hxxps://imgur[.]com/a/jBYxWTU

Analysis

max time kernel
98s
max time network
102s
platform
windows10-ltsc 2021_x64
resource
win10ltsc2021-20241023-en
resource tags

arch:x64arch:x86image:win10ltsc2021-20241023-enlocale:en-usos:windows10-ltsc 2021-x64system
submitted
19/11/2024, 16:16

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://imgur.com/a/jBYxWTU

Score

7^/10

discovery phishing

Malware Config

Signatures

A potential corporate email address has been identified in the URL: =@L
phishing

Drops file in Windows directory 1 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SystemTemp	chrome.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133765065844732625"	chrome.exe

Suspicious behavior: EnumeratesProcesses 3 IoCs

pid	Process
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 64 IoCs

pid	Process
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe
Token: SeShutdownPrivilege	3144	chrome.exe
Token: SeCreatePagefilePrivilege	3144	chrome.exe

Suspicious use of FindShellTrayWindow 27 IoCs

pid	Process
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe
3144	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3144 wrote to memory of 4232	3144	chrome.exe	81
PID 3144 wrote to memory of 4232	3144	chrome.exe	81
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 4480	3144	chrome.exe	82
PID 3144 wrote to memory of 2836	3144	chrome.exe	83
PID 3144 wrote to memory of 2836	3144	chrome.exe	83
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84
PID 3144 wrote to memory of 896	3144	chrome.exe	84

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://imgur.com/a/jBYxWTU
1⤵
- Drops file in Windows directory
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3144
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x21c,0x220,0x224,0x1f8,0x228,0x7ffef9e1cc40,0x7ffef9e1cc4c,0x7ffef9e1cc58
  2⤵
  PID:4232
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1792,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=1796 /prefetch:2
  2⤵
  PID:4480
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2180,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=2228 /prefetch:3
  2⤵
  PID:2836
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2252,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=2424 /prefetch:8
  2⤵
  PID:896
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3152,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=3180 /prefetch:1
  2⤵
  PID:4828
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3160,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=3208 /prefetch:1
  2⤵
  PID:4564
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4992,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5000 /prefetch:8
  2⤵
  PID:2620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4824,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4424 /prefetch:1
  2⤵
  PID:4348
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=4484,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4796 /prefetch:1
  2⤵
  PID:3432
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=5140,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5132 /prefetch:1
  2⤵
  PID:344
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=5264,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5292 /prefetch:1
  2⤵
  PID:4436
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=5436,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5464 /prefetch:1
  2⤵
  PID:2064
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=3700,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5400 /prefetch:1
  2⤵
  PID:4496
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5708,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5756 /prefetch:1
  2⤵
  PID:1752
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5720,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5884 /prefetch:1
  2⤵
  PID:3720
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=6032,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6064 /prefetch:1
  2⤵
  PID:4812
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=6188,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5308 /prefetch:1
  2⤵
  PID:548
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=6288,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6312 /prefetch:1
  2⤵
  PID:2400
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=6456,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6488 /prefetch:1
  2⤵
  PID:2052
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=6648,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6496 /prefetch:1
  2⤵
  PID:1608
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=6756,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6468 /prefetch:1
  2⤵
  PID:2472
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=5156,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6932 /prefetch:1
  2⤵
  PID:2164
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=7036,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7056 /prefetch:1
  2⤵
  PID:2124
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=4700,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7248 /prefetch:1
  2⤵
  PID:1252
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=7048,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7200 /prefetch:1
  2⤵
  PID:5124
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=6344,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7516 /prefetch:1
  2⤵
  PID:5228
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=7508,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7684 /prefetch:1
  2⤵
  PID:5316
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=7512,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7816 /prefetch:1
  2⤵
  PID:5372
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=7656,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7804 /prefetch:1
  2⤵
  PID:5380
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=8076,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8108 /prefetch:1
  2⤵
  PID:5480
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=7636,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8236 /prefetch:1
  2⤵
  PID:5532
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=8356,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8384 /prefetch:1
  2⤵
  PID:5588
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=8544,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8524 /prefetch:1
  2⤵
  PID:5644
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=8660,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8212 /prefetch:1
  2⤵
  PID:5744
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=7768,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8796 /prefetch:1
  2⤵
  PID:5808
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=8208,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8656 /prefetch:1
  2⤵
  PID:5912
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=7676,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6036 /prefetch:1
  2⤵
  PID:1820
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=7436,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8004 /prefetch:1
  2⤵
  PID:5860
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=7960,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7400 /prefetch:1
  2⤵
  PID:5868
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=9352,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7376 /prefetch:1
  2⤵
  PID:6068
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=7448,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=500 /prefetch:1
  2⤵
  PID:5384
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=6292,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7404 /prefetch:1
  2⤵
  PID:5276
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=9220,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9588 /prefetch:1
  2⤵
  PID:3948
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=8812,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9596 /prefetch:1
  2⤵
  PID:5288
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=7240,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8872 /prefetch:1
  2⤵
  PID:5504
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=7632,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8156 /prefetch:1
  2⤵
  PID:5408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=9700,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9472 /prefetch:1
  2⤵
  PID:5632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --field-trial-handle=9416,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9728 /prefetch:1
  2⤵
  PID:5640
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --field-trial-handle=9688,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9716 /prefetch:1
  2⤵
  PID:5948
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --field-trial-handle=8292,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9720 /prefetch:1
  2⤵
  PID:5944
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=8280,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10000 /prefetch:1
  2⤵
  PID:5956
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --field-trial-handle=8268,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10116 /prefetch:1
  2⤵
  PID:5960
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --field-trial-handle=7716,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10228 /prefetch:1
  2⤵
  PID:5908
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --field-trial-handle=10236,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6696 /prefetch:1
  2⤵
  PID:4192
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=5184,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5604 /prefetch:1
  2⤵
  PID:6160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=5220,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5200 /prefetch:1
  2⤵
  PID:6168
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=6432,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8320 /prefetch:1
  2⤵
  PID:6272
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=8332,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10280 /prefetch:1
  2⤵
  PID:6280
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --field-trial-handle=10492,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10472 /prefetch:1
  2⤵
  PID:6384
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --field-trial-handle=6412,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=836 /prefetch:1
  2⤵
  PID:6804
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --field-trial-handle=7604,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6636 /prefetch:1
  2⤵
  PID:6928
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --field-trial-handle=7524,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9816 /prefetch:1
  2⤵
  PID:6936
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --field-trial-handle=8272,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7756 /prefetch:1
  2⤵
  PID:6944
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --field-trial-handle=9856,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10320 /prefetch:1
  2⤵
  PID:6952
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --field-trial-handle=5248,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8252 /prefetch:1
  2⤵
  PID:6960
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --field-trial-handle=8012,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7572 /prefetch:1
  2⤵
  PID:6480
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --field-trial-handle=8336,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7620 /prefetch:1
  2⤵
  PID:6488
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --field-trial-handle=5596,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5292 /prefetch:1
  2⤵
  PID:5880
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --field-trial-handle=5412,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8288 /prefetch:1
  2⤵
  PID:1044
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --field-trial-handle=10632,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10652 /prefetch:1
  2⤵
  PID:3640
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --field-trial-handle=9980,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8884 /prefetch:1
  2⤵
  PID:6716
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --field-trial-handle=9796,i,7864689247703084694,9652877578671057452,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9064 /prefetch:1
  2⤵
  PID:6292

