hxxps://www[.]techspot[.]com/downloads/5235-minecraft[.]html

Analysis

max time kernel
109s
max time network
112s
platform
windows11-21h2_x64
resource
win11-20241007-en
resource tags

arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
submitted
04-12-2024 20:49

Sharing

Copy URL

Twitter E-mail

Reason

Machine shutdown

Report Analysis Logs

General

Target

https://www.techspot.com/downloads/5235-minecraft.html

Score

10^/10

defense_evasion discovery evasion motw phishing

Malware Config

Signatures

Modifies security service 2 TTPs 1 IoCs

evasion

Modify Registry

T1112

Windows Service

T1543.003

description	ioc	Process
Set value (int)	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\wuauserv\Start = "3"	GamingRepair.exe

Downloads MZ/PE file
A potential corporate email address has been identified in the URL: =@L
phishing
A potential corporate email address has been identified in the URL: web-vitals@3
phishing
A potential corporate email address has been identified in the URL: [email protected]
phishing

Executes dropped EXE 2 IoCs

pid	Process
6104	MinecraftInstaller.exe
4228	GamingRepair.exe

Mark of the Web detected: This indicates that the page was originally saved or cloned. 1 IoCs

phishing motw

flow	ioc
289	https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html

Drops file in Windows directory 1 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SystemTemp	chrome.exe

Subvert Trust Controls: Mark-of-the-Web Bypass 1 TTPs 1 IoCs

When files are downloaded from the Internet, they are tagged with a hidden NTFS Alternate Data Stream (ADS) named Zone.Identifier with a specific value known as the MOTW.

defense_evasion

SIP and Trust Provider Hijacking

T1553.003

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\MinecraftInstaller.exe:Zone.Identifier	chrome.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	MinecraftInstaller.exe

Checks processor information in registry 2 TTPs 2 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0	GamingRepair.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz	GamingRepair.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 17 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History\AutoColor = "0"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\StartColorMenu = "4290799360"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\AccentColor = "4292114432"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationBlurBalance = "1"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\EnableWindowColorization = "217"	LogonUI.exe
Set value (data)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentPalette = 99ebff004cc2ff000091f8000078d4000067c000003e9200001a6800f7630c00	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColorBalance = "89"	LogonUI.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133778190083646568"	chrome.exe
Key created	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History	LogonUI.exe
Key created	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColor = "3288365268"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglowBalance = "10"	LogonUI.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentColorMenu = "4292114432"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglow = "3288365268"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationGlassAttribute = "1"	LogonUI.exe

Modifies registry class 7 IoCs

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-3870231897-2573482396-1083937135-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\History\CachePrefix = "Visited:"	BackgroundTransferHost.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3870231897-2573482396-1083937135-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\Content\CachePrefix	BackgroundTransferHost.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3870231897-2573482396-1083937135-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	BackgroundTransferHost.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3870231897-2573482396-1083937135-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\History\CachePrefix = "Visited:"	BackgroundTransferHost.exe
Key created	\REGISTRY\USER\S-1-5-21-3870231897-2573482396-1083937135-1000_Classes\Local Settings\MuiCache	BackgroundTransferHost.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3870231897-2573482396-1083937135-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\Content\CachePrefix	BackgroundTransferHost.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3870231897-2573482396-1083937135-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	BackgroundTransferHost.exe

NTFS ADS 1 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\MinecraftInstaller.exe:Zone.Identifier	chrome.exe

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
5252	chrome.exe
5252	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 64 IoCs

pid	Process
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe
Token: SeShutdownPrivilege	5252	chrome.exe
Token: SeCreatePagefilePrivilege	5252	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe

Suspicious use of SendNotifyMessage 12 IoCs

pid	Process
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe
5252	chrome.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
7684	LogonUI.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 5252 wrote to memory of 5244	5252	chrome.exe	78
PID 5252 wrote to memory of 5244	5252	chrome.exe	78
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 1268	5252	chrome.exe	79
PID 5252 wrote to memory of 5800	5252	chrome.exe	80
PID 5252 wrote to memory of 5800	5252	chrome.exe	80
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81
PID 5252 wrote to memory of 5568	5252	chrome.exe	81

