratSxjF5En0BtRbz3z5rzETeCuhxmMNFeA&umid=912af1ac-d7ef-4576-94a9-899446b43f0c&auth=8c38a99fbfb8ee9ad7cfc9db516a19b3e760bd1c-0c37e5947901c96c5dce1bbe3ca4ad211d2ea523

Score

6^/10

discovery

Malware Config

Signatures

Network Share Discovery 1 TTPs
Attempt to gather information on host network.
discovery

Network Share Discovery
T1135
Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133723497869089898"	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
1916	chrome.exe
1916	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe
3752	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 7 IoCs

pid	Process
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe
Token: SeShutdownPrivilege	1916	chrome.exe
Token: SeCreatePagefilePrivilege	1916	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe
1916	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1916 wrote to memory of 4048	1916	chrome.exe	82
PID 1916 wrote to memory of 4048	1916	chrome.exe	82
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 2628	1916	chrome.exe	83
PID 1916 wrote to memory of 936	1916	chrome.exe	84
PID 1916 wrote to memory of 936	1916	chrome.exe	84
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85
PID 1916 wrote to memory of 2832	1916	chrome.exe	85

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://ddec1-0-en-ctp.trendmicro.com/wis/clicktime/v1/query?url=https%3a%2f%2fclinicaputumayo1%2dmy.sharepoint.com%2f%3au%3a%2fg%2fpersonal%2fglosas%5fhacputumayo%5fcom%5fco%2fEeSbIX4nBzlEratSxjF5En0BtRbz3z5rzETeCuhxmMNFeA&umid=912af1ac-d7ef-4576-94a9-899446b43f0c&auth=8c38a99fbfb8ee9ad7cfc9db516a19b3e760bd1c-0c37e5947901c96c5dce1bbe3ca4ad211d2ea523
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1916
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7fffe59ccc40,0x7fffe59ccc4c,0x7fffe59ccc58
  2⤵
  PID:4048
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1884,i,15955959061707747431,11531660730407578925,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=1872 /prefetch:2
  2⤵
  PID:2628
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2132,i,15955959061707747431,11531660730407578925,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=2172 /prefetch:3
  2⤵
  PID:936
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2208,i,15955959061707747431,11531660730407578925,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=2396 /prefetch:8
  2⤵
  PID:2832
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3108,i,15955959061707747431,11531660730407578925,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=3124 /prefetch:1
  2⤵
  PID:1992
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3112,i,15955959061707747431,11531660730407578925,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=3160 /prefetch:1
  2⤵
  PID:3476
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4304,i,15955959061707747431,11531660730407578925,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=3704 /prefetch:1
  2⤵
  PID:4392
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4776,i,15955959061707747431,11531660730407578925,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=4788 /prefetch:8
  2⤵
  PID:3056
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=5028,i,15955959061707747431,11531660730407578925,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=4448 /prefetch:1
  2⤵
  PID:2212
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=724,i,15955959061707747431,11531660730407578925,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=5032 /prefetch:1
  2⤵
  PID:3728
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=4580,i,15955959061707747431,11531660730407578925,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=5140 /prefetch:1
  2⤵
  PID:1676
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5276,i,15955959061707747431,11531660730407578925,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=4844 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3752
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=5300,i,15955959061707747431,11531660730407578925,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=5236 /prefetch:1
  2⤵
  PID:348

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:1944

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:3196

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Network Share Discovery

T1135

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\2d4a84c9-56dc-40b5-a414-aced79f66b73.tmp

Filesize
99KB

MD5
4713d09b9f1bec164b88e3ecab071382

SHA1
5da7f97c413b78c29dc1653ce1380885fcca4be3

SHA256
bac55a84d1adff8ecbb696e64137285f89c28e9186bd7f72088194f021757dd8

SHA512
031d909b036e3eccb40b9141b0ad16dc8c139db632870c0d818af9e64711e38c3901e04b63fb7b7b4df93f4e85e2e728aa3f98ecb0ccc967d99beac1fa19bd87

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
8cddac6bc7c0af0751effc383657a7e2

SHA1
830e51fae029090002633e48920fff667322d981

SHA256
efc57454a39783918361ba9c4653ed8d0547b135a482b7225eb377c2d37de9f6

SHA512
033f56590496196b4d1e6f6e105a50f1d37a82b8b428a830d4af7c65bd41040dbcba5b01c2d283dbf6900fb99f3badf5bde11cdfe5293accc11cd7386b9afe21

