Malware Analysis Report

2025-04-13 23:49

Sample ID 241104-y9ek2swgrf
Target sample
SHA256 7909ad298eba1b0e68c4e7a905563960e39bf5fdc324663e91dc9bf1af7e4565
Tags
defense_evasion discovery execution
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

7909ad298eba1b0e68c4e7a905563960e39bf5fdc324663e91dc9bf1af7e4565

Threat Level: Likely malicious

The file sample was found to be: Likely malicious.

Malicious Activity Summary

defense_evasion discovery execution

Downloads MZ/PE file

Subvert Trust Controls: Mark-of-the-Web Bypass

Drops file in Windows directory

Browser Information Discovery

Command and Scripting Interpreter: JavaScript

NTFS ADS

Suspicious use of FindShellTrayWindow

Suspicious use of SendNotifyMessage

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious behavior: EnumeratesProcesses

Modifies data under HKEY_USERS

Enumerates system info in registry

Suspicious use of AdjustPrivilegeToken

Suspicious use of WriteProcessMemory

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-11-04 20:28

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-11-04 20:28

Reported

2024-11-04 20:31

Platform

win11-20241007-en

Max time kernel

149s

Max time network

151s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\sample.js

Signatures

Downloads MZ/PE file

Drops file in Windows directory

Description Indicator Process Target
File opened for modification C:\Windows\SystemTemp C:\Program Files\Google\Chrome\Application\123.0.6312.123\Installer\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\Crashpad\metadata C:\Program Files\Google\Chrome\Application\123.0.6312.123\Installer\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\Crashpad\settings.dat C:\Program Files\Google\Chrome\Application\123.0.6312.123\Installer\setup.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Subvert Trust Controls: Mark-of-the-Web Bypass

defense_evasion
Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\OperaGXSetup.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Browser Information Discovery

discovery

Command and Scripting Interpreter: JavaScript

execution

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133752257748096344" C:\Program Files\Google\Chrome\Application\chrome.exe N/A

NTFS ADS

Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\OperaGXSetup.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: 33 N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 3960 wrote to memory of 4984 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 4984 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 584 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2768 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2768 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3960 wrote to memory of 2020 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\sample.js

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffcc030cc40,0x7ffcc030cc4c,0x7ffcc030cc58

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1832,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1828 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2088,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2108 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2200,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2176 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3132,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3248 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3216,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3304 /prefetch:1

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4464,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3588 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4612,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4596 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4620,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4748 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4852,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4908 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4932,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4948 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Program Files\Google\Chrome\Application\123.0.6312.123\Installer\setup.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.123\Installer\setup.exe" --reenable-autoupdates --system-level

C:\Program Files\Google\Chrome\Application\123.0.6312.123\Installer\setup.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.123\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x244,0x248,0x24c,0x220,0x250,0x7ff6fc034698,0x7ff6fc0346a4,0x7ff6fc0346b0

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=4304,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4772 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=3240,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4424 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=3296,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4396 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=4344,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5112 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=3500,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5196 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5424,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5416 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=5532,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5548 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --field-trial-handle=5800,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5820 /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004EC 0x00000000000004F0

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=6004,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5992 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=5508,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5456 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=6228,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6236 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6352,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6404 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6148,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6212 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6628,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6528 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6524,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6212 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=6596,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6592 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=6212,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6496 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=6580,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6576 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=6748,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6380 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=6828,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6848 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=6856,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6984 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=6528,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6544 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=6972,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7324 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=6616,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6420 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=6296,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6316 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=6584,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7236 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=7748,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7768 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6400,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7908 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=7736,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8048 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=8168,i,8852426465470563647,12249765905441946694,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7252 /prefetch:8

