Analysis

  • max time kernel
    599s
  • max time network
    529s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    26-11-2024 03:52

General

  • Target

    https://drive.google.com/drive/folders/1bHHAM-Fcy-KsaeAE--_vq00LYhuiuaqm

Score
6/10

Malware Config

Signatures

  • Legitimate hosting services abused for malware hosting/C2 1 TTPs 2 IoCs
  • Drops file in Windows directory 1 IoCs
  • Browser Information Discovery 1 TTPs

    Enumerate browser information.

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Modifies data under HKEY_USERS 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 6 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 2 IoCs
  • Suspicious use of AdjustPrivilegeToken 64 IoCs
  • Suspicious use of FindShellTrayWindow 26 IoCs
  • Suspicious use of SendNotifyMessage 12 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://drive.google.com/drive/folders/1bHHAM-Fcy-KsaeAE--_vq00LYhuiuaqm
    1⤵
    • Drops file in Windows directory
    • Enumerates system info in registry
    • Modifies data under HKEY_USERS
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:3972
    • C:\Program Files\Google\Chrome\Application\chrome.exe
      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffec3a4cc40,0x7ffec3a4cc4c,0x7ffec3a4cc58
      2⤵
        PID:4804
      • C:\Program Files\Google\Chrome\Application\chrome.exe
        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1756,i,5454026283192728315,9804118822979569165,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1764 /prefetch:2
        2⤵
          PID:3904
        • C:\Program Files\Google\Chrome\Application\chrome.exe
          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2032,i,5454026283192728315,9804118822979569165,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2124 /prefetch:3
          2⤵
            PID:3720
          • C:\Program Files\Google\Chrome\Application\chrome.exe
            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2164,i,5454026283192728315,9804118822979569165,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2372 /prefetch:8
            2⤵
              PID:2500
            • C:\Program Files\Google\Chrome\Application\chrome.exe
              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3084,i,5454026283192728315,9804118822979569165,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3128 /prefetch:1
              2⤵
                PID:3060
              • C:\Program Files\Google\Chrome\Application\chrome.exe
                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3092,i,5454026283192728315,9804118822979569165,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3160 /prefetch:1
                2⤵
                  PID:3404
                • C:\Program Files\Google\Chrome\Application\chrome.exe
                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4588,i,5454026283192728315,9804118822979569165,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4480 /prefetch:8
                  2⤵
                    PID:4868
                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=4712,i,5454026283192728315,9804118822979569165,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4364 /prefetch:8
                    2⤵
                    • Suspicious behavior: EnumeratesProcesses
                    PID:2172
                • C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
                  "C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
                  1⤵
                    PID:2036
                  • C:\Windows\system32\svchost.exe
                    C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
                    1⤵
                      PID:2372

                    Network

                    MITRE ATT&CK Enterprise v15

                    Replay Monitor

                    Loading Replay Monitor...

                    Downloads

                    • C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

                      Filesize

                      64KB

                      MD5

                      b5ad5caaaee00cb8cf445427975ae66c

                      SHA1

                      dcde6527290a326e048f9c3a85280d3fa71e1e22

                      SHA256

                      b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8

                      SHA512

                      92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

                    • C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

                      Filesize

                      4B

                      MD5

                      f49655f856acb8884cc0ace29216f511

                      SHA1

                      cb0f1f87ec0455ec349aaa950c600475ac7b7b6b

                      SHA256

                      7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba

                      SHA512

                      599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

                    • C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

                      Filesize

                      1008B

                      MD5

                      d222b77a61527f2c177b0869e7babc24

                      SHA1

                      3f23acb984307a4aeba41ebbb70439c97ad1f268

                      SHA256

                      80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747

                      SHA512

                      d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

                      Filesize

                      649B

                      MD5

                      265bc5dad5bdb1f7e3fe2b0162638af1

                      SHA1

                      e93620b8ae1f873569c4fe3c28b9f25f43cbd5aa

                      SHA256

                      5f1e9a4f58852ff6aa89b72d1f0463cb63077e06a5aaf1695fb49f55244617fb

                      SHA512

                      459cfceaa9dae642ab43c71d188baa927dd661cd0d571c8f4b7731bf839ff42022474b8783e6856b2fb76edf061b8bdc508f100a6ea5b2e3434098c6cf3197fa