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://www.techspot.com/downloads/5235-minecraft.html
1⤵
- Drops file in Windows directory
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:5252
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7fff6398cc40,0x7fff6398cc4c,0x7fff6398cc58
  2⤵
  PID:5244
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1884,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1880 /prefetch:2
  2⤵
  PID:1268
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1740,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2000 /prefetch:3
  2⤵
  PID:5800
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2192,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2380 /prefetch:8
  2⤵
  PID:5568
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3064,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3104 /prefetch:1
  2⤵
  PID:5696
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3076,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3116 /prefetch:1
  2⤵
  PID:3124
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4564,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4576 /prefetch:8
  2⤵
  PID:4640
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4724,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4712 /prefetch:1
  2⤵
  PID:1976
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=4652,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4736 /prefetch:1
  2⤵
  PID:3256
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4572,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5012 /prefetch:1
  2⤵
  PID:5368
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=5168,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5144 /prefetch:1
  2⤵
  PID:3084
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=5156,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5308 /prefetch:1
  2⤵
  PID:944
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=5316,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5452 /prefetch:1
  2⤵
  PID:3816
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5588,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5480 /prefetch:1
  2⤵
  PID:5984
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5616,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5736 /prefetch:1
  2⤵
  PID:380
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5756,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5884 /prefetch:1
  2⤵
  PID:5732
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5872,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6020 /prefetch:1
  2⤵
  PID:3768
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=6036,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6176 /prefetch:1
  2⤵
  PID:5288
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=6204,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6316 /prefetch:1
  2⤵
  PID:5620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=6056,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6660 /prefetch:1
  2⤵
  PID:5764
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=6616,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6772 /prefetch:1
  2⤵
  PID:5720
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=6924,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6908 /prefetch:1
  2⤵
  PID:2108
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=7080,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7096 /prefetch:1
  2⤵
  PID:1804
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=7204,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7216 /prefetch:1
  2⤵
  PID:4832
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=7388,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7352 /prefetch:1
  2⤵
  PID:1660
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=7552,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7536 /prefetch:1
  2⤵
  PID:808
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=7656,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7512 /prefetch:1
  2⤵
  PID:2328
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=7860,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7680 /prefetch:1
  2⤵
  PID:3512
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=7960,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7988 /prefetch:1
  2⤵
  PID:5360
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=8152,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8112 /prefetch:1
  2⤵
  PID:4464
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=8288,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8268 /prefetch:1
  2⤵
  PID:4772
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=8148,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8424 /prefetch:1
  2⤵
  PID:2040
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=6488,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8612 /prefetch:1
  2⤵
  PID:2512
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=8760,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8756 /prefetch:1
  2⤵
  PID:1656
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=7816,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8444 /prefetch:1
  2⤵
  PID:1936
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=8920,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8940 /prefetch:1
  2⤵
  PID:756
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=8284,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9092 /prefetch:1
  2⤵
  PID:4740
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=9212,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9236 /prefetch:1
  2⤵
  PID:5008
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=9396,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9424 /prefetch:1
  2⤵
  PID:5416
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=9560,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9248 /prefetch:1
  2⤵
  PID:5108
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=8168,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7660 /prefetch:1
  2⤵
  PID:5540
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=9564,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9724 /prefetch:1
  2⤵
  PID:4884
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=9964,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9940 /prefetch:1
  2⤵
  PID:2104
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=8160,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10084 /prefetch:1
  2⤵
  PID:1100
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=10108,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10100 /prefetch:1
  2⤵
  PID:3804
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=9832,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10496 /prefetch:1
  2⤵
  PID:6240
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=10572,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10576 /prefetch:1
  2⤵
  PID:6292
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --field-trial-handle=10736,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10708 /prefetch:1
  2⤵
  PID:6344
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --field-trial-handle=10424,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10352 /prefetch:1
  2⤵
  PID:6468
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --field-trial-handle=10936,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10960 /prefetch:1
  2⤵
  PID:6476
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=10968,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11096 /prefetch:1
  2⤵
  PID:6484
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --field-trial-handle=11580,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11712 /prefetch:1
  2⤵
  PID:7160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --field-trial-handle=11964,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11556 /prefetch:1
  2⤵
  PID:2764
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --field-trial-handle=11376,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11680 /prefetch:1
  2⤵
  PID:6428
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=11424,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11956 /prefetch:1