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:4496

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:4236

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
c65c8df9f6ea526315e0fae352c5ed09

SHA1
0e4cd158cbbd0bc3f312bb6e1844f70b41d0958e

SHA256
84e941207fe66cd63b89627c9d7bed71670606bcca5f5dab64bba5cf7c8792dc

SHA512
3613a8b51e0f97b7d90674ca5b851926120285c114a34fd33f0c1f9176cb1edd60b47b4a3321b9e40cbb25818959d19317778c6c3776bbb2e72ee5f51f7c2629

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002d

Filesize
67KB

MD5
672459215c78c87c86cfe4af0efe598f

SHA1
cad4b454aa573f8c199cd63f3eb8b8f9c25f03c3

SHA256
d17075e32e425f00b58b4d38c3b733019d49990bca81e3a9fbe059460f30e6b8

SHA512
eb01a2d53bfb29e8925d9d96c02c245bda9a388c1a6f4415717711f9d0acc3942f9b6dd670b2f66ec5e23ba4a168a5ce1df47df204d690091817e61e86fa05ba

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002e

Filesize
20KB

MD5
e688553c6fbe0a656a84407dd3cf282b

SHA1
18853957b35a70d61285d19d6495cb1c06e68c6f

SHA256
d66c3d59dedd75e0c6407b736716303e2a19c717c912ceb4506ef580c925bf83

SHA512
dce4ad3e23a9bfab17b844ad45a5a49a1ad1ad5bccbf79444b59dbbc54a608bfda82b35fd36a166fefa032d9cf4782fa9307e1189e30933b320acc83b45a5c5f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
24380e9af8036051349840cc87cbab92

SHA1
23e3996203b3954091a1ab4b75b45bc8d0a18a57

SHA256
0d78f62c59699e9ed9998dd9e147ffb2b57e9679472315975092ba6f32b91d56

SHA512
c6b3f8b1068f4c3483cc905577911f94245d3efc0916ad51fe416a22ef4b839b45ec3905e429106dd64d040d72fe03586ef41808440f7a8c9bfd6a9f36ed3380

