Analysis Overview
Threat Level: Shows suspicious behavior
The file http://usescarlet.com was found to be: Shows suspicious behavior.
Malicious Activity Summary
A potential corporate email address has been identified in the URL: Montserratwght@700
A potential corporate email address has been identified in the URL: [email protected]
A potential corporate email address has been identified in the URL: [email protected]
A potential corporate email address has been identified in the URL: Montserratwght@500
A potential corporate email address has been identified in the URL: [email protected]
Legitimate hosting services abused for malware hosting/C2
Drops file in Windows directory
Browser Information Discovery
Suspicious use of SendNotifyMessage
Suspicious behavior: EnumeratesProcesses
Modifies registry class
Suspicious use of AdjustPrivilegeToken
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
NTFS ADS
Modifies data under HKEY_USERS
Enumerates system info in registry
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of FindShellTrayWindow
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-11-09 15:34
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-11-09 15:34
Reported
2024-11-09 15:38
Platform
win11-20241007-en
Max time kernel
150s
Max time network
150s
Command Line
Signatures
A potential corporate email address has been identified in the URL: Montserratwght@500
A potential corporate email address has been identified in the URL: Montserratwght@700
A potential corporate email address has been identified in the URL: [email protected]
A potential corporate email address has been identified in the URL: [email protected]
A potential corporate email address has been identified in the URL: [email protected]
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | discord.com | N/A | N/A |
| N/A | discord.com | N/A | N/A |
| N/A | raw.githubusercontent.com | N/A | N/A |
| N/A | raw.githubusercontent.com | N/A | N/A |
| N/A | discord.com | N/A | N/A |
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\SystemTemp | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Browser Information Discovery
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133756402219454103" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-4018527317-446799424-2810249686-1000\{CE7F80DA-8E07-4DA2-B9E3-F51695F1FB08} | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
NTFS ADS
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\Downloads\ScarletAlpha.ipa:Zone.Identifier | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\System32\CredentialUIBroker.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument http://usescarlet.com
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffab0813cb8,0x7ffab0813cc8,0x7ffab0813cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1904 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2392 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2840 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3224 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3352 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4636 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5292 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5404 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5520 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5540 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5504 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5880 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5640 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5588 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6248 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6204 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2120 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4700 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5560 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1972 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6528 