  2⤵
  PID:6892
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=11740,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11616 /prefetch:1
  2⤵
  PID:7008
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=11228,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11648 /prefetch:1
  2⤵
  PID:6960
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=11240,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12180 /prefetch:1
  2⤵
  PID:6160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --field-trial-handle=12332,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11688 /prefetch:1
  2⤵
  PID:6600
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --field-trial-handle=11380,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12340 /prefetch:1
  2⤵
  PID:6608
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --field-trial-handle=12604,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12608 /prefetch:1
  2⤵
  PID:7188
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --field-trial-handle=12720,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12612 /prefetch:1
  2⤵
  PID:7288
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --field-trial-handle=11992,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12888 /prefetch:1
  2⤵
  PID:7296
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --field-trial-handle=4748,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4720 /prefetch:1
  2⤵
  PID:8076
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --field-trial-handle=4784,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4808 /prefetch:1
  2⤵
  PID:8084
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --field-trial-handle=4848,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5008 /prefetch:1
  2⤵
  PID:8092
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --field-trial-handle=9156,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11180 /prefetch:1
  2⤵
  PID:7440
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --field-trial-handle=7060,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11408 /prefetch:1
  2⤵
  PID:7448
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --field-trial-handle=11100,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7492 /prefetch:1
  2⤵
  PID:1464
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --field-trial-handle=7624,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7596 /prefetch:1
  2⤵
  PID:876
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --field-trial-handle=12472,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7412 /prefetch:1
  2⤵
  PID:4852
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --field-trial-handle=7640,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7800 /prefetch:1
  2⤵
  PID:6272
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --field-trial-handle=5140,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7560 /prefetch:1
  2⤵
  PID:8052
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --field-trial-handle=9732,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9720 /prefetch:1
  2⤵
  PID:7548
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --field-trial-handle=6708,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9768 /prefetch:1
  2⤵
  PID:7572
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=8448,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8812 /prefetch:8
  2⤵
  PID:1400
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=12580,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8892 /prefetch:8
  2⤵
  PID:4988
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --field-trial-handle=9048,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=13020 /prefetch:1
  2⤵
  PID:8076
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --field-trial-handle=9744,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8812 /prefetch:1
  2⤵
  PID:720
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --field-trial-handle=9804,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9448 /prefetch:1
  2⤵
  PID:1476
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --field-trial-handle=11840,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5412 /prefetch:1
  2⤵
  PID:340
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --field-trial-handle=9080,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5732 /prefetch:1
  2⤵
  PID:2372
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --field-trial-handle=5348,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6520 /prefetch:1
  2⤵
  PID:4104
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --field-trial-handle=6072,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3700 /prefetch:1
  2⤵
  PID:7656
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --field-trial-handle=8116,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7972 /prefetch:1
  2⤵
  PID:3308
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5104,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12000 /prefetch:8
  2⤵
  PID:4060
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --field-trial-handle=9548,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8888 /prefetch:1
  2⤵
  PID:5016
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --field-trial-handle=736,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7836 /prefetch:1
  2⤵
  PID:2396
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --field-trial-handle=8872,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3100 /prefetch:1
  2⤵
  PID:7436
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --field-trial-handle=10096,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4832 /prefetch:1
  2⤵
  PID:3392
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --field-trial-handle=3200,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9688 /prefetch:1
  2⤵
  PID:7628
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --field-trial-handle=7680,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4752 /prefetch:1
  2⤵
  PID:3116
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --field-trial-handle=9932,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5280 /prefetch:1
  2⤵
  PID:4440
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --field-trial-handle=6576,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5912 /prefetch:1
  2⤵
  PID:4800
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --field-trial-handle=3700,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6464 /prefetch:1
  2⤵
  PID:3436
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --field-trial-handle=5732,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9660 /prefetch:1
  2⤵
  PID:3376
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --field-trial-handle=10376,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10116 /prefetch:1
  2⤵
  PID:7352
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --field-trial-handle=9752,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11364 /prefetch:1
  2⤵
  PID:5004
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --field-trial-handle=8952,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11608 /prefetch:1
  2⤵
  PID:5028
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --field-trial-handle=8784,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8752 /prefetch:1
  2⤵
  PID:2008
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --field-trial-handle=11532,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6632 /prefetch:1
  2⤵
  PID:1580
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=9728,i,16356648820075646512,13048107211399311322,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6564 /prefetch:8
  2⤵
  - Subvert Trust Controls: Mark-of-the-Web Bypass
  - NTFS ADS
  PID:8128
- C:\Users\Admin\Downloads\MinecraftInstaller.exe
  "C:\Users\Admin\Downloads\MinecraftInstaller.exe"
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:6104
- - C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe
    "C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe" scenarioMinecraft
    3⤵
    - Modifies security service
    - Executes dropped EXE
    - Checks processor information in registry
    PID:4228

