hxxps://chromewebstore[.]google[.]com/detail/omniplex-guide/aploedbbogkadceefcjnmoggdhecmadp

Resubmissions

09/10/2024, 14:08

241009-rfjjksweqj 4

09/10/2024, 14:06

241009-reda6s1arf 4

Analysis

max time kernel
643s
max time network
608s
platform
windows11-21h2_x64
resource
win11-20241007-en
resource tags

arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
submitted
09/10/2024, 14:08

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://chromewebstore.google.com/detail/omniplex-guide/aploedbbogkadceefcjnmoggdhecmadp

Score

4^/10

discovery

Malware Config

Signatures

Drops file in Windows directory 1 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SystemTemp	chrome.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133729565061205743"	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
2008	chrome.exe
2008	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe
2068	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 3 IoCs

pid	Process
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe
Token: SeShutdownPrivilege	2008	chrome.exe
Token: SeCreatePagefilePrivilege	2008	chrome.exe

Suspicious use of FindShellTrayWindow 28 IoCs

pid	Process
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe

Suspicious use of SendNotifyMessage 12 IoCs

pid	Process
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe
2008	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2008 wrote to memory of 1968	2008	chrome.exe	78
PID 2008 wrote to memory of 1968	2008	chrome.exe	78
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4616	2008	chrome.exe	79
PID 2008 wrote to memory of 4064	2008	chrome.exe	80
PID 2008 wrote to memory of 4064	2008	chrome.exe	80
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81
PID 2008 wrote to memory of 4768	2008	chrome.exe	81

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://chromewebstore.google.com/detail/omniplex-guide/aploedbbogkadceefcjnmoggdhecmadp
1⤵
- Drops file in Windows directory
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2008
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x108,0x10c,0x110,0xd8,0x114,0x7ffa781ecc40,0x7ffa781ecc4c,0x7ffa781ecc58
  2⤵
  PID:1968
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1812,i,14992756697123086191,3479825426141223066,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1808 /prefetch:2
  2⤵
  PID:4616
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2068,i,14992756697123086191,3479825426141223066,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2092 /prefetch:3
  2⤵
  PID:4064
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2160,i,14992756697123086191,3479825426141223066,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2384 /prefetch:8
  2⤵
  PID:4768
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3056,i,14992756697123086191,3479825426141223066,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3088 /prefetch:1
  2⤵
  PID:1336
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3084,i,14992756697123086191,3479825426141223066,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3124 /prefetch:1
  2⤵
  PID:4828
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4304,i,14992756697123086191,3479825426141223066,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4576 /prefetch:8
  2⤵
  PID:4556
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4336,i,14992756697123086191,3479825426141223066,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4608 /prefetch:8
  2⤵
  PID:2816
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=3500,i,14992756697123086191,3479825426141223066,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4744 /prefetch:1
  2⤵
  PID:1124
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4104,i,14992756697123086191,3479825426141223066,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4980 /prefetch:8
  2⤵
  PID:2168
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4592,i,14992756697123086191,3479825426141223066,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4620 /prefetch:8
  2⤵
  PID:4524
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4528,i,14992756697123086191,3479825426141223066,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4560 /prefetch:8
  2⤵
  PID:1108
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=4112,i,14992756697123086191,3479825426141223066,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4480 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2068

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:1808

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:2004

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

Filesize
64KB

MD5
b5ad5caaaee00cb8cf445427975ae66c

SHA1
dcde6527290a326e048f9c3a85280d3fa71e1e22

SHA256
b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8

SHA512
92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

Download Submit
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

Filesize
4B

MD5
f49655f856acb8884cc0ace29216f511

SHA1
cb0f1f87ec0455ec349aaa950c600475ac7b7b6b

SHA256
7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba

SHA512
599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

Download Submit
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

Filesize
1008B

MD5
d222b77a61527f2c177b0869e7babc24

SHA1
3f23acb984307a4aeba41ebbb70439c97ad1f268

SHA256
80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747

SHA512
d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\639c0fb9-ce65-42d7-b33e-79965cc13297.tmp

Filesize
9KB

MD5
ee49afcee3359117a6cf264731a40048

SHA1
be39b74c8d9543abd9b7f866d3e9a2abfe323f8a

SHA256
c98539540cf876c7069bd21782fd55b526a7eabdc323dc6d6744b06044128449

SHA512
2be425e7355cc43355cb87327a71fc32162e78bf88da9fba4138fb0d5d1aeb7ecbbd8b4c8eccdda1dc896d2a6563be71f00997ff9aa6fd65d87434cb5f8214e3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\8b5e6a49-ebca-434e-9f64-baec0a731849.tmp

