Analysis Overview
Threat Level: Known bad
The file https://is.gd/CRosAG was found to be: Known bad.
Malicious Activity Summary
Browser Information Discovery
Modifies data under HKEY_USERS
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious behavior: EnumeratesProcesses
Suspicious use of AdjustPrivilegeToken
Suspicious use of WriteProcessMemory
Enumerates system info in registry
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-11-13 09:08
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-11-13 09:08
Reported
2024-11-13 09:14
Platform
win10v2004-20241007-en
Max time kernel
317s
Max time network
317s
Command Line
Signatures
Browser Information Discovery
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133759625445421870" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://is.gd/CRosAG
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ffff6e0cc40,0x7ffff6e0cc4c,0x7ffff6e0cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1900,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1896 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2148,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2172 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2232,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2412 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3140,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3136 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3120,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3216 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4508,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4464 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=3168,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3384 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4468,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4796 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4816,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4412 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=3440,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4944 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=4968,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4864 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=4340,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3456 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=4808,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3504 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=3536,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5040 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=4948,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3392 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5016,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4960 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=4940,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4892 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=5080,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3840 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=5048,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4796 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=4584,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4972 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=4952,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3208 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=3472,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4864 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=4484,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4036 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=5104,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5112 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5288,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5324 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5264,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5268 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=4560,i,14800658086980351168,781685724335097929,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4412 /prefetch:8
