hxxps://buxgen[.]tiiny[.]site

Analysis

max time kernel
659s
max time network
663s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
23/11/2024, 23:59

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://buxgen.tiiny.site

Score

8^/10

paypal discovery phishing spyware stealer

Malware Config

Signatures

Downloads MZ/PE file
A potential corporate email address has been identified in the URL: [email protected]
phishing
A potential corporate email address has been identified in the URL: [email protected]
phishing
A potential corporate email address has been identified in the URL: [email protected]
phishing
A potential corporate email address has been identified in the URL: [email protected]
phishing
A potential corporate email address has been identified in the URL: [email protected]
phishing

Executes dropped EXE 9 IoCs

pid	Process
5848	OperaGXSetup.exe
1656	setup.exe
3648	setup.exe
2840	setup.exe
5376	setup.exe
2052	setup.exe
1904	Opera_GX_assistant_73.0.3856.382_Setup.exe_sfx.exe
5812	assistant_installer.exe
4556	assistant_installer.exe

Loads dropped DLL 5 IoCs

pid	Process
1656	setup.exe
3648	setup.exe
2840	setup.exe
5376	setup.exe
2052	setup.exe

Reads user/profile data of web browsers 3 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials In Files
T1552.001

Credentials from Web Browsers
T1555.003

Enumerates connected drives 3 TTPs 4 IoCs

Attempts to read the root path of hard drives other than the default C: drive.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
File opened (read-only)	\??\D:	setup.exe
File opened (read-only)	\??\F:	setup.exe
File opened (read-only)	\??\D:	setup.exe
File opened (read-only)	\??\F:	setup.exe

Detected potential entity reuse from brand PAYPAL.
phishing paypal
Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

System Location Discovery: System Language Discovery 1 TTPs 9 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	OperaGXSetup.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	setup.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	setup.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	setup.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	assistant_installer.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	setup.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	setup.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Opera_GX_assistant_73.0.3856.382_Setup.exe_sfx.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	assistant_installer.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133768799950081808"	chrome.exe

Modifies registry class 2 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-2437139445-1151884604-3026847218-1000\{B9BA6EA8-C323-4824-BDEE-2011C80A2D3E}	chrome.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1f3427c8-5c10-4210-aa03-2ee45287d668}\Instance\	chrome.exe

Modifies system certificate store 2 TTPs 6 IoCs

evasion spyware trojan

Install Root Certificate

T1553.004

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4	setup.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4\Blob = 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	setup.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4\Blob = 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	setup.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25	setup.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25\Blob = 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	setup.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25\Blob = 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	setup.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
3240	chrome.exe
3240	chrome.exe
4984	chrome.exe
4984	chrome.exe
4984	chrome.exe
4984	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 46 IoCs

pid	Process
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: 33	996	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	996	AUDIODG.EXE
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe
Token: SeShutdownPrivilege	3240	chrome.exe
Token: SeCreatePagefilePrivilege	3240	chrome.exe

Suspicious use of FindShellTrayWindow 53 IoCs

pid	Process
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe

Suspicious use of SendNotifyMessage 34 IoCs

pid	Process
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe
3240	chrome.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1656	setup.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3240 wrote to memory of 4992	3240	chrome.exe	83
PID 3240 wrote to memory of 4992	3240	chrome.exe	83
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 3460	3240	chrome.exe	84
PID 3240 wrote to memory of 2640	3240	chrome.exe	85
PID 3240 wrote to memory of 2640	3240	chrome.exe	85
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86
PID 3240 wrote to memory of 412	3240	chrome.exe	86

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://buxgen.tiiny.site
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3240
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7fffa6a6cc40,0x7fffa6a6cc4c,0x7fffa6a6cc58
  2⤵
  PID:4992
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1788,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1828 /prefetch:2
  2⤵
  PID:3460
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2132,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2204 /prefetch:3
  2⤵
  PID:2640
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2232,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2308 /prefetch:8
  2⤵
  PID:412
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3116,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3128 /prefetch:1
  2⤵
  PID:2584
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3108,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3180 /prefetch:1
  2⤵
  PID:3000
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4488,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4600 /prefetch:8
  2⤵
  PID:5116
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4616,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4804 /prefetch:1
  2⤵
  PID:3544
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=4608,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4960 /prefetch:1
  2⤵
  PID:1732
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --field-trial-handle=3400,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3384 /prefetch:8
  2⤵
  PID:2972
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=3372,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5140 /prefetch:8
  2⤵
  - Modifies registry class
  PID:4784
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5252,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5272 /prefetch:8
  2⤵
  PID:1768
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5468,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5512 /prefetch:8
  2⤵
  - Modifies registry class
  PID:5096
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5680,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5572 /prefetch:1
  2⤵
  PID:632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5688,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5196 /prefetch:1
  2⤵
  PID:324
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5496,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5668 /prefetch:1
  2⤵
  PID:5056
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5296,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5600 /prefetch:1
  2⤵
  PID:2668
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=5452,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5504 /prefetch:1
  2⤵
  PID:2148
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5544,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4928 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4984
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=3176,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4928 /prefetch:1
  2⤵
  PID:3944
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=5036,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3268 /prefetch:1
  2⤵
  PID:1548
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=3992,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5640 /prefetch:1
  2⤵
  PID:3412
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=6036,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6100 /prefetch:1
  2⤵
  PID:3128
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=5956,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2752 /prefetch:1
  2⤵
  PID:3036
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=4336,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5016 /prefetch:1
  2⤵
  PID:1916
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=5968,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5424 /prefetch:1
  2⤵
  PID:1652
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=5712,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6204 /prefetch:1
  2⤵
  PID:5028
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=6372,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6352 /prefetch:1
  2⤵
  PID:4720
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=6536,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6552 /prefetch:1
  2⤵
  PID:440
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=6704,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6680 /prefetch:1
  2⤵
  PID:4016
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=6972,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6856 /prefetch:1
  2⤵
  PID:1632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=5108,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6820 /prefetch:1
  2⤵
  PID:3504
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=6528,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6980 /prefetch:1
  2⤵
  PID:4736
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=6992,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7124 /prefetch:1
  2⤵
  PID:4224
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=7516,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7396 /prefetch:1
  2⤵
  PID:5116
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=7308,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7584 /prefetch:1
  2⤵
  PID:4284
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=7800,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7780 /prefetch:1
  2⤵
  PID:3336
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=7464,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6744 /prefetch:1
  2⤵
  PID:4796
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=7432,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7104 /prefetch:1
  2⤵
  PID:3100
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=7456,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7380 /prefetch:1
  2⤵
  PID:3856
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=8292,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7460 /prefetch:1
  2⤵
  PID:2292
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=7212,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7992 /prefetch:1
  2⤵
  PID:4736
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=7720,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3540 /prefetch:1
  2⤵
  PID:4688
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=8280,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8264 /prefetch:1
  2⤵
  PID:4004
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=8176,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8128 /prefetch:1
  2⤵
  PID:4328
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=7716,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8352 /prefetch:1
  2⤵
  PID:4324
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=8036,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7260 /prefetch:1
  2⤵
  PID:4040
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --field-trial-handle=8236,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8496 /prefetch:1
  2⤵
  PID:5948
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --field-trial-handle=6816,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6932 /prefetch:1
  2⤵
  PID:6004
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --field-trial-handle=8024,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8580 /prefetch:1
  2⤵
  PID:5400
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=6952,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6964 /prefetch:1
  2⤵
  PID:5324
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6160,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6152 /prefetch:8
  2⤵
  PID:2260
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6188,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4788 /prefetch:8
  2⤵
  PID:180
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4624,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8316 /prefetch:8
  2⤵
  PID:5828
- C:\Users\Admin\Downloads\OperaGXSetup.exe
  "C:\Users\Admin\Downloads\OperaGXSetup.exe"
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:5848
- - C:\Users\Admin\AppData\Local\Temp\7zS8D6A2A7F\setup.exe
    C:\Users\Admin\AppData\Local\Temp\7zS8D6A2A7F\setup.exe --server-tracking-blob=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
    3⤵
    - Executes dropped EXE
    - Loads dropped DLL
    - Enumerates connected drives
    - System Location Discovery: System Language Discovery
    - Modifies system certificate store
    - Suspicious use of SetWindowsHookEx
    PID:1656
  - - C:\Users\Admin\AppData\Local\Temp\7zS8D6A2A7F\setup.exe
      C:\Users\Admin\AppData\Local\Temp\7zS8D6A2A7F\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector-2.opera.com/ --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=114.0.5282.218 --initial-client-data=0x330,0x334,0x338,0x30c,0x33c,0x74ae8c5c,0x74ae8c68,0x74ae8c74
      4⤵
      Executes dropped EXE
      Loads dropped DLL
      System Location Discovery: System Language Discovery
      PID:3648
  - - C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\setup.exe
      "C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\setup.exe" --version
      4⤵
      Executes dropped EXE
      Loads dropped DLL
      System Location Discovery: System Language Discovery
      PID:2840
  - - C:\Users\Admin\AppData\Local\Temp\7zS8D6A2A7F\setup.exe
      "C:\Users\Admin\AppData\Local\Temp\7zS8D6A2A7F\setup.exe" --backend --install --import-browser-data=0 --enable-stats=1 --enable-installer-stats=1 --consent-given=1 --general-interests=1 --general-location=1 --personalized-content=1 --personalized-ads=1 --vought_browser=0 --launchopera=1 --installfolder="C:\Users\Admin\AppData\Local\Programs\Opera GX" --profile-folder --language=en --singleprofile=0 --copyonly=0 --allusers=0 --setdefaultbrowser=1 --pintotaskbar=1 --pintostartmenu=1 --run-at-startup=1 --server-tracking-data=server_tracking_data --initial-pid=1656 --package-dir-prefix="C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_20241124000804" --session-guid=232436c8-413a-4007-859c-0b9da7f348eb --server-tracking-blob=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 --desktopshortcut=1 --wait-for-package --initial-proc-handle=7409000000000000
      4⤵
      Executes dropped EXE
      Loads dropped DLL
      Enumerates connected drives
      System Location Discovery: System Language Discovery
      PID:5376
    - - C:\Users\Admin\AppData\Local\Temp\7zS8D6A2A7F\setup.exe
        