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:3264

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:4296

C:\Windows\system32\BackgroundTransferHost.exe
"BackgroundTransferHost.exe" -ServerName:BackgroundTransferHost.13
1⤵
- Modifies registry class
PID:7816

C:\Windows\system32\BackgroundTransferHost.exe
"BackgroundTransferHost.exe" -ServerName:BackgroundTransferHost.13
1⤵
- Modifies registry class
PID:7556

C:\Windows\system32\LogonUI.exe
"LogonUI.exe" /flags:0x4 /state0:0xa39f5855 /state1:0x41c64e6d
1⤵
- Modifies data under HKEY_USERS
- Suspicious use of SetWindowsHookEx
PID:7684

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

T1543

Windows Service

T1543.003

Privilege Escalation

Create or Modify System Process

T1543

Windows Service

T1543.003

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

SIP and Trust Provider Hijacking

T1553.003

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
e3e82881d59d3805c7410baf3cbd1c9d

SHA1
b27456f5ac2f8535d27271010fe87149662ecf69

SHA256
b2b314e4becc7b71978c0783f0bb2d3a7cdbcbc92426eca00c94349a0f2db9e0

SHA512
60bf53c4960aa2af7a944f4bd318cacd125d25c52aa12279cd1814c8db008aca10433d66a65fa6af288da0348fc498daf0c760ac44d21dfdcb7ab728fbdbf70f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

Filesize
19KB

MD5
130096b7df7f464c7399bf4e70959098

SHA1
02cfdc7ac08f14664cbd509c4207de91b040e11f

SHA256
5ae3e45057cc9d4af7f6e030499f3af347650c6d1a053c05808aea50781e024a

SHA512
62f3b9694369e35c5af2e78b1459341c3c7c4d83714376d23ca1061926b64dfb613192a07213764be3a45da34328c20f6f0655e323093fac33753f1f55070bd4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

Filesize
360KB

MD5
d2d62bdb9bd488d1d4fc53e272557140

SHA1
a2bf280827d8ceb6acf147d9ba1f8bd8f8ef950f

SHA256
03f7a3ca04028c5510fa93748704271a4903ef704a27051cf7413a5153d053fc

SHA512
a084b9be87a2e8ab8edadf74b22659336a3637c21c95d7f0d8a32a3055250e92d91d57ab9c40c2bcfa1fa052893396da7fe820e6ea2661f1ba7663a7ca0d66f5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

Filesize
52KB

MD5
25846f9a23f86c97c833c5fbd624fe7f

SHA1
0696aa04937ff44ee7dcf88b63e0ea9d1e363c78

SHA256
f0d0f10f3433d88f1a83ab02466ae7022ad85c4cec96f9a0396ef7a49d55ccca

SHA512
c4bccf21fb50e566a681a82bc43acbe1e99b98080edd002c69f5ee5d99198ad279f710add0fb07238f35affa7c0beb52ba92be857c57cc3ab41a818d9df1ce29