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001

Filesize
38KB

MD5
cb11905b89c942fc11598eaad854f94b

SHA1
ed6b661ce6fb4eaebaf61b19eaebebe4cec586b5

SHA256
7c1503e287076b8242ebc74802de376c704fed35ff20929cf792faafe097a5dd

SHA512
a4410b8f4ab552bc02bef32d8482f6176238ed33070055029043c2cbcba968975fac058a7446c4f95cd4351386e9b20871cc372755e6e102762e1be897be357b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
816B

MD5
09069e53938e1490226b1e7dbcd62c70

SHA1
3124ca445255b3302b86c83c65ad24ed885b36b0

SHA256
23aadf5dd6161c5cf71bbbaffb7b61beb9f5c226f4d1c4fe57e1253378620e4e

SHA512
839e7286f25b387e958c388efd18e10a15992669995620cccc3bca25b8a2f6f4f36445c2995694bf377fac25b0f7767a62f636501aa2ef3695537c6aad854412

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
576B

MD5
89f27693d868e0d8154cb449a6ddb070

SHA1
727d7c055fbab1c718f016ac13b3832835123628

SHA256
2e58664c5d20c6b79ea7b10477f00306b1881a6c06a5e920cea529ee235433c7

SHA512
75cf08526b044ac9337b1ae63ab396135b26fe05b2193e0339d0a9073c2839c8115b75c60f5c5456294f8afb69ab71a6dd22a3b5d61e63891b4ee7b55d750b4d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
e00478f8389de840823b6b04b53d32c8

SHA1
5bfb7446ce1b361d2d1caf52d3c7092353ed5645

SHA256
199f650cccc8149324a70715dc68471d2b662e067745fbb362611b4d628a92e1

SHA512
2196f531af7219acf8f417752cc7e61d623870c672a82a2705622cf20b47eafcc269d2ed75d426ca0cc409bf9670824e7d968662616c8f7dbd3eb316851cd08f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
1308594db0c44eb7fc4712d87c4f75b1

SHA1
b421a33621b3b8075e7ee967177ccaff3d4c8c05

SHA256
ac661d2eab863f44b6bc5b20e8511920b0f78e680630edd9de644bf911188fbe

SHA512
1954875f4d194c2994c0167afe80dd68735f1bb16feb6afddd2b6d6c32983df5b431381121974aa3f859732a916d796c6fef51a09ca7f978621bf618d735ba9d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
1eff3d1c4e35be5394cba9878ffed6fa

SHA1
77ec397217c0cf944c83c9436d380c475e80eba0

SHA256
538adfa2df69d842a75e27d972c2c56e67f66a70f5ff6568849b0645531b8079

SHA512
aa3a56d467050567a3f0efe413da052aee639bf1946bfa72da372c2c38d066cccc5d6431c1c17b8f0f708342d7715f9ee891db23782dfd69c5e6acfd9ae08118

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
42977d0c34b1ffec1e969a9582759172

SHA1
827157723b8d19a32f7628aac6346368d19dca73

SHA256
6e8ef1d439494b35586dde167530142741ea3c63734840525d450729e887a2bd

SHA512
a017eef84698b4e99d3df1cec9e83f3bd06930323f78d81735123aca034893141518acc2d4d6de9c13e8f758a29cd91b1005089ad782b85e66d2d9a7ffe07950

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
44c050b2fe6cd4955f8e1006bbfe5fd7

SHA1
9e524e6b08cb6ea3071ae9874bea3f63786dd306

SHA256
60a06bb9c76c87c48e8ccf947169895a4539a0f6d4a5ee342cc1dc9a68ff5725

SHA512
b0a3e70ea34efbf82e6943227dd3d802f12a4dac096bde19e4b0afc49b64a9ce88a8beeff63ddc74e316885b5b47e25d0506fe216252067c5735b3e7269978d0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
2e9a0339bfffb24fc03e70ba601b357e

SHA1
a8f7056346674a7b6cd06962c28fdc4f6b3cddbc

SHA256
52a82807e76b9a6ef401a6bb589eb11939cdaa940a388b7c3487619b7034dc8e

SHA512
d81dfd031deeac02525349c1d5a84f92353456cb48f2ef753c4049ae1df3450113b68dcf4cee03fdc794a2fdfbb3d1bcc49ab0b2c846d1fb484b5c80bd8e4a0f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
62e42f69d2179d82a95a879eb970f756