        C:\Users\Admin\AppData\Local\Temp\7zS8D6A2A7F\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector-2.opera.com/ --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=114.0.5282.218 --initial-client-data=0x320,0x324,0x328,0x2fc,0x32c,0x72338c5c,0x72338c68,0x72338c74
        5⤵
        Executes dropped EXE
        Loads dropped DLL
        System Location Discovery: System Language Discovery
        
        PID:2052
  - - C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411240008041\assistant\Opera_GX_assistant_73.0.3856.382_Setup.exe_sfx.exe
      "C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411240008041\assistant\Opera_GX_assistant_73.0.3856.382_Setup.exe_sfx.exe"
      4⤵
      Executes dropped EXE
      System Location Discovery: System Language Discovery
      PID:1904
  - - C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411240008041\assistant\assistant_installer.exe
      "C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411240008041\assistant\assistant_installer.exe" --version
      4⤵
      Executes dropped EXE
      System Location Discovery: System Language Discovery
      PID:5812
    - - C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411240008041\assistant\assistant_installer.exe
        
        "C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411240008041\assistant\assistant_installer.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=73.0.3856.382 --initial-client-data=0x288,0x28c,0x290,0x264,0x294,0xee4f48,0xee4f58,0xee4f64
        5⤵
        Executes dropped EXE
        System Location Discovery: System Language Discovery
        
        PID:4556
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=6732,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6672 /prefetch:1
  2⤵
  PID:2368
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=6216,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7272 /prefetch:1
  2⤵
  PID:2976
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=7888,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7988 /prefetch:1
  2⤵
  PID:1768
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=5060,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5976 /prefetch:1
  2⤵
  PID:804
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --field-trial-handle=7792,i,11763557720721106380,17651888653596643100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7616 /prefetch:1
  2⤵
  PID:6112

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:4220

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:4960

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x4fc 0x41c
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:996

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x4fc 0x41c
1⤵
PID:4144

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Credentials from Password Stores

T1555

Credentials from Web Browsers

T1555.003

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

Browser Information Discovery

T1217

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
53f896e6ec3a1c85c0d9124da3b7380e

SHA1
f4b222bb0b3fda0f2ab34768d1d086bc6533575e

SHA256
17445b99fe65252ca0a67cde3f5d2b1feb0224d39f52d1641ae0bb8dd0282453

SHA512
512cd2d07e1e7ebe78ddf8f5c5a682a30a0a9a1f55099a466ddd54c351295a92f4ac4946ebf4218d6353a3148ac38a2dbc07c9f96e12042868acce13c9edb1c3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\3ce5f511-2779-4a73-8d62-43a0c2f9cab4.tmp

Filesize
14KB

MD5
27a829790822cb0621fa1b6604ea4470

SHA1
b0f03bd563c842eabb8dd727aa0605de876c87b5

SHA256
9123714fea14a3aa3a0e80ffc225820f608f39461049070c6b559cc573e8c5b9

SHA512
034ef0590ff92f1d14c93bd0fcb9301297868bd86cc26386687237e3f0cf82db4e8d4892353c122828c54424b014d73c1491e701f8804c209dc519f914faecd0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
0bf965f9f60d0c65d8ba1ab9a75b15d2

SHA1
31979f1bebb4499226cbd8311d2baa7c524ccb50

SHA256
c04ad40d23c128af67af894a8e30556aaab2a52f9a4196f490af414bd1a3d4c8

SHA512
0208b85d7bd252199dc057189a7450023169f2f51abe455c4fcb2c735ea2236214ab7ebda65e4261226e977c4633a13ea90be0d5ad0622ef458ccce34cc24684

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

Filesize
49KB

MD5
9c03982e4ed2efc93a65fe9fdd3b5991

SHA1
d7c31690a7b4b861f7fa36158bd5fd336ed7c459

SHA256
2b23bfa90d84307a27d61b1d4f3d9b14141ffa249d0cefe2ba3b68330cbe5f97

SHA512
d2e6cd7a605c2a377a4a5c80116273c242cdc1e5c6b36683024d12af59a7dc518dab826a39bbc665a822baf53d817d60d019803f3816abeaa9029c4b67bb3f06

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015

Filesize
617KB

MD5
5f68de3a9fe2532aa4ff04097df4f272

SHA1
fa0801ad789220ac5f93c1cb1a0356cc157792b2

SHA256
e1117461878eb28381c0777eef1bf8ec226826056e631ba72006a67c07aceae2

SHA512
df92065a0105e3718efa066bddf3121ce586b69d3dde4e64293ed483d34e162d3d567b01a934a2750853a4a161ec7d19ac41753feed44431d6d9f634b79ab6bd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016

Filesize
33KB

MD5
383b0cf9c1ad6f185bcae0daadd3a542

SHA1
a4d3ec3ae12e9586c62ff18bb8311ae697f10c3e

SHA256
3aee4b10da5eb1bd91dc1ef2d158e4984659dd164a5250f3944710c610caa62b

SHA512
53ff30f96d32f6261b2063ab723c2e17feebf1a259d96263db8f923550bf813ba7d90118d81c43dd37e250487d709f8909ee61fbd6e014d4ed6c198ab9cd387c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017

Filesize
32KB

MD5
e8caf9aa03a76568d4dfb4bce1c070b2

SHA1
929a63300cc8b20e5d06dc052ec862b9b5df3a1f

SHA256
d6aba74a90bcbe4a59e6d0d336f0354327449ceb67ad46dc1cd0ac0b8258173b

SHA512
8e9f6d753624a0370581340612ace94e8c1c62bc64b0b4c39035721c6d088bf77b544b9f0e380c5038d0a101e8500ca8fab589c38ba1d1137df9d3f3bf140658

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000034

Filesize
215KB

MD5
2be38925751dc3580e84c3af3a87f98d

SHA1
8a390d24e6588bef5da1d3db713784c11ca58921

SHA256
1412046f2516b688d644ff26b6c7ef2275b6c8f132eb809bd32e118208a4ec1b

SHA512
1341ffc84f16c1247eb0e9baacd26a70c6b9ee904bc2861e55b092263613c0f09072efd174b3e649a347ef3192ae92d7807cc4f5782f8fd07389703d75c4c4e2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000037

Filesize
24KB

MD5
87c2b09a983584b04a63f3ff44064d64

SHA1
8796d5ef1ad1196309ef582cecef3ab95db27043

SHA256
d4a4a801c412a8324a19f21511a7880815b373628e66016bc1785a5a85e0afb0

SHA512
df1f0d6f5f53306887b0b16364651bda9cdc28b8ea74b2d46b2530c6772a724422b33bbdcd7c33d724d2fd4a973e1e9dbc4b654c9c53981386c341620c337067

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000039

Filesize
72KB

MD5
eefb3b7038040a2b45001d9b00e3614c

SHA1
64f409fcd8dba116aa15366783133833ea2e29e1

SHA256
d6def6ae11d1cf9bc2c244af00ffe3c6161263c26212e4009c613a02c8a9ea76

SHA512
d463a84948b07ac2b1c51f471e21e592f84b249f6a0f58853f3e38a357068b8a6e9d33de1146e187bee9c586bbb3525b7397f2f1b4f2a2c66d784e50385bc121

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003a

Filesize
411KB

MD5
c8974767de050dbaa83acaaada1da1a4

SHA1
6028fa4b493e8ef8b380512afc4a2958a314aaea

SHA256
cab2a5401aaa512e2f7a80c8298f8a033acf10a97dcbfedbbabf483c10b51ca9

SHA512
1ac0ff8daee141dc92729f96a99e21fcbe98f5594ac7a489c31cba2f7a776ff4410fed36cce6110c226a9da8489d00d7a46ba9d35988b93c79a8c0918444bd00

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000041

Filesize
41KB

MD5
e319c7af7370ac080fbc66374603ed3a

SHA1
4f0cd3c48c2e82a167384d967c210bdacc6904f9

SHA256
5ad4c276af3ac5349ee9280f8a8144a30d33217542e065864c8b424a08365132

SHA512
4681a68a428e15d09010e2b2edba61e22808da1b77856f3ff842ebd022a1b801dfbb7cbb2eb8c1b6c39ae397d20892a3b7af054650f2899d0d16fc12d3d1a011

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000045

Filesize
262KB

MD5
cbfef6c33b63d2c5158583b286d8e2c0

SHA1
f603fc3eccb53001971eeb6b5b34615043061f3e

SHA256
753ea6c0c05cf80da8af7c896eb55c8c624d0dbadfb2980b5830b61933d3b87d

SHA512
6a1f4e63e7acd3eadaf29664e871dc899fc3666e4fbe3648ba8f88c49800f2e7c44be71e786f6edaf11aac60cb40275828a305e3594d31437590e5867fff1640

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000046

Filesize
168KB

MD5
66e21ef0285a49e96f677c7bd157573f

SHA1
1e562075101fac73987a6fe0bd9df3cb2ccbc63b

SHA256
b4841791b600506e49bcab14c2a0493b8200c0c3ca808d90c5f1851efb44e63f

SHA512
6bb7037432e140e5115b6ba8d995cff63006bb4230d96cf5f5726005ea0976d8b0678178d2fbc747645422b5b96a6b26c89fbded1718ee00e9265ea9da995898

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000047

Filesize
299KB

MD5
9dee15259412bc3e4d96b8bb48b2ae1d

SHA1
6dcfdecadd676182d05176b85c4d17e68d2f9c98

SHA256
1f04a18489f7436957c9dd2a3ca6809ac324c6106b4e3e22c8b4bf906198c3a8

SHA512
da266746b134d3505d2116852a1ba0acf9c229fc78635b2f4891f751551b01620e995734f014abcb0a84840034f5d2cd46e0df5efee75f8774b76f38a5f1c60a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000077