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

Filesize
76KB

MD5
24bd7950ae137b3fcfafd5c5a4629fed

SHA1
1253ba0cf5cb6ae1f740c21d1915fc1c9fac9492

SHA256
348e6c25aa5ee47ad65db74ab50283d07dde3bea96539fe86cf2c66fa8a7c189

SHA512
446d700c42ffd71a0bdfdf790a79248bb29e2b44a872b801cddc6c2cc0a6a2886d1d2948a8f5c61e4bbbbb6985456a56d0c02828f8a9f5bbb9f31e3c7488f1ac

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

Filesize
46KB

MD5
3e841f61809d3612293ad4656ec30b4e

SHA1
3c157009d840b324b1fbb664fd5c7429f60e0d26

SHA256
149af9e6d05b381cc361c1794633dac5d4fee5faef80e6e43a6e56540c74d0d6

SHA512
24f539a7d0d16e1a30b5352f6e705d988348f8296317c7d02caf40549fe8efe5c97d6b5f549e5c933908176aa093ffab46d1a76c76b20a71e5ac52828a27f6a3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

Filesize
104KB

MD5
8656e823ee5185a4e6007b9ebf932222

SHA1
80ad786989a666e33750329a3333f3e0658c7b1b

SHA256
70e2949404683c73ebac14821126ef38e23ae90da586fb0467c7638ecf3d3c84

SHA512
06f455e6746d76542370852cd4a3dbc80f6d1d8cf4ad4e388dc09685c149da3aafecd7aba02072e5bb31300aa7c679777e7b19a25b54f1d6a54f738c2622a1b4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000027

Filesize
67KB

MD5
ce58019b091dbdb1895be63d765b1177

SHA1
37a38458a92835c43b270069c0629c6975b2ba69

SHA256
8defb86fd585d1e578370bac22698f0de49d509d7398a0e83fbae7a9d11e0fcf

SHA512
36be843dd5630cf0c76219459b2ff946fa91ab90be31e3ac62452642a79a062b9d7aaae14a0ad8fd92b1a6d468394f1aa8bfe45f262f33e34048b46e046a1b27

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000028

Filesize
20KB

MD5
02d0464758450d87a078aea4e46187a1

SHA1
41154a61b8192c00a4f03e5ce97e44ecc5106e74

SHA256
c6aabc7504bbf101eb3b39fb3f831b61148f34605c48b02ba106aedccde52750

SHA512
9af139023983a975acb29147037f4fa8ca820e15b4c5f471e2cb000909970ffbfda2b210c8330cea93271bfde3732455a545730e242f1a0e59871bdec702b39a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002b

Filesize
16KB

MD5
9c6b5ce6b3452e98573e6409c34dd73c

SHA1
de607fadef62e36945a409a838eb8fc36d819b42

SHA256
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc

SHA512
4cfd6cc6e7af1e1c300a363a9be2c973d1797d2cd9b9009d9e1389b418dde76f5f976a6b4c2bf7ad075d784b5459f46420677370d72a0aaacd0bd477b251b8d7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
2f361902b70d3c4a44a2cb6f2450ecc6

SHA1
cb3e15c3ac9ed90520adb79754ee7e768480d71e

SHA256
05681af42946cce5b8465a16c9f6a4f3621cd7693a90e680fbce8e92cc67b28e

SHA512
cb34691d27aeda9315b6a2d20f1c6b92aace2f3b386ecb9fdcfb9069d0f8cbeb3c8691fcc1fe05ad5760a8b03a5fc4e94dce0480a03015be1457187b5de2d5ed

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
37KB

MD5
4bb6964bbddc054e6cd585a3275a7d1b

SHA1
f35a4b3895179007d965314d0feb88d025010e48

SHA256
cc306f8c8d77d48382bb9d276565b5e8cd62699399a6f1287ec345f2665a9723

SHA512
f4326cdb7b317b69cda31947084048c1d810adb77495a05a5e4242d677314b06fd29086acb85f7a83152342855eae2ddfe7e8323db28d6929b18c6e007e6c1f7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
7ec1bbc3af5e3d4d0d12b478b3738e40