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
6f0d6bcbfcdb97b6dfb5e7e57648e5de

SHA1
78cdc64dcfa3b6351f7a4493482ac2ac326e2134

SHA256
5561694898d98c142c16e3f27483ee8e90bb54c61e40638f08e4969fae83e3ab

SHA512
e9101d0dea6e510eb13690932566f60f3d863072118f1296e1535c47ac81e3eb99277df95e93e5a3993664bb3a719bdfa1b2728f99e7887a07d661679b5829e6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
fa73d12d88c5ed3f3f275baca679e5ab

SHA1
369b6191caad64df507afbbd0c6ee9065954c9e6

SHA256
4741b3b44b38a4ecb341cfe4fe43107d8ddf1638556ff59f4bfd06cddcbc2e45

SHA512
0ebb9365735a193230c21a40946d453f21ae4f358a316a78243bf152f2aba001d05f0752843b3b64a7eb42d84bbf1456b6023f5284ff8a8a9c41938ebc8d80f4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\DawnCache\data_1

Filesize
264KB

MD5
784e929369d4db418f92ed3013289738

SHA1
4fb8a9ca2f60a372cc22a06e5b89312ca6b1526c

SHA256
f9a68ffd32d846ebf760ea0ffaf57cc5ef3cde7fd02f94ab4473dd8f4a7b9b2d

SHA512
0210570b739f2e7f0d123d6b919b07cc09a9873a0d601ae25cf648b5e5f23c5dface603e2d038bcc8545bd797d75b2ddff76ff0775e02f4ac8d1dd9f2f5b6011

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
22KB

MD5
07d05e03c7569971dcd8034d9b654721

SHA1
b3965d9453ba2eb1efcdab76d63bde99ff2aa874

SHA256
3887f19ef548ccd6b236b0b5be42ff6589890bffd1a22a1dc53e029537866bae

SHA512
dbcfa46a7330bfd6ad7c80796244a7ba310127e602d7aaaa944a1ac3ec737f1ddfc538ff7898b9c959a15c35994c7a5810410db914f8469fe7bcdf33306f1992

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
29KB

MD5
8e62b8438d3a8f500fab28025ea59581

SHA1
f59b8989a9ede07573a45439ebd7b18ad00f3cd1

SHA256
f4f98e0a6f73280943963826b4d745fb01f0ac7499e3ce14cd66091f2119d488

SHA512
f65f172be810110495e17f2eac76a05bdcd8d66490f2ae0dad7ce090ce7c32962f126e6be21a050b060044cb6c16cede9a3cf8be90ee5e3339d8044ad357fa9a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
0a6b026ba8144d8be63625ca5732d990

SHA1
adb28e0e8d7a1ca8c73e244c22455c7ac1063cfd

SHA256
450958918f53aab141a4b95a17d2be411a8d211688fa35f8afca901fb7ff8d1a

SHA512
221ce2156386085506502fbd6c9c14a22850bcc3b9138debc5eb9e18324aa4bb4eed38e327f966d4af1ce05ce85237b9747776355e9c175f902c88f6bf26af05

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
28d26b8e85e4952f140116b19b224a39

SHA1
58baf26f55f2f1ad6c76ea79098b23dd9c954c6a

SHA256
c1498c345b8b615e9b6ad59a0b45626c46b9623c84d608492dafd9b395b89e55

SHA512
ca97a9e0410fa492fec7a0b72178b999e75719fb2ef0e3fe3d6a8f71a8257f095bbddd1a3c02bffd0550a70e13995084ac94b04bfda1a4afda346f3b911b54ad

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
2b6ccf4a8699dc3a15c19a2d758b51ac

SHA1
5295d1511fe0c3ea2c5a5df22c49f29868e5a61e

SHA256
33bd6fd09ca2bcbaf3342648af56e6ac9534c16f4c6cadfd03502d848b7c504f

SHA512
81aff2ebbc14161c8468f237c0da8eee155c9362fff98e9250e9c7eddac813fd1102c8d65cb53043428bd324311bdcea1a161cb9dfeb712ae5d29cf41709b89c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
ee6ba78744ea39b1303337c3b333e2c0

SHA1
989b3602bcc43f2ec8b33d35bda4250f2f6b52ae

SHA256
724b788d0a68d47d4b27264eb9f20c49d41734745fa7a3404d235c6cec70be8c

SHA512
af044b9dd86ab134a01b5da2592c9507d29ad5e364c51f0200586600b7f1020ac7f0118034e03f12d22a789dd9d73a740989208f330e3adf1c41f96894d68386

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
070d1db6f99ddf2a8177c4dae229224e