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5188 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6676 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5380 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6124 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5600 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xe0,0x108,0x7ffa9db5cc40,0x7ffa9db5cc4c,0x7ffa9db5cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1844,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1840 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2128,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2136 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2200,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2216 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3104,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3272 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3124,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3316 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4532,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4540 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=3756,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4588 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4728,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4520 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4872,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4580 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --field-trial-handle=3380,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3352 /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x0000000000000470 0x0000000000000478
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4604,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3292 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5212,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5228 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4704,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4968 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5116,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5320 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5256,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5252 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5544,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3264 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5220,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4800 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=5536,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5472 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=5408,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5396 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=4592,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5680 /prefetch:1
C:\Windows\System32\CredentialUIBroker.exe
"C:\Windows\System32\CredentialUIBroker.exe" NonAppContainer -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1892,4071991388473260970,165230381001699755,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=6140 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=5484,i,4809967971768727992,11087268750619623565,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5656 /prefetch:1
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | usescarlet.com | udp |
| US | 172.67.165.37:80 | usescarlet.com | tcp |
| US | 172.67.165.37:80 | usescarlet.com | tcp |
| US | 172.67.165.37:443 | usescarlet.com | tcp |
| US | 8.8.8.8:53 | d3bbyfw7v2aifi.cloudfront.net | udp |
| IE | 3.162.143.45:443 | d3bbyfw7v2aifi.cloudfront.net | tcp |
| IE | 3.162.143.45:443 | d3bbyfw7v2aifi.cloudfront.net | tcp |
| US | 8.8.8.8:53 | 0.205.248.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 45.143.162.3.in-addr.arpa | udp |
| GB | 18.244.140.110:443 | ghabovethec.info | tcp |
| GB | 18.165.227.82:443 | entxviewsinterfu.org | tcp |
| US | 104.21.3.66:443 | veinourdreams.com | tcp |
