hxxps://www[.]hsca[.]in/

Analysis

max time kernel
149s
max time network
140s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
20/11/2024, 00:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://www.hsca.in/

Score

3^/10

discovery

Malware Config

Signatures

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133765346861343666"	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
4976	chrome.exe
4976	chrome.exe
5048	chrome.exe
5048	chrome.exe
5048	chrome.exe
5048	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 4 IoCs

pid	Process
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe
Token: SeShutdownPrivilege	4976	chrome.exe
Token: SeCreatePagefilePrivilege	4976	chrome.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe
4976	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4976 wrote to memory of 3264	4976	chrome.exe	83
PID 4976 wrote to memory of 3264	4976	chrome.exe	83
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 4856	4976	chrome.exe	84
PID 4976 wrote to memory of 3988	4976	chrome.exe	85
PID 4976 wrote to memory of 3988	4976	chrome.exe	85
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86
PID 4976 wrote to memory of 4288	4976	chrome.exe	86

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://www.hsca.in/
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4976
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ffd8dfdcc40,0x7ffd8dfdcc4c,0x7ffd8dfdcc58
  2⤵
  PID:3264
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1860,i,12894547440410203205,691540600848694364,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1856 /prefetch:2
  2⤵
  PID:4856
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2152,i,12894547440410203205,691540600848694364,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2180 /prefetch:3
  2⤵
  PID:3988
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2252,i,12894547440410203205,691540600848694364,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2264 /prefetch:8
  2⤵
  PID:4288
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3140,i,12894547440410203205,691540600848694364,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3184 /prefetch:1
  2⤵
  PID:2836
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3148,i,12894547440410203205,691540600848694364,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3300 /prefetch:1
  2⤵
  PID:3244
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=3756,i,12894547440410203205,691540600848694364,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4528 /prefetch:1
  2⤵
  PID:3288
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=3488,i,12894547440410203205,691540600848694364,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4496 /prefetch:8
  2⤵
  PID:4736
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=4832,i,12894547440410203205,691540600848694364,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4496 /prefetch:1
  2⤵
  PID:3280
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=4712,i,12894547440410203205,691540600848694364,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3744 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:5048

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:4284

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:3832

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
067a4493d5168d2c28d22566734d9a70

SHA1
81d91c814356bf928d4c304b1aa71ea5b4d5a8e4

SHA256
61652646f11d8fa3f34ec684b5248327971717596aa4ad3204b0e8db730579b4

SHA512
538c94ac362348a030ee81be70f6adc31b77d6a063a06e26cd4c5b663b0530d991e016635dbc6ce7ccd929c45b819e3af51147dcc1ad5edbeb241cfeaf13baee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
936B

MD5
1733907d7053247f3e0a6f69ce82ba40

SHA1
1d7bcfc91c3b109e9e4712bb769b23b2c1d8eeca

SHA256
d824edc3cb47cc1f33b7825768cf62c65377f9d151fb031bce14680b4f5f1ca9

SHA512
1740270df5df5d524f7e728110e13e56149ed373b4e3234726014d8151698406e53e57a2dde233f33170044fa8ad0e11c320fc4172320b38e7451818a8e4dde3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
db4388cce6428a5a313da7d1e99920e8

SHA1
e8ca03616b339753dacd1f381025d39eda9aed4d

SHA256
ac9cfce8503746b6df47f9a269032b1dae22218bc182421e7b5046d62a7f4646

SHA512
b87dabdc373ac55aaa87e6cfefa2798fbaccf971652f5ae6899c951f19e84c3e5c558eedb876fce7ef72e2aba332e337e9eff780862e56df5791ec3f66b6208a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
4c3fc1fd1fc8d4283753b5ded12eac2d

SHA1
8a31643f0d1739484ca0548d94b4c5f30ee21ff3

SHA256
469c50db20a4c54ef9454d05f7edd6f6ef881a9a604424eb54b9bc818c61995d

SHA512
9cdadde3ae242582c7fc3a9a2b6d1a4e3a64034836970de631af7ede555c70c8894fa07942fb0a122d83aee117eb88fad42dc421ee9f7eee8c71efc075a25139

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
857B

MD5
6150c99e16529473477de715f4962fd4

SHA1
e22c0b19d14701ef57095665cf56070c22f59f81

SHA256
f92c6cef2b280f20c0b38bb48438b9a053b5dde3d4b29e2d6f2388259e7c8c95

SHA512
3e3948b8efa54f9a0c5169772204bd6006f643fc8cd64470a2980dc9fc647377af80cd71b15e54afa1a07d5fe2b07c8da92b03c04be5e64ef921cc8e894cf890

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
4466786ef535b5fda729353bd7d21433

SHA1
b57ac0e34a8e4fa41776a33e09b64edd6adb9ef8

SHA256
ba89bf3aacb820ba33508119ebcb7651f87b037d56f342779eab468e06f70ad5

SHA512
c7717b35c94a27f9d567bd9612a4e5483a06735cac37e8876438ca60ff487066dd583d1b63c51fd6269d4d71d838f7c8ccd5c9a149a9ceec9daebc49750ae2b6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
5f3a95c9ac4d1cfd94e652d343dbc2b9