SHA1
41a24f59cc6bd69f1fb510686026bb7b55e45ce9

SHA256
ecd85c4aa35117d2a161b8fd22868ee114cbd83f75eef378b970aa9cdfb98279

SHA512
02a29e4d659c8558e070a870551c026ea41aa0f0ce3ec13b595288f51cb76c76e482243ebe0a7ff9bd0ee08a5c603dc8c7a04d04898f097bd9da8be1a24eabe9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
b1ec38e972fa814b2a0d7c3f85784fe2

SHA1
f9639397bca3e047f480c9d1318cd920162d3e20

SHA256
fd83e8371c1a214d197b0c5e261596386e7d11d8cb05ede10aa64d629ead6bc2

SHA512
439977ee940eecc38e8e27ac2d31c6cd90a5cafcecd4ff50ce7a0f5bb4ebca73d07889c5082b12aaa1f57064d5ba2658f0782bb4277dc3d2150d00bc6a933704

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
dbb82ad2279d2b16e96ebae3486c3648

SHA1
06ef58f769c07a4f2ea03ff6ce88f5b76e60d19b

SHA256
53a587bb1d6b0ffbe5215fa1d52401418ccbcb8190bce4b7a4a369266373104d

SHA512
cdc8f14f0cf5809db5eb6a2c55556cbb20daebbf578cad1033e4edc257f4040c01003ecaccd8bf5d89310b16e080e1fe314a57d4ed789214c52c17177aeb013b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
cff9b1307c9c1a86d668becb322647a5

SHA1
8d1acc468cc430ca18a146469c63f6433defb262

SHA256
f4c201c8894f9bce4d30d15ee71686dcc1cb820180789b985ce896f8fc012d34

SHA512
55bb96f8fbe5783291bee159915e6880813a2196fb4a0b7aa5f53db01c2a366b343869d9e1bcbe473314e866fef49c3595d7c0601735b3878311db2d40f11faf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
31129758791e47992949b6f716d44fc8

SHA1
28152dd6e7e1d67e6bbf605d6ba0be8f2b2a7cd3

SHA256
48f17735aa84a7c5104fe27aac2410c9e98b6f290b4896ad4370882aab849a69

SHA512
5ece1a4089119a5312cbf2f186a956dc81febc376701f59b2fc5e7378e4a6a9de0682c5851127e70fb43cc66a03cbc1e3b53972959ebb7f355e38c6f85ccb0c1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
5185172990e3bdd8513a0c4a94a52914

SHA1
1aeefaeba41d0e260a3e51eb2566a355053a220d

SHA256
2e705a0769c6bab63ddb547a8bea929ab837f42e46d5e6ceaa797e65a1e03962

SHA512
f8acb00e150754548b5a83e33f3af39982943d9231607e924dced53756b9f47528ab1f3d2b6c401f3e80d350afe0a9cad3ca766c0dc51b702fd1cbbb50f6d833

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\IndexedDB\indexeddb.leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\IndexedDB\indexeddb.leveldb\MANIFEST-000001

Filesize
23B

MD5
3fd11ff447c1ee23538dc4d9724427a3

SHA1
1335e6f71cc4e3cf7025233523b4760f8893e9c9

SHA256
720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed

SHA512
10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
118KB

MD5
f8aefe5e3a724a6652fcca861e175258

SHA1
904b5d01cc0ad42b9e14768e6e2597f15d34ce70

SHA256
a57c02024159d4a876bb56453df113fad4eeff23c1b6f256c6400eeaa38edd6f

SHA512
487209623d62679f4afb5a3ae75386623f261a1f10602cca045d1cc438c417359a9bfef370327258ca79eac1af08320d1a579329c2fe7afb06f3c7f8b7e76d10

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
118KB

MD5
b606de4f434661189450de3aa91acc67

SHA1
b00d992f9edae6005e2ebeff7e6fafb817dbe317

SHA256
528a8e1a77ebf90570d8c2ba6cd8a0984dc824d8eab971e217a7209c287c6faf

SHA512
d21bb8dde92dc8918d3fe5872fc7f3b4f63f0747dd625cc0b73e1fef6f627d15d504290cb5ad740ecb3c89d5bdcd8bc05c432df934a0332a3918bc7c0bedfc13

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
118KB

MD5
35b03c15b83133e9042ef4e644a99f96

SHA1
5916a2445b0c2625719e2e17ba5f21410f02aadd

SHA256
c2bbfc4a04ecf47670cae6630bc4a2e0f44904bbc2f77eab21cacd6a2dae74c7

SHA512
d2f89c7f66b1be59bd733eff84240871c4420ec06313d909024320a132bca33c50bc5298b4cbef2c820239bf5e90e1374286d50f87831cfbb9c4d8cf5f56088c

Download Submit