Analysis

  • max time kernel
    899s
  • max time network
    845s
  • platform
    windows10-ltsc 2021_x64
  • resource
    win10ltsc2021-20241211-en
  • resource tags

    arch:x64arch:x86image:win10ltsc2021-20241211-enlocale:en-usos:windows10-ltsc 2021-x64system
  • submitted
    30/12/2024, 02:20

General

  • Target

    https://github.com/d00mt3l/XWorm-5.6

Score
6/10

Malware Config

Signatures

  • Legitimate hosting services abused for malware hosting/C2 1 TTPs 6 IoCs
  • Drops file in Windows directory 1 IoCs
  • Browser Information Discovery 1 TTPs

    Enumerate browser information.

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Modifies data under HKEY_USERS 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 6 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 2 IoCs
  • Suspicious use of AdjustPrivilegeToken 64 IoCs
  • Suspicious use of FindShellTrayWindow 26 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://github.com/d00mt3l/XWorm-5.6
    1⤵
    • Drops file in Windows directory
    • Enumerates system info in registry
    • Modifies data under HKEY_USERS
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:1144
    • C:\Program Files\Google\Chrome\Application\chrome.exe
      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x21c,0x220,0x224,0x1f8,0x228,0x7ffda083cc40,0x7ffda083cc4c,0x7ffda083cc58
      2⤵
        PID:4124
      • C:\Program Files\Google\Chrome\Application\chrome.exe
        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=2060,i,11545665677093817929,6426261123674683302,262144 --variations-seed-version=20241210-050121.637000 --mojo-platform-channel-handle=2056 /prefetch:2
        2⤵
          PID:4420
        • C:\Program Files\Google\Chrome\Application\chrome.exe
          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1908,i,11545665677093817929,6426261123674683302,262144 --variations-seed-version=20241210-050121.637000 --mojo-platform-channel-handle=2172 /prefetch:3
          2⤵
            PID:2296
          • C:\Program Files\Google\Chrome\Application\chrome.exe
            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=1924,i,11545665677093817929,6426261123674683302,262144 --variations-seed-version=20241210-050121.637000 --mojo-platform-channel-handle=2404 /prefetch:8
            2⤵
              PID:2372
            • C:\Program Files\Google\Chrome\Application\chrome.exe
              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3128,i,11545665677093817929,6426261123674683302,262144 --variations-seed-version=20241210-050121.637000 --mojo-platform-channel-handle=3164 /prefetch:1
              2⤵
                PID:4112
              • C:\Program Files\Google\Chrome\Application\chrome.exe
                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3136,i,11545665677093817929,6426261123674683302,262144 --variations-seed-version=20241210-050121.637000 --mojo-platform-channel-handle=3212 /prefetch:1
                2⤵
                  PID:4504
                • C:\Program Files\Google\Chrome\Application\chrome.exe
                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4612,i,11545665677093817929,6426261123674683302,262144 --variations-seed-version=20241210-050121.637000 --mojo-platform-channel-handle=4596 /prefetch:8
                  2⤵
                    PID:3244
                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.4355 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=4772,i,11545665677093817929,6426261123674683302,262144 --variations-seed-version=20241210-050121.637000 --mojo-platform-channel-handle=4936 /prefetch:8
                    2⤵
                    • Suspicious behavior: EnumeratesProcesses
                    PID:1044
                • C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
                  "C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
                  1⤵
                    PID:4824
                  • C:\Windows\system32\svchost.exe
                    C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
                    1⤵
                      PID:3592

                    Network

                          MITRE ATT&CK Enterprise v15

                          Replay Monitor

                          Loading Replay Monitor...