Filesize
97KB

MD5
205d5128b0086aa6859aad247e2f3191

SHA1
7b70e876b8b52cfd7c3cebf28a9d69b19a22b319

SHA256
653aab25d7236edd1e8da7519c6534fafc71e529e77d55c55a6c1564cfbe4aaa

SHA512
933aaa1a790e16e5b4d1f6759836e1e8d7fa06e2b3eefd0ba84d25105421c23136d0ef3050e4df652e1f73cb7b7299016aa7a9273b4e18f2703c9f22758e5711

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000f2

Filesize
23KB

MD5
281b863c86ea09dfece6a57c46531d6c

SHA1
94f84ad8be415ca35950c286f07d305849315f0e

SHA256
0d860bedc155a15de534ced632bac9ae3ede569618b5af00053464644d2926b2

SHA512
50d88bead13c55cdfa739fdc3feadec24cf22e2675c564a92ad58b6fc389cda645fc428b7025f6d4e4304db18b62ed14b4d6dee2a4c09fe7bc09b78a8d12a5f2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000156

Filesize
18KB

MD5
8eff0b8045fd1959e117f85654ae7770

SHA1
227fee13ceb7c410b5c0bb8000258b6643cb6255

SHA256
89978e658e840b927dddb5cb3a835c7d8526ece79933bd9f3096b301fe1a8571

SHA512
2e4fb65caab06f02e341e9ba4fb217d682338881daba3518a0df8df724e0496e1af613db8e2f65b42b9e82703ba58916b5f5abb68c807c78a88577030a6c2058

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\614b56a5ed724873_0

Filesize
3KB

MD5
1e0fa2679e04678c6936b9e4fa8825c7

SHA1
40fe90da9a449ad1985f05ee867d01e1e65be78e

SHA256
c7787aa79339ed162c50c4bfe86921b2a41274976c4912d3b38e5a458fdabb84

SHA512
939b8f4cf05e674cc91036360009c763a3e981567f441240388abcd86dce8ba65233637151c870aaa1cf687e8a7e0ca82fcc53cbc78dda33ef0af625a965fdff

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

Filesize
2KB

MD5
9b14cfc74f648e8c093508ea7a9a8d65

SHA1
5aee35d84c4d132d82f5dbef5a924f74c9d0ac0f

SHA256
a4c6e8eeebe0c6288e7c5652f8caaca5cabeda5acec5671fb38be826eb8aa31e

SHA512
02f0057111791a6a65719f902079bf4691d07285f7408130d5bff1588073dd834fcaf5f2765c756fe12d8fe6a9e35abd4029d49efcc354ca28db0b5ebb8fe219

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

Filesize
8KB

MD5
7df5b6210c433e24540d68a8d0669ac5

SHA1
7d7d2ab8a525122b7d0fe4be469572b86a83c2a5

SHA256
2a78a3b31c88344b3f8ae0e1ddbc5b3ca57f5cb78bb840b2644a1eacb4b9450b

SHA512
1045588c151a098148256bad88c4e272acc82f1e68204fc780f4ecbf87e4fd110b465472c7fb1b8dd01372b5573c6a87df3ca25e0687ed505f0abda0378de00c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
9313299330534b4f06ddb005167110e2

SHA1
18300b7f07b6e01a40c82c89c542adc48f9cfadc

SHA256
536a2ead75b65fe75939aaeec2a8f086191e713169b38a881529d31507f71400

SHA512
ea60d818fef1704bd9ecf13b189f069f138ad47323d5a02b3e215bc4e89668cccbf87d7d83dc1ed2727483922f16cd6d3b71d1734a0de40791e43c1591cc08fa

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
99cf626b0ff1678150d6316262000fc8

SHA1
c37e692dcac00c9b640420b08fbdcaef2664665f

SHA256
e9d9c38c56b26fe314b1acd737a8262d77b24d189a09239b3edf94b8cc3c5962

SHA512
7596409a5508ef94a28e80665c86e7231dcb1e5cd7da7b841d16136e35ad4f40a6249b32ba9e1b34fbc9caa12a464cb6cbf801580646b88d940f7f1b91308513

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
eeee9658ff122acf7aa68fabc92601cf

SHA1
20f874f5c6f66a55bbe0aff2f432dcf89a3e1a78

SHA256
6e6cab612a5bfa08b56ec8a0d6ee58d485b39bee968e4f24dd60c1ba10ef1a83

SHA512
aedf90f482d9cd77e2b920def08e018da1b1801bc6b8f07b82cee53be72decb16b88e6eda4044026fd7d050aca5cbcf116713d17e528a392f6cdf13aa84cba7f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
172a5a8927c3ddb03b51e46d39f3d7e8

SHA1
9af1f6aaa0c0e5611811b94cd1d9667e8c99379b

SHA256
3ca32c2d7a15fd1c68a4d097cf2186a0f9b00cfaacc10ddad6edbe8d75161047

SHA512
a9a2dd4f5b5db3397c7365fd7cf04ed03363fc587907a5b4dd514e0410d1d2fa69503daa3ec91c39cec04cb875df63fdbb6f48ef8d08f5797b263fc5e7152902

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
8KB

MD5
fe80545996957ed9505cf0be0258b247

SHA1
442b909950372ea1ba9aac1c6526b08c0dd02cf8

SHA256
ba72862b24658ef1902bc84d6156829cfc29c8c7421731f5954c353c2b278b50

SHA512
81ba08228525b15515fba4d37d0c97c4a5a1b3cb54cc478551c77c54ccade0e7ee813777af386c837190d497e22f74c654ceb05f247a64a7a1297bbff9f85544

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
8KB

MD5
5ed20261bb215e1a88baa122afac34e5

SHA1
ab1a909289d79b99ac9b8ba3d5329d3b54a562cc

SHA256
da9fb2a984d9cc71ad41131248bda53cf3e8ac5372c92624019aa4b91db306cf

SHA512
6cfdb1d06769959df415c10ae61e3ca53c010d0dcbde0419f6b57aba550ede22a54e36c721ff9a22c0006ce6f2bba4f07a8dc1d6c5a1930756bd773f2c87cd48

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
8KB

MD5
1321a939feb4e1b7621787da03258e7f

SHA1
2a35458455635e3776d468468b133776ba920ff2

SHA256
e2335c163253392cf22638417f87f10077f8d831dcde659bb05036d7b8c5ef39

SHA512
65388622a3df5fdbf9e65251c7d7f92cfa4fcf1de2601f09e935fa155c6d660b90fa50b8391064fb1dda1e81b2a85e1efc2c43b38e2ce42428d70e99f7821211

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
816B

MD5
f4387dee738808dc4cf57772499d3488

SHA1
8d505aaac4f5d0dee9cd2a8f64ca4efd2e2da724

SHA256
ba2eca9159db7df6b417e45a475974ef531c5655d248940dcaf7503d0ecc9a3d

SHA512
91532ba21e401a369bfd10efee88e4b7410efa8801fecd711ad84420561736af791d6ee001252cea4a8119ef5545ff0aa373b6a0b43794c0d7093168d202ccf7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
7KB

MD5
0a3b0a907d153ce3a2233083834ef8b7

SHA1
71c5c4f9f661ddd7e7b5a6dcc497ce31546cd5df

SHA256
c8614211e5a404253e7f02f7d2477cc47c692bb0feb39c68d447512bbc4a58aa

SHA512
b278812c19cdb1136fa27468aa0dc475c4beb4101da05689fa0edc42efbb7986ff920cc57e3101bf16b0cb2ccefa42b40dbcde95bc244d5762594b21d8539af9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.discoverresultsfast.com_0.indexeddb.leveldb\MANIFEST-000001

Filesize
23B

MD5
3fd11ff447c1ee23538dc4d9724427a3

SHA1
1335e6f71cc4e3cf7025233523b4760f8893e9c9

SHA256
720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed

SHA512
10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
17KB

MD5
f1bae6a778da419738eba5bec1576452

SHA1
7f2eaf9ebe503c78c292380456dc4473ad79bbba

SHA256
711cb077d1cc34126af9f2485cb055f462888e7731fdaea6de7a42850c6d622f

SHA512
d23945f63ac6b2a333c0bd5bb629b207e945b59c121738e756fa03602c22ad7abe3d3ce034a4ff711bc95e61af255470271e079ba6d71fa3d13313346195edce

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
14KB

MD5
70fa7eb9c11b9b898ba51e64d8db96ea

SHA1
b9d3ce6921b933c9a8b22b7faa49d7fd1f83e2ee

SHA256
cd13e1efd0ffbcaf952ddc1a3c054916630c8b01a3c9fe6b04f2373a0a14c7f2

SHA512
eaba131b836883642884c2379bf8159d812e710add6ccea6a169ce64393c38d96239d19a407ec52cc3fadb2fa5a95d40cff157c1781115e24c97ccf502194a0c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
32KB

MD5
b8af03b752689518bb91787dcb4ebddc

SHA1
771375ac3e710207b92adca1ab693dd8fc06aadc

SHA256
e73654ce458030602c8cab7843ceddcc2c464cc6d6eca73ed1b1329d185bae53

SHA512
7412e6e383f30ec349bfe0523e5c41ca9cf6d14f6372a5a40ec9529e43f429d84f5f93d1f6374331261cd8471e44a42ba7e527bee603c0cccd8d6866cb5ae581

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
63KB

MD5
4ad16dff035c339af991fffb2c2a1e24

SHA1
5f471d2d162bbfbda717ac2fbd5800b97b138144

SHA256
1281dd837413901b250eaf8a8b3ae98e3191ea1971e54162207fc2a94764696e

SHA512
db3781a7729e3446ba8e614ba31c94334ea2a76afc1367b7864b021eb0b73f8891756d436c99de1d0737fa508fe90a98f12a5c0d78b6e5c2d7c7ef174ff1430d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
6b98ef351028b710ad160325cb783894