| US | 104.21.3.66:443 | veinourdreams.com | tcp |
| US | 104.21.3.66:443 | veinourdreams.com | tcp |
| US | 104.21.3.66:443 | veinourdreams.com | tcp |
| US | 104.21.3.66:443 | veinourdreams.com | tcp |
| US | 104.21.3.66:443 | veinourdreams.com | tcp |
| GB | 143.204.176.11:443 | getrunkhomuto.info | tcp |
| US | 172.67.192.190:443 | ukankingwithea.com | tcp |
| US | 172.67.192.190:443 | ukankingwithea.com | tcp |
| US | 172.67.192.190:443 | ukankingwithea.com | tcp |
| US | 172.67.192.190:443 | ukankingwithea.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| NL | 173.194.69.84:443 | accounts.google.com | tcp |
| NL | 173.194.69.84:443 | accounts.google.com | tcp |
| IE | 3.162.140.85:80 | crt.rootg2.amazontrust.com | tcp |
| NL | 173.194.69.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | 200.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.69.194.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.140.162.3.in-addr.arpa | udp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| US | 185.199.108.133:443 | raw.githubusercontent.com | tcp |
| GB | 151.101.188.157:443 | platform.twitter.com | tcp |
| US | 52.218.250.11:443 | webpick-cdn.s3.amazonaws.com | tcp |
| US | 52.218.250.11:443 | webpick-cdn.s3.amazonaws.com | tcp |
| US | 104.244.42.136:443 | syndication.twitter.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 216.239.34.36:443 | region1.google-analytics.com | udp |
| DE | 207.154.213.139:443 | vpnbest.cc | tcp |
| US | 104.21.77.171:443 | www.savinist.com | tcp |
| DE | 18.196.255.18:443 | www.opera.com | tcp |
| GB | 104.123.95.139:443 | cdn-production-opera-website.operacdn.com | tcp |
| GB | 104.123.95.139:443 | cdn-production-opera-website.operacdn.com | tcp |
| GB | 104.123.95.139:443 | cdn-production-opera-website.operacdn.com | tcp |
| GB | 104.123.95.139:443 | cdn-production-opera-website.operacdn.com | tcp |
| GB | 104.123.95.139:443 | cdn-production-opera-website.operacdn.com | tcp |
| GB | 104.123.95.139:443 | cdn-production-opera-website.operacdn.com | tcp |
| GB | 216.58.201.110:443 | apis.google.com | tcp |
| GB | 104.123.95.139:443 | cdn-production-opera-website.operacdn.com | tcp |
| DE | 18.196.255.18:443 | www.opera.com | tcp |
| US | 172.67.165.37:443 | resources.usescarlet.com | tcp |
| US | 172.67.165.37:443 | resources.usescarlet.com | tcp |
| US | 172.67.165.37:443 | resources.usescarlet.com | tcp |
| NL | 139.45.197.242:443 | thubanoa.com | tcp |
| NL | 139.45.197.242:443 | thubanoa.com | tcp |
| US | 172.67.169.157:443 | my.rtmark.net | tcp |
| NL | 139.45.197.242:443 | thubanoa.com | tcp |
| NL | 139.45.197.151:443 | interstitial-08.com | tcp |
| US | 104.18.10.244:443 | littlecdn.com | tcp |
| US | 104.18.10.244:443 | littlecdn.com | tcp |
| US | 104.18.10.244:443 | littlecdn.com | tcp |
| US | 104.18.10.244:443 | littlecdn.com | tcp |
| GB | 2.19.117.19:443 | ak.oneegrou.net | tcp |
| GB | 2.19.117.19:443 | ak.oneegrou.net | tcp |
| NL | 139.45.197.236:443 | yonmewon.com | tcp |
| GB | 104.82.235.52:443 | www.aliexpress.com | tcp |
| GB | 104.82.235.52:443 | www.aliexpress.com | tcp |
| NL | 173.194.69.84:443 | accounts.google.com | udp |
| GB | 216.137.44.87:443 | tcloaksandtheirclean.com | tcp |
| GB | 216.137.44.87:443 | tcloaksandtheirclean.com | tcp |
| US | 172.67.161.217:443 | birthjeans.icu | tcp |
| IE | 18.202.12.61:443 | nostop.go2cloud.org | tcp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| GB | 216.58.201.110:443 | apis.google.com | tcp |
| GB | 172.217.16.238:443 | www.youtube.com | tcp |
| US | 162.159.138.232:443 | discord.com | tcp |
| US | 162.159.138.232:443 | discord.com | tcp |
| US | 162.159.138.232:443 | discord.com | udp |
| US | 104.18.160.117:443 | cdn.prod.website-files.com | tcp |
| US | 104.18.160.117:443 | cdn.prod.website-files.com | tcp |
| US | 104.18.160.117:443 | cdn.prod.website-files.com | tcp |
| US | 172.67.41.53:443 | cdn.localizeapi.com | tcp |