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

                      Filesize

                      1008B

                      MD5

                      08dac76a972029241d5e1d1f81665bc6

                      SHA1

                      d3f5fc2927137fb0b5724840e04811b46d8f5b97

                      SHA256

                      eb64b846b1ec3f122bae2093ada3184f220856bc1921759049c3471a60cd7f37

                      SHA512

                      216447cc2e8b8ebeebc54db3de651acc581129c4d8d8c7b846b8cc0c5dbec2522925c8edafd8b142c713c3520fa9164bb85da04a27461282730d96c232c42cf7

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

                      Filesize

                      5KB

                      MD5

                      9fa3e864be7f130a85c0cb48bd3cfd09

                      SHA1

                      abc8c020ef8d4523c6ffd3471c25f041f7274558

                      SHA256

                      0c2eac7d7fec70d7b24a4313bd9177f9e9904bd2e349a54efb3e9a796edfccda

                      SHA512

                      16425fed2a09464f03090e07c9708a7c16b8c3bf7249dd1b919d043ca4766d97a2593dc9f404f793d296f0a6dd16c597faac5eaa3a02aaa64281a3ad04a407ad

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

                      Filesize

                      5KB

                      MD5

                      4ea9a92d611fb275481eeb09b339f84c

                      SHA1

                      ee3868403fb4343f4d059d2dbdaabf8d82bd611c

                      SHA256

                      06b7704fea4ae39f526a7425043e5a2afed44a642e466e9ccdb3887c2db0c065

                      SHA512

                      2186448295275f4c5a7c08982c1c7db725a74e0ea552efca6c71295906ef0e15d360ca976068e81d8795da65aa8b5e6261a75093587df155252a3c36971c2751

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

                      Filesize

                      2B

                      MD5

                      d751713988987e9331980363e24189ce

                      SHA1

                      97d170e1550eee4afc0af065b78cda302a97674c

                      SHA256

                      4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

                      SHA512

                      b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                      Filesize

                      1KB

                      MD5

                      522c32e79d61548188178f088d200a1c

                      SHA1

                      76f32fc3758dfad75bd0226abcabc88a62f9b984

                      SHA256

                      fb7997a200f56920acdc8a6f997c4858a0158c393f34ae05455d66def2c06c83

                      SHA512

                      89cffe73242379a6af83d2e9acd6fc5e7d7bbe9be38fda781ece70302273da14969eff765dd7a8b7bd730b4951b12795e0ce6540f99eb2e9bc56bb66b66adc53

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                      Filesize

                      1KB

                      MD5

                      df811adbe4311409dee152f3ef67adcf

                      SHA1

                      b85084707434d5d6a1e0cd3b5d81b73a86e3a556

                      SHA256

                      31f58e4eeff3ba31751c3b4db30622469a4d24b43b7408bc53c91195633d8ffb

                      SHA512

                      54ff25354c21074d59ada57e426e1bd9bbe4bde035a6aefe22444713f7f7738f6cf94c14c96e79b8b67b850903f5074da6821ccdfc8e5b4334e726209ba7d45f

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      9KB

                      MD5

                      dc5f5c99c317b2cfa47849736ae4ba38

                      SHA1

                      67a4c2c0d202d7c080b61663f1365c1be7ca0989

                      SHA256

                      69cbe5c621e2b9ea5ec4580a03929fffb2dc832ff11f3f66a021942570aadae0

                      SHA512

                      08ca881a19c11d4fae5a5ea9e40c317db6008cfca8fb8bb91187b38d145a05e019035455db27afdee7c4c441fa66008565d617aa371bdb9ebf313e63c5c7c327

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      9KB

                      MD5

                      0cd642ffd110f584fca9a01207a5dc23

                      SHA1

                      39e3ec379c1ccee84cad3a7cfd5cb6a6c1a39602

                      SHA256

                      573c38bdefa6478ff226f029e80064b97a28efb02ef7be2680ac050781fb9ff5

                      SHA512

                      4ef9588fc1a57f296367ba97f9e1194fff5446a6366ad7184f9deb66e68b2a0b49adae7aae67ada228ad0f5e7ee28bfedfa5c7b78b7763e03876be79446c2e1c

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      4e27485aa436b56d2e8b134a3c1bd06e