SHA1
947aaa75033658c77cd8ec23ff0242b070eeb410

SHA256
67bc59b481368b1b057fb7f078a24e28dc90d94256ca7033e65e193a986d9d83

SHA512
b21c3b595e1175ae1e965b463a8c93ef674ea8e3e4516c9c1f5bc535e99a4cc5d0ec2cde05d8072f61fd32251d9e39ec2c284000333c2be0c248757b44ebb3d8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
e816dc55d453ee7420b871542fa05fa7

SHA1
c30dee8b05e34123adb7bcca68bf52d1d1e9cc39

SHA256
7619835559c0cd93e6c4bd06bc90ecb55c85a03a1b0b9cf7ba2cf82251d0777c

SHA512
e8ce99ab7f389007973e7383393e26527be103b114ae1c852a3d8c36e3c12ed2110228a62f198b952276a902f5b8382c3fe6476859cbc673d14160e1a1c0d0e0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
171fb3cc9021a57f5a081a3b2b7d60b0

SHA1
38dab3fb8ad185f7b250ab946f73c477ff257444

SHA256
f2aa4c6093f025bab1a43c256af081a7848cfa298fbb521460c51161d18282fd

SHA512
e9f066fcfafe9be0bd16f4d6c0c149b870d0745e0862279d0ba3c3f2a918ce16721146a84939d6e1b035d48439ae1fe9863ceefc9fd95d7de0b4c54ae38a19c9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
118c547b4010a5549448c550a2dd1a39

SHA1
6c93b1d3f24b736b4a58f2610b4823cebc9a62d5

SHA256
db2cb0465e8067a3d4066c8afb65055067442be5c5671a56dd2a975b7b471e24

SHA512
84e0c6fa186adf1da826d81ca5a77405243a08eebbfad1f456fddae429c078ce4572064d3b1205114746468336d444906d9cb884904e8055da91f85c9bc9e73b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
5e9c4b09e619f1033f5d0c41224bf827

SHA1
7208bcb8f66bdeb272cd615fbb68b4b60fd9a15c

SHA256
f75fabd491ceeb3620c29638f2ac1542921da4e85f3a864b36adcb25c7940f21

SHA512
e2c5f4616f5cf2d398c815bb8b06dc66852d62a81450f117280a9bad820e0b7b5fa38cbf90936e13966e496b1b33a3187da2bb3736d79c6c65dc9ddd9dee10b5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
bcb20605181414c2f1e31eab5ba5386d

SHA1
1b048f9a8e5af601b39ea7307ecaa0532532907d

SHA256
89c900dc581eb5757e330cff612e9b30b3d2985d8bca068b30a07d3af3ac288a

SHA512
2331071149c01b5c40f5ff1a2da01f19a78726f35d23881e9f7c910de7cb7eb3b1e137b3fb248322800ecdfea33dea5d02b2165f4ca85426b3f7508a62052c8a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
0a3f7f2131365e284fbdf1260399d7a1

SHA1
a910d34e7352aa840959adc83a610e86f38aa791

SHA256
f392bfff21855e9fb7dfb84f89628d601b0f18e4148e674f53cdeffeb7687db5

SHA512
f57581721847ec915b11ebbdf75139029103f689354f6d50e78cc746d97ceda05d998c857c02e7fefb1c70a1762d182638ea3c2d45c73e887bf33705810f9208

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
56a08a3a339b55f9290b1cf523674932

SHA1
f8024d44c6ab10081e8f4d74678ca652d1f7766d

SHA256
50437d5f7cc8b497710582b85d63cbfed7fce48ab6d8555b471b7f2ac8aa974b

SHA512
6070872c554f4ae5a12873b9148f01ee5bc7b005dc74471f957bd74406f2be53dc897d1ef8e3e25c87d451252b83aea30472fd9848710c701834450e1bd55d4e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
4e566093b048f2c87db4f56e6b325709

SHA1
9690d7aa41e9285ec8eba4dc2c46e98c4c28a9f3

SHA256
993f567b537740d41011ae36f6c9babc3b2140f546691d2522a272cb55a67c5e

SHA512
f795c17b5dff379f632c461089d1e0a009c42e0c26e1f909de6b14e4c1aa2d1204ee693dd203e26a9ea38284a1ff9d9ad91ecef37a229bf40a368ea868234d71

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
03bc9cd8b95f0f6c43adbfaa837d1569

SHA1
43b0afb05d5ac2eac8991880abaa6f47b3db15d4

SHA256
a4860c89274ef2efa6a24bd6ae324c20f200ec2b70f3f27405a6c21a8e9e4874

SHA512
710c8bc43d0af179ae9d18027ad2fbf3ede53c3abef817451f050be42374046a321467b50e35060d15873e9b3a6f8f336a6e0262cadc9afa3c2d46bf7eec1625

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
e73b2d70fe4a53faef83d833eee50d81

SHA1
f17102768946904c4be15bb7c7647bde75258729

SHA256
e87684cb9d8297429703d0104485f0e6a96942f4cca1f246f9ad993a2f27e289

SHA512
2e1c99921dc011903edc10b13d4ef0f633cd194866186b455f2542b15bbb9dfc69e17a56a8e6e096fd2a378db4dfd58458fdb8d4b4b30069a7413feb2c724403

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
bb109641ba6e8a5fae143f5a5287cb81

SHA1
28cfba4a66305f0bd65f678b64a3c7271e90df18

SHA256
95dffc589bed4a45ed98275f3476a4bf6d0548f37d695bb1acebc9481ad8b8bb

SHA512
6dc214404cc59913ea0a6d6da59778b90d13f1f339803838c8412f1f873dba2267c610921797b78c7068b00a91d4c0749d83142fa5fd83e73c2a11d027ea7e4b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
9KB

MD5
124118e80c0fb050b253bb0f00250063

SHA1
d0b2a936729230f9f885c58b2d419bc207713596

SHA256
e4ac13a9fdf465400661c2b6ce1ace4650116df89ff8293827557c600b6dfa77

SHA512
33cf7334480cbabdf7726c22e70af054f7f08de4c723fafb86ba21c6036c1fa28929d15ac33e31d65660c02a34cb7ef00ea59370be94b5c2e677ca280a44a5c8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
9KB

MD5
82e37b2b2332feaff578538093cc5d1a

SHA1
3b11f4530785669460ece071b1d20d01c2709532

SHA256
77595336c00da2372ea08d5c1732f7bfc49c37c274bb40d5e98388e1d9c97798

SHA512
4189b6176a3793f8c50836a173d8201bb96b0aacebaaab08af1d0be1b13812c713b513a70122c8544f5bbfba6f54d42c45ec7ab9e730f984ecabb4de74646ff6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
3ee86aab8e41af80b13254a272ea14c9

SHA1
d7f86f4f01a2d76fb7f5075c50b5338528a5ea24

SHA256
31034b3b7df6094bc4f9ce1cd1dc733cb009bfec88eea990b2c4e9a91c80e81f

SHA512
f84210180ef73c816ae4db707ec5f985cd92fa2099e9dd70dca2b0d71cf31a9ef4bf63a0bc68d6490fa3f93d4c23f467895f971a9eaa521965cb5d4149477da6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
10KB

MD5
59c59eb24bf13b687153378d281f7c0f

SHA1
15b9f7c70a7c814b0797941cc7c589122e4a87e6

SHA256
beb7af898ff838a3d96cf4fded8f686be08cc9930a09a10153f47d503ef2f50d

SHA512
a366ab9a8e6a07a2e8e9fc494db820b947373f0a152b285d26c0e1493b211f71953596a7fa961e5a2469432f4a05b7407111c2bb4808a7a9594deb50e32ad279

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
3KB

MD5
db4d7a719899069da6b89d52a0b13e6b

SHA1
8a2ea71ebbf23b3fa9fd75431ec7df02907268ab

SHA256
c0f3f9d16143decfb77bb282a399cbbf2ba353e3ab7f1cb306d3ecabc27031f4

SHA512
10385f1d32322fc61cf6bdfa35e78891df84c26454e7af7ab30d84eaaa5cedaa7000c09a379603df3784b0137d091eedb0efe9ddac2945c7921c87bd8789b5b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
9KB

MD5
92239ec1a2d137c6c4656db898171af9

SHA1
7977e3f0ba26b669729b8d2c6bbb1965744786c0

SHA256
5299b5af82472671bd58ce7aba849cb970eedca4b254df285d46006eb18abcca

SHA512
4d4717e0bca368c083b53649c5449173c0f5dc5af3ac790094fea4cfc220f5668d33e7849e350db118c2790ba97ac827b24ba1d3af6dbd5b5b1cdf849de1ffd4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
10KB

MD5
fe54ef2dfc233ff11772298f35282ec9

SHA1
5e58268046f0854dc9905a71bc0a3980edf887d1

SHA256
e948de43805992daa90478dc287e6b60477f3bff927d3f18607b135bf56b8c1a

SHA512
eb0366e18cdddbc172d8b3052e052be039d2a9fc08ca16907903d74a033fcb820ee06ceb81d86a4d80089aa2fc0eebbde122a5995081300b049765324df74a1d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
10KB

MD5
f12d4e1c43d4870ebb144ed50c0c8b9f

SHA1
f525d12d9b0621046471bde21021cab4a81639b9

SHA256
ed81f73f1212a3d36907e775d59498ddef4e3bc3e26125ab030934d49d4a91c7

SHA512
9a4e97d3e06c0c3c4550cd4f743140b1ab2ee402948477b4d1e79b17abef22a4fdb11080a1a6dde16661403ee68ada3a7948a800bdf35e1b5dee9f239c0ce8b2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
26fc0d2281b70519010dff157de542d9

