fcee982b3d0e1601b40078d98df03503668aec7542721f921ae8248bc3cec3a1

Resubmissions

13-01-2025 15:01

250113-sd48yaylar 10

13-01-2025 14:58

250113-sb77taykeq 10

Analysis

max time kernel
144s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
13-01-2025 15:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Elite.apk
Size

533KB
MD5

9f01767647e2e72f446d374bbcb20c53
SHA1

f6b1adcd7723b525418a05bcede5c671366d7ab3
SHA256

fcee982b3d0e1601b40078d98df03503668aec7542721f921ae8248bc3cec3a1
SHA512

4b9dc2dc08f015ed96a3ce30978994314d3edca84348eb62e7cb65d4d5477f179c44c80cc0a67863bc119555d0217f57681d047ce98ec405bd5eeaf2da8280ed
SSDEEP

12288:kjRH6+O//n3tKpSsM+1HA+x283ecVS3EVqPlR6i0Ci3jM34D9Z:kN6+ONjstg38OOS3EW6i0C+M3SZ

Score

4^/10

discovery

Malware Config

Signatures

Drops file in Program Files directory 2 IoCs

description	ioc	Process
File opened for modification	C:\Program Files\Crashpad\metadata	setup.exe
File opened for modification	C:\Program Files\Crashpad\settings.dat	setup.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 3 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133812541246422694"	chrome.exe

Modifies registry class 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-3227495264-2217614367-4027411560-1000_Classes\Local Settings	cmd.exe
Key created	\REGISTRY\USER\S-1-5-21-3227495264-2217614367-4027411560-1000_Classes\Local Settings	OpenWith.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
1132	chrome.exe
1132	chrome.exe
3716	chrome.exe
3716	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 9 IoCs

pid	Process
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe
Token: SeShutdownPrivilege	1132	chrome.exe
Token: SeCreatePagefilePrivilege	1132	chrome.exe

Suspicious use of FindShellTrayWindow 54 IoCs

pid	Process
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe

Suspicious use of SendNotifyMessage 48 IoCs

pid	Process
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
1132	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe
3716	chrome.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
3204	OpenWith.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1132 wrote to memory of 3608	1132	chrome.exe	90
PID 1132 wrote to memory of 3608	1132	chrome.exe	90
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2532	1132	chrome.exe	91
PID 1132 wrote to memory of 2936	1132	chrome.exe	92
PID 1132 wrote to memory of 2936	1132	chrome.exe	92
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93
PID 1132 wrote to memory of 1884	1132	chrome.exe	93

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\Elite.apk
1⤵
- Modifies registry class
PID:372

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:3204

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1132
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff9d5becc40,0x7ff9d5becc4c,0x7ff9d5becc58
  2⤵
  PID:3608
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1872,i,11847854049250305177,11391874489117698220,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1868 /prefetch:2
  2⤵
  PID:2532
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2056,i,11847854049250305177,11391874489117698220,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2080 /prefetch:3
  2⤵
  PID:2936
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2264,i,11847854049250305177,11391874489117698220,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2444 /prefetch:8
  2⤵
  PID:1884
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3152,i,11847854049250305177,11391874489117698220,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3160 /prefetch:1
  2⤵
  PID:764
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3196,i,11847854049250305177,11391874489117698220,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3184 /prefetch:1
  2⤵
  PID:4180
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4488,i,11847854049250305177,11391874489117698220,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4536 /prefetch:1
  2⤵
  PID:1620
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4400,i,11847854049250305177,11391874489117698220,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4884 /prefetch:8
  2⤵
  PID:1056
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4792,i,11847854049250305177,11391874489117698220,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4936 /prefetch:8
  2⤵
  PID:4672
- C:\Program Files\Google\Chrome\Application\123.0.6312.123\Installer\setup.exe
  "C:\Program Files\Google\Chrome\Application\123.0.6312.123\Installer\setup.exe" --reenable-autoupdates --system-level
  2⤵
  - Drops file in Program Files directory
  PID:4932
- - C:\Program Files\Google\Chrome\Application\123.0.6312.123\Installer\setup.exe
    "C:\Program Files\Google\Chrome\Application\123.0.6312.123\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x284,0x288,0x28c,0x260,0x290,0x7ff75b6f4698,0x7ff75b6f46a4,0x7ff75b6f46b0
    3⤵
    - Drops file in Program Files directory
    PID:4256
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4880,i,11847854049250305177,11391874489117698220,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4896 /prefetch:8
  2⤵
  PID:4296
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4912,i,11847854049250305177,11391874489117698220,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5216 /prefetch:8
  2⤵
  PID:3444
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5036,i,11847854049250305177,11391874489117698220,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4888 /prefetch:8
  2⤵
  PID:3236
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5212,i,11847854049250305177,11391874489117698220,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5324 /prefetch:8
  2⤵
  PID:1840
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5052,i,11847854049250305177,11391874489117698220,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5492 /prefetch:2
  2⤵
  PID:4220
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5516,i,11847854049250305177,11391874489117698220,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4452 /prefetch:1
  2⤵
  PID:3844

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:2280

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:3612

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:3716
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ff9d5becc40,0x7ff9d5becc4c,0x7ff9d5becc58
  2⤵
  PID:1588
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1736,i,1295760616169970492,16068263307615810703,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=1720 /prefetch:2
  2⤵
  PID:2704
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1912,i,1295760616169970492,16068263307615810703,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=2084 /prefetch:3
  2⤵
  PID:4544
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2276,i,1295760616169970492,16068263307615810703,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=2244 /prefetch:8
  2⤵
  PID:2780
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3132,i,1295760616169970492,16068263307615810703,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=3168 /prefetch:1
  2⤵
  PID:3076
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3140,i,1295760616169970492,16068263307615810703,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=3324 /prefetch:1
  2⤵
  PID:4512
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4032,i,1295760616169970492,16068263307615810703,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=4580 /prefetch:1
  2⤵
  PID:3048
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4816,i,1295760616169970492,16068263307615810703,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=4852 /prefetch:8
  2⤵
  PID:2652
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4820,i,1295760616169970492,16068263307615810703,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=5060 /prefetch:8
  2⤵
  PID:4576
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=208,i,1295760616169970492,16068263307615810703,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=5200 /prefetch:1
  2⤵
  PID:4788