SHA1
db4c1a5b9a21f77d4ef0439ea841d4955862b57c

SHA256
fe8633464b38c7f8230c2c070f00794ec9fe6a853e61cd1c3cb14a9ae0db320c

SHA512
630520011bedfab9c5665ca564481f3fd60dfa2e49f68e905f281ac7c220b0abc7f15a028d6756d2d786f88c9165c62dc7a6f5f9574fb0010f6c0bfa4a91a559

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
3e537c542627e7d963c6c802f7e828ce

SHA1
d99418996db672ca6cf8b6d3f878be30354f8c9f

SHA256
a98572d19ff8d97217261f4dadeaef0c9571daf20a402b6ff40e9461735cfe2b

SHA512
cf21fd72ae8ae66e2978a98f6610adc35a6ca2e2272ae2e8fa0da58bc43fb00f4e01ba76f1f6708a3ba950277d94c57a72707ea2dcb6c112ef9b4e0509fda36f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
46351361990db24693a73a9a14fcceec

SHA1
029317d7dfde497e3faa79a22b146c4a63906024

SHA256
6fa2bcb8f5a5385f113b38833b464ec771a41445ab4bd4b9e3edbdf8ceb5c60d

SHA512
fa3eb4a1bf3aae4abb25b517b886fa6da7c5c0a1add8fd0aba53ad052ae4b053bf94647f91839cd0a17025dc6a62cc6ce2c11ca86f610ba6223d337739bfb113

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
16790c389781c1dd5b43da34b3d80687

SHA1
bc421f8e138fbbdae325223dbc6ca73a0414fa50

SHA256
2b8db631411f73daad5df1b0511eee0e4bfe7867a424a1643f200047b928d9f1

SHA512
76c246f66d6c42ea8c8c3ef5922d1b93e5e104b9977ebc3532b75581eceece667ace1152b8d94402812a039b27c8d79746a08ec99da6b8d256a5b0642d7976d0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
375d4363f85a55d20bd835e6a7ff4981

SHA1
179ba60df1cbb4cac7b40cd138433d72a6acbefe

SHA256
1ebfb5e56a8d5704097cc814268681fb998d2efac8538a15a769507c2d314deb

SHA512
fdbad9a7b7452c4f41ca1525fac4dcd30f8642c667e720d39ee2bf57d3224edbf6cb593f0f896bba89db40781c88ffb8dd1161218352abb98018ec03beb73bfc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
715a78cc08c6a4b2e9a5d29167a22a46

SHA1
6349d4d2f3db2b2182d533b7e00a7b217537e7ec

SHA256
759365c689a3fb67736c0c6e24334922eff4185b898680873ef288661488c0eb

SHA512
426bf0b2a75a174d27074561f9a68e592d542abcba2e87495db014de85defdf286f76e5b447912241af6241fff6059fee7f6e457def476cae16384be8a356db1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
5ed4edad0b5f08a049245b813984b803

SHA1
4caa9cb8093de14cec9268af7a52500ed2505c16

SHA256
e979bfd9c046d5df8bdca11a7a8aa2690035133be56d56f57d428aca0c3cc04b

SHA512
4de62aa77ccaf9a5339762bb51888beb941746f582c6eebe4fc120cbde2823169770ce9d00f4f36655511cc74aaec9996235350e1f95f9b70c1dd7a0eb0917c8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
91b36f4d3c022b1892792ee2e480877c

SHA1
50d2181ca97dafe78092942a68dd3ec8f762cc8d

SHA256
43d38ae75e81190f41ccfa26556d64a49698a3b7be46b834f0ff352accddac6f

SHA512
24b7d0bc05aea057a9eabbcb316fee60b2b46d74001c2bcfa0ba7d5d3dccc75157fcdfc7cb55a53c2fed780aee0eb0cfb7c2d15b39615e6c5b9eefe5485c82da

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
5fbeedf838a42602e65a9e59f6cffe8a

SHA1
09c3c3110a0b1473851dc0c976104f4fb84200ee

SHA256
ea15841ae50d50216cd7c9029c857d7de6c5d242acca539e39c48d47eb9830c1

SHA512
24ac9ea0c4b38c57d8ded5e901efee1bd26f3ec30996e005b2f7bc91476860e83ccba81025d006a1fed364de3f742d10c081a4972ebe84671fafef5dcad4f00b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
f295bebec0111b56a74de838ae1b6f1a