Filesize
9KB

MD5
ff42d62f52176aabe89a78129f9c8ceb

SHA1
30c3da9feeed178fdd157d3f8eb68ab0dfe8f1eb

SHA256
65a37f4430cf554df8df549109da515ce15392eda948ac0dfae5f3f68079d905

SHA512
2b88a2e0f0f694950be3d71211cd7953ca54481da9c1d95c91fb987a9ec8d0a104ae3d1f89d80f52ce8350d6a1809947b6f44e7942417208c4cae3897bd4a3fd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
480B

MD5
787e488adb5ee3a2413c28c2c32ed7dd

SHA1
bec730a6baede7d381827ca3cdfb96e13f6edf29

SHA256
c19bd156250b3e19cc1a5f9db82ecc6423b2f0d2ab4f5c7f424a390859ed6397

SHA512
b1f0fdba8ad09d682fb1e95952d1c1c7bddb97bdf940880b2afa7e791e222c0a041182c2eb0df14e387edc7ae4afff6a366317dbb71202e8af141ec5e93073fb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
c1594b1a9a1252d3307adb647033bd8b

SHA1
98b2f1100fbafcb30017138469258430d03641e8

SHA256
3c2adb38636cad6a3c5f7bd06fc90134e49977c6819f01d1844d90aa65821444

SHA512
9b6cf6c4b73c961bdccb5add2c0e9dc72745300858c5bc29932c46be8f27d3259a0b44a86b271e1b88204be2659e9b335b768aa4372590ecc1afd4c8ecceed1c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
690B

MD5
ff15de2a49c251251c3d60353e335d34

SHA1
d2bb00047a2675a1338a9d1f847023a621304e9a

SHA256
14ef4425397c7cd4a7f8471ad440f92e76dc1a4e30cfc845c8999a4b3b73b006

SHA512
5b691687fede77309d03fe37dd126ba2ba7114ab251cb05eee8af122339c365a1f92e1f3919b958057e9dd922b3b3ce18f951b0b7fd84e34f453049f62ec932c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
34dacc2f231b415cf126eecee8eeacc0

SHA1
07259137d12fec6ca766ed4ba16931c517c9e760

SHA256
646ef43b5b2e7801ca70117a69106d5fdc64ea39b2c34ffff7f9f086bffbd6f7

SHA512
bb42f39a8b9e878c0f66798b678894b7914aa9d09ec767750c0f30e7b97db7627fd8cf3a2cf60a4a97783b1388b8adeb423bb6b687b4f1468786c9bdd618bd72

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
e63482f4ae4e1f4944290e004eb3e41b

SHA1
cd0eaf843065660ff33891707b933bcd4fd3b205

SHA256
90bb75e71fcd4ade27949eed76c6c04bafa1b17e90389c79f3555f661c94633d

SHA512
beed9cd47bb04812499e18a8fa921dd7f1f4a76514e7c2cd4cbad888ced61f7a2c4aad99c1562b27189bf9d7ed4c794bc90c259171f2162179f4c9d8ed05077b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
e3be54d83cf36ab410e881e27ce13c35

SHA1
fa0c99f31adde18621f09b821b44da955c091e35

SHA256
b9ec3cf071654c8bc2eda01a54c45817c46e1317c51792a760d8a6a81d6d338f

SHA512
8572d5f3b801acf39a10a255b1eac257e8c7c1b7ba2aa02523881cb657e6f283e63bd6aab89c6bbdddc01014cc1cecfc5f0771b66348857ddd39a4ea59e8d5f5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
1cb3164fc72734fcdf6b8939e175fd0d

SHA1
4abf824efb349b8ef09267e7266a18bc2f58080f

SHA256
c13db6720a9a6aa423f628ceaa3e8b25460622b5cea1a063a90957658c0072f4

SHA512
5a3bb932f5e73ebe1ed746f934f094d3bbb93496cb3eb910ad5e7c096a7eb4439820e3fa43c1ca5ff3d2ff0392a25f60731ad918d77854601ef110a6a8a05e8e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
d75bb99b2aff514856d7cce9613e7b55

SHA1
41b8056976bb6daab306b64ad23b1b57eee75479

SHA256
bbbba73b10d5941a1afc152a369588ab64d90f4f952f0c386d627a6bfd3f9c05

SHA512
f8a2fbd21d96a898c1b8399052e87efaea3f30465415170b8f5d08b524bc946512cee1c44e43860922a610e3342f0ff561ce870419bb60bf0dbb467594f93302

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
493497f390cb7630894719e46dd9b845