SHA1
0bdfc8b8694bfad0a81f75cb8078bf296e2aee70

SHA256
21b98fbb22fed8c6836bcbda667344a10b97bcac5385f9444b33371e38210078

SHA512
265a981ddc938ed2aca85b67c35de7aa33371b70159d4ed26d37f32f2566dd51004aabd6329100737825f353be1a03482c9809f9d1b4f1440a94707519ca2f01

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
cc9662070b6afec1c49b9079ffe653d6

SHA1
1a4c080d3dc8454a019c170a0bb0a1e183a3bcac

SHA256
0e1cc230c74997babdc4a77301bb23f732de1a8e0624beb83ef9c815701dabcf

SHA512
15c102f1c6a28a5af9ffee8765fd8ddb738773bcc4a64eb97671a7e41fbb37bc4a1b4e35776259e42db506743d2230c30a272d26cb7aacd0abe4b72143eaa178

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
5ecc47b1f034ce5cf3cd930737332c84

SHA1
5df0d6261408f65f435c57e023009959b3af0565

SHA256
b6074b7f0c7f4f66aa455a06d1aa36f38e15a08c6abd02a9e4e8dd6364e20912

SHA512
f503e41a7c6a49ca0d6f2499802814d8499b7bdc5c0b84e8b9021487373d59d1060d49cfc24915a4c03008518d1edd38135f9128567ea0cadb3af95471a9343e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
381c46ac929e6da1016072a4a86c5635

SHA1
427c85b8aade53456964a38f9a964d818b9f6f05

SHA256
63e328b9541797cfc7793f7abd07091c3d32fe4bc3e6fab20d9f156d79dbe428

SHA512
0c8421f78fdfb62a7d48377a3d091d16698ae1785770003de152d5ca431d907c698aa3e61c277fb1f59c966549787fe2e0411018bc654d4526f161804925057d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
55a9d17c96c4f429ae7054e944415454

SHA1
e585e3a364c6176ea0484fac70250bc7255a3985

SHA256
46028d802a22bbe3c4043393b0a02118f5f8307c9ab10cbb72a7a03fd5e59366

SHA512
ec4327bdf8f10c379ae93dc049abf2ff31553c96561b61db19c60457d4ec06ccbfd46901cce183e44dd843865afd63e027c23bd2006e5e8cb41fb7c46485b630

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
a63727c38995268dbbb08815a789abd2

SHA1
d906b39b7d378a8377553a9922be4a69ec67ed52

SHA256
cb0cbdab1372f5f4cd2ef80607a0b816b61dda4c0c38e645ea740ee8d4b84476

SHA512
e0438f4483a53f0b5de828f6f0e3abbb4b599419bca327a2843f4a46cad5b85687c893fa88d5cad3d14798a8793864ba292d843183cf8ff43d3404ecf4b1e6bb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
9ef9407d42be4484243165977953be05

SHA1
4f6013c16c42b0e8f94f1a6d45300a389b8b7c7c

SHA256
e79f24d33b4aa7edc5bdbf85d06aaeccd295bc9552acfbcc55d708122328e08c

SHA512
0db46ccc7c2304b51d1e5f69c4084f9095d228cbc66ca256b9fa841ced0de6374792d52a112c2e9b3998fec0e874a5fa01718281b13bf5223531cd1c9b5956e6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
541d5105357c644a962218b7c6ad7739

SHA1
aa4628d7ebc55d52b7cf7217aa7fb46149cf08c8

SHA256
9a1cd9a7b1161f4f79e7e2bb36e0c3e5d54bdbf93cd5d2227fb9b3fc85b6aedc

SHA512
b44af84b950dff2ba3d99e8935f6430516c0650a1ec4f48448d77dc7455db840fe90f99b4754743666a3f60d44de48918985bbc8373ef775df4d7d64edaf2b29

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
b368b85006ae704240fc6810ab41db3a

SHA1
f487d8ecf41423f50957f997e2d407b7490df669

SHA256
c3c190134cb6e0e5379d88d3b84cf1d144e14d276f969e6873838ec163262e78

SHA512
24f27180f63c16edc32e2a1835f38d56b9e5bdcdba607432b1f34e0eef6ff8d2cafdabe05bbfa6f6b20d4d99cd26e837606c78e085cfa844cd84c99e60f96b87

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
77f8fdacbeaa83a76b60ef765ba10502

SHA1
ce26aedec7a683bc588c20d8c2e2db811ec8f015

SHA256
d2b9d446c4f08fa432aee8b7b6b793fe38907ea5b02911e9cc5b0a566241354f

SHA512
1971ef266da4744091e66975362ddcff3cdec5804117c08f11eb2094c71257dddd981c71c4d6dae0d4e3d08b8f56c1a1e4666b6855a637efea95d760643a67ea

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
634ea112729b8f5d0dee9c028fb15242

SHA1
a74bd3f9228c8d3da18d8237b0eacf8e55083241

SHA256
76b0c45bb4e56799dc58e5755bf70547d8ce2211e82d434c710ad2872eeb277d

SHA512
e69642d1a072f272d7c33f717b83f5d0e07753fdb7f3441725acc63ef0dcb6fd62b14d2d129d442ab7b05742a3ac9c59434974d618569cb794e054ef0b1186cc

Download Submit