                          Downloads

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

                            Filesize

                            649B

                            MD5

                            ae904093d0823a97ebcb808125df1f42

                            SHA1

                            5dc7c5d5cb38eebb6a89c1e482ce51fab18753e7

                            SHA256

                            97bfee47661d382e8a0eece81c0d43583309279a12fed36b8c5f4873e4c1fcc0

                            SHA512

                            dd95a8e29a0d4c67ee09367a4ea30e78f30880c95acadd9e660f80d93b3e4a022c0bcbcc50b020cd3d337f237da1746d4cc5c4e5c87e83f70e24925c3378de08

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

                            Filesize

                            2KB

                            MD5

                            d0b1bf3077cd6915418f973ebacd4068

                            SHA1

                            702f864ba948737aa54d0f626c6204d0fe18a1c2

                            SHA256

                            91e7b94c89e581e386e0b8a1b1e788d10d8c63b0d5cdff68d31a7072c382e8e3

                            SHA512

                            29783eef53aa274fd28f0196f1e3991571e2555e77d3c3264d6c3cae85cf62822fa271bc5f523ca4791d07435038d7f8a81c367295c55561f525fca995148c7b

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

                            Filesize

                            2KB

                            MD5

                            68e6889be566c6eaf2852e58c0a728be

                            SHA1

                            b8318cdeec1063d27581a760f1c1631f8b936f34

                            SHA256

                            e9e8447a0c9c9f376093aa841c9bd33725311d505b945d67398af8c66d43e888

                            SHA512

                            262a975a87f73744c33ecf8d7d89b2c8743f2fb4287b5cd1c7207919ed88d8026e8251a3b481a1bec3acabfae075fdb1bed7524f48718ddb2ccd75c7d2ed1cab

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

                            Filesize

                            2B

                            MD5

                            d751713988987e9331980363e24189ce

                            SHA1

                            97d170e1550eee4afc0af065b78cda302a97674c

                            SHA256

                            4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

                            SHA512

                            b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                            Filesize

                            1KB

                            MD5

                            8fb00c6013e00512ede4dae557ce76da

                            SHA1

                            5cc88088507800efc73494679fd58779b9529d30

                            SHA256

                            6e06497a00c03877ca805c8ee30f70592fd146eadcdd33f2de1c0b4695ae96c2

                            SHA512

                            e8adc6740bf591488ed51d63203a048967505bf38efd119bfc7c1965d2906c2e6e034fd41aca4d9758dad6ecf88af71a21a58cf55437cffb52e4c6c749d887a3

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            c76023d2d9ab415c6b2e7c252b1c6cfc

                            SHA1

                            cd50aa94ebf568b02e1c5fc7fd9701679b570ef6

                            SHA256

                            5bfcdeb37bc2238c1a53b79f6e34073d5ff39fc25a8d69cf7cdd8197b1bd47e4

                            SHA512

                            b8de0143676bd3729b020d16b685de1e3a8b8f89888d99b9a86cf4048529c21a923bd7b623dd58ef82424fdcfd7adabe5d2548aae474d973ac448339fdb9dc80

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            3cefff667f4d7950fe4935491d53610f

                            SHA1

                            bf6b66b1c92efe41ca91819f60ddff7c0c7ff457

                            SHA256

                            462c72af18db69d839ea379014e3c750ed73b8faa765eab570fe6673c10ed669

                            SHA512

                            a5f7af70b9761ca36c159a395dfbf7a643fea515f043f00022de0ca31c4e449d0d62ca4c87440786b563817f39d000a3958979004a1045ad6a8811ababb3136e

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            abdc4693c09d32be6c19b6d60a1ea87e

                            SHA1

                            345f036a9a6b237812bb38d7778697f0007b242d

                            SHA256

                            dce99c06d3a68acf0d120a000729f280ae8517b33b9d69bbb2792e1c8d3637c9

                            SHA512

                            4c6302c18547bf6ca522c795c315f0ca0ffdcf7fedbc6b247b0d7f809e40c27907469f0b0fabc305429a944251c22a446fe8423f018e0decbf6c9d704cbfb892

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            fc0a8912feb08306b97c723a905aebc3