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
1⤵
PID:3428

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
980ebd34ef8cdfa9900dba4fe367d2f7

SHA1
35955645e6324fce99a971a5a80ecae0fc21d971

SHA256
d5384308d29f2f9478f0d1354e9f94053300496f3b7cd2f88f5f8d00dbe1482e

SHA512
470cce060f4dcca34b26c8c3b2d3d4024c12fb4631ed8251e942e7e992149a422f30526b27f9f55c13d5d9581f022d3b18439893c6b0455180ae70c0fb24430a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
7e644fc73a176c5a8abfac1d5bfa3e91

SHA1
9d479d1b0582d6b8dd7abc871a87be0ede2a000d

SHA256
e55432f38097439433525b8a58ab69fe8628d8ae7efa11c2cee7db2ddc0d8d9b

SHA512
96fb9fbd5f9e0093bd37104fdbe98a3ed840378e29216b3e44ed866aa2250bf130dfb8a88bb8346adb6ede48a300ea359ad6e3b63749389f0a4281cca25d9c92

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0

Filesize
44KB

MD5
7ab8c2a1183d7c13265c13f3c1333ce2

SHA1
cc444c6220116c71bea0079bdf818b246ae92cef

SHA256
0df8f548e93cf5c3ce9b1386d149e51eee8e8e90c68bb1dbbbd49273b1698140

SHA512
64e71aaf0426d1792f0f31d5587a537ae88a1b8749157e5c6664ac042f2b2f83cb28aba1643330d3ef32a7544d23911b4f6185022b7b76e04b3493b957416d0f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1

Filesize
264KB

MD5
2dc76d87c92cb5492284462ed7208e08

SHA1
6e1c3b54d7f7f308cd1687155ebf8e79abc5e443

SHA256
7226e47b4f86454afb1e1fe3c723898eb1df81ffa4e6e2ac922097976a89cc55

SHA512
90956709ecf50bc2cfea6b0b4075a3a118f73eae4537f5588d66946c99d7665fdbb15cd0f27c243ee74b9e2d7e8f766f061c2c6726ede2eff0e2c673cb80f074

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2

Filesize
1.0MB

MD5
0c91db6214f5ecf8315eb8602ae41c64

SHA1
16f959dc12b3c9852bc72fff9ee74c7d674d23e4

SHA256
435bd888d4776201552bdea304d975022cb88afcc14545003409a18ccd7f70f1

SHA512
47113c84479db4b6702bf71436502e3476855b7bcbba1d4ec6c3a1e33efde3a4b94d556d955bff29fb3e0f56eb2bf92cc6f6b04a69d19c5c37c867efe55e89e3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3

Filesize
4.0MB

MD5
b36a9d0c8e6ee3d75e70ddd86334e57b

SHA1
384bc23c2716f6d993b33623e27e97ae0f5e6850

SHA256
02b4012ae3d5aad596923382444fd8e0b626b4c63c0700ef45e123483cd0b62c

SHA512
18206f12114f8df192049b9877339a37ed3c2b040589695cd5cb2544b5bc01938dc000b988e29542f073f709a4e005d7563a433fd39245fcf3f06ae4e176eb3b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

Filesize
215KB

MD5
d79b35ccf8e6af6714eb612714349097

SHA1
eb3ccc9ed29830df42f3fd129951cb8b791aaf98

SHA256
c8459799169b81fdab64d028a9ebb058ea2d0ad5feb33a11f6a45a54a5ccc365

SHA512
f4be1c1e192a700139d7cff5059af81c0234ed5f032796036a1a4879b032ce4eedd16a121bbf776f17bc84a0012846f467ad48b46db4008841c25b779c7d8f5a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
216B

MD5
0d45197a0018b4e24428c832a7ab212c

SHA1
1d94ae80e4192a61b76f59f17b8066658a5d57ac

SHA256
15077f0d922f72245a7060a1b767ded44efd49fbe356afc7318582ac927dafb4

SHA512
86851063c16699f3d1617bdc56968ee66299babf5e02d3b7912ece73797833e6805830e309ec99403330bf98d488bd066d2f4b1c3da61b2480c310bf399bbda7

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
216B

MD5
aff75a697be31484fde26a3f7a3d6f3b

SHA1
f52211eb169840e13ef6725595029e5191b94f23

SHA256
2b430ffd1899d55beacc0cea40fc4834d714171a90675f21b6f117a2c9df6074

SHA512
1fe7f6214843c1c26d4d80c74114a650ffebd99e8f26809df0ce567bd93330bc29721e3a5e99e11e99e66e83bb95272a35abe0bb9f56eb3589ca96cff66255ed

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.85.1_0\_locales\en\messages.json

Filesize
851B

MD5
07ffbe5f24ca348723ff8c6c488abfb8

SHA1
6dc2851e39b2ee38f88cf5c35a90171dbea5b690

SHA256
6895648577286002f1dc9c3366f558484eb7020d52bbf64a296406e61d09599c

SHA512
7ed2c8db851a84f614d5daf1d5fe633bd70301fd7ff8a6723430f05f642ceb3b1ad0a40de65b224661c782ffcec69d996ebe3e5bb6b2f478181e9a07d8cd41f6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.85.1_0\dasherSettingSchema.json

