hxxps://jcard50[.]ru/50

Analysis

max time kernel
149s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
10/01/2025, 01:43

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://jcard50.ru/50

Score

3^/10

discovery

Malware Config

Signatures

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133809470901749363"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
3000	chrome.exe
3000	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 4 IoCs

pid	Process
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe
Token: SeShutdownPrivilege	3000	chrome.exe
Token: SeCreatePagefilePrivilege	3000	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe
3000	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3000 wrote to memory of 4148	3000	chrome.exe	84
PID 3000 wrote to memory of 4148	3000	chrome.exe	84
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 3708	3000	chrome.exe	85
PID 3000 wrote to memory of 5104	3000	chrome.exe	86
PID 3000 wrote to memory of 5104	3000	chrome.exe	86
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87
PID 3000 wrote to memory of 1564	3000	chrome.exe	87

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://jcard50.ru/50
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3000
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ffce381cc40,0x7ffce381cc4c,0x7ffce381cc58
  2⤵
  PID:4148
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1920,i,1863272977279172776,10975407973585786696,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1908 /prefetch:2
  2⤵
  PID:3708
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2168,i,1863272977279172776,10975407973585786696,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2172 /prefetch:3
  2⤵
  PID:5104
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2244,i,1863272977279172776,10975407973585786696,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2264 /prefetch:8
  2⤵
  PID:1564
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3104,i,1863272977279172776,10975407973585786696,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3120 /prefetch:1
  2⤵
  PID:4312
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3116,i,1863272977279172776,10975407973585786696,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3164 /prefetch:1
  2⤵
  PID:4964
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4460,i,1863272977279172776,10975407973585786696,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4464 /prefetch:1
  2⤵
  PID:4904
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4660,i,1863272977279172776,10975407973585786696,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4840 /prefetch:8
  2⤵
  PID:3160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=3384,i,1863272977279172776,10975407973585786696,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4836 /prefetch:1
  2⤵
  PID:4856
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --field-trial-handle=4628,i,1863272977279172776,10975407973585786696,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4612 /prefetch:8
  2⤵
  PID:2440

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:4856

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:4196

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x4f0 0x4bc
1⤵
PID:2240

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
6adcd808d1a2a6f9ebac5f805cd220cf

SHA1
0f0e1fea371ce8cbc6cf270c6863f9dcd546e4e5

SHA256
3bed64a9bfe94bc32d7519e6ab1132f4bba27029407c0d710aea073b92b4eb26

SHA512
bb11c7df6fcd3f7a66c3a5c9445084e386e0db6579c5d2b4480f6381e8f41b945279e4c9b2753c134834e5c25663ad6368b3af41ca9a018d7713fd184cafc48d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
591f080775f9eb3663cc5ff0924d66ee

SHA1
7cf260865fa497fb65928691ce19c599289d1eda

SHA256
b03cc4fcd611b5788aa80da4d67b8ec8fb9e998430fe3403a108d1ba02d7eea0

SHA512
c36950161be1378f5f9bc5c5864442d1769b1874b068a0755e7a12b2b8ef8673c556d62e2b304ceeb6b6ce7377bb2e171ac40534d4c57f6e81fe4553f80cf70b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

Filesize
202KB

MD5
9901c48297a339c554e405b4fefe7407

SHA1
5182e80bd6d4bb6bb1b7f0752849fe09e4aa330e

SHA256
9a5974509d9692162d491cf45136f072c54ddc650b201336818c76a9f257d4d2

SHA512
b68ef68c4dcc31716ce25d486617f6ef929ddbb8f7030dd4838320e2803dd6dd1c83966b3484d2986b19f3bd866484c5a432f4f6533bb3e72f5c7457a9bb9742

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
120B

MD5
6f193945285eccc9d2e45d80d7a27aac

SHA1
49528eedf5367ddeb2fa0e15b5caa1b4bc4656de

SHA256
b96dbacd59f4660543443dc04a2f649823a2ed4e7b471b853fd1bfb5e6dfb4a8

SHA512
7e6c4832127bddc8af35c8501cf185ccf24b04c43f8e599139f9bd6aa4805b608e4a5b42d0e5473037e6caefc502f491df3df6e2da03868de5124d34a9d10489

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
240B

MD5
41cda73673e7fd996328cc071905cd76

SHA1
3dbf9abf8b2d0edf6eed76f3e05436a20aee6dcb

SHA256
261272a1abb66eae0b560a3b8506d37f01c61d1a76964e985df299da16c39745

SHA512
193b44a9038585fa4307dcb4047f4120e305b7ed1a6254579769c9a4c73725f6d5875abdb690d78dfe07bd9647b5824c82aa51ed7ecb42503e497553aa905a19

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
c1fc6e81366cea4792596f4b2987c893

SHA1
724018ca9ccf06f881e80c092049ab2f7f7901a5

SHA256
9b0c52e5355a36c5110e96c5ecb5c050f8fc28c13c7b40bbfb919651122c1e10

SHA512
3fe1228fb77787320de5ef1ebd2ad2aa293b9f8dab9a4d2838a43cb3c23718456465bcb22b1859025bdb732e62dd53e4ab55822443b89e0c9924ae4053c7e221