                      SHA1

                      dc348c67b995fe5f0eb9374254ad7754d89b0ec0

                      SHA256

                      a083a78742c90e0d98608219054f397cd72d28799d99bfdcaabdfae2d1a2376e

                      SHA512

                      9e30a880d6759f6d5f80058b8dd6192fd99a95b1efa1475c6c3322b6c91ab1ffd4af2ef5e0080a60d56b484130dc50b1d347bc956f0717a6eea1f711f3e0fbab

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      8120727be375f58c4304e98b0dd58f50

                      SHA1

                      e421a0ab57cafe97cb175dafea5c469ea513dcd8

                      SHA256

                      124071e98d600d868c343423fb0ff61e3e203da7d3cd9df8d279cfb4f8610fb8

                      SHA512

                      536efbc1abc1d0077fd645c3c110c78bea8aa9d4c5f5ae725860efb4983ede8b9a88278c586c8e91252f61dbe1677c637f16bc4e1f1220750cec074ebe8b2a99

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      b7026ac0b0081272c8525e2f2c1f7229

                      SHA1

                      50ae8303dfcfa5b921b635e578876867d0a97645

                      SHA256

                      438a92e77d7577018bc9b479667eb9750980a6dea6ce8f135e5806369268cb3b

                      SHA512

                      8df6b7bf3cbdc9eaa7c93c6aa0f52c46a83632f86b2011bbc0c780106ce5b49ae9b554c2c197cc6b81e37cba873cd0331591845316452442452e7875a9f0f30d

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      214a0afb7a7fa5a8f56b7959154657ac

                      SHA1

                      20ca4f78c7f72b793efe1d963317166ffa248449

                      SHA256

                      54874e68642637487d74092e3d93bb1d2d2a746deea12a671d2f8723550755f0

                      SHA512

                      de3d022515f424662601196682556e0104acd47eca5a835306e1a06fb6d6878bf50ec8604f19de1bf910d953751b83f5b1f0d899c7536a2aff561c0bc0baa2b9

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      9d55b15fd912122c874caf2a165ba861

                      SHA1

                      ab5a88d0d39e3a7e68c59213a4338a5c3e52d3b1

                      SHA256

                      8dc62710a761b0592bf17747bb51215e43aba7a3aeab111b28274f10a3410491

                      SHA512

                      fe5fb9bebefabf9b59a6e11bcafd05980bfbf08346747d9d8db359952684c1e5a94dee7f20c58a5900877e56668931eea822cd2948f5b1dfffa7c706038ae4a4

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      7022861a66693cc0fd892bce1031d10d

                      SHA1

                      5744c2d752a2785c24e6241d4757410eb2932461

                      SHA256

                      6fda9bc7af4f742c3ec9d63b48f1a0ce869edf7b40b4dc1f584e3375dce7a135

                      SHA512

                      367d9a0ee3ec012b8e1d4576bdc23537bc6762818d9ec962a067563aab71094ab997e2a21e9c5fdfa11fa3882addd592f99c075449627b569035e1608e6884e9

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      724acf50ffbdec53a5c0f59ba7c0f016

                      SHA1

                      6fefe782824636001a149ef6145de33a02953543

                      SHA256

                      5a2165a65dee4f1abf84068c83bd30480168f29ec42491b65d3846e07259ef00

                      SHA512

                      818b60316392dcb835c6b18cf935fdb29afa25c1cff5545847fca3cf5e39d69d9a593a6e1bb4244817e0acbe9177d2950d6fde842ab98f3f41ba2d0d784c377c

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      0c93028cc3f2c9efeed7836e9e98e579

                      SHA1

                      3183f8b5c1a47dc128a5f80abc2ee09b20e9c967

                      SHA256

                      2f94412abce0bd54c84c4aab56623d268621f7bad0ca1c8615a02b60ea943871

                      SHA512

                      ad3d91a20ec6df1aa6580f21a528f9658552e513f47516b105ac4e32b535706aeeadcb7520fb3f151bda746c73d241dfda0464c754ad7cb0e49b58ee775513e5

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      3cf1a0f9a46ab8722b19be83f10f8aec

                      SHA1

                      241f8336c8af6fad04cd4b4f11c15f932e76bd4c

                      SHA256

                      915b83d5442e67081d5ce395734b8c91abf18c3fb1f1026cb2d2e8376807f800

                      SHA512

                      641db1b1ce5e2b9464cc9979ea8d4356c43085cf09700a2c7ea70bbdff3f107a43610db5e79c4fd42c85ad1c05fbef6312bf6db0e605b165ae3ab20cb62c79cf