Filesize
854B

MD5
4ec1df2da46182103d2ffc3b92d20ca5

SHA1
fb9d1ba3710cf31a87165317c6edc110e98994ce

SHA256
6c69ce0fe6fab14f1990a320d704fee362c175c00eb6c9224aa6f41108918ca6

SHA512
939d81e6a82b10ff73a35c931052d8d53d42d915e526665079eeb4820df4d70f1c6aebab70b59519a0014a48514833fefd687d5a3ed1b06482223a168292105d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Favicons

Filesize
20KB

MD5
f62e6a62ab4506edc705c383165796a4

SHA1
82e2458dbe2e5d083943dbfd9482a789b70602f0

SHA256
624ff1517ae57376af54685c99fe604a397442f2ab481b9608f593acce363144

SHA512
82f289ea48307372318c23722a71b40526a1f45f5a71f62e1af2b15f7e368e521e1488769b0ed7cbaec94877436a7d29dfb3a5854f0c0937e188fa4d2199ff9f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History

Filesize
160KB

MD5
f4306110e54359bf91ea067b1d81f1d6

SHA1
534d206c92a2f92bdf8525d308d8b0464b318e18

SHA256
40370fdf8dcfddd7c9f14a1ae2a9e862affbd81dc0ffa1508aa992f2ba800f10

SHA512
eedc30462f36a4eb0aebceb0dc4fc662bab8f332df8809533321961e673c36b785c0eddac0da116b9e35efff7b5aad3abb4bc648c474a9e6567ce5ecf0ed4a7a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
b8a82686647df26ec7374ebc7f0bbfe2

SHA1
0e6047296ae982d736087cf063d95bcfcb47844e

SHA256
710443b1c5d71606ad9212b4d31320d64f2e565baa80e67af20bb145171d6134

SHA512
e4b1c0034958447ed1f8f9600d4588b8db7074e9f30c3e89c17a96a38b9378770095315a60c3bb7599d638d6b4a2f1c837d5336442c0c473b2d9de11a9459c0c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
2KB

MD5
6b62b116e28f5919fc7115ce842cd9cd

SHA1
d6d6ba1c0289e2cb12bfed4ee12808cdfb690503

SHA256
0292b893f1b0c946c3df6364ef06d04ed046daefa62b37d0e25c32c3d4a418d0

SHA512
f76081f2933c5e30b3879710d566b698f106200766409fcf7cefc825cf52d3d651d853fe443e31790b17c8b7aea215f03f19b07a12fa821048bb393f2e4f9a00

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
356B

MD5
80d02adfe1a22ce0ce4a3e2450dfdf2a

SHA1
d7e4a4d8bf1e32206853af77508a38b4e3c0aec0

SHA256
e6c5ab5181c512f24e6e3b435bf505b602c7b26f5146a7b33d98ac95b9e2c964

SHA512
32afc20463d24447be378f2d8102e3becce6cd25f883461b9ca2ebaac0cab1f7910299eedfd833b48d7eba43d332cb805a73773401945fbf66a890ecaf734be0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
356B

MD5
a50500901f8419f2cbe078f2bbe68f48

SHA1
4b2de437f9c3a39bb5bd7196e885e258c09d2321

SHA256
9f76a3870c507afac305256da8256f6fe4238d98d05451b606c7488715302bb2

SHA512
e56f6caf69c193b188e8ef1cd393165fd60cc3e75bc602dceac79c21bc96ddd6541731b7b246268903dbdd877d810c2cce05794e3a62a40c76d3eb0261b80f49

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
356B

MD5
aa2d8f24bcc793babdee96d951747a68

SHA1
e60e773b9acfc194f09113b1e93554b0c1f814db

SHA256
fff27e65b07360996c8fae1cc5e7726d18e40d3ff9f8249c6287b4a3b51fd1df

SHA512
480b781c2726837b47c5a47ee02b1db81eeb0a40ea36f2a91f2664ed76e097b58610f6a3c2055c69fd6d8f84c3b3243ece6b5fa332828fe1dde247f24480639a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
8a89a6fbaa0a1c5bed4521243a2fcf53

SHA1
ec9fbac5399c3757bed5c5e11e39ba224a28eb81

SHA256
a985db045a6fc60e0f61195b780be5ebaf93a6398c42f909c414563a20de2516

SHA512
337d8f8c8b9e76524d6dc86334368312fd7ab1bd841ddc6e7602817e79edc2a93c4c8478f524668a9babbcc4ec6fed4dabe2acec1304cd38674486794b028e7f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
fb9a70b753d49bdc0eb3e0c5adcfb6cb

SHA1
3de00b603b3dd094d836868a2a6f200593864618

SHA256
20b8839cbf40a5ea11080599509fe1186806a68bcc0412ea91bae5b967978212

SHA512
45e0e9d80da75f8ef0cc94bf4f8098746c0039a791dcc3bbe4f087396951ae147c1d92b03686bc70ec372a1ee377bc35669b354014e949d0d0d1c79906ff20cb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
5ae84e313c310826ff097b0b1f7f07c3

SHA1
dabb1aaaafcfcec4878f5f0bbdbf3ab995a0cda8

SHA256
0392bba125a2f4bd1a33c058eb6fc83411dee68228489e6cdac4ced3b3493c19

SHA512
e3d777f24282f1b8cc1cb3d9f8cfc967d6acb452fcf079506c9e46bc8d10f105b867667128148d3a8fd7c02e0e7cacf655328d4992740278da23e98a53481dc2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
23c04b861e5628844ed063c258b2299f

SHA1
708411cfa62fa1acebb8992cf319400d49e513e2

SHA256
e29ab5efcb8c31ac547605e6e8959531fc203eb7895a3f8e34a7f7f2b4c4515f

SHA512
cee8666eecf48166365714ba0730401217f1b8cdbf0d324b6de232a4391bd0b3f5af38b43ee59b1c4b41d7b108bc63d76628707fd566fcdabfbf623bec572932