SHA1
edb8f18ebdcf89fa85c0b81fc5fea827a727eba7

SHA256
47410751ec78af419551b095169ff59b122d7509cc619a0c726e492b35c16568

SHA512
d76943ac0d1952f3b8378d26cbdfef85029395c6d9c1c1c91af6d0bb36ba4495bbc94d2a9c888afa8f33ca48ec70fa4f808e069af447c20b7ac821899987e5f5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
2KB

MD5
81232fc1012818159558f31ab2a5edd4

SHA1
e82831584926a56bac8c02ba0ce527ee5d275fee

SHA256
f77545ec871059a61687058cd2eb0249a57cea24260b84b2c13dcffa63fce3f5

SHA512
a72565cc84f4eef2c258b0508098df497613303330eb648af5eb802a17e7ade6d4a95832f8788e9ac7f67693d97a9cbc7319f8c5936f0808c3a0a77637aac471

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
13KB

MD5
b491fd25580be21da496eb4b3dcd0032

SHA1
e36a5fb01fc34166de6a4bcc51dec1265a9418b8

SHA256
2a17853918699a7b206154df6831f974bbcd07b80727ca627fb96466cad8d37a

SHA512
7b7f8a2a407b4ee60cf7249ed57b3107f854058c4b799e386074410647925234057e1be8c0c16f3610290099ba2c9cd0beb1764d23754631c8ce24e2fff4c7ec

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
13KB

MD5
5c331674a05f39f6f33a5b14141a63d5

SHA1
754c0c76cd9fd0b6b9abb9d7bfb768692810c919

SHA256
10164ed55df3aa28d55381d9c677a323922ea9ebf8129f5c648408a03d1a5b16

SHA512
c89e2585bea35f1c9c3ee6bf9d7c92d33960fa07801c03653eba757d13909b41f56f4c268e34f30380523658dbfa4d15c4b0999ee636c694dad138b898135f4a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
4482c8e5c1636e1c133f0e66a7c9002a

SHA1
e9cb06ed51c56286ff015033cc214de5c60df5bb

SHA256
1cd4d2ce359fa0f4e3d93b397eae2be1d544701b38afa02d6320e69fb849aec4

SHA512
f3fd0f25d972f3069ca693c1707c1c914750c07632269834e742fae7890e3acde61fa499674a576cfeb09428761725b48b1f6dc8a7d303308c9a4b1ea5ac451d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
12KB

MD5
bb57911bc5bb792f5b1082fa5ea2adf7

SHA1
7b0a6f517a3f8aa53cfe4e9ccabd66e2c74f6413

SHA256
c205882b033af0c2f0671e4879da9a55381a0198c8b7dc8ad62518b7da7124e2

SHA512
0f443791d0a2e26957f4f489366368537b95f9981670fd7031b17c58a2f5a1d11f3dc4a6bc1b7b4221215f537d1cd8f3ebe00428bc9ab1a2ac630a1446a62c9c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
13KB

MD5
faac9aeffe6e7b0b5938482f3562fae0

SHA1
bb7f4aff94c1697541bf549ba6584875b00428b8

SHA256
d8d8e8005abb308ef30d89ba15e3ecd344090341d7dd55cd4440c86f6d90edc8

SHA512
70f7a9112f391643e07590d51a98cd2e85374861728d2938049a364298c2d7c2a6c04483663af36fd51e4a5b3fb2412a3d576700001a1827c121ee1118831874

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
13KB

MD5
cb9ae588229fe639c58f916445f9c10e

SHA1
de3940871f935814d5eb2283dbf620344823fa1b

SHA256
69f53f39a5900647dda5a2aef79db2129c28337c8df6e190a8604918c71c4c53

SHA512
5922b30e7ce53ff7b520340abb88439a08962c2b916e76e136d10e0d49ccd5d3f10381c20fad4d0c560d759c6919347f205238942a6f2d25c7cadd169ff7e709

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
13KB

MD5
930d18c224d4f7c50bb4ff68e58ac877

SHA1
1ceb7f4bbd35cdd8e0131b11b57fe161eb5566a8

SHA256
e188b9007de1e83cf84baaccc6553322dca81afe033d377bc418a850df3b62f7

SHA512
8416f767eeae55acf8f28491f86823fd36d8c8c626a4708737a4003a3fcac41c0b41c9ab084f79fb928c752fb178ab1fd7c8e6ee08267979b448bba96e18da0a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
13KB

MD5
4208e5ac76016f21400adfa53dfddee6

SHA1
5416532ecb148a92c2a50024fad649ad7c4678f8

SHA256
6b1b25e9b6cdc1baa70d812f4d0732fd1ae19e80ba7e47a3a899723b152ca2b4

SHA512
7ee9d1cb6f9c874467583fa06b39ec857e5bf6d5bfa4ba2bffccb253961668c92a160efd463d75cf4579db25ca8586a4a7adf3c8a8ad33823fae7d2fb61a139d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
13KB

MD5
7bc933dfb278897e50b210f8ff7ed228

SHA1
c486be41583564927c2382154566c014e7db412d

SHA256
be668237aabf7a4db284563bc09f4bf5973570bfe7f1e70f90459bb98add8946

SHA512
48e796788e8dd8db4f77cb314913722cef2a63254924dbe60d59e0d4248f39db078d65cc980a4a9a8ec1e6f16d2dc13f5266027ed21001179411be93c3fc41c1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
b605192ad0c94433bf217948c82edf84

SHA1
42391efde4a100cf60a865b93ea7ed843e74ad2b

SHA256
d59ed03cf2389afacce0c828d2da4e6bf76faebe94b7fa396365551d2a8b65c2

SHA512
5103c07ee818a1f841d1c20c4d26b4981c024745ece2e1989fc60ef8954cc6fa2567372a59e9c09470f0d46f41a6147011652b3f55d3cbfd70d2ba41fd99a43f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
13KB

MD5
0c009f6991f124568938d454ac9b2174

SHA1
159e3711fd9f830225df53cb4f7df2b71c9833d4

SHA256
933a751064adb64f7911d7c7a61a5c4edad4804c199c0fabf82bf3cea45e87e0

SHA512
e29e3bbef2ae3c078aa41a800531f509b530f19c66aec5deb38709e57d3a179155a39448e319025b1767756e8e31fccf855b3c9d109f1a8fead225a203e5134c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
13KB

MD5
2b04180bc285fe0cbed3886abefff3f3

SHA1
308347e842965b5bc1089f166d9a7f6ef56c9805

SHA256
93b229156a1b07607c67120b8a665c54b4a413ed6a55d12f908a476c65be65e3

SHA512
d926527e23029264b36363c8c402dc7d7d4dee4e9b2720690a71511a1492cd8d3700a470b6606e8007af7abd407ed4c4c569cdfb6bdff4ecd85b5f182886d969

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
a21ccc213035842a57dc7b5a6535654f

SHA1
42b63ff859462feadd8902965b59e4fc2a295ddf

SHA256
12bef7232378b3961b473752deeae0f34835275ea7c54a45a0645f9d1bbef338

SHA512
b5ea791fe8ff7a19812b3845406c8d3b042f98ba1b1fcb7217fd43ef82de5af9af0c8b4e61ab2dc13a131f177999e06c459a1bbec3111419960fb48a25428038

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
14KB

MD5
6e526bf54a0204cca8acec58230d9ea8

SHA1
f22664b1db29ebe4c04f513c340d7a8510623427

SHA256
d54fb2c68c1a407a8393b54a0793c7a6ff4b705079cb15d60b924c4e49eb49a6

SHA512
74eaddb643f9d3ca7019e6f2eb44056d6b695da2374325f4ab87c855bd64a1162258354f1fb90c9c595895b1b9f4dac65c239d7320ec42080bf40cb417b154d3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
15KB

MD5
0f3b471f071b52ab5bb13a7368015cad

SHA1
73ff3a6d91790dc567e66c957843a679d08f6afd

SHA256
2e432bb8b0a309457257b2e718536d0dcb1fdaed981379aed438d9585e1a8724

SHA512
843b34f2453e14d85eea31cf885fc9deb0673c65f036a44b56485ce679419aa0637b5d2beeb16e1deb9fa79fbbe8e78a91b6bca9cfee5d97903b74994213ad7d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
16KB

MD5
4b68f60ab259264dbe91623dba8e509e

SHA1
995c58045fd3d10dee5850ab80375c9a2b29a957

SHA256
c8c09d8078873ea030b4af209672d7bd330eb1693aeb523042f0d1de57dd415c

SHA512
24a07090a0e0807576586357c324b8c60a021ee47dc711c0a80826c980b14c2488eaad27dd5655570b54a461899399c0797d0411841fd980e0691a1831819d44

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
16KB

MD5
19dc2aee691949f7af6c6b7ab3b8175f

SHA1
53548f062da9cbddf59e32556f0cf5c3c9368a7f

SHA256
d0f65b847edd683360886b3beef169dfec034bcb6619a75e5218cee5a4be5702

SHA512
f07c1011945f20e9abbe320d8205635d6c08c938d9894d549f21baeed86efb21c2851d6e1b09193a1da3503aaa4115316706db6ee2f937302956a5ac3efe5efd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
16KB

MD5
276eb89fad3af7e1c5b5fb08706b4653

SHA1
f10df8d1876ab4aa4d0129ff0ef34bb9c444d8c7

SHA256
8abb27f739ef7063ae75eb73c4e396584a8a374d6241a7b7f967c991528acdb6

SHA512
2a127c8c00579cb171b5e40be26e29c1ee4b12977af042894d532aee7dc245eb2ada81fd7a62f66237b01615183935a340c8dcdd28aad48c8b248577f6122d48