SHA1
55d3cc5022dd2111a49ca2a6504ba62efd2914c4

SHA256
70c8dbacdace362dbba3a464022fb72b3727316ddec94252916a53689172ae2d

SHA512
3bca3a9162bd89f8d28cb7db149682f4884fc573b1a2078cbf65aee6659186f49d37fec099d3bf81728ca120aa6fccf7b534ce6d32a427390504c5a48a59cf04

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
e502a59ee025a395cee2366ecd009b4c

SHA1
0e199175ea107a500b92dbb5c84fae78e117b880

SHA256
d1218b9d7802e49ef2d53d7899cc0b3dad53c3845b29fc3142cc5858fe129c1e

SHA512
b903ff8e7439e84d0ba54c3a1ff11dd4c2c018bf1b1b0e58672f31c9b736b0be16d0218c09add45f8439c62d18dafdbf26dbad839b30d1b90fdc89c230cac32f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
9528d9f845f43e2ebb8697798c6b02d6

SHA1
d4c972e3a1db045408d589736e118c01f6094052

SHA256
0e54337660715164a1d3f17df54218d43196973b900f33998d02c165a72206f4

SHA512
4fc2886eb963a83267ab197addc572415c49687496c11404c90c9af1d2843ebc297cdfaf3ce6e8a6fd82438c917708ba1dc40b98d55ebd5926f9691e6be93d20

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a7b9ce6b83ae11951b1c6b71b06f6f8ab9478c64\0964a567-8eed-4a44-88c1-681e5cf7ca6f\index-dir\the-real-index

Filesize
17KB

MD5
2117b9826810e0a61ce17692a6233453

SHA1
20856d753092e25944d2b8dd2aff9302e353eba9

SHA256
0f0b2949e2f0af4034597a82e1a65c45a81299248b59a0acfe081d62232fec8f

SHA512
161bb7b1fa0cbdd4bb8f4b2808a799fa4b8968f0707cff5bbdd5f41334b03f55a7d118c3fcea1310e1caf3f61e4df98a7f3fef71094381db5b4a3810a2512f7e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a7b9ce6b83ae11951b1c6b71b06f6f8ab9478c64\0964a567-8eed-4a44-88c1-681e5cf7ca6f\index-dir\the-real-index~RFe582c3b.TMP

Filesize
48B

MD5
857a6cb846356d1d0bf52be0272cb0ef

SHA1
c61528557243d7d7631b1690e33b02ca7f12e09d

SHA256
92f9967a638823708288b003bbf598bded83d72c7c43c28e7dc490b3c743583d

SHA512
6e316059245116c3271c810a52df840a8a262fca0065810df587d8f4db7f7d39eefd232d1971a21ab4e439d00671f843c84848671555a6063bd7a30054adc528

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a7b9ce6b83ae11951b1c6b71b06f6f8ab9478c64\0964a567-8eed-4a44-88c1-681e5cf7ca6f\todelete_7a48c130a6a40c0e_0_2

Filesize
142KB

MD5
9ad662a0f3d59af64031719541e1d59d

SHA1
9d1981cadbecbb5d47d1d0d337003ff0c7c7176d

SHA256
218a2ac97fecb4a95a5c087f4c426e57331d8fd7784f6273974990ff4a266612

SHA512
3049b0da1295451c8ba0e5a1a9fc59251559987e8cdb812386d04a3412cc775b1c22fecae975b8199140630e8d176c1d3c1715d49b72aaa2fa499d6843baf9f4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a7b9ce6b83ae11951b1c6b71b06f6f8ab9478c64\0964a567-8eed-4a44-88c1-681e5cf7ca6f\todelete_7a48c130a6a40c0e_1_2

Filesize
322KB

MD5
3b6f18806373f56a82021f68a80da48a

SHA1
34aa55194756b3ad328c4218c13605a6d473a5f6

SHA256
4652e10cb90fbbf055c3a6512ef8538871173dd390ee3bd78e207d38d3337751

SHA512
d2012668bd6231ad1565f3f28ec8bd9f8d70600d7ade0bf818f78bc0e59f88958c94039641540d146f33dc0482d3ab1444048e56df6f5e90065a4749e394e524

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a7b9ce6b83ae11951b1c6b71b06f6f8ab9478c64\5c02b1f9-213d-4816-b90b-fab09144ca09\index-dir\the-real-index