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
e6fcea4d4ebb0088cc6654c4cf7278c7

SHA1
4c4676bc3808f6e097514caab8f62344c9b96cf1

SHA256
83ff192258867d3cf305c8f98a1b9c0a57ae255c594864506d6fd3f5e3a08bc9

SHA512
0c9fee097510491d5ceb92eb5556ba27c07fc40c87464f6ef93eef692fcc5dbb6938a5f29eb213f09e8d13c35d7d4bcdbe803ea5ec04f7c0fdfac6b6a1ae846d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
8062e8c4c05f8a85167e85881b3aa6ab

SHA1
2f93aae2d234dba4dcbadfd8a002f52f3ddecf48

SHA256
2aff4e50bf8eb29d65f2a4590ae6c63add4e335ec7986278525bf5d08790971b

SHA512
9d309f7be30fd9f739efc8f952165ca8839da9af199de80cfa2ecde352842cca3a8a4905bd64ae6b5ec5d5eba02e089d572ffe9a5e2932b6c0d49a329c6fb76d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
15KB

MD5
cfbe217c85718861413279c8104b314f

SHA1
d9d65c8f33065fe2c426590e726787d2e2f5dae4

SHA256
3ef58da8593816f5fc668eeb0e5b69964a085808391061713e54678f5f82fe70

SHA512
ae550a0f196e81d57a6d444e4b2506b99e39e84e8e29863ba109b3d69d17ddfbd38c7d9f97a09c28145097850f9ad83433f303853bde5bbafeee02e73ccb312c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\LOG

Filesize
333B

MD5
71de09d93bdffa0d2e62aebd4e7f81cb

SHA1
67a522f87cc0bb8606796441ef5e3c5677ff0d53

SHA256
7ebe925bd8320ba65b3526418508936ab26ac20db3808a17ed1d18ffa48267c6

SHA512
4f8e1f6ec98ecd9b81ec766004e9bfa02df278d068fc804bfe19c19158ca14849a24799536271c33bbe3d59f63e0ab3ecb9c9c05cb51d2dcb72dbef804ab2d37

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
72B

MD5
ea3657e455dd2615b59fd8c4c366136e

SHA1
214063556f6f07760dede5b3b592f82d17e3116d

SHA256
e3856c646c620f266ea7a389e80efa2fb8c6783e819b00c54d63c923c9893f90

SHA512
c19d3a15ab91ad775436907656ae1031831c8f2a6ccbbd7a7fb2fbde160343924d827a2a36cfb9cc97d54dd886b91661dede3c05f285b5ff737580ce9cd1829d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG

Filesize
321B

MD5
f95370c6909f29d278661152533c4b75

SHA1
bb312860cb7dc696a60fd05ab88e53b0311cb769

SHA256
aa69d295be5f5826a4646db8db3f7a42d32874d2b03191bb09f194f2c6b7e393

SHA512
9e14768c026a3d51c5d113346510f5bb87933558564996b7f6f0f3107408523cef93b49e32477bd380be402a5866667ac4e27755960560339cf7c757ba0fc5e0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\b8f10c23-7d45-4d22-a287-d78eb672d917.tmp

Filesize
1B

MD5
5058f1af8388633f609cadb75a75dc9d

SHA1
3a52ce780950d4d969792a2559cd519d7ee8c727

SHA256
cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8

SHA512
0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version

Filesize
14B

MD5
ef48733031b712ca7027624fff3ab208

SHA1
da4f3812e6afc4b90d2185f4709dfbb6b47714fa

SHA256
c9ce8dbbe51a4131073db3d6ceef1e11eaca6308ad88a86125f221102d2cee99

SHA512
ce3a5a429e3796977a8019f47806b8c0671b597ead642fcbfbe3144e2b8112d35a9f2250896b7f215d237d0d19c5966caf3fe674165a6d50e14cb2b88c892029

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
230KB

MD5
8ff5f364d75b584752927ec6ba620b5b

SHA1
27d8e1ecc694f4fcfd7fa41b86a9492b402534b4

SHA256
1938dd813634959eabaff267b506e005627e96705cecaec004fd91f81fcc3742

SHA512
8e5aaa9b4b942b05069db52a370b7eeae990156285c7dfae285704fe22c4b1edaae94fbd8a665e3f8efd6631b6306f534bdba7cd5b608a805449074f3a9f4f4d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
118KB

MD5
0def561709866b4c1600d59f7c80c94f

SHA1
b3f5bbb40f9403167b670f0baf92798d2d6991d0

SHA256
1c57c0e43427659ff967c936f1bab3e0e2ff7a54dc6db6e0112d511488223148

SHA512
2d3ee8e019dd130490823d1e0565a55e198a20fa65b610c33f098dc9d623edfba83c65bb8e138575cb23958d35ba3edac678ddf833b2f65e4d4fe4c96c390b6e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
118KB

MD5
06cbc9d655e9caa9ae2f6c6cca170f87

SHA1
72d9f38faee68ba6ffdabd82ebb8f489b6b91029

SHA256
a06f5936060aa9af6bceceb1a52b316cf9b4404c4b4edd3638d59992c7270d71

SHA512
9ea63401fd38ad3a30501a7d7fbe838b78f20a907319c3db70b536d1f39d3c5c5abd7f1d717eed4c36517483ba659ebbc35502e5fd2d6b029405ab75e6fada0b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
230KB

MD5
294bf69f61e13848677d68e05a5e9e9e

SHA1
86f5a380a733e2b94957fee1f2847f39f18d38a6

SHA256
69140428bdc94d654662ce0b621b3843ae487b33baeacfab4dab5c723c33a223

SHA512
41f547027de630a6f61559c1e6fded7cf9e157b57015ad020a41679da82bcaf89fd304e7fc1eae5c6bf471cbcef59b7cb6aeae9f0e9adcac145ca68aee6c5017