                            SHA1

                            cb94ba0415128fa29f5ed0131151a3b2bab21472

                            SHA256

                            9017be4bb7fcee890d2e3e9a38182274798de05813b0fcb4a5ad26a2425272b8

                            SHA512

                            3cc1efd04c442b51a2bf25b65ec9a43b74facbe3cfce3611581a8dd6a6cf3c21ef9fe80f0b254048c39a02518e1f1a2ce2df3a2d79926972d75da9a8e85040d9

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            0d60c763c8f546abb9f840dc668bc3b1

                            SHA1

                            de530e1589934c08676ce16f2b936ca6d957e6d2

                            SHA256

                            e4abcb0caee6d1871bd62525a4f1c1b604d74852b315635516574669e471d5d2

                            SHA512

                            25ce66f93b206a151bf096d5f9a84890ec8dc730b7cc6fd71b899ef2320119b8a1024774f208990bdfe47c32c6fd91a1a775b6ccc7a21e80ab86c98ebbdbf056

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            95ebafc5c07110e6629512cf50464473

                            SHA1

                            7e620c51c980411a0c571168b87783b75debb534

                            SHA256

                            896f0685ec250eb224fb1b09556015f4a00aea744bac23e93403977b73807f5e

                            SHA512

                            1f30eabc6bb741b06a8d1ea041e8887ca5c94f066c94de041c61e5c7d4070594f0d3db30e6294d44bd925ed6b43cb04e8ac0cc67bc3a1f46408747b2fd5d685d

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            852043895dff99a92c6bb13061634e0c

                            SHA1

                            906204259dabd340af1aa39463714e4e6aea0f4e

                            SHA256

                            de5a5f29aed1b4265ca60ec51d0d730787cd7389ea489bbdcccff0830fb45cc1

                            SHA512

                            27a7df215023fee9a8c7321a7ffcb0030b8645f6b9474b417d8b8f22d006a5a8dcf1b0a2443538655e1ee3fa12de6447e32e4a266347c2a914a207a64febe251

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            bf44f2264eaf7a882535e580d2854968

                            SHA1

                            4a88786ba52372f70df7a6907755d528dff0f263

                            SHA256

                            fc2ba5c8b581f77344ef2f5081d214cef27e45e40c5be9099e585dafff818e46

                            SHA512

                            480912c59c3cac125e340211b46a34760d87db4c8d65065c0213e1022e59175745e1a45d0c27ace25f4bad162eb57aa34062c4fd94349972ca1cf1aba2b8ffd7

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            222a7c08506229c7dac4c91840a63165

                            SHA1

                            5587b4980e212d17648c137997447332112639ce

                            SHA256

                            acd906bbbd3e7a832627d15cd4cb57225ba68eda55aaae067e868b0f00921325

                            SHA512

                            98fe68491ce25e85a16ed9c16383dd8f17281d4ae4b818a0c0daa466c83584a9fd976ac1d53d8cbf9c8a5479e6b33249cc1bb0158cbbb0284b6477cf63106d5e

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            e49712b5cf76acd21be73240f6001718

                            SHA1

                            cedcc9a21209378ee0a444dcfce69f3eed840fbe

                            SHA256

                            46bfd38e6150d171aa8c9c72f6fdf2107c59893d5a48f3ce62f232985ae96b5a

                            SHA512

                            5662b88bd1b8ad456587c67e28d8215cecc1a61f455272163d585979d4093ef8ac830549f2eb2f42a9f5a4054030fece7825ed2cd2becac225932f2196400036

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            a811eca7dc8b71035b4f0e014aeaccf9

                            SHA1

                            cc0b296d0ff271b18643d759a376c21b0ef6f2cc

                            SHA256

                            4a0db17aeaaf0683bb8a688998042e9d660d53279ba7a7bec58dbebfa499e719

                            SHA512

                            043bfcaeb812bc2fd38f4b5416d99dd13d5e48bf1a6ce7a830dbcfab78a4dae1c7783bdc19b10f692fb0b80e95db561bd19cb3a74f1a1817becad1ddd262c123

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            2fccaa5887f4449723e1115db599d2ad

