Analysis

  • max time kernel
    600s
  • max time network
    589s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    19/01/2025, 18:55

General

  • Target

    https://github.com/XAKEP-1lly/NjRat-0.7D-Green-Edition-by-im523

Score
4/10

Malware Config

Signatures

  • Drops file in Windows directory 1 IoCs
  • Browser Information Discovery 1 TTPs

    Enumerate browser information.

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Modifies data under HKEY_USERS 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 6 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 2 IoCs
  • Suspicious use of AdjustPrivilegeToken 64 IoCs
  • Suspicious use of FindShellTrayWindow 26 IoCs
  • Suspicious use of SendNotifyMessage 12 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://github.com/XAKEP-1lly/NjRat-0.7D-Green-Edition-by-im523
    1⤵
    • Drops file in Windows directory
    • Enumerates system info in registry
    • Modifies data under HKEY_USERS
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:892
    • C:\Program Files\Google\Chrome\Application\chrome.exe
      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffe9811cc40,0x7ffe9811cc4c,0x7ffe9811cc58
      2⤵
        PID:408
      • C:\Program Files\Google\Chrome\Application\chrome.exe
        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1796,i,17944134711075506341,3202047339546324535,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1792 /prefetch:2
        2⤵
          PID:2600
        • C:\Program Files\Google\Chrome\Application\chrome.exe
          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2072,i,17944134711075506341,3202047339546324535,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2084 /prefetch:3
          2⤵
            PID:3744
          • C:\Program Files\Google\Chrome\Application\chrome.exe
            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2144,i,17944134711075506341,3202047339546324535,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2252 /prefetch:8
            2⤵
              PID:3716
            • C:\Program Files\Google\Chrome\Application\chrome.exe
              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3080,i,17944134711075506341,3202047339546324535,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3096 /prefetch:1
              2⤵
                PID:248
              • C:\Program Files\Google\Chrome\Application\chrome.exe
                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3084,i,17944134711075506341,3202047339546324535,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3260 /prefetch:1
                2⤵
                  PID:1196
                • C:\Program Files\Google\Chrome\Application\chrome.exe
                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4548,i,17944134711075506341,3202047339546324535,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4588 /prefetch:8
                  2⤵
                    PID:3060
                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=4700,i,17944134711075506341,3202047339546324535,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4784 /prefetch:8
                    2⤵
                    • Suspicious behavior: EnumeratesProcesses
                    PID:660
                • C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
                  "C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
                  1⤵
                    PID:2492
                  • C:\Windows\system32\svchost.exe
                    C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
                    1⤵
                      PID:4756

                    Network

                          MITRE ATT&CK Enterprise v15

                          Replay Monitor

                          Loading Replay Monitor...

                          Downloads

                          • C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

                            Filesize

                            64KB

                            MD5

                            b5ad5caaaee00cb8cf445427975ae66c

                            SHA1

                            dcde6527290a326e048f9c3a85280d3fa71e1e22

                            SHA256

                            b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8

                            SHA512

                            92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

                          • C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

                            Filesize

                            4B

                            MD5

                            f49655f856acb8884cc0ace29216f511

                            SHA1

                            cb0f1f87ec0455ec349aaa950c600475ac7b7b6b

                            SHA256

                            7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba

                            SHA512

                            599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

                          • C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

                            Filesize

                            1008B

                            MD5

                            d222b77a61527f2c177b0869e7babc24

                            SHA1

                            3f23acb984307a4aeba41ebbb70439c97ad1f268

                            SHA256

                            80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747

                            SHA512

                            d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

                            Filesize

                            649B

                            MD5

                            cf52a102cf3a59f60aefe7addedbe5b3

                            SHA1

                            b0baf730d93b8f9fe79f0c5ea0e8958dc9824a47

                            SHA256

                            a1e59d6ad3b8ddb0f97e7b154ea26494888b929157937fcb1751b11f38943483

                            SHA512

                            9e5306fd276347862206099a8da1f262c755678072a74603545efece2f2d09973c615056e855a8d04f46f2904eb220609e195478a53ddc034fc926a75e5183ba

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

                            Filesize

                            1KB

                            MD5

                            ab6b8bbc83e53431c280687ed35cb83f

                            SHA1

                            c0a8dfa698b9583c6ec463373ca7cd6928f30b68

                            SHA256

                            8a82b49b2477993a07cbdce09df220c881b967099dfac85c8040bed7c51c8041

                            SHA512

                            a2e34a89a084b2db243eb154d41b7de7017c24c8b96b3e81fb5bfa4d3e16e8b6098b6c04f004881552bec9611bd970aff4df0591cd66e882ce1e5f4ccbb7df50

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

                            Filesize

                            2KB

                            MD5

                            76313dec81760fe9818fe0301576df67

                            SHA1

                            e0b74c7c05459f0058e5978c9c0354f44b9f9c0e

                            SHA256

                            62056e21dcd9e05c540dd702db7ef146d65481d756e2a246c4b0214fde89a0a3

                            SHA512

                            a65b3c157bf92850b8134524043121da3cd3aceeffae4c42a3f7f64457df5649855fe41187e262f2ad0b26f8dd67343842b91307f5c87398f2421e082a398c88

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

                            Filesize

                            2B

                            MD5

                            d751713988987e9331980363e24189ce

                            SHA1

                            97d170e1550eee4afc0af065b78cda302a97674c

                            SHA256

                            4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

                            SHA512

                            b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                            Filesize