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

Filesize
264KB

MD5
d43e1ea19b490cd7767857dee5aba005

SHA1
3da5f5f5ff127284cee5a6150a8ebb250a987cba

SHA256
2cfa3b45a4af5f8d58f32a3465eee36963dbb8975bf00411c86262a43f563683

SHA512
8dcfd95eaa35e039c8d6dd2c02f8a1a3c2e3a40aaa2646b33f71882c6382467524fceac0c8fe396ca4e4cba0173f1e0e821e6586b4a9a37916bcb301c4eed950

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

Filesize
85B

MD5
bc6142469cd7dadf107be9ad87ea4753

SHA1
72a9aa05003fab742b0e4dc4c5d9eda6b9f7565c

SHA256
b26da4f8c7e283aa74386da0229d66af14a37986b8ca828e054fc932f68dd557

SHA512
47d1a67a16f5dc6d50556c5296e65918f0a2fcad0e8cee5795b100fe8cd89eaf5e1fd67691e8a57af3677883a5d8f104723b1901d11845b286474c8ac56f6182

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\segmentation_platform\ukm_db

Filesize
28KB

MD5
e7236b750d9946d2c17a5bc61515abec

SHA1
0aa9c8a399a357fa90315972af333e2e6b61870f

SHA256
0945e64e4d04dcaf63b9be67618e47ae4399de8f960465161054c492b7a164a3

SHA512
3fad51ccbdbf12efb47d643541312fe9b06015150294bdde3e4841b1beaddcbfb3db73eb0197d90fd2c38479a43b702bd4e4f5e992ee30bde3fe2b13b1cfa145

Download Submit
C:\Users\Admin\AppData\Local\Temp\scoped_dir1132_1662383144\79a3491c-2d59-49d7-a176-ca52c235b952.tmp

Filesize
150KB

MD5
14937b985303ecce4196154a24fc369a

SHA1
ecfe89e11a8d08ce0c8745ff5735d5edad683730

SHA256
71006a5311819fef45c659428944897184880bcdb571bf68c52b3d6ee97682ff

SHA512
1d03c75e4d2cd57eee7b0e93e2de293b41f280c415fb2446ac234fc5afd11fe2f2fcc8ab9843db0847c2ce6bd7df7213fcf249ea71896fbf6c0696e3f5aee46c

Download Submit
C:\Users\Admin\AppData\Local\Temp\scoped_dir1132_1662383144\CRX_INSTALL\_locales\en\messages.json

Filesize
711B

MD5
558659936250e03cc14b60ebf648aa09

SHA1
32f1ce0361bbfdff11e2ffd53d3ae88a8b81a825

SHA256
2445cad863be47bb1c15b57a4960b7b0d01864e63cdfde6395f3b2689dc1444b

SHA512
1632f5a3cd71887774bf3cb8a4d8b787ea6278271657b0f1d113dbe1a7fd42c4daa717cc449f157ce8972037572b882dc946a7dc2c0e549d71982dcdee89f727

Download Submit
C:\Users\Admin\Desktop\BackupSave.css

Filesize
772KB

MD5
b5461f86978c53f8a51bf6474a7d9851

SHA1
d7ddc9229d9bee02372bce0847159fec1a9c973e

SHA256
bd6f9cf9d1b303cc5fec89ee7aa9f278fb97801aaf4cd0d8cf31862dfa12905f

SHA512
531e5146b75723d008d0f7e6459e75c5d7dd56cb75265524f35b16b03fd543b7d122ff9d487a6c7f409258ca39f42c9d5340bfdd983f48f2abbed2c800fce3c1

Download Submit
C:\Users\Admin\Desktop\BlockUse.xlsx

Filesize
10KB

MD5
711a9c99ca06d18eed0d56e27f16183f

SHA1
7ccc0ccbdcf68389fde8ae693eaed031fc823b0a

SHA256
ba5fe1cbc17324e9b16be63064ab2ebfe3e877beb6c135399620b2acdfef384f

SHA512
7b28ca516cfc3895f8721716c7fb3100fa08d66d43d5aaa70196649ef8537c876fac1a604cda5f448ba4ac56cc794e5f61f69960cef8848edc0bddb1212ea052

Download Submit
C:\Users\Admin\Desktop\ClearPing.m4v

Filesize
952KB

MD5
e64dc754aaabeb61dcd8c8d2355b881a

SHA1
6af9df8dce3059f8d98abb16915148c17a5e8c03

SHA256
ca9741534f4f54c42bda71dfeb9998bdac87cc3e3e349a79ae8c7f11ce813a3c

SHA512
a0eec65e6b688566fad01bb2394aeabbba84e180f561d4db229a0f6149d7a614697eeac6c2d0c38d186de122249c54e633c9e472f77b87be9afd6d659f4cb500

Download Submit
C:\Users\Admin\Desktop\DenyGroup.docx

Filesize
20KB

MD5
e929f714baa258f47daeb8734b68fe6d

SHA1
c110fd6ac557fc70457b1ee0924ca1d6dcf914de

SHA256
e0d93f6e49b7f5480336e3ca76439bdab736979a18948422042749087d6282cc

SHA512
92dc3c6862feec444203393f60a84ab5a8c579e62854f33c6abc387dabae7df828ede5776e2cdfaa81ffbccc4e4314b67659ba414f1e16c2ec42b0666f562443

Download Submit
C:\Users\Admin\Desktop\DisableOpen.3g2

Filesize
360KB

MD5
0dd8d941cbfa2f738c80a538b0c6403d

SHA1
79f2847d7bcf9d0e6c409e587af6a8805a218d45

SHA256
a06c399a6304e41726ae4693c228460054c682bca7d2aa3f4c3fa7bc310991ce

SHA512
4f41b43c52a27e7cde0fa012493b14e1c75457398fe70ac1b9bce389e90738309ce4a919e761dffd5e46172f697cb9a3e9c37ea5bc55d8eda0e3756b91d85ad5