| US | 104.18.160.117:443 | cdn.prod.website-files.com | udp |
| US | 162.159.129.233:443 | cdn.discordapp.com | tcp |
| IE | 3.162.143.129:443 | d3e54v103j8qbb.cloudfront.net | tcp |
| US | 162.159.129.233:443 | cdn.discordapp.com | tcp |
| US | 162.159.129.233:443 | cdn.discordapp.com | tcp |
| US | 162.159.129.233:443 | cdn.discordapp.com | tcp |
| US | 162.159.129.233:443 | cdn.discordapp.com | tcp |
| US | 162.159.129.233:443 | cdn.discordapp.com | tcp |
| US | 104.18.160.117:443 | cdn.prod.website-files.com | udp |
| GB | 142.250.178.14:443 | www.youtube.com | tcp |
| US | 172.64.155.119:443 | geolocation.onetrust.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 162.159.136.234:443 | remote-auth-gateway.discord.gg | tcp |
| GB | 142.250.178.14:443 | www.youtube.com | tcp |
| GB | 216.58.213.1:443 | clients2.googleusercontent.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 104.19.229.21:443 | api.hcaptcha.com | tcp |
| US | 104.19.230.21:443 | api.hcaptcha.com | tcp |
| US | 104.19.230.21:443 | api.hcaptcha.com | udp |
| GB | 142.250.178.14:443 | www.youtube.com | udp |
| US | 172.67.41.53:443 | cdn.localizeapi.com | udp |
| US | 162.159.129.233:443 | cdn.discordapp.com | udp |
| IE | 3.162.143.129:443 | d3e54v103j8qbb.cloudfront.net | tcp |
| US | 162.159.136.234:443 | remote-auth-gateway.discord.gg | tcp |
| US | 74.125.250.129:19302 | stun.l.google.com | udp |
| US | 104.19.229.21:443 | api.hcaptcha.com | udp |
| US | 104.19.229.21:443 | api.hcaptcha.com | udp |
| US | 104.19.229.21:443 | api.hcaptcha.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
Files
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 051a939f60dced99602add88b5b71f58 |
| SHA1 | a71acd61be911ff6ff7e5a9e5965597c8c7c0765 |
| SHA256 | 2cff121889a0a77f49cdc4564bdd1320cf588c9dcd36012dbc3669cf73015d10 |
| SHA512 | a9c72ed43b895089a9e036aba6da96213fedd2f05f0a69ae8d1fa07851ac8263e58af86c7103ce4b4f9cfe92f9c9d0a46085c066a54ce825ef53505fdb988d1f |
\??\pipe\LOCAL\crashpad_2740_YKNYVJHWLIBSKFPI
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 003b92b33b2eb97e6c1a0929121829b8 |
| SHA1 | 6f18e96c7a2e07fb5a80acb3c9916748fd48827a |
| SHA256 | 8001f251d5932a62bfe17b0ba3686ce255ecf9adb95a06ecb954faa096be3e54 |
| SHA512 | 18005c6c07475e6dd1ec310fe511353381cf0f15d086cf20dc6ed8825c872944185c767f80306e56fec9380804933aa37a8f12c720398b4b3b42cb216b41cf77 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 8a5ecd78593d7aecdfee608f9928c17c |
| SHA1 | 0132534b24649c9bec8fc035d2c93106a1ed1aa5 |
| SHA256 | 5fed373b2b94a9f4c404f1bd5f6a15e7c30042891cb2cbcb8cb6ed0bafcdc137 |
| SHA512 | 4cd7222bb37c82a75aadd83a02114394296b3bf81043f98ce76f083561df558402fd8c6647fe169add4f3afc7eb877dab2224bf4a6e5d55d41d2d506458c9ff8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | ed90ae985dad9836e20532a971c69e0d |
| SHA1 | 9f90589f265ee09516eab895edfed86082271b85 |
| SHA256 | 9be357fc43bdb9bdeeb113ea56774b3185b7d3b5929ac2923e913b5be4310f8e |
| SHA512 | 6cc1117857aed20ce35f9485cb15f1b07a7a3ab264afe42a8bab99f0a78a6d4d74e45f8014f07c6f449dac9152372b23f2c983ebe31dda00aa4467300b4348c2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 2837726966007bd5482351ca8399d822 |
| SHA1 | 42a5375c3e1115d8977f0e4964babea64204561b |
| SHA256 | 59c8f237651e00eec628b39148e390656b3989c038fbde94ccd4a2592db772df |
| SHA512 | c236f4fe0c2bb5a2967288a494fba1f6ef1946a6f49f3a5c309969099b2a7692db49c1e466b17511beb7b1e07b51ef754aab6b1ced0057a64c09ba9748996e8f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 206702161f94c5cd39fadd03f4014d98 |
| SHA1 | bd8bfc144fb5326d21bd1531523d9fb50e1b600a |
| SHA256 | 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167 |
| SHA512 | 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 7a24d5469d43ed0ce0de899afe9363ce |
| SHA1 | 9bee35711b309435d524937d5f2ca1698b00965e |
| SHA256 | 0a0a5b773b74fcfbc49398a5645b3957bf744c78a8325f026d5f9dae2a42ef56 |