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | is.gd | udp |
| US | 104.25.233.53:443 | is.gd | tcp |
| US | 8.8.8.8:53 | 13.86.106.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | styemconnmummnlty.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| US | 8.8.8.8:53 | 53.233.25.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 83.210.23.2.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 68.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | styemconnmummnlty.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| US | 8.8.8.8:53 | 154.239.44.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | styemconnmummnlty.com | udp |
| US | 8.8.8.8:53 | 212.20.149.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.164.165.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | styemconnmummnlty.com | udp |
| US | 8.8.8.8:53 | shorturl.at | udp |
| US | 104.26.9.129:443 | shorturl.at | tcp |
| US | 104.26.9.129:443 | shorturl.at | tcp |
| US | 8.8.8.8:53 | www.shorturl.at | udp |
| US | 8.8.8.8:53 | styemconnmummnlty.com | udp |
| US | 104.26.9.129:80 | www.shorturl.at | tcp |
| US | 104.26.9.129:80 | www.shorturl.at | tcp |
| US | 8.8.8.8:53 | google.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| US | 8.8.8.8:53 | 129.9.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | styemconnmummnlty.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| US | 8.8.8.8:53 | styemconnmummnlty.com | udp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | styemconnmummnlty.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 11.227.111.52.in-addr.arpa | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | ogads-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| GB | 142.250.187.234:443 | ogads-pa.googleapis.com | tcp |
| GB | 216.58.213.14:443 | apis.google.com | tcp |
| GB | 142.250.187.234:443 | ogads-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | chrome.google.com | udp |
| GB | 216.58.204.78:443 | chrome.google.com | tcp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 216.58.201.110:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | 78.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 27.73.42.20.in-addr.arpa | udp |
| GB | 216.58.204.78:443 | chrome.google.com | tcp |
Files
\??\pipe\crashpad_4716_RSMSBLZPXBAGRRYF
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | 45cdde6ff97ba7797b16d125f0181537 |
| SHA1 | 4621dcca1c80f69f15bb2caab3137dccd5ccb286 |
| SHA256 | 6e3f90eeef8408ec28ab57309b34efbd54d9c01de4f162b2d6b9ea8a91289a77 |
| SHA512 | 5e36d9bc4466871e609fd52979718a9eec262d13f3520db10f6e0569e9c533304c6208fea33e3ef81fe40985043a959f12107e642fe3f9ed5cc522d73297a849 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 55711aedc5ca9c7a917d4e0103947dea |
| SHA1 | 825292a9c64cfa8090b2de4c9db6753d83deafee |
| SHA256 | f93d5eadcc3530aec815fb37c99c85c953508b5768e2cc24fb9b0055d707a9ba |
| SHA512 | 2105626e9032d430f61ce231adb0fb62a6d97739b2e0e6e93b1e8a99cdc1bc36ad3e3ca03c9ff703bd3aa0791d7e454bbcf799ce7563ad981b7dfc8001456f12 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f915ef1515586871d257bcaf70375686 |
| SHA1 | adebb41c4796cdf5d30a81be066a05625f24f74d |
| SHA256 | b957b3b0a2ea36b875a15a291740787e758565946eaf04ce0dc521685a5c7fa8 |
| SHA512 | d73f7943a5e50b35c5b442d59d673d9ff614b79d75abf647dcf894555e6fd415635e036c588e21532113b8bab5026ce686c3706c2de6e27fd184e4ddd0a34768 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2f061d4a2069b0a987468a37957690ab |
| SHA1 | d86ea3203d6fcbb617c4f5749848bf18c936f5dc |
| SHA256 | 5555e2dd688210876224a48675fed3d20917484955441f971690b480a5e12f9a |
| SHA512 | 5493de52ef1af29154565c6fcea6a59ab3d64b6034da94763b5a37d5efe33a5c0c6887b801c384a991a0e3272c9a55298edf01c3fd6bb0ac89a3136ed4816495 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | fe74a401e069c04bbe45f40de6a2d269 |
| SHA1 | bfa3e556b2f91d79be4e7f01fc19f497f9645872 |
| SHA256 | 803fe407f9a45434f90e2b20405f85caa764854684c3731a9afe4ae9def4085d |
| SHA512 | 0a0b174c0c498609bba37f558b48ee1760f97baac8bdbb263501b24b9d6568f1d71eda7df7d6414a37ba2ca1105ba92424839b5a635ba9968c838f566455e195 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | aae7d304485c6abd5a9c72b7f2b8b643 |