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
17KB

MD5
1f48e3ea489ec580f9486673ed429730

SHA1
4da1e9f679f6a6375a59b9aad7aa362286c08249

SHA256
1fad24c3ffd27182a27ddec496f7eafc9834d24f9810632279b8ad3d1f4fbfd8

SHA512
378a0090772ae734f50740d27f647b38c93ca1f62306f2575c60a1b5a3167c68853384ce7a9e992ce8707caebc16258c5cfba23254893e9a9f7c206ff0843c2e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
17KB

MD5
461f1fec26a76cd20ae40de46f20d9a6

SHA1
7dbfe78fed366b81538e74bb641184481b202df0

SHA256
eae092d8b06d6ec5ec24d6d5786956963cb040bbda969b53e3c7e000ac7ff4d7

SHA512
75aaef7199cc4e3e18688439d52c862f1b0ca422f4aefabcf0b11b2fd77e414bdb4c5c6f05f497741f7eb77bf5d8919e0e7fca770328734661af915b89a7015a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
17KB

MD5
25ad3d6d1e2dcd8fe0d62f348431d831

SHA1
59eeb75c8216b43a7a818c3ae1811530d5e2e092

SHA256
6d493b0f65a51adee4e98290430576d3ab740563b96b2f2fe111b6f040fddb4e

SHA512
f5e78240f17566ada669242bbea8cd9b35c7cf7319c601e1ddf1989748cd9e0077fa2edc8b6ac22d6645be2af129a84c09fbc3536d04fd60f9b8e87c9b6a4e23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
a1aed271eb67fdf97b852b13cfdc8d29

SHA1
ba2f216ad2ceaa807e16bf2f1c67d5c004dbcbae

SHA256
41f5e46b0b991ff1b4668a67960a4806649be48ceb42ae28d839fe65111f957a

SHA512
3cc5772ff74925ffeffc3f925c8220bf62a044bfebb48abb131c5648069f450643cd8207a609060fe999e332fd4c52e10ccff23471a9a499645a366eaca1c730

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
15KB

MD5
01e32efd6d2b6df93d4c5caff1b45997

SHA1
f6bec7816f35cc186c7562c429b9c7589013e60d

SHA256
2e3015aacd44d0671745071078fdfa6a65b344da84bc90e5c23d659ece454841

SHA512
d20a3b057f0afff672b08d8cd2a5516ad81bc148970d32f5a757aa34ac75a8f33d22539fd23988c603efb8056d58841cfda67701b8cd9bbd7f89d16f2c622bb7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
15KB

MD5
315aaa802956dd18b88a1ae640dbb7f2

SHA1
c8837d2a9a129c681d62bf7692f846efc390fc59

SHA256
543709e90eb6058ff81b93a6ba37dee0f34f37a15ec5bc881f719290f6b5d51d

SHA512
b445182fe7d2171a21ec4641abf34d293c124f2f00e87ad9f3ded69e9f33f12681adb84d3864df3d0a34bbd01060899c3f15dcaa638f0afd70001472a3e10872

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
15KB

MD5
5590b5224b6bac3f31d507c4627d53a6

SHA1
d9d49294fde6ae940daa92ce1eda1dfbbf5d2edf

SHA256
8670ddfeeae49aac74a0b0adc9ebed2ee047d214f8f4848d5d7c64cf4f439500

SHA512
c1565859ee1fd3b9868a993373f0a9077dd54c71dbdf940d95ca01c98974d041354592ee8cd4f39731b187d5b0460ea94c860bcd2ab35e76cda463532260cb67

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
17KB

MD5
251f1d993f9ad50791cfc5c902baf6d2

SHA1
74573fe76eb8b112785ab26197b4458814c73b9b

SHA256
50cc9f459cf313f191b594a363e56094796b5dc4f4812b4d5d5bfcae967c3be5

SHA512
7c2513fd4afe612abcf37037f94f8b38d7abf049eeebc94502a3f52022bfe06130f23cf00dfeee46c402fd95bdbdb794b78055535fdd88e6eb5240b407b3dcd1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
17KB

MD5
dc21fc63b906e1af2d360ccc887d883e

SHA1
5500682b52ea7cd7b8dce162a9ae7af1d97ae659

SHA256
27fc3b78d5b3031e0aff41e41f8fef5a23a826f5089917d99bd6628e8d26612f

SHA512
645fff88ff0e7fa8c4f46b42ab63c0e306f54a737dd00f7c9a1eed09b742a909d28ff53060d400f405e92de264cd5bf81ee92e043cc32138e454863daed5a58e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
ffd693df0021a8a715e5b5705a586be4

SHA1
cd1dc44e515475d6a340219abb9e6d78de1651ed

SHA256
2c17ad5f5ab4af53d0714476dce350b21cd27523ecd5c148c0701dbca8f299dd

SHA512
393e21867fcc6d9157b307166ecff56dabb32996608d0c5ceee11a00e24d74602dd8a527d15de913e47b4fd9084b6e4620c8038f44f1972de118f1a52db19cb0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
14KB

MD5
d93a7d2ec04c265073c908b77c0d47c3

SHA1
97db90ac0b5110217c985ea0aa31e076f44c104d

SHA256
b30e7a0127caa7b89f82da086c1037f0f66b3803174f3511a85d7ef9e256e833

SHA512
46ec0f29c72c677a73f3e5d3c5d3d6a4dfb5a5787bf7322d9afa02132d60e8a603f32e9714434af02fbf0eee75147cab8fef7ae77eeab8906e5c65920821c1c3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
14KB

MD5
5d1054f5c911ce29d75fbd3d8ce5670d

SHA1
9075bd8e73a9e009c3f5839e938a3f534e76fb32

SHA256
5eb7134b668279f9327fe9af0179dc2668ab81b493574823719119db4fab6428

SHA512
c4aeac2ec7866c3faf3f1f458092afe72500370188c60ba9f773e69b8f8e0bb53931ae482a8a6e3bcddeff7362e061a8d4bc389710b7802b1f80fa1f0abbe1cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
15KB

MD5
0eece7389e847855eb3972bdf0ae0c6e

SHA1
56fbef461014f09387310d10ad14956194d1e595

SHA256
fc759dd2e08352dc8c9b5e1ffae81be4bb1043b5ed5441b28c0e97cd2004a7eb

SHA512
c0d70ff0737247dd29146c7d5d84f2b02898df493513ec98d3116cd397fa8b330c6a0012c30d50d1a7bc88caacbf99fc020a7280c84eeabf5ba01eb91358e109

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
17KB

MD5
8abaf24d6d21746648cecc1ca71f3384

SHA1
5cfee1e9f14fc8c50eeb7e05a5fbdb8beb258891

SHA256
7edeb2804b64115cc2a9642d04cc847544fbc2dcfd6df567f8fa1f182be2f795

SHA512
572c2703976e20933c4f2414b92dc21ba670b47269e7131a8ffb7ee376cdd45375250609bae9ce176cc1f742a138136bb6c9c8b9014048ad6f8efb9387c8f183

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
15KB

MD5
59b737ac923e74aa3032005d50432c3f

SHA1
923aa440275aab61d8d6639a3f01b928fda87298

SHA256
7ae252d8fd3dcc587b740b2f30757a647186a09ca8512f0b489cad90eada6112

SHA512
6c84c4a8da6c17dc621b9a4ab5bf01ea901a726ac446a135b6d4e18af1ac4162b885dcbf3926d3d8fc69caad1ef4bdcef774c4a95218262ad592394e012e2361

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
17KB

MD5
5ca22b3fcf04582a0d7073b94affb749

SHA1
dcaf3f60b82ec2a165b7729be212a6776bce8589

SHA256
3cebaa1300e01f14994920eb4f8faa81a4d33eef24619066da14e4fd069321e1

SHA512
9823506e45f0af7a5e07eeb828760cb0f6383b2d13ede61d4be473fc44cd28fbc71a08d8f5fb68cd7d6eb1d8050f5b1403e465eb8db3d71e59f8d42f3c737a77

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
15KB

MD5
795d5e4416fcf884030a9cbf217c7629

SHA1
673a0182a1c81fb7744efe4c19d66869c242f460

SHA256
ea1cd8bd7df8aec6515026f02a4fd30f95fc69b3ae215e32c4affc3295237ab0

SHA512
d27497366a3209162284bc044925395c68c28338e342bdfb7363eed7d0d2f4505a6f387edfa7401d3b13aade17a2c208639f917744292ceef2c345494e4a0ae5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
15KB

MD5
211c4a478ce9614e433e90861c99de70

SHA1
2890fbb324e62b4bca30dfa58147d80c6bfe22df

SHA256
524d33521a2d01b363622e6c222d2edc58685588e2b292d51ecbeb51ba1f3867

SHA512
af41651e58f9ecff41f50b67bc5d7d868e10c1c5c946610d924b727c70a7f37f9a236fda64d78f1145e4fe4dad4faded12ede5bde4f83526f24e74a3aad2f3f8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
17KB

MD5
2e0f4d7f6b51023d9b4dfaf807c1734d

SHA1
e42fe3f160565c6e6581561296655d7e3cae6c5f

SHA256
0a173f043ab084681d125c2a057a7ac9c66a9f083857583c07cea27e34ca25d9

SHA512
bda55befa0f42ba6ef011f82a3729bd4902560de249c13adcc8eda79f8e14b4a8300093c796a6548cd5ac20813647bd7c80b1050af7f6f11b85d6a0ba09fa1c3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
16KB

MD5
96cf85699a0c213d5e6cb030a7b7709d

SHA1
901a7fd197ea08d4124efdd7ebfd0398f45cfbeb

SHA256
0247b67bcf28af8724b8f31d7bc8e98274fd823f1be3d7fc511398618c97d179

SHA512
dc5954e7bfc4f2b6eeb65eb776577d054512763b4cac8eadffb6553345751f50a4176fd5fc5e85bebc484512d1fc717dea464b0e36c202658c056b1976133a06