| SHA512 | 7264a743d593eda520a26b41b6ed75c37df7b67057b2f65896175e02c09f6e2379160672bf27f9f85dab981fd74faf895e64bd8afb8c9f6c21f143e866d41627 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 1bf370a8f3718c682d29e6f96f239422 |
| SHA1 | 332e31e3c1d80e2b93f0432bc3a7404242c94612 |
| SHA256 | 8271c1cadcfe722e965871f63a038a3914e67c4e375b763ea219f45273c02acf |
| SHA512 | 90a504091afd1e40834ab2282811a046c769e2fc717b2afa20f38aeb087d99123162e2dcd2e16c40d8488501e410a8a265654a36c1152f859444a899e1ec99d5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | fe30686166ac12543b7a39e184f9b1f8 |
| SHA1 | d9ee2fe61272afd32cc22a5ec3309bc0891bbcd1 |
| SHA256 | 1e64fa7d3f71c57b71fea014f6425ffc3b32cb3db10d60744fae305bab27f0b8 |
| SHA512 | bc7ef8f982ae40d0c629e0f805003550617d6eb8f761d229161c8bb929300ff3c0c355ca8b88aa3a524bcd0ea7d73bf186eb615f11d5cbb5694279029df260b9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | fea4fee24ade8e210e084a533ad21cbe |
| SHA1 | abdc9da4f694b418e04454f875cb613a82cb3667 |
| SHA256 | 7f1e9f5b16e0d7cadb962e5bf88104007b322c0a0f3d3bf580d5d60b90424c86 |
| SHA512 | 277eda540af0969297a67ab8b79104e6002eba371de745d912adeb06b9fef99e69476ab0a35ebd89fba4284fa47b8cf9bced99399935430b2d0ecf3f3b28d718 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe580c40.TMP
| MD5 | 26826e246ba2f43c24a343f5fac187e1 |
| SHA1 | 5f1033138151b1b24a3498ffe3aaf65e67aa17e7 |
| SHA256 | b7dac1f73a3bdd1481b7250435eb946bd8e5d8ac64c46cd9707bd35fa929f41a |
| SHA512 | 941ea71e7d2d961d2dff32139b89f4221cdb5b922ccd1cfeaae5618e68f92ba5a48593414f995ebd183b7ca27f5dccf91266555de94d835e4433681c53665b6e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 0074ecd55a07b268aa68119ed63a5280 |
| SHA1 | ae8d9fdb21dbf1ba08435fa806fccca320ec2ea6 |
| SHA256 | 88edc2b33b085869228d91105412ac7a4b0113b895b4b3410d51f5c22588780f |
| SHA512 | ac2dfacf033fa2a8161d588935c483160dc8b7d1c79fe8fdc3f6749b88b1676c84bad1b50700762a52dc26ebe8b15bc0b67e242f6a9fbc01055cb9caa49b1b1b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000008
| MD5 | e43ced67ae95b4b503ee2093d68cc79c |
| SHA1 | a20cf61fc93252e6173b4a0bd0f8f9055b622cda |
| SHA256 | a14e606d23e13c2cb345c4f6c13030039ecde0574134b665ec06d58afef23d21 |
| SHA512 | 2c3b45c71f97cc8dbc6198dabb0b4d1c254a7ec634e3bcfb1205d09d91f6c2cde56063cccf8941c0e79148facc903fbd64668c6e103b4423ff1e37ecbedacbbb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 5047a340dac7d3794ac308731176fe34 |
| SHA1 | 54e18946f7b33562f21fea096549084e8f5c9f38 |
| SHA256 | 6338f2b124d648bd625cfd5da5e5949abde4a4bb0708720c58428fca8a4a9bf2 |
| SHA512 | 11219bf1ea754552eca61f1cb56b6632e635f56855c11628406340ec7f775ac4a00d26b9d67c320fd7b97866e98571ed17b2f5337e561f907dd9461025797072 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe583c97.TMP
| MD5 | 6e3b7d5ba1699dcd4a7289b90921fef6 |
| SHA1 | eede77d9de18af0e25c4c95c15bedaf496f9f291 |
| SHA256 | 5a60334f03ac113eb489294a332b310deb129c70ec40403e2f93c5245a58b65d |
| SHA512 | 7b1363c852f3801c3ade7d37cf013697c79a3ff5018b8688417a3aedf054c9ced75d1d5bd71292ba394b7aa610eb2f91227003ca9c0621e8b36f25f307fda358 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | fc5e56151730a27c0c0bccf5ecb4cbc0 |
| SHA1 | 20eb5885ecb81bdf65aa57bf77f5de21ceed3fa8 |
| SHA256 | fc13c3ca63e6bb158d6d44e27d962cb8e7bd076339034cd7e8e7cd1324b68a02 |
| SHA512 | 3b5d53181c9146d830caa516e59ccb208ded2f6441f9b55dd940e0bac92a11613790909b5d529059fa7bf025e5676446041079c4eaf9d67f7cf63167812177b9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | f3350ffb70a1669221a8fc5578e631c1 |
| SHA1 | 566169edf6017513fe17b2ff5b1d6e57043a31e1 |
| SHA256 | a023d6922235e4a6afa31230f5d92b7fa799582f5acfbf9b336103d3d81d65b5 |
| SHA512 | 01f18829ccfeea8394c6f707b2579e180c2c393c3f68e14cd55171aebf4ed2229a71b447e95e5388e3886c33106668f668538ff75825f6af3d5f4ef1bc881ad7 |
C:\Users\Admin\Downloads\ScarletAlpha.ipa
| MD5 | df7f7f4862ff679404fb75e887b8c140 |
| SHA1 | 2eb3a8a88ee73810bec5163243b176ae2c7bf92d |
| SHA256 | 987b557bca27c06de42e4e236de55e112f8ee17920e3d29cc8b2f04a4f328431 |
| SHA512 | 5380f4ecbc48880f2a92579206fbf16e1273f9c063d89350795e49eac6c8c37b36fcd1fa9a1ef127d227cb39facc8f70ed02bc36124ef6fcdeff1edc7408d341 |
C:\Users\Admin\Downloads\ScarletAlpha.ipa:Zone.Identifier
| MD5 | fbccf14d504b7b2dbcb5a5bda75bd93b |
| SHA1 | d59fc84cdd5217c6cf74785703655f78da6b582b |
| SHA256 | eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913 |
| SHA512 | aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | e4e9d8b239453ad1dc4876bcdb446fce |
| SHA1 | 691989e83cd513a9d68c1aa6f8d65a570e164977 |
| SHA256 | 286db00a00137721c156626243c6412f5a12a75697e1fae5a0c0000946c5acd0 |
| SHA512 | 51d215e6378770864d082045e7cf4abf6d7911b9147903f98538bfa9d7df3f97a2bae14115be9d032469f1cf48e096f20a773c38a16131b771bd762cdf2e5b64 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 6e76166cf3609777de3abe7d882be3b3 |
| SHA1 | 672c5f23f9fa16761d27f1946a524012fba15d96 |
| SHA256 | 3d19dcc33e03b01c8e9da8f1809e2091a3aa6a65d3bd9f02cc3c7b17336d5bde |
| SHA512 | 93ba61f9775d3efa17b89340df1b020e9367f3b1c7639772c2414f42bca02019034b53b81c7b129a4d17d2eaf01be9dd9dccee484af75479cc80c7aa4a6596ca |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 47c5c6d1a2be1f16c503c108c991d8a6 |
| SHA1 | 44ab4878004ed610c5b1e16055d406ca7a7cc15f |
| SHA256 | bb5bccb9a1e0ae6c539558786e31d4a09edda5c8f9cb5781d1073c2702bad4ca |
| SHA512 | b560340b0ba78a02cdf5f060fb781d9748bb8e1a759ad2a51e7b706688a0b0346267f86cbde2939d4c176086b597fc138aacad93b3f370d854335c57d678e0ca |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 384d28123cefc7f1fb2130fe16d23393 |
| SHA1 | e3203abad494a94c294ff3f9de9589fddb82b0b9 |
| SHA256 | d277d86aae460438c148f37b9054ab98bf8b4abd607ca8015e2397936eea10ec |
| SHA512 | 2b7863558bade4fb9e89b6d0b040015be34b9436073c0955ca897f1f9bcfb36d843afc738c428b0b9163bb7345b3641d49fcd634f61e65c6005a9649fe2e8c44 |
C:\Users\Admin\AppData\Local\Temp\c4eaf892-7836-49e0-8e32-54b7bfc87edd.tmp
| MD5 | 5058f1af8388633f609cadb75a75dc9d |
| SHA1 | 3a52ce780950d4d969792a2559cd519d7ee8c727 |
| SHA256 | cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8 |
| SHA512 | 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir5044_375611710\86ff24d0-7a17-4f03-a5d8-c0658071549a.tmp
| MD5 | da75bb05d10acc967eecaac040d3d733 |
| SHA1 | 95c08e067df713af8992db113f7e9aec84f17181 |
| SHA256 | 33ae9b8f06dc777bb1a65a6ba6c3f2a01b25cd1afc291426b46d1df27ea6e7e2 |
| SHA512 | 56533de53872f023809a20d1ea8532cdc2260d40b05c5a7012c8e61576ff092f006a197f759c92c6b8c429eeec4bb542073b491ddcfd5b22cd4ecbe1a8a7c6ef |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d2b3d5455c22fd6c02dabafedb110e1e |
| SHA1 | 75bfa5e0c36c0fdab98b3fb310c6d06af192a806 |
| SHA256 | 1e805a5d67d997961cd79457643447f961aa6b4844b848f4389afcfbf786959c |
| SHA512 | a01851503104071673799fa1262cd05551dae4a80004b1472d49e1524ec1c276e51b42404c28d8e458f0ffebc4a8be934086a81b6d749eea6e901f70a471605d |
C:\Users\Admin\AppData\Local\Temp\scoped_dir5044_375611710\CRX_INSTALL\_locales\en_CA\messages.json
| MD5 | 558659936250e03cc14b60ebf648aa09 |
| SHA1 | 32f1ce0361bbfdff11e2ffd53d3ae88a8b81a825 |
| SHA256 | 2445cad863be47bb1c15b57a4960b7b0d01864e63cdfde6395f3b2689dc1444b |
| SHA512 | 1632f5a3cd71887774bf3cb8a4d8b787ea6278271657b0f1d113dbe1a7fd42c4daa717cc449f157ce8972037572b882dc946a7dc2c0e549d71982dcdee89f727 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.83.1_0\dasherSettingSchema.json
| MD5 | 4ec1df2da46182103d2ffc3b92d20ca5 |
| SHA1 | fb9d1ba3710cf31a87165317c6edc110e98994ce |
| SHA256 | 6c69ce0fe6fab14f1990a320d704fee362c175c00eb6c9224aa6f41108918ca6 |
| SHA512 | 939d81e6a82b10ff73a35c931052d8d53d42d915e526665079eeb4820df4d70f1c6aebab70b59519a0014a48514833fefd687d5a3ed1b06482223a168292105d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.83.1_0\_locales\en_CA\messages.json
| MD5 | 07ffbe5f24ca348723ff8c6c488abfb8 |
| SHA1 | 6dc2851e39b2ee38f88cf5c35a90171dbea5b690 |
| SHA256 | 6895648577286002f1dc9c3366f558484eb7020d52bbf64a296406e61d09599c |
| SHA512 | 7ed2c8db851a84f614d5daf1d5fe633bd70301fd7ff8a6723430f05f642ceb3b1ad0a40de65b224661c782ffcec69d996ebe3e5bb6b2f478181e9a07d8cd41f6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\MANIFEST-000001
| MD5 | 5af87dfd673ba2115e2fcf5cfdb727ab |
| SHA1 | d5b5bbf396dc291274584ef71f444f420b6056f1 |
| SHA256 | f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4 |
| SHA512 | de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | 79827c44d09e6ebac8e6192ed825372d |
| SHA1 | 915b64fff175f40f5317134ebed36170088aa5c1 |
| SHA256 | 1f841254e7c1b66de8b4c0cbeffdc911460a48c9f7028c0b6be1daccb612d0be |
| SHA512 | 393bdf97a43f93c1b499474c6f1c698a384c918e5e58c531f1b59aedcf8c3b7eabf0814f1c69426caffe646a08a19229c7a4e04666fbeb83af072ea7dc7a7029 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 1b3c97012fa75f86ab3f1a7029af8124 |
| SHA1 | 91ccbb894d4d70c63e91cb453c5e8cddec369e9e |
| SHA256 | 39a910f75e6c1c26842a17cd43b862737fa156c5dee1b59b6b275e46e3b4c8b9 |
| SHA512 | 56ab607c672760bbcd32a171a80b910308be55d7ddff404315aec8c02fa6d8adc2b4e74aa0662d91449fb4ad5174a67ab311edd173078042a71543528c6c50f1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | 2e06de1b629e9d55c77e9fc361f2e633 |
| SHA1 | 95d97919d1138e1a7a60c548321fd1e09928fbbc |
| SHA256 | 51b240702869a01097e4e53f4b6ce5183ce4066951b6533911614cc16b664a21 |
| SHA512 | 10b09732bfb3bcb72a9ab4a2ee25fd5bed40e6232dc913fb862004e553c0d3a11d242aeff17007aedf83f9866ce194f4355a356c8693c5745298cc99a644a34a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6feb1cb105ae5d57ad6254dc2ae5f77d |
| SHA1 | f86fb18439cfd64d12cb428f4cad27b2a0f6e21e |
| SHA256 | 0e2b5b68176a0ec25c601cdadf8849885bfe3c376b5e356463711ad745df249a |
| SHA512 | 1605c648037f2fbbca5c71fd930e4e5be4fafabd875da29e1cde5038e6cfb43e3d4fa5af2d856237f184399d7a18a29368026c667de7c98b90b063c49387e29c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | f06fefc5a5588ce5170ce639d58f1f1a |
| SHA1 | e918ec41ef0cbcb0c57ba80ce0c868c3c5472e1e |
| SHA256 | a7e9588f85526a25c54a1eababab619154db3c5f91112c6b3197580902c61b44 |
| SHA512 | ceca78cc776df4c544df659e104d8ea4e74df5c4b67037a4cb0e8c7f31e1a3cbf8d543c59fa55855f5d8bf29eec8c1a1ca2c53fb2f7489a2572b762c2a144e8b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008
| MD5 | 48c91c5f5468c4bf412532b7582590e8 |
| SHA1 | 59a3d2b3defbec0f56c2a78a5f842aed336b467d |
| SHA256 | 0171370addc6172008151aedef0caca5d31349d7f48a06d75913b9452bc13d12 |
| SHA512 | 7a1af93f86b4676ea7f252334dfe090857815ee8f8e6e2e03e587bc86b73b2b0aebe63fbc4ea1135a82e82c76829b57738e4dfe678a307a553f8077c8ccdfaf3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009
| MD5 | 1d556959d741aa85eedbc14e9a7119a4 |
| SHA1 | 07987766f6b6b5ee359d43275a0b3d2e7619dd59 |
| SHA256 | 52073d6772dd47314df0037786638236f6eb8e940613f22e777b65f0a488fef8 |
| SHA512 | 49cb7ab4a75f0a809ae6ea66bd07dabc241adf3d6fe625a9be293b19f2a6e3f9088f468c4f109643bab1bf75ce2e7716a28615d8a400b9aea5248001794b13e3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c
| MD5 | c0ece23c12d628a3fa20d1879205daf7 |
| SHA1 | 01f884ec5f79fb735eca0b4e65c37da3d466c4ad |
| SHA256 | 53d9d177c85d7ce1b88142b381d9450f7c1712f22071ebbb4f1d06763317dc9a |
| SHA512 | 7cba3b66d1ed15a7317fe1a4066e15777e43228815f2315f21eff569612ab411f623414fe809a8109799d25fe8df7be8ffc19cd71dc62de3d365d9fe248c38cd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000033
| MD5 | 3312c810ec0024398fa10e03b01ac92c |
| SHA1 | cb18fd32a059b1c59e5808e0ea89b46bfdddf1c3 |
| SHA256 | bfe1c7f7ab32ef20fa55ac7e85dae1fa92c5a4252ca70c019ed2bb284f4f4484 |
| SHA512 | d7adb34390ab5fb17ced9cec6a4aebb48035f84774d79a11520cd9d8f07716aed76f670f6533279b9ac7d132f75ec67ffeae9fcfe596bc563ddb0f5ccdf3ed33 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000034
| MD5 | 1ba457d3a03291a1c6385e53e389d883 |
| SHA1 | 44e9998630a4989aa38206abeb9a327085aac88c |
| SHA256 | 48be8a8622b8bd20756192729663930b909ad98d3012cd0b70407c3a7547aef0 |
| SHA512 | 82f0a14e09a65ddf8753f91c913136b058c8e04acd8e252c523a4b54c57ceb468793bdae067e9431757bdb4c245b36eace078087e7ae773d5a3f7a4998f60eb0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000038