SHA1
01cfb5c2326f997af4a15cdc0a701caab80c8d04

SHA256
efdfe57592d21a7669136426fcf76b5e9e81bb7e32a7d7ac248f01dfcf38dd12

SHA512
2d10f022ceda3a5f09dc1decd9ee33e38665b11710ee297b171073e952f5c99c79889f6cbc1603118da64a00106c4d4dbda0be5cdb83229111eaa3cff13b7727

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
58424fbbbd945fc5500e3509d03cef92

SHA1
1620e6f698b2076c84f073bfae4f8f1d3ac55ab2

SHA256
06dbf7c086ed07fb7e947feeea9ababb640697c08215c3740326aff72941c282

SHA512
831b7c47ef6080e54f5643129418be310ec891ed8ddb868be8423be19d592a4aa885352e6302f32741b43d2e5d1e665a6440d618b52fce8131964f79789e0c6e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
fd538740451f4bb63a02a2448418a559

SHA1
051ed3b041582b3b729ae2eac11db7828c4d3be1

SHA256
152933ce3caf96448da0ca5d85d277eb2b077479610089d7e16093e67aeac05b

SHA512
5993b968b55be8e5976caf96160bda61dfeef28fadebe762facdf25b7cf8c642e1b87269ac6075e3837c771d640275ed0e8f31c0fb5ea1336727c2dbd512fb50

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
ebfb7710c0cab6d81ba658541812834b

SHA1
c99a802a3b52d9e899bdbc252f467fda6c03f58b

SHA256
d46f37b256010e12dc71bb51faa853001ed101af5bccb89cf3d8de976d5d8764

SHA512
b75dccfbbdbfa07d70cc172c99c9fd27c389f7af59cd5a05a3f9b72442f6c4013727211ed5992792ebbfa174abb598d7c7b3db4ccb5d4cdaed5b5d36eaf4dc6e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
8cc129b5687d07e2555cdae1aa8630b2

SHA1
9875ef712ed6c94e90a74b43f87d8d1ec75011f6

SHA256
bde7ae45cbfed3129d411bbd144c9471fe59caa7bd30ae22d2a4ec0ad0395904

SHA512
2ad1615130b3cdfaa83ca3b9b81c9fbe9b42978ad45535f27f4d354e2fd1b512b157a484626608c00e708b74db22668ebdccf6ea16995fc5d1bc87c292589c4c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
6a5b7083b401050e62beac9f923a3708

SHA1
ec9b5b535d5459c0090838ca572cb88d51d53a4b

SHA256
5b9c0a259a2d81c0be0b3dc5901e2c965f7d7493ae2499e3d09b2c3c58f739ca

SHA512
9973f05fc1d20af1908d525f3e119e1ef615f51d8c87b10490eee7f98a03702f4e05416423c323590e4b7a071bcc7c602d8f92e2867706305a424efbf0dc9a5c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
1a6c331b11e9d7e58a7f6e7026fe2fb6

SHA1
fd5af626230d20199fa07bf84ffacab9406eeca2

SHA256
2a151c3b7feda7c518fe745b7c6ac804d8ac46455952f7fbd2ade139ad88514a

SHA512
632521132de721433cdca011e7ab9be1eaebcc068e9a3e0a767385d610655fa19c0222092a5d92d6cecca69d95fb82b5e07abad13bb596ee47d5775bf42bbcda

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
3f768d5a6284d7b11be0faa8a3b5d770

SHA1
f1405cf704a8ee8657feb99d46a4387d4d394243

SHA256
ec0333251c87a64f294c89c81547202cfd82634d7595cb84f3873a96630ef9cb

SHA512
ff38c3d0351c5bcdb52fee47eb1145a46182c8d4efc9564a89fb12c8e944e76ad422119b9d981a69e50813a5be60011e2c2cf6e57974ee61331cdbcea839e03c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
829e59b4444a84ce6c10103693aab765