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      06337719fd5cd094d45d5e9142d0f9aa

                      SHA1

                      d7537e494e46f8862982ba732a4f5fe15c63f91d

                      SHA256

                      608ca5bcb71f9045d4f73e30a0e56dc5c66927e42754ef4d888593a160ea9d0a

                      SHA512

                      86bc6a99575ea2e56dfdd03a7fa4f0bfe3e11648697fd6cb8de084beba755df71b8f8f287cbdbb9bd16ffa1fae12b5568b13d41620312c7cc2f4e29e6017fa57

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      e306f2bb5d8ff9e410b678d26e6edca5

                      SHA1

                      2c919991b49b20cf6a4d68a33f7afa3c2cc8c6a7

                      SHA256

                      968458fd0d5902b9dac12df7c3a0e6dded19f4e2dc4208cd6f1e3178166f9d08

                      SHA512

                      77908661e33e8b74f6c0c59d8cd38976ba66ae8eef3216fa096b568cdc87b20b880feb3569b21f322f8fb53fd4b0ea9e05382835f41d40c13c8de5f4b7273c69

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      a9c0338f98efb678b21e4fd06a84acb8

                      SHA1

                      10e371d98647172e9c31ef48b6310b297ab580cb

                      SHA256

                      7a2598dfbeff491f79118019621dfedc8d3d3acec90849c0c57cf400c3c826b5

                      SHA512

                      56f4ea5b716b6c6d011ddfaee006d00cfd9142bf4b319a4a87d16a9a0f695597afde5620c98622f26b27c4e0e8dc8ba5bbd6f90b3c15eb17ad6d8c2b36456e79

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      9beee7fe3660454ba405da6569bf38e8

                      SHA1

                      90877a513c94c144ffd9bf544744adc7937897dc

                      SHA256

                      562470e542464f5f5d5998b32620c11e8ba0fdecbe6fecfc865018993156d41f

                      SHA512

                      4a57f3b235fa4e1bdbe4960ff9cc68702c4947bec586dced5f2835e9bfd4aef4df7830e6c8f4af130b315f7e2f3b121e7cfb4695f7ee83730f41a1e75e90f8f9

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      fef3544468fcc3f33ef37d6798314d89

                      SHA1

                      379a3b0402c47bc7eae5b0d042375b254567e0cb

                      SHA256

                      76b0ad42e562e986f114fa30cc5cb0dac7a03a7665902a512c9db2157209a749

                      SHA512

                      274eda28f6b42c2c83126853dfd3ca7dc01c57e004e10ae4d52b9c3fa4ace3e2d7d41d2effe8a90740366f5e3867e71f51e3067e9b17bef290f1f91814a9cc32

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                      Filesize

                      10KB

                      MD5

                      9edc7e4fea1bbca4c1f07987df4e3307

                      SHA1

                      593b696580e2ba1af3571eb7f2cc9467a44c3f0c

                      SHA256

                      bf40252a658e010652ce65bf0818c45246396425b16c87952820cfdc2c9f8141

                      SHA512

                      cf7a9aa903617ef7e324129193b63f96608f3c17308aa4f6faf99184b5118f8d06343227bc496a0a2653ace83a7cdea7391d8d0579948377e23eafb310064469

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                      Filesize

                      228KB

                      MD5

                      64566c6c2918f58624c23873cd918666

                      SHA1

                      b9ff69e0ceee4b16e65103a4523cc061705bd141

                      SHA256

                      392b3f27490cefadf4044067b9d7289e291af403fdedeafbaf6e55930349f55b

                      SHA512

                      8e5c0609384d8037605f10d1ff330614aefe476e3b6bf695d251ac4374492b05eb6b51f67582ff8d89807185200dbf09bd2083621d51f0b121208feca550b59a

                    • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                      Filesize

                      228KB

                      MD5

                      6541d1c8c8131fb4da46215e7e06313f

                      SHA1

                      2ee3247308a1048a8692b231ef59f31c0ac53845

                      SHA256

                      62288290cf76c4a1753aa6ae17d21e4c6f16d7627cc3644471cec8391bd5fc8d

                      SHA512

                      6774dc80bd6208e11d6d7851dc8135a638d57034cb2874d399fc6535ae00cf4118e6e0a7650784a441f1de0e1b7808aebcf62745f626795cbb3926703a3b4572