Network

Country Destination Domain Proto
GB 142.250.180.4:443 www.google.com udp
GB 142.250.180.4:443 www.google.com tcp
GB 216.58.201.110:443 apis.google.com udp
GB 142.250.200.14:443 play.google.com udp
GB 142.250.200.14:443 play.google.com tcp
GB 142.250.178.14:443 clients2.google.com udp
GB 142.250.178.14:443 clients2.google.com tcp
N/A 224.0.0.251:5353 udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.200.14:443 play.google.com tcp
GB 172.217.16.238:443 play.google.com tcp
US 50.6.160.151:443 eng.ithobollengbakgekolo.org tcp
GB 216.58.213.1:443 blogger.googleusercontent.com tcp
GB 216.58.212.193:443 lh3.googleusercontent.com udp
US 172.64.144.254:443 assets.zyrosite.com tcp
US 216.198.53.1:443 roblox.zendesk.com tcp
US 216.198.53.3:443 static.zdassets.com tcp
US 151.101.193.229:443 cdn.jsdelivr.net tcp
US 151.101.193.229:443 cdn.jsdelivr.net tcp
US 151.101.2.137:443 code.jquery.com tcp
US 8.8.8.8:53 10.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 254.144.64.172.in-addr.arpa udp
US 8.8.8.8:53 1.53.198.216.in-addr.arpa udp
US 8.8.8.8:53 3.53.198.216.in-addr.arpa udp
US 8.8.8.8:53 229.193.101.151.in-addr.arpa udp
US 8.8.8.8:53 137.2.101.151.in-addr.arpa udp
US 216.198.53.1:443 roblox.zendesk.com tcp
US 151.101.193.229:443 cdn.jsdelivr.net udp
US 216.239.34.36:443 region1.google-analytics.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
GB 2.18.27.137:443 c.evidon.com tcp
GB 2.18.27.137:443 c.evidon.com tcp
GB 2.18.27.137:443 c.evidon.com tcp
US 54.158.3.251:443 l.evidon.com tcp
US 54.158.3.251:443 l.evidon.com tcp
US 54.158.3.251:443 l.evidon.com tcp
US 3.165.232.21:443 renovation.library.nd.edu tcp
US 3.165.232.21:443 renovation.library.nd.edu tcp
US 45.79.115.66:443 itch.io tcp
US 45.79.115.66:443 itch.io tcp
US 104.26.9.198:443 static.itch.io tcp
US 104.26.9.198:443 static.itch.io tcp
US 104.26.9.198:443 static.itch.io tcp
GB 151.101.188.157:443 platform.twitter.com tcp
US 104.26.9.198:443 static.itch.io tcp
GB 151.101.188.157:443 platform.twitter.com tcp
US 216.239.34.36:443 region1.google-analytics.com tcp
US 45.79.115.66:443 itch.io tcp
US 104.244.42.8:443 syndication.twitter.com tcp
US 50.6.160.151:443 eng.ithobollengbakgekolo.org tcp
DE 138.199.36.8:443 cdn.linearicons.com tcp
GB 2.19.252.197:443 use.typekit.net tcp
US 104.17.25.14:443 cdnjs.cloudflare.com tcp
GB 172.217.16.234:443 ajax.googleapis.com tcp
US 3.165.224.22:443 d26h1wdc757l2w.cloudfront.net tcp
GB 2.19.252.218:443 p.typekit.net tcp
GB 2.19.252.197:443 use.typekit.net tcp
US 104.17.25.14:443 cdnjs.cloudflare.com udp
IE 18.66.168.164:443 d390icj1ta4x0p.cloudfront.net tcp