                            SHA1

                            e460808dbe16fc69a4356e2d4a9d4f5be3838f34

                            SHA256

                            96204b3dcd97e48a8fc1ead9444cf9f1dfab4482144d8a82f41342dff22510b3

                            SHA512

                            52f898ffe9f2dc39ce048cddc8f6d270a9faca7c695c22a97df16cdeb73bda03911691ca89e0544d2bb4fd322b1cc65b3844db147215364fd950a18d806580ca

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            b4c019c354e67ab8bda9afbd3d03f5f9

                            SHA1

                            9155d48c8eb8278bc26638174da517114865d5c3

                            SHA256

                            f43bd8a394943b2f3d35521e4a1beb57cb85f1a9243127ea9dc928453937dd42

                            SHA512

                            d3a2bfab5b76bbfac57b6303e649866683b0db7d0ce123e8e8b154a109953a3981790b1eea2dd9c43e8e43354b5246b8f689e7070ebe7d8a79732500804e7171

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            3d5a071105095e215e6f401f72994520

                            SHA1

                            2be75efc7732ec17d13960e0bad49f420add97b4

                            SHA256

                            892c8e309976cb80a32dbd1aba2895277c6aafe5e5ca6929cbc64b747f7a698e

                            SHA512

                            88a23304c2ce51a7d8aa186d33e4cfba6256cf293016837b203fbbe0ec822e6f90b17e22f3f4f6606979c2a4be3576359b09eaff0b4a55d94711a620789dc703

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            115d45d9f7665b965749982bfcbe644e

                            SHA1

                            8bf0f7b04af5593143740db9893348980d3ecbc5

                            SHA256

                            128e660888b953987a2995286273298ece54859a44fdfe5b39cfdfc24ad2b54d

                            SHA512

                            0a5f3641d7e1830055967bfaab11e067f65b74025c1b188c7f72510913ae5f08bf673f0a567c2c3dac74001731f534e681f4010f341326a34c926c55d1854f3c

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            d0cb8d0b1b530436e3f1fb8e86ae7dbf

                            SHA1

                            fbbe7fc2eb5e2348e9143e5634c36f7e21f0f255

                            SHA256

                            ecff49907e75ebd97721b48210f8fc47183fc93da04f6148551630abdf3fcfaf

                            SHA512

                            e03429760472e7c498b71976b2fcd43149a13202854a410bc54084a906cf8230b4ef0d6456926ced00eb46d5a67e1127df9f331859dd7656ef80f6e141946d18

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            3f9d50e14dcc77e9d092bf999c43c209

                            SHA1

                            eb19ff3c6ab84f2e82c9ef24fc12a1c6d68e5cee

                            SHA256

                            646f4a00b5edce4f080f0254e0070eaabcf0352bb2c496c73c5f39b299c7fe8c

                            SHA512

                            6349cdeaf1c727de736c5b0b24e37abb9ee5e9c5e07aad1061fccb0377ce165614a16fb8ed9d06195b007701f80b11a7befa6a4421bc2376f80206d2b5c04fe8

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            b1fb84c9d6ba2d07128beacb59012ad9

                            SHA1

                            829810914b9fb8dda69dbc30c7f6b8d56a2fa451

                            SHA256

                            ceaf71a4fb4633b9c9244b49dff49538c247d529e0ef6d613cbbcdca1a6e542f

                            SHA512

                            9dc363802cab609257f9865a57efd5976357e18c6722d4eb7e4e1e0197129895e4a5b673e3061595fc135134b8d178442aca2519d2e966c58e2c2c275be0ad8a

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            380a251be254f74aedd9d5519c07191a

                            SHA1

                            1420ed6363b0318314ed5b480d6da68d8916bd52

                            SHA256

                            2d8651ae3d7d94db112d60bb7cdc1e9e23242a1018adaee11325114ca14dafee

                            SHA512

                            91195dbbf8733ab1b99e63cf18d2cbbf2b13d177a6fcb6b9301635dade2509619f892574688cd496ba718569e011c5ceefa58f545cf75efacb68dc57a3329e52