Filesize
768B

MD5
113b6d792127665f7c11d6f794ff3d7d

SHA1
4affc1c7618cb1fd3b11d95ef43583d53fe02056

SHA256
b52cd40d06d19e929ca0cdcd3441b0f51d2143bd685e4a22c4e8387df06d7fc1

SHA512
375e580788515d9ee19cc06164cf34013c1b77a95faab6da535a38e857e868d580eaf20ab3adcfb0d9c800ee5e180ed484c5883e3943a921fde1ee13646f727e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a7b9ce6b83ae11951b1c6b71b06f6f8ab9478c64\5c02b1f9-213d-4816-b90b-fab09144ca09\index-dir\the-real-index~RFe582d26.TMP

Filesize
48B

MD5
405fc199d6127282559ab305aaeebaa3

SHA1
68e495b277fb061f5980515e6a1a6074eea3cc81

SHA256
e361bb1ee957a42445cff6f89aab860954cab4a7a4f6978d38d51a5bba374318

SHA512
ef2907a5278c307475f1d90635dfb82102b2f8964b6e061240ca81f4328a48a31f866444adff6cdea44501d2c8e21fc5adbc4b3294e9bafaf799313a9aed3ddb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a7b9ce6b83ae11951b1c6b71b06f6f8ab9478c64\index.txt

Filesize
235B

MD5
d8ee6794f88c0bfd8b83b2ecf648b466

SHA1
a989e46b07933fea51da54b33e75cb076b15fa88

SHA256
3f1d350a464794a1be76032dec54ab0f51d51b4a2deadfa090ca08e5a8a84247

SHA512
66ee80a6c4f75545ea9ce8bcbdc8c78018b52104245cc9928f6bec85eefe1e2f3503184a91cb3d566d140b8c50b42dabe1b083e4c87be2f410a2279c6127e49d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a7b9ce6b83ae11951b1c6b71b06f6f8ab9478c64\index.txt

Filesize
231B

MD5
ab41300e522e4df823548680c29c3c89

SHA1
dc98644939d1058ff2ceb10d350836d789badda3

SHA256
b783a1c9425f92dfbd00e16990b2ed663bfd064a59551c409f5bd4fd17b74b62

SHA512
fb6eb8d799f68ca8148c4de363b788f8823fa8a1ef9cd5feba2638382feb7554176bb1682abf9efd2be2ff5595c249fea4802cdbd1824ccaaeffef3ff5475c6e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a7b9ce6b83ae11951b1c6b71b06f6f8ab9478c64\index.txt~RFe57d8fb.TMP

Filesize
164B

MD5
192975f3474b5ad6df562d46df59886a

SHA1
a1f9090905326cfd7594daa67825040816bc33ef

SHA256
1c7d847024c19358b54bf959044cdd1da5aa895020dd274c67c2dfb3318bbc22

SHA512
6b9010abdec19e5bbddbf558ab8394824821945e853f290357eb08c16b33eb97fae8a0fa64fedae9ad743ae07066a72a44c30812e2cf2b8850b515a61fccbe4d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
144B

MD5
1ad9ed1749d30d6e8b4928ae95db41ba

SHA1
c186978704bb9a49c58dfa7082c77a61931f67d8

SHA256
03f0456e97319fb9e77c049cfb6d8cc69066d507c75312a35bd2fe082c3fbbd8

SHA512
24aa09d61334aed7a9f537269327f05d86118cb5766539500200bc065e59633137461dbc63a0a07d9d53f1dcf994aacc6dc67895c6909448bcca6ae4a464f474

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
99KB

MD5
a794eb2f0e28610f5e66a29e31757320

SHA1
bd7e1c88e8122d0da3e1d3c3d0c816ff2ba6d6db

SHA256
398ddcfdceffbba556ada6a41362a20cde67025a534561ef337836f2675dfea0

SHA512
64d90192aa07b98d2588f98f63a0587642c371f847f19a6cf28c4ee2db6b925f420c5d80144d503c4f2f93741f9b08cb9d520f565cfd8fb018b02d2dbeabcd52

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
99KB

MD5
513558e59935eac7cf355c7b4c2185d4

SHA1
d257068ee2878b796b71b00892e6c6a5f4b23691

SHA256
a234510eee15cc26c47e90d517d6012af2d6824849b98cb69b95ce5896e17a7b

SHA512
228b010aeec329de2a55f130293db3f7f111e9a850edfd89385ae230ae43fe322d61ed3a39b61f48eda1b25c0b2a21817df0122cd99a7c1ad36b1e9e1baa9055

Download Submit