Download Submit
C:\Users\Admin\Desktop\ExitTrace.ADT

Filesize
798KB

MD5
140098f5d9435343f76b92cbf56330b9

SHA1
381abfee0fd0fd43b461ed5bf3ff948586d4d7b3

SHA256
8a41f5125193935f275fcc860206a482bf120ccf7dff3eb90a3ec4170a083e50

SHA512
212e058f8f22efe9c934097cb0f8eb46808351add2355ec871043182e48a2e32a564a5b9fbe89ae9ef7a26eaf35ac7ce2615580a3d99a37dd2f1d2331831c6e2

Download Submit
C:\Users\Admin\Desktop\FindGet.mpeg2

Filesize
721KB

MD5
c8d306cc16cd5ee140100534add6d529

SHA1
6645357453520efaa6d3e9e958d3cd479c2388ce

SHA256
5d0f4aa92d5af5e24a4952b3ea1a50fcb030fc4e772cd6e25f999faaf22d63c3

SHA512
2d8b236baf4c9ad5379e4860a0ac0dde8f6562a474df146e590ac8738d545e2fd3679fd68e46bfb085686db2a0827cc548ae130885d248e7bcbe2f0b1ccb63a9

Download Submit
C:\Users\Admin\Desktop\FormatTrace.htm

Filesize
412KB

MD5
4d4902e47aac45e366f85d24a25ba503

SHA1
a4b678fc8da1334f26aae6a0ba50feab745fb999

SHA256
fc17e8cd8c923ac4b07cefb379d91f3a8a8a63ff04213a183dc73189a401277e

SHA512
accdd561aaa32b8348040b5100cf6667cf4bef0069ed2b661a0f4fe1c4fec3646b629e2fb70497368174120bd6e1e485485490212f6c8da4fd75e29e1f83e3e3

Download Submit
C:\Users\Admin\Desktop\GroupUse.kix

Filesize
618KB

MD5
7b719bff29aed090ed0776a4f35cd6e6

SHA1
7a3f1e487ace4e8fc839e0392422e17fc081569d

SHA256
3157ed35edbe12a123e67b49bd1fdc6623185d0a9dd222aa1c4ad58a00102d1e

SHA512
5582615c6645313794f2120b8fb07d3534f5af8a186d935a5dbcf6a8e60ce05df63518703db066cdb423033facea8d0e1d240f48483e45be55c752822bc82e0a

Download Submit
C:\Users\Admin\Desktop\HideSubmit.zip

Filesize
489KB

MD5
75ad5cd72864294a13912b724b115153

SHA1
ea5903623db513bbf9b8ca4d9773eb98014d701a

SHA256
15c538b85c94166beb78607a74e3f22646cd88126af107783ba0957be76afdd2

SHA512
01bbfbbe63c5dcfb16c5b89cbee0f43ae9a59c92c1f026f905c7d0b64709561b4e85b05d4dd7dd53df4083d714266fb89824dd78e9a02633f1f1edbc235603cd

Download Submit
C:\Users\Admin\Desktop\LimitOptimize.ps1xml

Filesize
386KB

MD5
add820a7e766f84c89a0536b2e3f1c11

SHA1
f1e91bf9fb705eb78affa0c9398daf8edde1db68

SHA256
2159aa47eb7dd2e840973f76b49b3c61c7332eaf82c01b71407afc957d1e9bc4

SHA512
5bd580e3d897b29fa248f90802927e59db2215dbafeccf1647b603d994b64f028ed36f998c7edf8a1c5d893558f371c0a455247c8d8a021559ca8aa7e934579a

Download Submit
C:\Users\Admin\Desktop\LimitUnblock.docx

Filesize
16KB

MD5
20edf703f6e4f03508f39e7a50dfda98

SHA1
da313ff4d004e66c72fcde2639b750197145306b

SHA256
66c5c5685a415f92d4632df8746457b74742e5ddc5f237fcc5c86e07dce12537

SHA512
bce8405fc9fbbab23b50e7f93c8c883b768ed68cd1101f2af11e59c577b84831a501da8d524f108ab33744cc1d091ee671b950a6e5c667775b0755ae08db2eb7

Download Submit
C:\Users\Admin\Desktop\Microsoft Edge.lnk

Filesize
2KB

MD5
a5cf7a2aa849e00f7fd0d5a4a0ce9d6e

SHA1
70209744e4736fa6835201e9600d73e852f773b9

SHA256
bf7e3011458308fc1d0998694d276abf22873db580b312d509e56c4bab7ff6ef

SHA512
5126747cbf47aec3fd93be85331d3f21c586e6a480ee160eab8bbadea2149879f3cdcd7fb76892af3d01f63079d3b29ee5a5af723ed1114a255fe4f0c70409fd

Download Submit
C:\Users\Admin\Desktop\MoveAssert.tmp

Filesize
463KB

MD5
5c7d7075710683b06050100296318cab

SHA1
da91d23f02b3f6e437c22a724fb53372e3d97099

SHA256
742dbffbaef2a8e01c9d54dd67e1127a99c1809c56fd5bfdcbf41827353dcfcb

SHA512
826d825ff11452640d7ed70a9f4a3304f846d345a747008fab264076b8e54f267a11802135803784de58ebe45cb0e343efdc1a65ec410582686489afd9a5c392