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
17KB

MD5
6682119629a081873d4472b4b3e430d3

SHA1
e4c14ce771b2d71315ee7ab57f700d323453b764

SHA256
373e6077f116ad985c5da5f168453917519a3c1235f7159f502e95d928cc3d05

SHA512
bc958c0b9c7a91b6c48b343498785a9743fc5be1f14406f60141fa6d8e5562e9c9ccf56463b513325cf1713431e575f4c8b8afb26ccc91e3c2e8a5a46b130e13

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
16KB

MD5
22225973b69bcfdeb6d6d34ba21982f4

SHA1
9978a32e589aac29858d008682b81a78ac0656d0

SHA256
6de194a87fb2297c60dfc922de0776572c2ee5236f4f239e5e53659cee478b1f

SHA512
5e830829a35392ba5325c5ede2567025b8ab6b76de0966157f049c27d3e18697f05e4244b35ef5fbdcb54d419dc2fe27af781896c41208d3858e8ef16c678c10

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
14KB

MD5
dd804d34430f5fa066284a49ebc41d2b

SHA1
d8038dbfaccc2b66d8aa16258a51df6fc5ef507e

SHA256
f0a905d903bea04f5500092841640b8075136a28485aea64d1f047fd2ddab880

SHA512
1fedc2a3a2384bbd95dfe6e6e71a77731d2516b5c6e144b6db78ecb08019ec8534b4349f6945c0393a3884635a3e8cb51b244eaa934e8a5e822a1782b5b03e76

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
14KB

MD5
22448d31c239c2154da3a6f8e080e42f

SHA1
caee075299e9710658c08649a15d8560e0314853

SHA256
bb4c8ab9949038e6060c033607c42ad0350a69ce3498254ab5ec88a37c0e591c

SHA512
396b34ef44eb0dbcdc23027ba851b49c55fff5138823d0eefa47218a9f3cccf1aa287b2555f384eb1b320f86f8e81b1276809af76578f96c680d857410477955

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\7063067d-0c96-427e-9833-e040d16b0e16\index-dir\temp-index

Filesize
2KB

MD5
d59eff1bc22b73ccce54309e71e85e74

SHA1
6078536679bcef18012dcc2c28723a86c6a2096e

SHA256
bc1a883573647a4bef0a21dc7f051a0f0edad400a8c12c26a079a224955ff79f

SHA512
41ba4f7ae3d2141a08568ed6d7b88103536abfdb6d216dfef48520928a0a3b232e1d73269cb6ea7bf485be2b387d6d1916891e1e6bc4e17883a734ab241cf1a5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\7063067d-0c96-427e-9833-e040d16b0e16\index-dir\the-real-index

Filesize
2KB

MD5
70798287f33cc5e3dd1aba5086ee8fe8

SHA1
bb78c1ae378fcbb669b9fdb4dee816311b8c39d4

SHA256
6644eba3e49ed6e00a2f64b98cafd158d28bc5e1d36dc3ef21a7a1a790cb0142

SHA512
d115e98a7786847122ec9f977bd77ef00367a5beed6ad961216fb3956b7a7a765a912998fec56c26cb641d1ae8205ca7ec46b1154ce3beeb700d67f9c1b14684

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\7063067d-0c96-427e-9833-e040d16b0e16\index-dir\the-real-index

Filesize
2KB

MD5
68ff25e851f0fdbc504a819394c6fcc1

SHA1
5d039e19e49ef9bae2d453f5bf06c5eaf56f6c6d

SHA256
a9aa8dbb694940b2da4a674a9814a9e97941817820a3f840c236533e1ea1e92d

SHA512
79f55dfdfbda597b83b61c22a7be6602df77ed7872e67a7abd898580f43967920177763d5419bed1b385709783533681ce00b80df188023f2dd109ca56b743e3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\7063067d-0c96-427e-9833-e040d16b0e16\index-dir\the-real-index~RFe581066.TMP

Filesize
48B

MD5
065d33bf7c86bf4bdc147b159f95afc3

SHA1
2c74abff8c670159b5b0a2da224208c1f970496d

SHA256
89244adcdca1fee0818f480cbea4961e32a5771ea7becc6a700a29c2f8167f7b

SHA512
811cf777f5d8da9acd761ef7fc4719f018f8f619e29f18e3b7d7cacbc82b90798dda02675da23b6e2450555bfc027e6967f8654d01883146fd56e7880e6322e3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\f55c8c24-cc28-49c3-b047-ec6a688f2674\index

Filesize
24B

MD5
54cb446f628b2ea4a5bce5769910512e

SHA1
c27ca848427fe87f5cf4d0e0e3cd57151b0d820d

SHA256
fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d

SHA512
8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\f55c8c24-cc28-49c3-b047-ec6a688f2674\index-dir\the-real-index

Filesize
624B

MD5
b7b711b57986735dc3424983cbd4cbe1

SHA1
21cc50ee68bcd43ebec6c6a9fc8d79b33ca84278

SHA256
aa1d86ed3256b3b7056a0dbfd1351ef3d1bbd2efb6a4678c0581038cb0fd3903

SHA512
a071d66a9ef1aed7a249325c4136f913f1338bb40ab0b47c35f27a03bf823f0706faa7178f72eba7a3dca85aa5c2f684745aeeff331884170245d0957a7a0a9b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\f55c8c24-cc28-49c3-b047-ec6a688f2674\index-dir\the-real-index~RFe586a3e.TMP

Filesize
48B

MD5
18e37a8156243def510220a12c508c75

SHA1
61b46abc0d9c49b7140b8b77db88e2b5c955a715

SHA256
42975b166766ff3ed61489b24af299a85e6f1f6aaa0318502591b37b5a058c04

SHA512
5350617c6c8acff93ab0ff487437037dc3a553076537434e859b02f523b0ac0f11c321ed6d524f9001edf9f7ad5d0bcc92ac68fedafd92326839ae4855df802e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
183B

MD5
7cb7e169fc7adff217eebc0b67e31657

SHA1
cb7797a25ae402284df50b6a4763ce8c48d0d6a1

SHA256
264cd804b56fdd200bb720b50cc98b2d71e5677114150476b99ca7065e459253

SHA512
0c00eb26eec61c056bda4b719896b9e91cc2c6a9ffb89cb93e3aedb909a2eee14bfbc125f6cb9bb78567221cfa17bfa5fa9d88064b636e73e5c4884622f718b5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
183B

MD5
c7c0c5275b8873026bdbda485baf8fe0

SHA1
36826505b76d6c99827dfa949fe1b6c9523923be

SHA256
e623c49b6bf3d35a278f32b7bc0a924f274ebe1de25e7e86b9ada940236a4443

SHA512
2003037273ec4bf34ae1d89a44d98996500a749a38f4cf768941ed03de694dfc37e0a646e2f964da6febd97d2694cf13214570798e52e3e009e3d939e767acbf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
176B

MD5
395a47cd5b60eee94fdd5f87548ba94a

SHA1
943512104418f63c8dee66efb0cba501fd39ef85

SHA256
4846ec3ba87d560170288755ac3ce890e59907c3d8c05a3b01720a0666c7bd9c

SHA512
4d4f342800e0183716511b6744578fa1626b0eee66c3d78d477bcda62b01e06956a58c398265bf3d2dbff1e626cbf3cd0158abc1ca2637ae8003bca82de6479e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
178B

MD5
225fe3f37fce7dccd6e02c728b529295

SHA1
b0fab336d12e3cf68758be2a852a0ced82c272e1

SHA256
dce92a250f78de3f3231218f4c61a935272bdfd85ea5b4274549209fc5405f1f

SHA512
4d032576ac9d2ffad16506b95e0aaedf8b5c0a9cc5c39c6bda54fc6f24b5db84e37b44148095f88ddbd4389bb129fc7d76322cdac8d77c0f1a7413710b5881e2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
187B

MD5
b78e7de9e7ba4e801bab37ce266bf808

SHA1
8810c1c9a00ab1260154e2713b7d610481984796

SHA256
f69ee320f84b5f29c3017e4913acbe7e754213455692a12f3227bbc6187a8c52

SHA512
d9dd02b7616e74947565991e14a822ec3720a63e42d4ad2f40430551399630561f5c0cb2cc636a97cf926f0f7acf67599a1946d0f9c8cbe0fa5f0a7389d0c682

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
112B

MD5
59c82a8314a6e33ae4e441d2608d8562

SHA1
be40f3e090eb602085ad5ae6e980d769d20ac924

SHA256
53021da53ce953ea1242576449c3c661f644f5abc2b9998330db56ac02f547d0

SHA512
4933b54ad09eb8bbd06327272978c3952a9a1ae0bfddd5da0c90acf88cd1a67678d381dd2a705d61f0d1de9d3325f15aed3e6ce74355cdea6d71e6e3af90afe1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
114B

MD5
2a7cbd68d04f0970ce9a27b1fe1a50d5

SHA1
ac255cf83ff180beae6eaa2a10c980ba87f49ebe

SHA256
43fd14d17b9dee9662e96a2b2d1bfd209384757eb36f9b33900f1d00df85e74a

SHA512
ab58e0bfe14ed7b54cefd5752b68a74746719f6fa05624069db96411de4fc39d04777f5fca41a8783733e8b68c1584cb08a6aca44b3f39be687e28ff9edabc34

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe57fb19.TMP

Filesize
119B

MD5
9e8daba811b62979623398c60a1cde3b

SHA1
872cf1b60c74c2b062b51b8e4d7bdc0594f0a8a1

SHA256
eefd0eb3dab597efc9d5700a2cdd77440910a75cd3f0f988a275f74ea4980a5d

SHA512
91f971a4a015e0074edea80b72b6ffd214bc5bdab774474598e22c6f710a1e87a5c2986fdc7fe84ba4b7052a5e2ff43cb467c3dd21693e41335027f4f35e7a35