| SHA1 | 0c87d5483746bd1ccc39051ffbea8643eeeb6a81 |
| SHA256 | 1171453a1c43c9cfed3224fe4b63d87fab39d3384a23353b3fe7edcd1c788c2e |
| SHA512 | bc457dd82d246ac1209b7aebf81995630d1d97cb954eb68b78394b276196a093c97cee8cc1b51010db104569c8968fec3f0db48b9f68442f6786dbe405a07d5f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 7fb9fa615f0ddc10a3656528f5feb9ab |
| SHA1 | 7056e70f2f3aadc50bd9d2a8d40101740877c32e |
| SHA256 | ca367d883577bab595bc1425b4c5b6942dcae4e724d8c80fc357fa4cb2eb4264 |
| SHA512 | 03750317d5ac05bf1478bf15a92a7329827b88999cba38defddc34374369e4d385faf6aa08838701851b95f2bb0b301aba769780a487464f7c2a893eab951bed |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ca43ebc4415e038f56a45f12242454d0 |
| SHA1 | 5342fef17a68407c45e4a3b59d1fd8787161ea93 |
| SHA256 | 67425f94d37c8b1cc4037b92196f437b25435bc89a8810c46e48c20a8d442715 |
| SHA512 | 270bebf688977869fb176754010d4a5dd2d8bcd78e7b275e78f48195bd94f45aeba75456c3dc7b92d8ea77850d765eb0c839b2191f480668cf892f6dc06e6c3a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 26e17b5b87d78cac02babab59b411f20 |
| SHA1 | 22e8da23753c235a67c204dff33d35aad6ee10fc |
| SHA256 | 0439c3fd84d43903e1efcfe2f927335026c962de0fedf6c8a5e444d33655fba2 |
| SHA512 | 04a7ad2c9ac19a1677e6fbe78945a1c8be6be3e85da2dc7efca592919b8c1a90a7a4650ed9d432a023603b714e4988b1f8495e5e064ba5699abbc5288aa2c821 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2e3a9f1060ed489a77228a64240523a6 |
| SHA1 | 95da12013dae182835ce01f036eaf1a84ab9077c |
| SHA256 | 0c13341c8689db0e9028233d8dd51ccfa4188ca3d98029b51a8ae780268c9b44 |
| SHA512 | 17cf84471d10f3dee1704ed623164f5d0ff4479963daf7346fe0552163c67d1f689eb6fa01aa0a4a9239a08aee5f00f05435da7c474066af36976aeea1a3ec7b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 886a15bb7adeab85a7975afae3c693ec |
| SHA1 | e9f33e91e26864be9cfe9c138b9968abb5ab4a08 |
| SHA256 | 54c8828c5c3448a8054c96c7bce453c58cfefc3bb3e04442fb34fce3c88f06bd |
| SHA512 | 1ffb7a1627200c5dc24dc75990c72a03b3178da6d15597d662a3850a0079ba35dc435bf3555b45df6c79b930b8352c30fcb303a5fb4873bc42f33cff8c9f2072 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 88f31f168128cdc13b976d80a01870e0 |
| SHA1 | 925553239efab49f2cf9443f9e662aeff168071c |
| SHA256 | 99f4b69a360edb7f01266274dc9e7755ff1da7f5075005680dba86f96085283a |
| SHA512 | 2dd795c088006e4147d2803b2d0df8e8c638548ca76d4a6e46e10ebbf537b4e1b185ffb66e51f8b2a5f1391b7b87aaf5556fb04f78316b36b7488eb5e36c85ae |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2a3ba21761b4e41b0b367c09c5d2e2ef |
| SHA1 | 72870d35b171fe6bab9157a82c44ad9682dad5aa |
| SHA256 | b408f717bf62fc8d583c330b72f2c1424a94772c90b439aed7e878c6edf10b6b |
| SHA512 | 76c7664b03f025982e4fcd70e57c81c1dd6d5dba6c441a721777cd439fb5c156b03f0beb5c08ca4e08900ba6d13ea7a53bf1a1fee7d6d538a264b727a024650b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 88efeddb91c94ca5d72c82447ed6cc8f |
| SHA1 | 6d558a4ec7824a7f861172ab238a70471a45e825 |
| SHA256 | 90ee768fcde240fd611bab1b5263c6d034073685d12f538116804da005265652 |
| SHA512 | cd168511ce9092dd68726eee9b9b8bd77f556c429093d52d2114b20fe808abafc2865aa06197bee8196731cf9569a9edb8e503ad1dbbf6644022ea4b1d8519c1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 8ff9487e4d3c600f1da503d425951c07 |
| SHA1 | 7ed737cb858ebd0e62616476358c3d19a9de2003 |
| SHA256 | 355757344d59d96c96fecea4e6a50ed61ce2beeeae8cd422ab8accbd8808646d |
| SHA512 | f0382dfe65ce1f23d98d4feee21e66724fdd57874ed6912220f36247d98321c8196704b5d210e984847b8fff42564548d72fcd24b2682f59b10e95a417dd8799 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 92dcdb4d1e3e44ca7402f3549f8b247e |
| SHA1 | a334b7186c17f2a19a01fbee050db3db59f29715 |
| SHA256 | 3b929e9a517b0ea5f6ff9569ecab0fc7e3505cd35fd1c215d7bb40e13ad4e609 |
| SHA512 | b7499d44cccf892387656bf10fec010ea8b1e6687c4575484215cba4f304d28143378367b5fefc2a5f06d21284db93fe469d659aeb17e5df8910b53e21588d55 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 358a11ce14d1722b66d3f3a64995c460 |
| SHA1 | a95d44c391be1cf20bbaafabb62ee5138dc97846 |
| SHA256 | 69d59ca7333f8023f6fd19d87e528739cce398c41940308eaa13dc1e38a56684 |