SHA1
143e2d1b8080e12ba18eac4440a6cdf6f550dd70

SHA256
9ebee0449abdec99f0a965cb85ed76effbb06787c240df303bf1f5f4614b0828

SHA512
3e3df729c82c659f96de63115c60d554fc089ff855c3b65e253fa310a45ef34ef42a1c211c0540de7e5d9041e92ca9fd7219e4bcde09c46d290123d5003e6db8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
e6daa90f1c255460f8e97e5ef5aa671f

SHA1
9985ffc278eea04e2fd45c59d6691202d015af90

SHA256
bba69d240f523db5e1fd30a2ddbbcb20d3d1a5434d4c2135ff0fff4763064a2e

SHA512
31745ca13d6773853b30eb8485850657affc14b93922f0020c763dacaffb8a54e5f0d56492ea95eae90c59b5f3b9cc536c9e8788611670b379e20d84d8e8144f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
4896aca327a62587108cfdfe50752aae

SHA1
e06197bf59efc02ff1d094f3a4fa20a6776cde8b

SHA256
bd9d73e08fe2fd090d0c7e5d0f44fbdf4f54d8d1bb5e43e98d6678151769f879

SHA512
daf5bea4abb6ba6c89eccd09e395db1af07c08a4b725fa00cf68115e70002c34f96f96349336ba7d0fbdbec7c105a75fbbbb161c164b01ef23024d9f2837ed5d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
920aa02db13055768c7b631db2287a03

SHA1
46b75813f9e63a700824c183bfcd6c57207914f7

SHA256
89c46a71f1622fd08c8d677ad34c0eef7bf947c530ef7ee365cf761142298754

SHA512
b42e440404350df3749e052c54d1cc70130507e8ec94eb6a1950a1c60b543f1f3279cbea48508ee5b1246f0199b0e10343bbee3aceef7a99f16c3e8947626dfb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
cba92b23cd7a2068540c0588cb60e9ca

SHA1
5b26d5aa1d153b1f390ba10d3af417c6370d81ef

SHA256
62f43fdd578bbc68ffe13a97abc9ad40a73887335ee848a52a59b793c3f38f59

SHA512
d5ab6e2d9ccf9224ab2372b2f6d9361f445907c126129b53fd3a554a410b082c8b304d1a35beb0383a620a637fe19d9e5b79585375955bdb383385896d4fff29

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\IndexedDB\indexeddb.leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\IndexedDB\indexeddb.leveldb\MANIFEST-000001

Filesize
23B

MD5
3fd11ff447c1ee23538dc4d9724427a3

SHA1
1335e6f71cc4e3cf7025233523b4760f8893e9c9

SHA256
720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed

SHA512
10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\c0652b00-b18b-4ac6-8733-31b0e2aeeb93.tmp

Filesize
9KB

MD5
0146b7600e86f3e3708ef24444dbb4a4

SHA1
ecb664c0f8f68caf3de72aa448db39d850f20511

SHA256
f1d026b778a84a1dadb2430e05c088165281c070e6e06fbce2f262e6d2ed8565

SHA512
435e2c6bbfb8f1f812ec7824ee07fe37aef806310e11907cf46764484ff18992d948764a44bd68c0b4a2d24f975462572074ebeca2c6853cf040126a899228ea

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
228KB

MD5
4a0179bd7ee9fb540b82844867556f90

SHA1
5314fa82d6a56e29775a9c636d24611c0921fea1

SHA256
4aa51c515d061a920b09f36379e52a4ca98920038355a8ac152084381a1033a8

SHA512
93aead715f8d8cc1564022f25b7a174ee9ba8546024c6a5b87a028724ab0c8612c75c23c28a4ddfbef09be0a07524a2b72206f02fa0d67aa8d815fffad0d52b8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
228KB

MD5
7bd6c1d9586efcb2f8e9f8fe26c0112b

SHA1
7a2604c0e7cabd83cc04f9ecc12ffef70cf02758

SHA256
8bd0049acabc1c25eaf893fb416ed1eed2f87177927dc179b22d003961230616

SHA512
aff7e9df85ffcb0ea5dcdd6eed0ed40e0d0ee1c95eadf8fdc2ef0c0e07ce34fd0203f0018d5d9a36f272119887ec036a18cc23f7a3b0e428b5239629b8e42f86