SHA1
d1f0e0713d57e82ace3565476a2f59da0925504d

SHA256
97d7cb56fcd0b37d4f85d133fd89df83b71793079fae35bfbf35046d3aaaa3b1

SHA512
f823d4c35d7e16738e58643dc2d739e86a8654e222cb275b29f9f028eb3d0b406c26e72fa751022b0e98c98c6e1af42b5d1602a0e463aed1b821e073314fefdb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
16e5fa9448b6b9f17b965d1ca2841176

SHA1
6f01ce51b2f5e567c7e5610427ac79c932506fe2

SHA256
63a8d69e98a756081070bc1b6dc16c04dfb4407aa71c00f68a70f64292e77349

SHA512
e2029e579a79e075f333321e5bf8f36df09b73f4a774539453245c717b7291b017d09abe63502e7e5fa96af3adc1160c35b4b2219838005fc06414016b10d304

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
2e943b588651eb495d779c1648790b61

SHA1
c9d4bcaa5bd39f8305138b89812cfb45dd30e211

SHA256
f65be00292f3dba844be06b5e37b1fd00983dbb702d156b41782ed729532ec5e

SHA512
211803d44ccac0da536c5caa05f424e2d7b77d5099113956110cdc9981b1ac46f57e2cf93708b90b535384955f234fd2247ff13cb21046c0e11ba97ae59bbbfb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
7fb7b2c79bea53bf8c5c966090de2185

SHA1
00cc554f924b2ef5a8b6e59e05f6db3c1542ed43

SHA256
67e9cfd881875553666463b13d5996fb30e10bc03f7d97cc648a9fef8f9b0617

SHA512
4adba45e5b4a14d6944eec54c57cb303f30145c0b9c3bc96f13779c37b42ffcd37801b5fce3207becb789fe40fed99ba30d1719802700e61f8878a319da9fa8e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
e93292935a04e6a2eb93d2d69a8b81c3

SHA1
68698ea784f593b43253eee30aca75ee8e6ad30f

SHA256
9d30036fec47f06f54fc9370cc264180e210f363d3267a6a0d7068f90088e78a

SHA512
703de2fb0d4f65f3cb2bae6df8235c9ae556e63ea9f413ac1a09d4096554a6ead5eeed0194e216a45db3127e4c9a880ccfe4e1e454fdad92bf2902c9c729529e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
e5c3684325351782efe05bb8fd58f8bd

SHA1
d1aed773cd8698216d521940232d4d7257bc71c1

SHA256
616c4d07fa2eb2510db4a652870cf8652e97c8aa9ce52778c9748019ef2b9697

SHA512
ec10623b4f73461ca9dc014a0d092c1f01832846f7f713fc2aa3e0b9690cbc822ef549f7e08524a9dd02193b61308412023b7544f56e40fdc85be54f672b3f90

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
02a5f6c9d0024437b6c80cc9500e0293

SHA1
74d9251d503e33f257b5769c52a0bcd566467cad

SHA256
b489ef558e4089d6567df10057c7e83ab0e885aa1f7a367b3b18e0c8937d1cfa

SHA512
640158be66e17d64dac49964318c4dbf14aa3f63abbaba6324885cce0347ae7b83c989dd0d8125d8aac2c4f5d93e3cd8adf51428c7f99d6846e593b5fe933dab

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
66087cedf659a26ac1ebd4bcf3db674f

SHA1
59a60700a2e30cd6f52dbb05bd9b69958afd1f16

SHA256
62311255d65752d130631103148ea8ba4258f58909628cd8e1aebe2a2f4265db

SHA512
e05017f3b6c622759692f33185267de1638b9a34399eaf0985f3f34e46c5bc5073ad496e728038b3474ec8e94041a1e4a8c43afd1db7cf51053cb001c0cfa8e3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
6384fdefd37ef4ea18284a626db128e9

SHA1
c87875172deed0354dcb28f87b636dc91dc51666

SHA256
819a9d5324d4c34c245332385e2730e78bf2392178d4aa30217f7d6e62a1e377

SHA512
af8fa4222bf7e2ddd4e22513447ef6cc87c6d9d5e755d50dde3a221484d45fe46e13883209e6a1c6d8fb04380d612cedf447b51d3d0249a98a21dc74bda71761

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
265f46406badf7a51e8f73bbebb43557

SHA1
ab14f5d943288bb2cc1470c8d3f36944b9321bab

SHA256
caf7b363364019fe7ed9a175273a9c330dab17d69aa065f063cb9eeadaee8d64

SHA512
a52a69b81c49d71ab48159d26034ad0f59e09d51ee98370f7142004fc7badcd93350631cfc98449b8e5a02c2beb91c74009f079481f8ce5e0e1286b176047e3a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
4f51905fa6eb037d585c2635bde99288