IE 18.66.168.164:443 d390icj1ta4x0p.cloudfront.net tcp
US 50.6.160.151:443 eng.ithobollengbakgekolo.org tcp
US 50.6.160.151:443 eng.ithobollengbakgekolo.org tcp
US 50.6.160.151:443 eng.ithobollengbakgekolo.org tcp
IE 3.162.143.188:443 d1ftkft7iiluq6.cloudfront.net tcp
GB 216.58.213.3:443 beacons.gcp.gvt2.com tcp
GB 216.58.213.3:443 beacons.gcp.gvt2.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
GB 216.58.213.3:443 beacons.gcp.gvt2.com tcp
DE 34.89.141.94:443 e2c16.gcp.gvt2.com tcp
GB 142.250.200.3:443 beacons.gvt2.com tcp
IE 3.162.143.188:443 d1ftkft7iiluq6.cloudfront.net tcp
US 104.17.25.14:443 cdnjs.cloudflare.com udp
GB 172.217.16.234:443 ajax.googleapis.com tcp
US 104.17.25.14:443 cdnjs.cloudflare.com tcp
US 104.17.25.14:443 cdnjs.cloudflare.com tcp
US 104.17.25.14:443 cdnjs.cloudflare.com tcp
IE 99.86.122.11:443 d2lmlpk6xgu7kg.cloudfront.net tcp
IE 99.86.122.11:443 d2lmlpk6xgu7kg.cloudfront.net tcp
IE 99.86.122.11:443 d2lmlpk6xgu7kg.cloudfront.net tcp
IE 99.86.122.11:443 d2lmlpk6xgu7kg.cloudfront.net tcp
IE 3.162.143.5:443 d266key948fg17.cloudfront.net tcp
US 199.232.196.193:443 i.imgur.com tcp
US 199.232.196.193:443 i.imgur.com tcp
US 199.232.196.193:443 i.imgur.com tcp
GB 142.250.180.4:443 www.google.com udp
GB 172.217.16.238:443 play.google.com udp
NL 34.91.218.141:443 app.cloudtrks.com tcp
NL 34.91.218.141:443 app.cloudtrks.com tcp
NL 34.91.234.242:443 mr.macgsapptrck.com tcp
US 54.87.96.171:443 get-gx.com tcp
DE 3.73.194.163:443 www.opera.com tcp
DE 3.73.194.163:443 www.opera.com tcp
GB 104.123.95.139:443 cdn-production-opera-website.operacdn.com tcp
GB 104.123.95.139:443 cdn-production-opera-website.operacdn.com tcp
GB 104.123.95.139:443 cdn-production-opera-website.operacdn.com tcp
US 54.161.211.145:443 t.afftrackr.com tcp
US 54.161.211.145:443 t.afftrackr.com tcp
GB 216.58.201.110:443 www.googleoptimize.com tcp
US 104.18.21.83:443 nationalconsumerscenter.co.uk tcp
US 54.161.211.145:443 t.afftrackr.com tcp
US 104.16.246.135:443 www.cdn925.com tcp
US 104.16.246.135:443 www.cdn925.com tcp
US 54.161.211.145:443 t.afftrackr.com tcp
US 104.21.63.99:443 nationalsconsumerscenter.co.uk tcp
GB 104.123.95.139:443 cdn-production-opera-website.operacdn.com tcp
US 104.21.63.99:443 nationalsconsumerscenter.co.uk udp
US 104.16.242.248:443 www.clicken.us tcp
US 216.239.34.36:443 region1.google-analytics.com tcp
DE 3.73.194.163:443 www.opera.com tcp
US 35.190.72.161:443 fqtag.com tcp
US 104.16.246.135:443 www.cdn925.com tcp
US 104.16.246.135:443 www.cdn925.com tcp
US 35.190.36.172:443 cdn.fqtag.com tcp
US 104.16.242.248:443 www.clicken.us tcp
US 35.190.72.161:443 fqtag.com udp
US 8.8.8.8:53 stun.jumblo.com udp