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            f1189964e1d1277ea62f066f2b64f6e8

                            SHA1

                            568fdbf4de7bd6a8a805a9d0ddc31816eeb40b67

                            SHA256

                            cf87a79ba4506ba2521ddad340c7d2db8839450f6ba68b0c003976ac91b81c2f

                            SHA512

                            82ff3efc59deb5c4bdd783e6588bb477d4e0a669fcba58b2d55e01d3f971b64b33d264bfbd83fc7df6aad26f0dbebb987d70b4adf2733423388798af8a7073d8

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            09943e78b41b63ed80e60ef2f26c5828

                            SHA1

                            65e077e7e815697f3bc1bfcbac978e4c34810c06

                            SHA256

                            c24ae74efd8ea5f2e75220b3447c9ac93b9de7faefa63df8d101eed2952cd71e

                            SHA512

                            e92fb4ba64a7b663db4b0f30fce6ccbbe11c4177b9510e64ececd8f8a1511aedbc5a73e7e3d52eb8eddde2926bb0e0c73b3aea086664105475718181e6c27da9

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            e5fc6c31c992afc9145675fe07eed8a1

                            SHA1

                            40215969db9acb3dcd0cb29fe5cc4833ee7f7d70

                            SHA256

                            7b36dedd29701f6e33424fca4f241c79c9362e0e8b062f4230d697d5f708e28d

                            SHA512

                            7dc7197c4e81ba83d09a3062b0e2c57acdac1b91f4a29f647d6c1904bd46708102387d70e1297b371891fa735b8edb3d8966528af43bc77d912b2fb42ad18c9e

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            79b097c95bf8073c868d0f7d1375ace9

                            SHA1

                            ad9c5b844e4a8ab2d3f99934c15d5f0f74147004

                            SHA256

                            914a8d3904e64b78b88c134e0b815cb4502b5fd90bcaced76c294182270c526f

                            SHA512

                            c0a4a819d63321d4d438d79a5c2aebc09c23d4a80f3ef651581880bca621f31b95ec690555b9865ce88648c4f98778a537372d02b741b97a67d996ca0aee60bf

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            5fc7b2376ebc461ac73f18274884fe20

                            SHA1

                            34893d50b13aa71573081ccdc58567b979ec3df5

                            SHA256

                            e60f635478e8c5250dff0dbc4f8a09ae176696e6474cee6f5b267121f40be710

                            SHA512

                            7a9651a38ce18f52814a632ec0ef71f3f5489aa73981a273130fb588bf8f0402a289df09e4e4b33e2c25ae892346b727a9104cec86f03e06cd139c36080d52c5

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            7091c8e3bf5af685d3ebcae6e986b32f

                            SHA1

                            1f0a459d6f5135e2f5abc8f374afacef5c36eba6

                            SHA256

                            708772f9e1f40476677c828adbfc5c8828f5d42a18df5c3322aca4ad90a5d172

                            SHA512

                            71f0078a59467053e8f30cae358dc1caf7bc841ecf3e7d9414415734ceeeaa0c1e0fd9c79cdf46194772402de9b7e6d11312cb94b39240a877b973a7af8cd649

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            2f0f5bd9a03f30973232700f62c2dff0

                            SHA1

                            9c05658cbcb7ba1897280a2e9df069e90a3c0685

                            SHA256

                            9e5c80957f8c2f03cb044a5b852a6cec874f4b3ed61ee66911d029e492f507fe

                            SHA512

                            a4b5df4416cc13111dd3739a431d5c6f2fbed7f14d1339b2aacf2e7054789183794d09767f66fbde28bb93fb232d02b02618762c7e55cd249cea226f07887233

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            2f0032921586366305f98c2414ec4b7d

                            SHA1

                            56cd80c11572687e6087aa059f24b3efee12e993

                            SHA256

                            2a5004ad58e479cf54490beef3c28ddef91398deb14e511efbbd3c678faac9a5

                            SHA512

                            e11de02d22c727770e42d6e5ca4c37b8620a75a5389a1e5f13d04d90992fd684fd0ba9aeab9cef930293980e19397804880449b1aea9779a865f5acda8287a8b