Download Submit
C:\Users\Admin\Desktop\MoveFind.mp3

Filesize
643KB

MD5
708ec5ccb5e005a9467496f79f99c8ba

SHA1
9a2a534033e9ca4fdb4d4b7f9a2faf91bc799889

SHA256
57f971311a572b1ff2d081b02940f977cc9a872e47ac94395385d95990722111

SHA512
bedccfae2128ee215f522af57c2aa53ca73a677b0daec7b97abd476c7c85de78d9e625d8b23b88f216f2436c676184b5945fcb3d165998bf9ffd5f3d52341b11

Download Submit
C:\Users\Admin\Desktop\ProtectRead.vsd

Filesize
875KB

MD5
10d9e46815ef372c8e71961e3cbe0a4c

SHA1
55b9c565d414f20767d271b7d6261107de29bac7

SHA256
4930f605eaeaf7f1f67e01899d2a541ab45b25fed2bedb1a0e28511b9fef96c7

SHA512
e64070f84e3b6180296b13d7740f4c5f05332ddd64efce1d0559c9047ad405e19ef05ccf37333457a402170f19673e47b46215a0fea8cea7c22da1cc6505871f

Download Submit
C:\Users\Admin\Desktop\ReadDebug.svg

Filesize
566KB

MD5
9878d86919f5bd1ac5f6a301e18c7c3d

SHA1
1abde9db9f5800baa42f41757bb4944f9348f7df

SHA256
1482fcad528deb96e67a86a0137e794e0ae58d5558d3face309408abd65cc514

SHA512
496eb98d9ef53dcd26c5c38fe18d11267def0ae1afc67b03014bacd33e59b45ea9e02b0ce8ccbd179408dbb85141b6b3afad3cbc044c473beab502c0a2e7d623

Download Submit
C:\Users\Admin\Desktop\RemoveRestart.aiff

Filesize
515KB

MD5
75d1ec1653515b4df9538cfa321ce510

SHA1
a837842ddd0dd447bda1e59cc049e7dc05a6a37f

SHA256
e9867f6bbd128267cb2abf389cb3d26bf57154132f13bd7e1d6fba03a88f37ee

SHA512
f6f5ca5833089c3a123694ada16d368dba463bb521e8c578b3643312fe446d14785e0205cb23defce8444a345c056a5f83e8e1f75094ae2b8bab674fe43296ee

Download Submit
C:\Users\Admin\Desktop\ResetGrant.mp2

Filesize
695KB

MD5
a530bb6c4e29518443c11c0ca79997e0

SHA1
080ad238ae3463524a705253b7b90015f9c566ed

SHA256
ed3ff23a4082a72497f0da559f9b2ae61a06bf9f92d00e4ed87b515da0d3ac12

SHA512
c42d96488331a947a4a7a6c58a09c7d64d664f479e296536b67f964eb96e9f335cd08ff3f5e2dddea688b2c7c0838e778324b254559bc1cf21062d44bbd5db08

Download Submit
C:\Users\Admin\Desktop\ResetUse.mp4

Filesize
746KB

MD5
5ccaa9de6dcde650a6e68ea487361a41

SHA1
87cda6423dbcca88a6e6f076c69dd0513ebfe4ab

SHA256
3bb9617d64d87726f7c582638839efad54e61b6348a13d3bbb76ceb999fa4ead

SHA512
eeaf19e74c63b39f53d61a670ef8bfbf514ab97eb0c5198e9cc5d9c0c7cb8716c3575990eb60f7fbd9ca9ac0a1522b06ed42d15dcafe4f1b5ce66df6c28f7b50

Download Submit
C:\Users\Admin\Desktop\ResizeDeny.edrwx

Filesize
1.3MB

MD5
6d4895f99502ab7956e34ca0204abdd9

SHA1
bd57fd4386f406b77989e9e21b381dbec320defe

SHA256
8778b821c8b6832afac3f23ad810cd452c705c367e0448147123a70816212aa8

SHA512
bd7d8dae963ef34cf08145c8e4ba15b0e48d4ab2e4eb8efdd3c1f7c56f775fc70511acf4b9c1d40b07a2c3ee8f9bbb68ce91919608b46570cf33b3f469ebf6bc

Download Submit
C:\Users\Admin\Desktop\SelectExit.ADTS

Filesize
901KB

MD5
e2762cd7258637d1ae930a3d43e4007f

SHA1
5c08441bf4f42eb03926a6b27155f0c5f0aef6ee

SHA256
16b0591fbb106ef3c6b027f2fcba4909b3a96562942d4dad741c1df963f87996

SHA512
4e25d2811980d001524450ccebe040d1e8fc1ed4cc9c7410d1db626d212bfa1e8814861f3ff8b539cbdf03c922984b3c6a65033bc8ef61460b13f158053f66e3

Download Submit
C:\Users\Admin\Desktop\SelectSend.AAC

Filesize
334KB

MD5
0302970cae1f1dea91d42580004f486b

SHA1
dd94163e790f667d11f2df0ed02231e914fa06a7

SHA256
cd2afc30f5a98372d696d520423a2d20adefda1571769bcb3c7e3af0f3c1014b

SHA512
bfcda9c2e20621c2912f7906e9fb5357bbddf6cf5cf6d13ababbd2148411c5dc0a34e0f553c0155e1ea8954f051f95f4f0a20fa821c6c066be5acd56cdbc05fe

Download Submit
C:\Users\Admin\Desktop\SetCompress.sys

Filesize
824KB

MD5
30181d8aea49c98a6d944514ac3c840c

SHA1
59863400a63f5079dd008e6bfd55576d976bb444

SHA256
50987249abf84454b35d027eb80f3d202bd095588b5006b483af8a2beb9ffbab

SHA512
4946893d02763f407bd26858baeefe93cafb1cf9b09fd12f596af3dbfb1f38beb7946097c2da83f424c80d579864822f8014543fdb3285d8a5c128b69d2308f0