US 8.8.8.8:53 stun.nas.net udp
US 8.8.8.8:53 stun.budgetphone.nl udp
US 8.8.8.8:53 stun.wwdl.net udp
US 8.8.8.8:53 stun.voxox.com udp
US 8.8.8.8:53 stun.voip.aebc.com udp
US 8.8.8.8:53 stun.jumblo.com udp
US 8.8.8.8:53 stun.gradwell.com udp
US 8.8.8.8:53 stun.counterpath.com udp
US 8.8.8.8:53 stun.node4.co.uk udp
US 8.8.8.8:53 stun.botonakis.com udp
US 8.8.8.8:53 stun.wwdl.net udp
US 8.8.8.8:53 stun.voipzoom.com udp
US 8.8.8.8:53 stun.voipzoom.com udp
US 8.8.8.8:53 stun.veoh.com udp
US 8.8.8.8:53 stun.nas.net udp
US 8.8.8.8:53 stun.veoh.com udp
US 8.8.8.8:53 stun.2talk.com udp
US 8.8.8.8:53 stun.voip.aebc.com udp
US 8.8.8.8:53 stun.voxox.com udp
GB 142.250.180.4:443 www.google.com tcp
GB 142.250.180.4:443 www.google.com tcp
BE 66.102.1.156:443 stats.g.doubleclick.net tcp
US 35.190.72.161:443 fqtag.com tcp
CA 216.145.109.98:3478 stun.nas.net udp
US 216.93.246.18:3478 stun.counterpath.com udp
CA 66.51.128.11:3478 stun.voip.aebc.com udp
DE 77.72.169.211:3478 stun.voipzoom.com udp
US 70.85.220.74:3478 stun.wwdl.net udp
US 69.167.127.106:3478 stun.veoh.com udp
DE 77.72.169.210:3478 stun.voipzoom.com udp
US 35.190.36.172:443 cdn.fqtag.com tcp
US 35.190.72.161:443 fqtag.com udp
US 216.93.246.18:3478 stun.counterpath.com udp
US 69.167.127.106:3478 stun.veoh.com udp
US 70.85.220.74:3478 stun.wwdl.net udp
DE 77.72.169.210:3478 stun.voipzoom.com udp
CA 66.51.128.11:3478 stun.voip.aebc.com udp
DE 77.72.169.211:3478 stun.voipzoom.com udp
CA 216.145.109.98:3478 stun.nas.net udp
GB 216.58.201.110:443 www.googleoptimize.com udp
GB 216.58.213.3:443 beacons.gcp.gvt2.com udp
GB 142.250.187.195:443 www.google.co.uk tcp
US 35.190.13.203:443 aux.fqtag.com tcp
US 35.190.13.203:443 aux.fqtag.com tcp
US 35.190.13.203:443 aux.fqtag.com tcp
US 216.239.34.36:443 region1.analytics.google.com udp
NL 185.26.182.112:443 net.geo.opera.com tcp
GB 142.250.180.4:443 www.google.com udp
US 216.239.34.36:443 region1.analytics.google.com udp
US 216.239.32.36:443 region1.analytics.google.com udp
BE 66.102.1.156:443 stats.g.doubleclick.net udp
GB 142.250.200.6:443 11199305.fls.doubleclick.net tcp
GB 142.250.200.6:443 11199305.fls.doubleclick.net udp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 142.250.187.195:443 www.google.co.uk udp
US 35.190.13.203:443 aux.fqtag.com udp
US 35.190.13.203:443 aux.fqtag.com udp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 142.250.180.4:443 www.google.com tcp
GB 142.250.187.195:443 www.google.co.uk tcp
US 150.171.27.10:443 bat.bing.com tcp
US 13.107.246.65:443 www.clarity.ms tcp
IE 13.74.129.1:443 c.clarity.ms tcp
US 204.79.197.237:443 c.bing.com tcp
US 4.153.129.168:443 b.clarity.ms tcp