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            32bf1607f19dfbb986b298c268fb61d4

                            SHA1

                            15a754e5503a79bdf7b027205d32da4b7bfe2f9d

                            SHA256

                            e2aaa95bb54238fdad785767e50c0eee14da1bd26cbcd1ddd39813523b0c0a64

                            SHA512

                            83cec2f90966c29349ea45aebc15e8d58662179384ff63e44b17a0ac7061ad5a270b5ba41feee374a59da1d52c6ea5d22976c051ec2783d60ab19e83a8d88597

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            a77e12e1606ae3f7d4b131cca7084522

                            SHA1

                            6e146fbc7437e2d0ede0904644ad59e5282acbdc

                            SHA256

                            46de51bad3db60e85e72c2381d64dbe86957f15d5fc96cf7506ea1bde4d9e68f

                            SHA512

                            16c5849b78f136d656f4106414463076d5e62ebb627959acd5b583159874cb8b0604ee1f7e68755b1191723181366baa060a0c941b2e03351fef67e1bcc5d749

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            62bab7db6470efcd6bf09afa15b438fd

                            SHA1

                            cc64552420ca0911636e0f7998dd3d1762cfa45e

                            SHA256

                            b8bbd7f22f3709daf32cea293cda0170bb3092b7324e59a2346c1f6112fe1c4d

                            SHA512

                            409b5743776cced5e51d11432ea8b037cf06328ae6680bd42fa221928e5020f7f18928a60d89b95e8fb7ef05b39ce3661776f1f76fd8cbb1c59e8e9d18c304fc

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            1d21361e916c35554f24e610caafb946

                            SHA1

                            61b89c9ffce3311781039aa54ce390a33012b865

                            SHA256

                            37dd352be62785e630723198a044d83fb1d187025c1a6751eb808bc75886d1b5

                            SHA512

                            891bda730acddc230e6b21a00d08b2430b8fad3defc1ae817cf006b3b89da49d40a6045400bcd5b71ba86a72ed360adeb6d4ebfbb279e9c01514fbf0f0566704

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            c0a6f86a9a258158cc37179d7c06abb3

                            SHA1

                            846727b290448a7b83080e25452fa4d39d31980c

                            SHA256

                            ddc360c4f883240d046a092f8c602c5a5552a56a6aea34e94b8fdfda0cb53d2e

                            SHA512

                            0093631c94f02ad9f154bf694252e19a651d220f5c6b28cf21d7b5b03af040159d1fc71891734d8390e2f00f6f6ede11fcf82329630ad907d86ac1c7617094aa

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            53f16086c989da57eb08984bacbe4cc7

                            SHA1

                            dee4b2b4323e80f2213920336d438457ba590200

                            SHA256

                            79ee98087891fb4b3d52ab8448f687b3610de7f2f51c8937e5967a42bd1fe98d

                            SHA512

                            75a70c618379bc7c27547adc7de972b814cf47df2b693e1446b9186e7a481fcfbb7716f12c266a78955d3ab809600b3f1030445ede90791bf0fafca9a6074522

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            b9316b250c784192534353c6a31709ec

                            SHA1

                            6a69038ea515b451537a3459a4f8cff63a0ca931

                            SHA256

                            38bc9df2f52835831a1623f0d01cf0a8b73d6d7c51730736ce8d6c1c2079e462

                            SHA512

                            a88307f6c39095bc7c3be7288dc23745903e43a2aaaf0548f7cd6259b7b6cb4d8c5334b2b54db65c85fc68676eb25ff04739eb6238bdadf5b412f1d7ed0d5141

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            bf821b4bd85e9b7678ac2ff10c6a8331