Download Submit
C:\Users\Admin\Desktop\SplitTrace.mpa

Filesize
437KB

MD5
dca54b17fc21c17237a2c0cbeeec33d4

SHA1
8e983dc4f7e71ddbde1b7a93500c2ee43f6b32c4

SHA256
2b71c25ea7fc8aa6a2988bf5728ccfa550f5822be5ab496e5ae9c7ef54f39b6c

SHA512
974ccec2964c948561e6f04e728252ee389ff24de979e478369fbc65203229935b2a430b085ecfef1cb85b9533d53fd6d54efae749a8d213b49b85ced28221ee

Download Submit
C:\Users\Admin\Desktop\StartLock.vb

Filesize
669KB

MD5
0af2b7e2f4b6447dfb177e92dbe6d49c

SHA1
8b838dc65c3c71617c668ba263e86ad4770d586c

SHA256
6cd950122dc7fed15ae3e0d1394f2362d35c0236a4599b1e81b5ff9e8dac4adf

SHA512
6eefde60ce7c3a001707dbaa4fd81d6a9c0992036d94ca97b0211dfec43cef995585c1f0797df4961340720c366dd6bd11be8281f80ef07d32e2a371eb5c5ef3

Download Submit
C:\Users\Admin\Desktop\StartPublish.odt

Filesize
927KB

MD5
37d30c456da36c074a06531c6428e2bb

SHA1
2a5ef34def1fa617d54e062b98b768bb5180ba4d

SHA256
28ff0ac312e0e134e391075955155ad693a50939caa0926ca992211fc8164cc1

SHA512
4b80a4ce1fca23c12f1da816f35fde9eaaf50dea7377f52e682e05c01a1c63e23ead9d59993ee1562eeb148ed6dc4185167e35ec403497ff815aa94f6cfe6662

Download Submit
C:\Users\Admin\Desktop\SuspendUse.mht

Filesize
540KB

MD5
34911ec5f91a5fb383e2b6a4bad1bb50

SHA1
49da3459522a62d7c438d1fd18fc8460616c3dbf

SHA256
e48de06ed65b9183dfb2edd7ea8601176243d7336e5cbed560a03566bc0efd83

SHA512
f8d85182c34a536671d3b6cfc883735528ef352ff336fe0eba1a7fa83adf0a09178f3ae16bf11fba2695da7f8ee10827054c9bf5e7210602491e9c70878b61ed

Download Submit
C:\Users\Admin\Desktop\UseAdd.wax

Filesize
592KB

MD5
71a4e613a81d2b397a31368b7425da33

SHA1
ccaf13db7345bf72fe32f4c208a763f2138b5e85

SHA256
f57e91a12f5a55382d8407f4328227e9a7f5e8efc3765c7845bb292accf68937

SHA512
c21f12f55fbbbb5773fc44c99b48a25a1d04f0d1591c3a710901ebb4d88bb5e13138e4efe355ed8000915eabcf976237dda8b8dd8c4f26fc0d8e2c9870607580

Download Submit
C:\Users\Admin\Desktop\UseWrite.xml

Filesize
849KB

MD5
13a678629c31d6b9476e9b5f4b546ca9

SHA1
42581a23e8552d98864dee57cf3076e3c3c57b95

SHA256
bf844da1b6e0e3aed1a0a35b2c6835ce6040919e3513369385fdce24f4be6967

SHA512
5daeb8d61824343141970d3ec629a89c78e93623fcf164098b71b5e93021e583939ab15446b5d249d5aa3039bccae221c6c663d30320617f71c486d604a6adc3

Download Submit
C:\Users\Public\Desktop\Acrobat Reader DC.lnk

Filesize
2KB

MD5
28cfd7e341c27be247dfd17c526c873b

SHA1
a2c7aa1983caf1f8004fc75ce86a419963d356ac

SHA256
386206a3feda91f77a582491e2d3ca6d40832abe269d92c1fa8424b71c718cd3

SHA512
46d1d571ea0380923983e353fdd38ce78bfd77b58ff4aa5d336d59be7acfa0167c1250e0dcda64cc6bd42790a5d15dded2b854425632503a742b078b36e48568

Download Submit
C:\Users\Public\Desktop\Firefox.lnk

Filesize
1000B

MD5
56be7a872f6225686f080964b6f1efd2

SHA1
7b7f5649b5a5ff3726e67664d2dd6b4ac6949110

SHA256
349cb8a75cdd1dcc3603ad01b136059a453df60d3a0313d14bfb2e788d656e0e

SHA512
06c5cf53b24e0fd225ce590ebac8fa112d0f19cc741f21797573b4399ceb216e17be0aafb7906a3bee2046bac7a63a4a38b11a5ad1a94de9f02c299ecbb4d00e

Download Submit
C:\Users\Public\Desktop\Google Chrome.lnk

Filesize
2KB

MD5
9adaec90394dd9b5461b1d5687e27717

SHA1
c0b9a382b6987ea56b70559efab9a4f5eeadbf72

SHA256
1c2a429cdf43fe12a3761e69ea330d38e37958bc422d579ba238d404dbc22ed0

SHA512
66c8499c039342998037cccca7344a7e0748edcbdd4651b881af6554cf48f2ebfd79ea53499c33f4763070285da9bbf066708653f090cd840936ac399295189a

Download Submit
C:\Users\Public\Desktop\VLC media player.lnk

Filesize
923B

MD5
0d380408b6d3c4f71c0fd48917df9c12

SHA1
97485dfed17408c35a30be320d4f5d25b9b66770

SHA256
9beeefe773865ae97a74a17a5ce136baf5f8e14a97b15c57786b0641eb5f0ad9

SHA512
d4e419429660048da8161db5739d93ca137c0b7a093cdaf224800562bc398422ad70de54cede8ff5adb19cba7de4435a33c0dc8aa1f6528077287f6fce7804f4

Download Submit