Files

\??\pipe\crashpad_3960_EDQWFABDDSNXREPW

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

MD5 1ff6daa8a95bd88c71919b861d4cbda3
SHA1 359128141a0c5633c5635708443a7c859446152e
SHA256 6ea43b0096da8c4361ae6a7f4dc0080431a78089b481403d31d0f38ce62d4b78
SHA512 ac5c40550b1cb9e1f38890584872cda398669caa3c14f6ee86e1f3b1ecdd3943ff23b2f5ff8fa4d1911d1502ba31fce954a463496b20882d06b33a7f203ef181

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 47ed831329c1b2318dbc4ad9a4fd75ca
SHA1 7bab3131da0a1464b67cdc9e7ef2241de062d3ec
SHA256 01ea63915857a96ae959b112f5b94deda8666939e909b9f11aa1fa6248ebc47b
SHA512 ed78f85097860dd866b764a30b2023c4f9bb1f6bc88fbdf8be5435742ea7ffc415c9cab0b6d3991bd3d1c183dfa778f6f50b4f128c140986890cb696de43875b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 86a31ac617a70c72b8d638c09e906e99
SHA1 1c4bf83592c32013013d50e7291359a3b44b2fa4
SHA256 574b138ac14c1f36e89c7a387e503c6c910d613c2eb828b991bfd6baf487d1f8
SHA512 5e0fec259a75191de63334bf72e6f44ba40a83d943aa9c6a5afd145e4fcfdb4a1eb45f13163129fd8423758de07c0598e2d6fff02efc05179dd2b244dcc479bd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 46958aa39e91e47ea81bfdc77839b4ec
SHA1 291d51bbdb797f171cd6ef48d12a663a767ad6e6
SHA256 5826c2823044250dc5787df66198da2b3ea016acc9b98923d3901f8ec304f5f5
SHA512 4dff87942a83faee921049c537f1d9c24fe672ab6c0546f4cda160ac8aa3008bcf7afecd085953a92631e17e1cdce882ea13218622925c3380d4d854f905d23a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 2c3649e0012f971576bf35e1fd4b6676
SHA1 f4614991f10e7ea867e1f86a5a7805763d07d506
SHA256 0ac4a78d6cc14bafa9bb117e3bb88fc99d8e4435fba4144183f95c44fcf030be
SHA512 4db43a07ffda7b81a4ec8d7272fe7a7a897721aefbcb608653935461d6d6d44ea5d4d01e92ca8e86ce1c38ea892a8e66bbc197f51f2f8bfab323bec613fbe8a7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a8c50896b82f9e8c6c568f002747d7a7
SHA1 abd111b335ae37399e8e0c60d2a777e9dddb94b5
SHA256 da0663307e1561e43aad46e5f43e610e06853c6c677a9fc5c7520d4a7b34af3a
SHA512 767398e93d59769101dc0673e11a6465d7dd6b6894b153146f4d39c0d68ad4fbd69e420370f013c29ee2e9e4a8ef12f1ca4555e230f742c9f20026fbaf35afb7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e691781ea7e610470b68fafccf516785
SHA1 6c1f28747ff79202a826c9668702184caef343f7
SHA256 66051a460ec202f8fa6bf1eb0ab0222462022d7eeeae3978a9a8f70657f8af38
SHA512 181c29d8bbebf99d3a6b883769d4c82936c722632d744f17ef63bbb61501c0d27e72c3fa8319ed331f58291d4b7c4052a3a57391b858abba7ca3f61cdaac8348