| MD5 | eb9451406239f469d62573e646480098 |
| SHA1 | d660866d67eedab1a6ecd686416c65f3da65bdf0 |
| SHA256 | 1025893d17448a31de6464625bbb7c6445ad3f6de2a27e3ff1963a260631c2d7 |
| SHA512 | 9606378f056883c7f8a421ba8488477ff172845fc9b4cc95f1f6f3c428340416066954a0c9d36c02f6f78814155e90ede063f2847735319c3a53f4da85f9b96a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1de8ddf8906adcc6508aba20fa660996 |
| SHA1 | 689f396e3578590687a5574a247a1d08c834e7b3 |
| SHA256 | 889bacdd71446cc210452931cc6fb07e37fbc1a403d3af0b40419605f51fbb2b |
| SHA512 | d09e5ab2a5710f3aec2704f21fb1b9c70d8be72edc33ec80d4e70ac05f1925eb2ab5fb5a224fad24c7d8faf898d4df0e3c8b2f73dd06139cb05657af7118158b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | b4925e418b5f3ca488e513f3b7ee348d |
| SHA1 | 5178e54d9d8b228a96055830559143c1f7067c61 |
| SHA256 | 00701bab6b09e5534192a2c254a4ba784d758c606f76abf7eae7da2a75c0e395 |
| SHA512 | 369d68c33fd3279957491635e49e981e1931303856a5c212b851c4f7300905d34f5542c8ee868e5d68aa3743da5b2652726065a70be29a327df7f79535deff09 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | b7fa7c8cf2ce9d4ebe3def855d65915f |
| SHA1 | 789d9838d4c0411b8a12806bb00d66411db1d2d0 |
| SHA256 | 56468ac1d624570d74e2174562cc5da452266708eb9a1afb564966eda40ee387 |
| SHA512 | 75bc2fddda3a88cc8cc5fdb0dbc53949acef3c263fb5aa3491cd58c3c4a87affcd5f851f2b2e13bd1cfdeebd79fe048ed18d9ab741d44628472d48eb9d6afce8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 268b67d3ac614495c82cd16b1fe0ae9e |
| SHA1 | 817d87f1758b6782bad0c61ca97524f7d930abaf |
| SHA256 | 37d8f4380952f5c371cfd798fe516cd6dac076b87dce4e45c6e9b1e52d43b6e3 |
| SHA512 | 2e4902968be8a4b42a9aa4828fde7f3ece8c424a3fc055c11139181ef0ea36779ba945312397bcd92205af2da757885cf740271fc9da170fbfee9a0205d2aa87 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f2dba33c7357bd91199e7bcdf6b6b23a |
| SHA1 | d774ee7d15c7777a95b8ef574653056eee0bf67e |
| SHA256 | a4bc55362db9dd0d1fb9ac86ae77333adff2d28818ef7133f0b3dd52d33223b4 |
| SHA512 | f397cec7b4a4f918380e7147cc6d30025944c671b2a40e9cc6b0ab1dd1417aa4a8dbd076f0f711b696ded42fbf64f286416f198dc786bdb8fbd9c1d456fca72a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 30e44ce58c96a7746c41750ad8ca5c51 |
| SHA1 | c89e55e95c893e986506bcba5c7af1f378e5753b |
| SHA256 | 9ed10758f2f59904b740034e81391576c9e553ebdacaf1d1e3d3588607580cb1 |
| SHA512 | 809c0e6b4b7ddc569290f4a83a5ac1951d37d0f61b5a0b09b21e14a901b23d583d39853867684ef15d67055b7e68f9e1be1e35caee0dffa6659fed46e2f8731a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 639d3d121208d73d9feb8f7ccdeff6dd |
| SHA1 | 905d2e6fdcc281bd71f1c7640ec56eb747bb3307 |
| SHA256 | 16d0d6e8434fd1062eb367456e771abbc958076a909e423c0846f461ccdcf5f7 |
| SHA512 | 4b868508082803ea0a72aeec6751cb7abfb76b2ae66dd32e7f6df65fa3568f7d7f6c30989c451039fedebff6207eb544a09e1fadadd8b25f07970de517039e02 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 0b10c5e07da7e8842cc3e632a0503402 |
| SHA1 | 2575ecc81961a4f4c2abed1ceed8f3d2093ea40c |
| SHA256 | 26508f5002cb535bb66e9c0c7d04b4e777a4dc6967eb8d5e5918b7d5cc794639 |
| SHA512 | b526fbca8974e1614fff7b2a4cb64123a5029cca039cc2c9f2290d0b3a67c857a11b3b006123d877cc71bb921f756aaeb923625cdd47292b2624be83f61200bc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 763866469e61dbe4d5ce5ab40bc50212 |
| SHA1 | 3157d5a8f1c86dbfe663e91cd456b7d2b751a51b |
| SHA256 | fac973eb18269fefabf8991c37e87f8da29eeb7f0e1ffb348e8fbc68ed44b749 |
| SHA512 | ddb5300b1d81aeb306aba00dccd8577b10aa465e5e7957d101f37dd6e8b65cc1be36cb2ff43fd68cc317c2d50cd3ad567d6ccc8cca8f4db3a5112d6b8528d847 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 5a8aaf1fdcf9e5b832ad53d890c76d6f |
| SHA1 | a4638c755c2f460b35421ebac59afa6171c09f49 |
| SHA256 | b22310f43104774e6dd224b29a70f634d15ce20ed6b507f0d02d37d2285e2c9b |
| SHA512 | cbe77726216583ff52232404b8543a954b9f815ddcc589b7d658be0314f7e0e38a12b69c686a357b258ea2cb420b4e74ea584b7efed13aff0fe1b50a719b8173 |