| SHA512 | 6c67aa1d9ceda8766ebe2cc485384e4addb721e61a800837130c2ae79abe460c3ed7b94da319b693bcfaf21648f78f6f7c41c8d11fcd4ae55f6cfa0872cb3e8b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | dbd8aa08f76ba6ccbe3da4a6e19d8b78 |
| SHA1 | 9a8d3c00cf8333ea85936e435a0c909e93d371cf |
| SHA256 | 51fbee87c20ca373232cb6d582ab30169a51f1389645fdf7d3e161dc8264aab8 |
| SHA512 | 5a7ff320eb282467001cbbb8c944343a522d3ae9b1283cc6bedc50e1aea3af214d6a3618724f13a5c07b5394e9661068c6b085e813aa372e6a0c1b43913564ae |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 81594fb9b3116a57a5cb53c3bdbcb6c5 |
| SHA1 | 9ee3ae8e99c60f130a524bb0d69b5403845dff5e |
| SHA256 | 1d83927a5a8f5ac7d4224ee6b022e0977bc0f655429425074fd181cb8d69a926 |
| SHA512 | c2e41a4c0fda1047fdafafe7de0c4b4b5762699c4c44ef4c2b95fa1bce0595b0c7f0a5c5da4386985a21f26efe95cb85ba70ed14c7e4cdd66789ff72a73e9ee4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 57a4b555f284ce7a4daca1ad80bac368 |
| SHA1 | b95d4540f55eaec70fe8e94ce1174aa87b0357e9 |
| SHA256 | aefeab192cce4307e4935aeb6331e35a7ff0f8968787e38b943784165376bbfe |
| SHA512 | 64cc33f9761312ebba6a4a6250106f90c4cd690360bd4f9f0418604cac60ff82907007fd83c4c4a381ade0d29378bdb1b22c1737e994535547ad328434fd4f1d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 10767d920ce4caa6f0c7c7dec4461ddf |
| SHA1 | 0ed1de2232f93f3834b759eeca7ffd555da1cad6 |
| SHA256 | 185b424c27d1e53e46545a0b572cbf11fe8c6dab508b01a179f3436bfc672dfb |
| SHA512 | 3e2573de9230034985fc26601b5141b7228aeebbba59c443ea2f792ce00a1ec962ca410f63603e6ad84c5cac511dabd5237e07a47210df238f4f9d71952a3293 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 9657754021731a1b3660a56f8d4edfe5 |
| SHA1 | 6020ab6a14977c7fb29179e9443c5cdc0cb8f8d3 |
| SHA256 | 498862f9d5459b45e81b260eef9b94ab11f5b5e36b86df71151a9d65b1568941 |
| SHA512 | d6aadf94ae4ad13158b7ef1748ff0285f56483554fd0ecd7b591c11dfb72bbbf0411b952eabae1b8022af1143a0347d3a57b4ca704da1c1cea757b2179f78911 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c086efe42aa130f0478e18dc636261cd |
| SHA1 | fa6f6ae7d7d59c9b25dc4d08a404376d00ac3d08 |
| SHA256 | fd1d301c4b81bc345001817740217a3f9de4e841d6127c2fe4a81e623b5b0010 |
| SHA512 | 88ae66da0b5d343cd827cc2089830af168d47f4c546fd61bfcae934318d36e59bea0b85a5c2bd35b359abfcd38a28753482a7038589cafcda29447df6072d08c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | de6027f0e372a522fafc7effc257b35e |
| SHA1 | 1fa3d6155b8b289c59448061ea36c096a90ae6c1 |
| SHA256 | 5985acadf71c05ea4e5fc7adb76e0467500f7ff6c3635f0be27653c6987eaeb1 |
| SHA512 | be2473bf726047e6f45212f6660baf0d8d1efb724ecea574b9886ff6d1398f2d970ae02cb060930fed1108697747776812ae713751e72be0e21b01a69fc2da09 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 199d6aac41b12e66c96ce3eec359744f |
| SHA1 | fd18c860568dda8ffed6757456194b8a9650c14e |
| SHA256 | 44eecbd42e25aedcd646a6f64885e0db6bd19d69ec3cc666725b57084d1e528b |
| SHA512 | 6587e42769785efd51c78f675f060125c8e9b40c08c35e3ab3246d68fe8d8d0a7f92e957e0857a03e53775637c1b7df0f397a77d6898d9ed7974c23e411d88cd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2ba588ff3ce2abe966d5e5ae32dcd9fd |
| SHA1 | d17ec356e48f8cabc296c1e1aae2084462e98e4a |
| SHA256 | e6871b36919b6be0839b675c5307eaea980066b4334dd22aa6799032479a2054 |
| SHA512 | 2608953323b3ca3c269b8396e27e2883fbe3bd67a6ab0e81acf771a6370548aade116914cb5ea593e191e29684520d000f54cadfe3e8d92de089d63ebfa27681 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 59d818c4ee869e9d6d5d35c6ec33dfe4 |
| SHA1 | 5fcf28d3bcf15b16025404b5037b0585304eb9ba |
| SHA256 | 2abe7f7d3bc48260834b360bb84b6d947100e53a3b4749801903df204ccc5617 |
| SHA512 | 2ab4abce86b9b0c15f9f033ed7a0afbb55c395f6cf096e8d7cca9c84aaafb35758bf3a15a04bd7107910ed72a29f080e470458f6afec9bb9f9e6b67ea42badbe |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 46178977558fbb966d3b6c5c4bd2d4fd |
| SHA1 | c59a19c7a5a5f92c0514c286860d48605b55468e |
| SHA256 | 142132a62b954d91c80a8dcac0ed90dda5b321e3f5f70a313ac0f42975e9781a |
| SHA512 | b2f4100e8c123de01c71d283e019c8b22f665f755004daef184e4c6b68097ec2a66c872cad02d6777bb1dbb559d9dce67c32f8bcb2bcb426dce98af4407bfe11 |