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 ceef2679ee074b3d10d168469e6dc649
SHA1 6ac25de95e9d7751216274a5eb821a3e954a8ae8
SHA256 1627529561b9208dadb5b0b2d6930518d5eaea8fa74c77e36b2af29209ec1de6
SHA512 aa95d9879f4b452e139b5436828b2814b147e2187a37c84d69d20b9343d80b3c3052ad0546d1a114a013c814e8402869c7f763367e2af6a73f63251c28f8fdc9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 98283326f047da7f72e4f9e38e8b2711
SHA1 1c017bf919b19adaa4364a999cc5858e742d520e
SHA256 a16eab024defd7b8fbec1af552ebe901f9b26a12b789e0bff13c67410b660c9f
SHA512 6df8a01d2de8bbc2806b7dc3eed472f5521e3da1cce5d9381ae1c8f7d6585ffe568634ee38dfd12f472df4e35cbc9fa434f1515bf0be794812e13c1af3ca84bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cab00d5419160ca9e8f9ffb95dcd97d3
SHA1 a232e6f8631b135b1cec3c272a26a7a997acd665
SHA256 819660ec3e2bd8ad52e5ae43a6302bd2ab4568a32891f6b13ba8e681c0d9b320
SHA512 03c03ed35d9bf6c5ed0af932baca0570eb8854c4ddffa18fd2239f6c3b2605c14dcc84f5d9a1316f8a9dda55b1aaea16e98e7db4913adb3d57be5da2c1d834b7

C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

MD5 f3b25701fe362ec84616a93a45ce9998
SHA1 d62636d8caec13f04e28442a0a6fa1afeb024bbb
SHA256 b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209
SHA512 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 53fb0721f03f0fd403de49e24d4b1d5b
SHA1 71b2405bd00f23355824ef581d77cf3dadded72b
SHA256 6da3337e2834705b7db18406e2f9dbe80d29dc0b591c5e2134c13a745f521bae
SHA512 90e4b589a909158b2409fa14a7f3bf552ee43175658c853f34605a43a853ffb6527649523f73ca6015039ef2a64a9a4857a34b7c8b15f4d24956d4886997840b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 557642b4b3d1720686945aeacf900700
SHA1 ae4c132be4aa70fbb6abd68bfe4d22ffad2af73e
SHA256 6e2419909c8b703e9f32b6384832158d8ea7a3860d70b51a19fa704f4a1e6ee7
SHA512 d75fcb296b7829a2b0fe37a237fd8c0ac97e076140c51b755c6ba52f2d7cecbc27749a5d206e46023760d465b6f18107c8011033399505420a50862fedb1580d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 726f2a49e6f2170bc305ee823269cc0d
SHA1 d14c845e7326b4a719074224ad60d2d8b59b38ff
SHA256 70aa1571f4fbbbe77488bba6c9ba99cab8e1762c63fc0ec632b69c82a2ec784a
SHA512 305efcd8edceecdaa38333bab39257fb82d130ac5ea27d0a906b095bb87f081a045447bbb361d1e90d5f74b8aa9d19f3133f7af6dcdc401bbbc4ea338ff8344a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ac3cc8616583b3b18499ac19a16d18f6
SHA1 72b901a9958791c272991e538c9058e483878ad0
SHA256 6d85f664c3ea6833549dc93490192aa9c3af7ca7b4ab720222b31ef1cf532c83
SHA512 177f79fe85cae38ef561498bce1185e1a94e43685d3a4cbb9489fe641ab20964b375e659957d0e13e8a22df2b4535dde75a37de738ddd21a08d897109947ad7e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 8cb19b437fc8990278db2afec35647e3
SHA1 ff4a139941bd797c7ac6f1ff0689a758f71d64c6
SHA256 26705d15e6418a2802f2117221fa9979b1ee1f080cc3fa347f268c65dd46fe18
SHA512 7a04dc30c7acca5ce5216d1362cfe755057b53a28658ff75e7802b82d5034b9c6d81160b246ba9dd058b6144decb53123e1c1f2e596d1968f5ba33b9341fa6bf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e0cea8c518bf9e7d2e6a35687ffa628a
SHA1 7cfd787d64609c47b181e8ffd5da69809e8f054d
SHA256 2b0715bd348c4779a44e457fa42391bab157fe9b17de8655f2ab5fcc5475f439
SHA512 4cbdb5de93e3e2af425d470efe4b0d8147335e52ac1a7cb212f3ee9523e28558306cbd522d336622551c0c04c2cbbec095756a49762af67c78ea43717b7b4ea8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 7a4fd53726403e32091a7067415a0d31
SHA1 14c88e46efaf18d01f7b594bffb89d0ceaf56e37
SHA256 b5a49c68813b36e958b5af18e0572ab8c68dec96079dbb57437b476a0e6be15a
SHA512 50f0c081194af9b0c4b055be467dd583de0bff23beb0ff01fb5557410015d94f887828c9702329cb097f8ab235cc49acdb032deca3533489dd50bb35b92018ce