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
228KB

MD5
6fbb786d36f42a663e190d6674f43049

SHA1
53c1cbebc9986e8d129a2725b5cc22544cb775f9

SHA256
86aa2ea17e56cbe78248a63a99d2e5838842500509a1f9f199d2b4a4e25bdca0

SHA512
505035ed5fce1dbab9d5d0c6cf1d98c0cd3c0e0711505d5f74e1857f4a097aba4ba3548a96d5ac3e4e5fceb8d6f33d79de1b1decf856bc6b393ccb3c5a759426

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
228KB

MD5
82b0cc5a65d94a5aa28ff64454885779

SHA1
633f94c63756bebe7393145af5465d0cb82c1859

SHA256
fef82c0a1cce5fd6ce9af820ced065982d3b63c02b093f97ff71b798595fbc20

SHA512
af8fc7f7f4179362a1b372d28d27564788ee34c018327b87cc6a9dede735cdda6647fcf8ba7a9576da72df2f36df3e0e033738df86e418d8ff8b5b0ebd3ed6cb

Download Submit
C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\BackgroundTransferApi\617e6413-3b0d-449d-a7b6-42406ea5987a.down_data

Filesize
555KB

MD5
5683c0028832cae4ef93ca39c8ac5029

SHA1
248755e4e1db552e0b6f8651b04ca6d1b31a86fb

SHA256
855abd360d8a8d6974eba92b70cbd09ce519bc8773439993f9ab37cb6847309e

SHA512
aba434bd29be191c823b02ea9b639beb10647bbe7759bbffdaa790dfb1ec2c58d74c525ef11aacda209e4effe322d1d3a07b115446c8914b07a3bce4d8a0e2c3

Download Submit
C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe

Filesize
557KB

MD5
8a4e72a29c08ae2cd13bc8ec414b8fc6

SHA1
26f8d73bc6f5ace5cec6e3652fc6410a71298498

SHA256
6513546697c3c9deb50d8dbb0cc9aa0be55487538ed482ec16b6264579de1539

SHA512
77eba566c65de1327bcacadb1483f538b4e5da67c3607398d745173ade25e987f59524a5ecf065dd5f95e26654cbb5a48dc80fae995d5d2dd63c63b2cd98fb98

Download Submit
memory/6104-959-0x0000000007A50000-0x0000000007C12000-memory.dmp

Filesize
1.8MB

Download
memory/6104-975-0x000000000BE70000-0x000000000BE7E000-memory.dmp

Filesize
56KB

Download
memory/6104-977-0x0000000008480000-0x000000000848A000-memory.dmp

Filesize
40KB

Download
memory/6104-978-0x000000000B800000-0x000000000B826000-memory.dmp

Filesize
152KB

Download
memory/6104-974-0x000000000BEB0000-0x000000000BEE8000-memory.dmp

Filesize
224KB

Download
memory/6104-973-0x000000000B2E0000-0x000000000B2E8000-memory.dmp

Filesize
32KB

Download
memory/6104-993-0x000000007525E000-0x000000007525F000-memory.dmp

Filesize
4KB

Download
memory/6104-995-0x0000000075250000-0x0000000075A01000-memory.dmp

Filesize
7.7MB

Download
memory/6104-962-0x0000000008770000-0x0000000008778000-memory.dmp

Filesize
32KB

Download
memory/6104-1006-0x0000000075250000-0x0000000075A01000-memory.dmp

Filesize
7.7MB

Download
memory/6104-961-0x0000000075250000-0x0000000075A01000-memory.dmp

Filesize
7.7MB

Download
memory/6104-953-0x0000000000B40000-0x0000000002B96000-memory.dmp

Filesize
32.3MB

Download
memory/6104-952-0x000000007525E000-0x000000007525F000-memory.dmp

Filesize
4KB

Download

Analysis

Sharing

Errors

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads