hxxps://aka[.]ms/AAb9ysg

Analysis

max time kernel
138s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
09-01-2025 01:09

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://aka.ms/AAb9ysg

Score

5^/10

microsoft discovery phishing

Malware Config

Signatures

Detected potential entity reuse from brand MICROSOFT.
phishing microsoft
Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133808585967304990"	chrome.exe

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
2536	chrome.exe
2536	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 6 IoCs

pid	Process
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe
Token: SeShutdownPrivilege	2536	chrome.exe
Token: SeCreatePagefilePrivilege	2536	chrome.exe

Suspicious use of FindShellTrayWindow 27 IoCs

pid	Process
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe
2536	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2536 wrote to memory of 3972	2536	chrome.exe	82
PID 2536 wrote to memory of 3972	2536	chrome.exe	82
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 4488	2536	chrome.exe	83
PID 2536 wrote to memory of 1120	2536	chrome.exe	84
PID 2536 wrote to memory of 1120	2536	chrome.exe	84
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85
PID 2536 wrote to memory of 2064	2536	chrome.exe	85

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://aka.ms/AAb9ysg
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2536
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ffecc5ccc40,0x7ffecc5ccc4c,0x7ffecc5ccc58
  2⤵
  PID:3972
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1780,i,17934892235624932807,15589334279048459307,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1776 /prefetch:2
  2⤵
  PID:4488
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2136,i,17934892235624932807,15589334279048459307,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2148 /prefetch:3
  2⤵
  PID:1120
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2208,i,17934892235624932807,15589334279048459307,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2416 /prefetch:8
  2⤵
  PID:2064
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3156,i,17934892235624932807,15589334279048459307,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3152 /prefetch:1
  2⤵
  PID:4004
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3136,i,17934892235624932807,15589334279048459307,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3308 /prefetch:1
  2⤵
  PID:4312
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=3880,i,17934892235624932807,15589334279048459307,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4500 /prefetch:1
  2⤵
  PID:2504
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4748,i,17934892235624932807,15589334279048459307,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4760 /prefetch:8
  2⤵
  PID:1892
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=4828,i,17934892235624932807,15589334279048459307,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5004 /prefetch:1
  2⤵
  PID:4548
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4776,i,17934892235624932807,15589334279048459307,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5088 /prefetch:1
  2⤵
  PID:4328
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=3832,i,17934892235624932807,15589334279048459307,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5072 /prefetch:1
  2⤵
  PID:3704

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:372

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:2416

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
f82a7b1c5b18f6abdb88dd77732c8b70

SHA1
3b9e1b8f17ace79aae0ec7d6a4351920852a8cc4

SHA256
b37a399dc216be0b1b5d331b09a33dfb79448ad551a73c85278b15e3d9f075c5

SHA512
b3f81664ab6fe88fd8d49f908f57b016c020ac692fc8587b4d4e8cd80c9317b2875fe19656164b4b70decb4cc1cd6f33dc3c1ba8cf1891714f555d0415e09912

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b

Filesize
215KB

MD5
d79b35ccf8e6af6714eb612714349097

SHA1
eb3ccc9ed29830df42f3fd129951cb8b791aaf98

SHA256
c8459799169b81fdab64d028a9ebb058ea2d0ad5feb33a11f6a45a54a5ccc365

SHA512
f4be1c1e192a700139d7cff5059af81c0234ed5f032796036a1a4879b032ce4eedd16a121bbf776f17bc84a0012846f467ad48b46db4008841c25b779c7d8f5a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
528B

MD5
cdfe33075d7e393c5ecd24005988b0b0

SHA1
1344cf94c873cb8aec5d3d48a797896ae11d7841

SHA256
ce76d31127d5de74d7dbcb7770ef627651b87b0ac741eb7947b9f1e4ccdb8e70

SHA512
b20dc8bb778b295dea3eead3743b294eb7e4162c13e32e4dbefedf3a6882bda3275630334d3318b7e8ba9f8a8a87df1d4ecc6993166284a5e10caa75a5cb9073

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\DawnCache\data_1

Filesize
264KB

MD5
5b234baa65f84f1aca9705438231372f

SHA1
e31b55185bff2930eaa33244672c8a7ce32613a7

SHA256
8e70da6147ebce7bb05bab084115c5389bdee6a68933524e7248eac140d0537c

SHA512
e78bb488d41258eae063dd3b74eb04984ebb1858cb5d674653b9555e2cad4486d6e33073f95d3976662b840d34333936802c617d39542fbd7fe88b96771284fd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
4fa2d99d4bfd7caba6a3804f22f0b38f

SHA1
d48114a01a9214348e2123162f17fb6d9d4f8e28

SHA256
e2ad175f955dbf4755519381e6d1742af2cc6dbd386f6c8c6b3a41609dab53fb

SHA512
e28428d94610b0cee838305e5037168c1ee688e1321c4e29dbdf40a32bb4df3202b6a2ecfea3bb3901c8947f47883e0f572e6d9f52fcbee914f544cf870b9345

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
859B

MD5
e980e5edb98695ef3aa0467b0a27528a

SHA1
4f69b0c21f6c06dc6335b8a99407371aa7133669

SHA256
f57403dbf9f137bc4732943fd3e00a3d12507e369d772cbe6a73dfcd9fb26162

SHA512
8dc0835c15ffee12e5820dd79bf96bd812f7c41f28792c830855116fe19f595a81dfaed8a55de255864f1893112c37adb095f1f0435015b1718a8713e10085f0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
3d0b8b2933b14690a687ef06fc75b822

SHA1
93068ad0448fd221d86bc9b36ac46604495af238

SHA256
2b3782b9f5655db5ba0a3edb06582f8c27ad284ba63efc83b210cfe081cc1a54

SHA512
6b41be2abcfa9ad5db77bfc1ba8af7eaf5bcf4db5444cf216d61bb01168bedb88d9208d8546ab93b94609096e40d2f1d28d30018f78f38e16cdad6f757b1cae2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
fb3f577bc106a5c432ea25dda0a0e6b9

SHA1
4fd489257f80cbf6bff40574d9869345c2bd370b

SHA256
d0072ef0e08972b19fe4d7f0f79d4ae4d35dd7928a8196c05dfe05d2026d3975

SHA512
afc5ef5a9fe55fb68283de7e82c297a56289be85776d9a64d9fd7ea615b134f061a15acb2c625c5b25aac3136f986189681edc3410c14e382bb32ff8e73dbd06

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
aa6b544bc66cc41964c6bb292efcc1c6

SHA1
0cb319ea81ffc9bfd94256aa20c482798ceb2b50

SHA256
c477fa9d7f6728c3330329c0666cd257fcd47237d79250d3c8d96b85c850ae53

SHA512
434b0177d29d54d40565ae7e76d94e6f6c7f863165844ff157ccf7891db0fe235b387cffe2bfe25f8d2eeec34c095c004fdfb821eac90e765a45c31f9d15ca16

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
ccbc975e173e2c8ca15463cf2217e7cf

SHA1
98c0bf2b1813941988d927eb4ccf2e428170197d

SHA256
4ead9854ee903de16514ae8a58e49be9c5f750d07470f8f01a321bfbdf6b1ea6

SHA512
ff628642a5c13f43cd05bca785511d9e9c9d284af2f25e4910d418b1a6dec8debab7dd5014469f95d85fcfe8e4f9cdf0d43d48a505976ea9723759a0c4a3d2f8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
3fc95a4c669523fa51b96b55faa9f3de

SHA1
6ada5b8b0d5aa650c8f2127d86c99a94b1deade5

SHA256
4324f961fb4853c6af73394bc0d54692f53833b7a2fd694376c29d0c124082c2

SHA512
f5b5612d92da963224f7a31943d32856b1e351af4109068c678e0b440717ae4f88e8032bb667dd4d7e7eecb79f9b284c2871f79657f16d936369a9e561cd52fb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
96B

MD5
2eccbef977e32ef9f24ede744166938d

SHA1
feddff39c01e8eff1cb3a997169a8dd74f414915

SHA256
19020ec1b18854e7e823e7dce2d5fe43f7503fa17b31b7d51336507dde47f8b4

SHA512
5247bd22845f91887bac372f484164aaf0a08813de80a09b1344ba4bed75b4fffd7899d9b6f3cfe6fb3d11eec7057c0d9f4f816b35a1bf4d4adf59dc8c77470b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
c166b3aefc3b1607605a53b3b0e4360f

SHA1
d6eb3b442a2397171d37e8713da107f623c1f3cc

SHA256
130f06278e3b8108d082ef3a9f95c05ba2cab309d4b9648012b7f2d41e4383a9

SHA512
705f6efda19c521fa3147ae4a9983e4cefa81a298578864cebfc029426795d43cd731b44f61c257475bc94e2cdde8cc5b5b1d071414e70a15f8e111fb4cc6907

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
6aa493ecfbbf0ac3bc9b89ae39311559

SHA1
51fa96d4ed5be07faabb2a43147ed399a200ab3f

SHA256
7c1f75db89ae3a066b36bec3fcca04bf412b2c4aaf231f4056b365e07518346c

SHA512
52e2df31feaf44eeb9bfe276967279d000381e48e747cbabfb4959b0a8392d17743d4df1a823ede0cdaa73a10944d2ede123bc290aff8f3e04a52817ac0403e3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\fd01fdd8-fcec-42d6-8b36-ce2f9f7a37ec.tmp

Filesize
116KB

MD5
c21784ecd731e5943cf1b1399387fd28

SHA1
c65d45ff2eed1e1e9b856dc134d78ee6fc313122

SHA256
3edcc1284152c06fe6951ce9f560fbff82b0c2a5a17861d3be222f27c2bcf396

SHA512
ba090ef3342c62eaee4c215d97f43f403709389c74d0e93667e89a8eae14a3074db1fb2dbce12cb77f8651b0d7f5c7bd90476c89c2a62fa706d25d07dc76555a

Download Submit