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 1865f04b32e2beaaf7ccfade9a1b00bd
SHA1 c6ce35716319957ef3df01f44eab4816fc0c0923
SHA256 e8391d3214b02b0eb93f3adccd069151c7d377604b25e015d2153467fb7de61d
SHA512 a127f11d4f1c388da29b743e72bf6ef216b77558a8be8948f4624bc50e13bd7d57d8389e9686e5e8a2a771a34f9a642e567f13ee64ad87f54e82e30bfad92db4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0b7a94fb6676915ab911a1c3d4e08ad2
SHA1 77c824ad1e6e9d6ccd227fce85442cffe6800b7e
SHA256 9acc251f943e7920c9bcae73cba5edffb9d1ea7b17b5d09e86da53b9ff0cbdbf
SHA512 7f71666b525e214cb95a671112bb399cf08a4c578e5e0d7658bda26e81f9e9759e2bda9aacbfdad667b84768b1bf60e40117f27519f7f5afbb45bf3d1dfbe52f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 9f8c74166f489309efc8445d751ee5d5
SHA1 de850344be601c0f17baff012a07714907f300d6
SHA256 4ae4dc3a23b78c75bf495be00c06bdaa95bd712a211ef4d6441a82c4f65c8d73
SHA512 688d0ee6a29a0a6b38ed122ee7e2754b66e4d4c51ba8bbac4d06b41eaf0e816d49c4e8d3c704c07e29582b52a53b78d2d506316a2e700d8cffb908520ae9a918

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 8304d5009cdc685e19cd731e84d32f29
SHA1 2b32253115d33aa60a7af6c58e236438b16ba88d
SHA256 0ea14c8f9871e1e9454da975d255c77b608fd042aaee014706d15c6ed1e29ca4
SHA512 6b1d610edb61474eb0823ee88e9b2b091646c7779a7ee747d0ceb28b0873052ba306f5ac748b8a4c6b197af031ac26c411aa4238feea6c34474fccf0a5de56f5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 edb790214730088ecdef5d692e585131
SHA1 6c6ac3fc36d9033785288e59cc3d0572f5e7f9dd
SHA256 29bea714c01c4490a4b2dea3d9b05a75bcdbc7cd674ad9ca2c2e02da251fba57
SHA512 c4369058244e74914326055010a50384f3964b5a71f45116cc595c39149ee02e7b5d1a5d0a4804d0694e0ab94228362ca4c50372dcabe4a9b857c01c36505bbc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 41383e8645524c98a02eec0d771fefa7
SHA1 dec97abf5bac03ab8b956d7de4fa39fb22938ec3
SHA256 ce22353443db36a4c41c607d57d27ddb5b8176641bef485fedbcb5bdc776bc9f
SHA512 c6317f54b35d3fd28af2fe83183f73c53055cfc2c6bda18015e956d5c0495e5ef2119bd674f1d842110971c7f02c76603b119a81cfdb599fe0bf84d9360c61c8

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

MD5 b5ad5caaaee00cb8cf445427975ae66c
SHA1 dcde6527290a326e048f9c3a85280d3fa71e1e22
SHA256 b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8
SHA512 92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

MD5 f49655f856acb8884cc0ace29216f511
SHA1 cb0f1f87ec0455ec349aaa950c600475ac7b7b6b
SHA256 7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba
SHA512 599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