                            SHA1

                            624c17b1b27a3b93a48a0ea5a038d5bcd2dd5e62

                            SHA256

                            13c602697f7bf0f9f3548c49654fb7df5987c57a2a2c19872e4491524dc859d9

                            SHA512

                            6b5795ba6701065d0c73299fcebc71b197bf95eeba233b35464b2d9944202c86c453a9bedd66c76255537e1cb2a37519d5b7c25214425ef5e07bbf41a0e080fd

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            d7be4f19a6be9df91d23c928890cb963

                            SHA1

                            e3d880c4d40eb76e3df24272a19bf1e8064dfa4a

                            SHA256

                            87a6e9892e90b6184e4d5de152b448a7cb445170b4eb1504e7723af96c600d75

                            SHA512

                            f6a1f472ba0c05e19c5e568c8194a5b45c9aa7d3d12f9d6711293c30e32d08c36707f6eeda87cf061f8179b16aa914129e2c224378ad57f1aaeaa8769c522dd8

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            a25c9937b652eb77fc608701581fb517

                            SHA1

                            6e399ca6d8cab26fa78d33c4cf5495ddd5dc2236

                            SHA256

                            a958495722e228ab67f732cef91ef587141ca8fa1308c9adc26fb0d797b43b83

                            SHA512

                            506e3e60c1c7ae8804182f48f4ecf9225c16b72111ee3f69455df84a2d2ad346033f1d6f61f742c3901e1ed88fee995c0df5c8a3b20399a6fb8659235083a758

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            d2b6cc163cd296b8d2da1826ff53d8ec

                            SHA1

                            91176bd797f082037d294ff9066690cdf5eb3466

                            SHA256

                            72dae6401bde0bc6574f2dee5671dd84576e7923fd17de3f7e337d9c7c8ba78a

                            SHA512

                            881be55a6bf06a949fa292c89fcde16375671d5d954d7128480c4b30ede52d3eeace7ef325321a8dff100d3e6e04b2733376e58528c5fac1c51b2d7113153a27

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            f874471b2d6df559686b60215a0ae7c5

                            SHA1

                            8a84dfa440171eba4d1927cdf8830cfa99d9d67d

                            SHA256

                            90ad1bcd1b14f19e426e66699fdf89fe9d3b85b73790e131c01fc27356a28e31

                            SHA512

                            29beeda7f125127cc94940ff97ae9fd34dde151053a420753e3e736c36648c789ba002e612939c8f1416a79b6d3667b9da267b8930ee703a6f617bec3a44bd4d

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            8c51f15adddd4f696f5227754cc3b66d

                            SHA1

                            05863173d678eb22c2ad8d10db9201b4d68c48d2

                            SHA256

                            b70fc1ecd689779465f18a13ae88dc7b088e931654407f0b8d2c62df581ef928

                            SHA512

                            d559926a18329f0d31b15b58a5734940f2b9778106189e508049a156f19d5974141892480eaa61f5c72fb90d7d690a9bf99b20c5959b719fe2d406b448eba1d3

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                            Filesize

                            118KB

                            MD5

                            a0cc710eef94308d49c2ef58b8bb39e0

                            SHA1

                            e6ca3517638687f22b8d726cfa1e86ec81218223

                            SHA256

                            6f958f1d012c8b0e4fb8ff6a3c0c540e3c6765bbb7bed755fa8a27278dad8220

                            SHA512

                            3cd6625dc4a470fa73cfa89245b467f5b09955e41f519706d1a818849414755eefddbd66785fd4339ce75806ff4a11b248aa5512fdfad88d9d66568c8cab9d93

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                            Filesize

                            118KB

                            MD5

                            bddf56ff7a325c34e099bdc4efca9b2f

                            SHA1

                            686e13a456cc50db94e63a19f828b72a5f19a926

                            SHA256

                            dee838b6a8d1a20bd5a6406c57357b07b621901fb1c6c92dc24caa8f77824ce6

                            SHA512

                            ed60197764f497a4948cb093a64dc30270a8a8add50da40c197bda6162ff279303b849798350b011cb47411e3f02ff91c07d31048208b160113ae81592469472