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
523B

MD5
eb7acf0e4f64df65196390d350c1ab5c

SHA1
9a561a3a1ab294fa88127fe8928b066ccdfbb9b6

SHA256
db2d06805e77cab0953d7aaaa0b420a981c1b4987b84cf7c4d357735b86dfaa3

SHA512
454ae198e793a0b461cf7e37cb5cc81be95fbe987525d14aa79136e27a679a358319155556174cb9b58e3b97384acfb573396fc4518a3079d878359c3bde466c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
ccb11377c3e908249dc5a72c862c831c

SHA1
6ec6410403684a332a646eb09f55efbb661735e5

SHA256
bc429f2070b197c77b6d88f7f106cd2e63bcbde7c72c044d511a164dbec7ac24

SHA512
9d8e0d051836bfdf4eb789b6126f4d3f7e6e06d93a20907aacf45d1e5021908ab4730f7fe87f8b8ab9c067388b5a219cfa86aaf037e911369c67134298191792

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
366aebcd6db064c4fde420e8a5e3663a

SHA1
520b6bd90397ceb9749108c38d6b52158f5aa25e

SHA256
1f2abd3ae762975daebb185e688f4899aa7683a7921419f8fee2c91458915ec9

SHA512
a03fe44de1f239a6d8dd8a0b73f2e83ab413eca097107f91d8cedcb08dc10069e412d0e3ef66ce0e43a5417b094c6d2dd291e897456d6025118674816cc21fe5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
d5729c26a68402d1d100fdf8a17a825c

SHA1
3c3d35ff241e81891f9904e4adb9f18d6bada8f3

SHA256
b32a25f76abb740ca34ec78806a4bcca54e9189ca6f08bca1972b964bbb64c3e

SHA512
546030766088a1005157ce4f5517f18b626e8931f7e2e5b9fcd3cee88c56cc8fad401f7ae66723d75c18377b3b0f9a7e1f86c4649d11f4a34f66bf613f26bb9e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
f31ab39857de70c723b82f35741c9b3d

SHA1
030e0d875985a3b3c58a6f58113aa969b36df78a

SHA256
ff943ebedf4eefc400e857fc21b35fb3762126a2852a0ab1ffb5009a145aa232

SHA512
6daca4157c79f95c3ce8b7400e38e74f40000a7acac8cf7858a11c582f2ab5568e32e0e59da272c3c85f8707ad6042fdb535e3601b614aadc26923a09abd1a07

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
8830e6364cf68204b9011d881707cbec

SHA1
cf1efdd130d4e8f2851c475af90d6f96aad4ce29

SHA256
a67673522a855904daf3671364bae4f6fbd411f71383c7207f81b80d0f3852b7

SHA512
7a18a8a208c6ca4f434fc0a6a6a9eb651226b12afbdc96fff69bf27790d46c5964aa182b203a1fbca2886401eb946cb3779d2b51b352ce76e85feff9490b5072

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
655e1d03b94d7bdd1cfaf521c09c0968

SHA1
ec5501c5be40d7240bf6d11b38a77b5aa257cb08

SHA256
964f02f55fbcf8d907adcb37c16250b30e9914b0b55d7968490d13728302d7b6

SHA512
9fa923ed4bf03c3a76e83878f8d781623b45cc8950f34ee5b1ba1738da5f0f130284c1f7f8f9842f5da5fbee33157175b8085bac513996d0c7bd7e4369275093

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
8f51d4a416dc9ff7e9d5f630d79c64c9

SHA1
b0ca0b197ec4a0f7197bce11906dccef3506ebe9

SHA256
d0ce938208eecb6885e5ac3d20bee336e682ff73db01185adf53ce351618b44b

SHA512
8eae18d691c5790365d39d10f8b88310f45e81b9e999b89db03b39b0179d3996eddb4a675c064b35392e09a8076209e6d78a02ca80ec29f7ade741681ebbf409

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
4f41e8c54ea3ffc9221c639fb0a28d6f

SHA1
ed3800154d3fb4dcabda4a92fc4da772675fc729

SHA256
913aefc03e2be5d9f469923895d9c7c2a8e2a88c363fc5d4ab458b3bebec4cd8

SHA512
f3fc89c90bb03c16e67a5a9b3279604f5a9b3c6c9ffa09300f2642f8359f327b5f1fd13f75ed8ab1d9f959b70d358ee2266e0e12a2aad1779cd1f05028816a96

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
d18dc3926ce34c4c8210e6b8d25635c1

SHA1
33005f20b82c541f68f22b1cd5d618ecb2ca1b7d

SHA256
4ee6b647be9df1925b406d79a2138a361843e7a04a8607921b392956b9eff711

SHA512
402f614d303969b2c8637fab3640a88d8be3af8dd8eb0ebed3401f7307b86cccf08a76652c7faca80c2339e0932b30d9023257c86ab5b34a33f2ba0775674c20

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
116KB

MD5
10e6ef31cbec396257e2cecccb641ee3

SHA1
19a6d9ebe6ef81db55c24a090c9c931d9b325bb8

SHA256
d205a80ba493030e0fb67783bae03dd5a30499cd0612e0e7aa9f851dfc829900

SHA512
830de94c39889f34e77165ae9ff039079c8c8454926a57415e4a5bc1a40a27a195b159a4cc1ff529866b5747b609d5d5973464abb87a0d8ef63366a4d0f7973d

Download Submit