MD5 d222b77a61527f2c177b0869e7babc24
SHA1 3f23acb984307a4aeba41ebbb70439c97ad1f268
SHA256 80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747
SHA512 d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d1982795f5a063a1b481f9cf67db2071
SHA1 27e6af0a0e0ff113894d1f2472b74be18b018d2f
SHA256 e51a21662b75aaebab490aa1501779f2c927b11caa096a1591917b083620cdf7
SHA512 c1037b4cb0fa62a4649e09f0ba5c320de393cc7e0409ae2fb7d1d293b9dba45189d838f7b1b1fc889d87905d7f94b4561783ce658577b41ae783e76144cc757e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 e416d248aeda8181ca6445dadb1b108b
SHA1 fd5cac5231248db9932a0dd764d43bd204d80c27
SHA256 1eff1fb291769166bbf1418ae2480151923bb1db36446a325b70ddde5eb2382d
SHA512 b8443de2f2887cf41a29bb6320a0371f49a613014d694975820b0c885f8ef95796a35b2ee296fd8d1ee307bb1ff45b5d0c8b4ef04f8091da6c00df99df108b01

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005e

MD5 8eff0b8045fd1959e117f85654ae7770
SHA1 227fee13ceb7c410b5c0bb8000258b6643cb6255
SHA256 89978e658e840b927dddb5cb3a835c7d8526ece79933bd9f3096b301fe1a8571
SHA512 2e4fb65caab06f02e341e9ba4fb217d682338881daba3518a0df8df724e0496e1af613db8e2f65b42b9e82703ba58916b5f5abb68c807c78a88577030a6c2058

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ab6990752caf929db2abf9764a5ece77
SHA1 410067fe9d4084a42fac77f5daf9f4f6e929249b
SHA256 f80004102923beb739eb5870294ccde4bad9cde2c24503b4f09f7db9ef855d06
SHA512 924400ebaa0b9d5710639c23f8c16c8d722465b9cd58d4d98e07eec3c5ac4578ff7fe44fcc77052fac9bb27873003084f4708c9e230f9749a2051715adfb684b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000059

MD5 87e8230a9ca3f0c5ccfa56f70276e2f2
SHA1 eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7
SHA256 e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9
SHA512 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 916c2e369c302e142cc7208b203f4405
SHA1 49e8ffc76a709a92d2cedc2275044d43a0f5d76b
SHA256 a6cd3ee9507b93f0be0417922ba4cbf7b1b63ac0cdfc60abd694d9c0c0970d90
SHA512 49b5052fffa775741748d94d29ebd657d173e153525667c327869791ee979b7f56dd35b157de7e2845d7809087571fb50f41052904d89abe7fafc80de1be87ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ffbc8bba28a948678e02acabdd7fcf99
SHA1 bf063f9742450759e2ee6808054e2918fb53687c
SHA256 f4b7c2144e7c3556ddb80ad92350487ccff5bc4421efb4e1a721404f37faad7f
SHA512 f9ec25ce8d90de767107db04f0182bec96b6dd8be058671dd20f79c8a718a06db07152556f5fbc8d2dac65c76472b1d1024ba7e0331a2b5d132a4f2d0d0c2166

C:\Users\Admin\Downloads\OperaGXSetup.exe:Zone.Identifier

MD5 fbccf14d504b7b2dbcb5a5bda75bd93b
SHA1 d59fc84cdd5217c6cf74785703655f78da6b582b
SHA256 eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913
SHA512 aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ef01ad87573608dc2c746c6ad4992607
SHA1 1c2cc73284e035ab85097315a04debb328b13d91
SHA256 df6103d73d1fb21310e574c851d4225ce9ca381c4dac20e66e0a9cd5fd37fe95
SHA512 b5703e65ce08f38e0a32b9a62febfafe8daf36cfd21b52f94b36b88274db1b465519bcb52f86a6c7a8d44f3d250b66b0e26744ab4d862cb7debe56edf397ffeb