SHA1
4851d363f99f54f890f23be9ecc074f4c903e9db

SHA256
73d611968437cd02c6fe4d2438c634e509ceb8ce7bbcb37f9ddcf72271868228

SHA512
281b2a45fd9a44f7dace7c29a5af4b4be04a165db551308be5ab9936247fcc94a91fdf6227cb4d6b59a78dc58183a638beeca67a7bcd9dd1b9363fdcd7ef30d5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
7135637e8726d1fda70c3ce004d21cd7

SHA1
a54d1c8fcb1813961d4df451900fa9b97aea1615

SHA256
94edb8a24564d99c2fb8828c14c71e08819f7ce48994eae2e2a0878aa05e872d

SHA512
2960ab0283107304f95712b912e932530966d962f65a0dd2d6269c7d4e5a0592faaefa1f3dcc5a2683e130cfdff5413a711d41f91230e4ba8796fc7f06e85ab1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
50eac4faf9eb8224a2f311f1e8a348cc

SHA1
3b8b117990e8ef7a133152a04ad6be941783b556

SHA256
39f0ce63efc0f41827bf2791cf95b0d7f24ceed9b2e86f25b85d748d6004188f

SHA512
74721387bd2a11f48d003f0b588aacd39dc822bb8c420e5eecd3aa47eb66f469a66e684ccb9fc758951557883a420f250e60ff076cf282d27d8b34471b11793f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
e73fb951ff95427fd44a55d3a1a1e67a

SHA1
2d2fa26972ce24f3eb2d2ce127491eac075384ad

SHA256
7813ada5f9eab249e9319fe4ad91112c7676f16d5fa022eb3b6f89f832154292

SHA512
0b8695547ffe72ee721abd1d6d10f091baea2e1d673a034c9d8623ff5072b2aa91cdc45216a9023c444e9ee354e7a8b1faa36f4205e4df3c26c61baf3ec5fa55

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
c5ac59ea6d8a3c7e628a6a29ed4eef7a

SHA1
4e060c04be42ca9dac821e582d0fd02497393990

SHA256
74c66a67e1b90f540af7215b24ef358e3ad88531a126b25f3c66d243a1278bf3

SHA512
0722ae319786fc76d16c2ac879da5b1b3d42bbfa65a34dbcf82c681f38122000fe7118dd88182652f8ae8bb66e4b16dbd9ddf884203e2522a37668b2737b1be5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
8e08d14ccf89f4adefd397476aa14052

SHA1
01f07549cbee740914ba812eb339701f483fa107

SHA256
0f092071ceb880428d812a644068ae31ce03b0db1364a19ab80470cac8c4422e

SHA512
b4ba3c638f06dfda30a07dde75cb52aacef2a2eb428d6572628d710f1bbe48158300161bbd312e72db37ca443baf8d0ba37e372f519bdf642a71212eedc31ee3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
3df262db6341268cf2ab2e1af313b820

SHA1
ea237ee2f8674523af5bc577fedefdb1b0d23350

SHA256
952fd54b7a312f7d5c5d4405adefc50602f104e00a1aed32a3d3faaeb92afdc1

SHA512
7ede8230b01c76276581d2cc97495021744be1d48cc73f19dce048d946c9ea8e14927c73db638befeb61d2fe6f9c8150f40b1bff9f3d48816d74a758c588fa8f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
153577dc7e707880a298d8859307f95d

SHA1
169ecfe4895b1e52facc5b13808aff93b28b1cdf

SHA256
b437df8b1993049a30a1cd9387402f1fd32538400582b59a8112dd67ba89f210

SHA512
d003d14d399c0715a9da1e294fef5cace579d70a3c644be06821abb25a72e5aec32d8f33c71abcfcb783b7ad0196748b123ed22ed864474d5c2264a01a8ba93c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
228KB

MD5
b990430059eaac30cb62aef2e241c946

SHA1
048bfd4b2fd746bf2ea19fbd796862ea201ead47

SHA256
39a3fb2156109f557d8ec7eb5d8ae1489d42459daaae06cbe89a86331fda3d6b

SHA512
03605fe6ff4689565a209892c0cc467c455cbd109bef62b8ef3586d98050e7ac85f38e2507f8f8ad630b8d8ebc07f23c26879dd411b7e8a76adcc28f8254f0b6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
228KB

MD5
e7b2c1b2239a8298246ddbe308cf7957

SHA1
b3aef0a2d8a3bc6f92243f36e9abd3d2e8b81d15

SHA256
ed5ade309b7a9709c3274f7db49852bc76cbc36af26ca1328882f6bb07b22600

SHA512
88eb761bbc1e82bdee69b3b4ff477fd73f4dceb6a0530366e82c3eb56b1fe6f52e92d707b0b7f1dabbaad34da1bdc05953abd4a028a9ffd55c6538d385ebfb56

Download Submit