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
192B

MD5
d8094148935f8c21910ef3293e38ce8e

SHA1
05411aedb5f04b3380284ac7176a143a61d058bf

SHA256
e1b5a2bf068dec5e658a951b4088e64301eb4a210838393d4d1c092ecb538823

SHA512
30f50253196dd5719153d2827ca0d54f70769ff0321bb98a5bb4c0f0efd94ba9c7386c45ccf91df2c5195645009895022b8f9d19200cf48655bafcb21e065e6c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
216B

MD5
d0cecfc1871db23a4f83bd57ec952280

SHA1
19470c2462e67bf355d116e5a70eb6e67e2beebd

SHA256
c825412f06e8f8ba43e7b9c185536172c4a66e469e5c5eccd67b05319dd2c3f6

SHA512
2fdd2ba27d8a3add26f95e42bedd765a16deadfce758bb0ba939c6772dd27a8c60d565488354d2a58a79ecea3a9eb02ed62b222f7af44912aa8777baa42fd060

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
408B

MD5
3aaaa2bc1d613c93ca62c5e915c5390a

SHA1
392b30c2f40f4eaaef12dde5bc9840261eb31e0f

SHA256
babe9885e86e88315506fefada5ea97c17433dee04acfe60df96863d302479c2

SHA512
3846a72f493759045cf37ab2fd94d17f65d5e5724ed3059d77074323431ffc1ed25a8fd36f89c26e03d13055befc6b78baf23324f51f83387f7dba6574fe2ac6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
432B

MD5
d2a5b47eee94e2dbeecd6c6b5f5101e8

SHA1
d3c14c59526776fe96537bf630af1af10d2cde41

SHA256
a3df646a27d0a4ef14a43b5bda13cb9114c150d6e83da573957bd48c4b18bac3

SHA512
fbe73e86c631481a2d2318ca0049a22041347d0eb54486a4194d4bb0845556616df6f3e7dc1109146fb2eac098dc89c5a4e1449180f9df29e1562afb2dee7fc7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
120B

MD5
2513a0b883fc8d3f033ce6f226aa64b1

SHA1
2c40390139b6b6fb6e93db47620b9b4834ddb5ab

SHA256
1ca03797f0accbeedc21270e8d6544e639ae761f0a5c754d6319d692a60b14b7

SHA512
377f889fea50e12bb355dfb0a5fb3f2bf9f3df30eac1f7817da8591596ef9ed1831f0af88213d95decb8dee487336342785f2fa3d6ea1d2b799ef998a8b30844

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir3240_800944608\Icons Monochrome\16.png

Filesize
214B

MD5
1b3a4d1adc56ac66cd8b46c98f33e41b

SHA1
de87dc114f12e1865922f89ebc127966b0b9a1b7

SHA256
0fb35eacb91ab06f09431370f330ba290725119417f166facaf5f134499978bd

SHA512
ce89a67b088bae8dcd763f9a9b3655ed90485b24646d93de44533744dfcf947c96571e252d1ad80bdec1530ff2b72b012e8fff7178f1b4e957090f0f4c959e0d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\c73cb39e-03ba-4192-8b33-5f2e57228018.tmp

Filesize
15KB

MD5
80d3b9064fac79571e9cc2ee7b9912a2

SHA1
2d2de386b843d22d53da8d1c1c5d6c02f937daba

SHA256
66b13c0879dc8eed5215e9f5fb8e694e605b1f0a9ac02d08dbfe19f779a9ce9d

SHA512
1be4a7f213cb16cd8b03d204f48c5e0cc6038791efaa784fbf7fa1b8b060ec648a68d7c18f2ca172626fb34f82d3380cd190e1d351421dbca03865d748d1b30b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
e511c497decab0d5ca615ee5389a35a8

SHA1
740a557d613c7d49341f9c9a19fc937b00374bf0

SHA256
059989092ed91a99cdee452163158de7c8e94029b6b01e266e078eff8d7602cd

SHA512
f23ad5872c189669aefd07423178b7f3399114fd721e470ea36dcf7dfc97c5088136430111fbc3e18f655da8b940ed0233ffd73e9f8499f39010118279fc2676

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
6cfdc9b2bd719f7fc73908ef9f560f6e

SHA1
e96dc88c9c523c6c054cedcf70afdb313e7d7ebb

SHA256
5da47f43c76a4957d0a68310f629a152b093143b5c53c4120b1c98b1ff292707

SHA512
0b33e854632c50c627eaf8a425015a82bd6bc3e49c4e58110cf8080ddceb0f24ffc5afde8ac0b212ffdf0127c6ae20f6cd60f75a50cd56f913f42181ffbef59a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
835efb3c4a2d1cbf8e05b33af2e06595

SHA1
665e1a3815b9c543eeed5f4536ec0571b20b71d5

SHA256
096a8f66795087455bec4c1d47485e56c0ca2e2afaf584ef8c38e7167d9e98ac

SHA512
67cb9b73fdccbd554ccd6d4bc928334efbae8a4e9ebde5f64feb34750dc21764e667de98f366d3a124d664cfac9864d43f9a2c147112ab30850d2248a085d667

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
e80ae3929f90a9574a4b6c1016bfd487

SHA1
509e8a5d423cf65f1efdec086dc0b388f346ae82

SHA256
554b60da3e7ca0d940e6e1b020582d50ab6d769620113130347a5190fe7fc274

SHA512
cca5437d689d78159d91a73964a7fa93153d735b400f3e769ed8ae3fe3d65d1da4f92b71142059f9745b3d0c538f35bd6c7ed0f4f75a4ae61acd4e3686a643d8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
0d68d897584e41144a00f54bf6fc110c

SHA1
150fe115c47d383bffad8522f0b5f46004ecbf36

SHA256
43d6f80e675e7a0acca4e9a44dd64b6764abb42252ca86565b35815d918074f4

SHA512
598d4bc2a86a0b4ece08a5a1912a6eb1166e83d1804ea96f2954cebb154ecf229220c5a100ce358d843cbc05561ef1d6fbdbba2892425cef12762b87d6257289

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
36be7474ba996cac162e63a4382ffe1c

SHA1
59f560b0d58a097ce0906cbc598e1eb658bb726a

SHA256
0c3e12778208a639d8dee3679afe6a14cd6d007c9351febfb1da0ea8b8b31476

SHA512
7ff5f4001150f6967fbc111a11b9c70633a8e49827d208f5694c9fd5310fe233dfdfce8fab20a897b41568938057b0821a342bd499266241d760003414b9d0b3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
28991b56707161ae10ebfb6a88c6c726

SHA1
4e898d5392e986e822c042072bff0047c73467f9

SHA256
c00a593d58e70b095171bc414880e7a7e180e2fdd1d31b390208de9824133ca9

SHA512
2e1aa7a16b7abf5740533492485c1c0d0db4a1a4585ad13f134fa192730fc905453f6c2f14a762a6051aa00939f37215c72e80478ff56f6823ec44f947775247

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
b36b97597305deb5beb5d0c98e316cec

SHA1
925ce8bd7b9fbcf7d9f8e3c0eac37442d264c7cb

SHA256
2db0f1132d6aebdc0a585f498f5d625ee21ef291115067c977e8fca0f020d96a

SHA512
f8fb89c07738fc8dfa38425d849176d4afaf2446f8b7da6d83ed12d3411587d2e1226de5d920f528a4e37428b217f9280baa7a2d02a96eec901210d045672711

Download Submit
C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411240008041\additional_file0.tmp

Filesize
1.4MB

MD5
e9a2209b61f4be34f25069a6e54affea

SHA1
6368b0a81608c701b06b97aeff194ce88fd0e3c0

SHA256
e950f17f4181009eeafa9f5306e8a9dfd26d88ca63b1838f44ff0efc738e7d1f

SHA512
59e46277ca79a43ed8b0a25b24eff013e251a75f90587e013b9c12851e5dd7283b6172f7d48583982f6a32069457778ee440025c1c754bf7bb6ce8ae1d2c3fc5

Download Submit
C:\Users\Admin\AppData\Local\Temp\7zS8D6A2A7F\setup.exe

Filesize
6.5MB

MD5
80510ea85c478436f90b927e1730820e

SHA1
7a54ff150b83061210dfc683aaf113c8ad3abd1f

SHA256
97fc8eb7503277c0789ae5c7683246b433d8ab5a482ec7fe0ec61e0037c05b30

SHA512
cacdd3f9107f7fb839c6ae67a4408329caa82d15e1f0f5fbf6721500fbe43b873e7eb4da3f3569ce8ddd5c26e4f47397bc2b4f4133808050e49fd34fff2c53a7

Download Submit
C:\Users\Admin\AppData\Local\Temp\Opera_installer_2411240007597601656.dll

Filesize
6.0MB

MD5
5ec157d8d5e886c43f1adcf45bfa1c71

SHA1
4606048ce3a1d74d5a07e5fda2fd2274e1727b45

SHA256
fcd77e9a357f744ac0eced1f896e23cd875f1c7f8e77b5fff23f86a786842ceb

SHA512
2255f3c3d7deb1946415125d987ab22a75c9dacda94fc3bbcdb43cf876ec0e0cfdc2e4636216b3c20b2eba740a32062bc12b2d72d113ae5913cc6f81758953c7

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

Filesize
2B

MD5
f3b25701fe362ec84616a93a45ce9998

SHA1
d62636d8caec13f04e28442a0a6fa1afeb024bbb

SHA256
b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209

SHA512
98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

Download Submit
C:\Users\Admin\Downloads\OperaGXSetup.exe

Filesize
3.2MB

MD5
7d43c63b70bca481d0fcf6cbcbe3d98b

SHA1
32ac5bb91010bb929cdc87f81ffc1b0b9ce77a10

SHA256
3b7d838ad80bac41fa1b040abd2fb93b849a31ddfad33d2c3733b0eeb6d9e0e0

SHA512
375fd157ea88aae62b8253c11c0494d864e4c33092436f380cd3039cfac2b0fd18e808735389d4421b4f8d64a849e0be35cc3f27cd9baa3e04dff8b1622f4935

Download Submit