                            1KB

                            MD5

                            f1c05abe3e236871e972f63014972a4d

                            SHA1

                            21ee282399829844f9682224c0ca434825a47b00

                            SHA256

                            9db6b9ad71d91a9af4abb7658f1d35646f6e4ded0cbca078160c106effae259f

                            SHA512

                            eadf3057f559ecfaa2a806becbf1b9e94c792a973013a927e9b98edbf9f6a6dc5b08f9fb54b1c05c16aceadb39328a2e689bbcfc4d9b52b572eae6e5640097b7

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            89d3ffd74fc75cd85b18f309a6768e87

                            SHA1

                            0cf9538b8ee1c9a7c2717c76911a941d088de64e

                            SHA256

                            86220a3accec416b080e39f2c9471a3cee707a8525e039b8dd29bd63bf901430

                            SHA512

                            14f1c4c24c16a5c5bb1674621990ca4950bd44e275b07cea7e31f36527517be9626d3a129b508134baada287f4020a4356d2abd9df2c39db8f6a5ef2b4fc6e09

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            9KB

                            MD5

                            816fbae47f89ebe1a5ad7cf15c7cbe96

                            SHA1

                            5abcb11f8daeb7b8e235479d07ca2e30da919549

                            SHA256

                            d2f1f301997d68e8402bac74a34644084a12cce189273dffb35ddfc9944d49b7

                            SHA512

                            d328af33f91ed407438c17086d7bdb7fea15343ce73046911c6737ce9639613b05a42f98f1577dddd7793b55c082dc614724eb34c5e69f5fa55e025a9d82e004

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            a3f2b3c71c48bc0400fc0680daaac9bb

                            SHA1

                            ad4192c932ae927a1057cdec08d51e0611960fc7

                            SHA256

                            52f358f5cb6bbe4bcbc77f111a88f15e6f79cd611f053cdfb4c8edddf07d656c

                            SHA512

                            108dc2039e49e04e51f567face31e72357656cf13fe71cdd18f08ad036224719910da9f16288620319df9e0766e99c2f8eda6d8d0475604f2e34197442429afd

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            62f5e3e29ea3f5caa9268e89ba08c445

                            SHA1

                            0d79025b22da080b1867110317bab14fb6a11180

                            SHA256

                            1841a9e09cafd24d2ffc925ab8ed0ddb664b4ab4ebfaf3df3a230ac4cfe27f18

                            SHA512

                            8729376a71f5c6bb0735aa3a6effa62b788700489c69735aca5222a32068de5dffb9ac34ff56c179bca68b895624778b1cffd2dafe814f00b283a4bfcae142e7

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            5564559b576fd7b6684a6de40bda763d

                            SHA1

                            39a41bec0a8a86704e82905d47e730fbfb030065

                            SHA256

                            ec8a801fc8cad3a69f173d9c620ad50daf013716267bb05799adc9b06dd5b5e7

                            SHA512

                            1f7da78fa0abdab43f78551f70f43a3687bbbab903951f1e1457bcb73037893bcdd90c95b84aaf76cc541239d0e850c43f6d314f4b212b57e37553278931486b

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            d62b936af2312ad84e98e7431c39dc06

                            SHA1

                            93ae1b378e8bbbb9d09201ae170ca02d2ede96cb

                            SHA256

                            c0c237506a98fa566d4df4b6125489900eadd9381b1b5b1243b74578b25c1c05

                            SHA512

                            5348af8237c7069fa5e51947c3d3beed04419e5f4b33f481e832775d2018633e1df8694db46e22e1da9434d55f8150e6c4f195ed16213e9b16a1aa50bf004e8e

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            e1d2a33c7a7b60f4c48bb6a712028f89

                            SHA1

                            b91ad1f4544213ceaa3887ee786cf6d833f037f4

                            SHA256

                            e48032d9134e309496464b42f6a775d6c962d69c7d5aab6664f671eb5bb002d1

                            SHA512

                            f3d0fe90ffc2ba663405a5e465c30f73b0b85898d76663462efc5218a41e2b02cd3f98603a15c9063ff67075fd550dfbaa73c01b42d7f750eafb679db60d3043

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            bc8c432fb54d6defb2749c650023398f

                            SHA1

                            74464b9f7873558953b491fec99a75a2bed61182

                            SHA256

                            9cef9455aa941201cd04828e4cfb04155c7f4d3b746adf47c981abe0022c5a4a

                            SHA512

                            e64a4225999bef009882688ec9ab6ecc7e07c5fc3a7070031b896cebc50af25bdc298126e4148dada50fa889274c925df52ee7be9930b660355001eae385895e

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            d69730b6ae2288359e32746437026cf4

                            SHA1

                            6049906ab30ade1257738a9c83e1009e31b15b93

                            SHA256

                            1be5bfbb8f24d23724b3e207b2092366fe2cd971224a7202222e81f603b688e7

                            SHA512

                            1f795700d71386a1d64a3ecc2ae7e2c22b43dc610ae44e382eb08aeb8572b221bce31cb17208ea9738eee2cdd08f7faff2dddbe71a7c142662aeed366fbbbc23

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            33c155d8e6b6f608e79050b0fb11cf6b

                            SHA1

                            9bfefe5c368c4dc31cc49a9c3e53ebb3c5c01cfe

                            SHA256

                            910d87dc883438bac95f2a8a83926714b7c421ebd44b23e63e7387ba29eb4840

                            SHA512

                            cb96f28586446ef11fa731c3d7141438f66a95f5669f6ee659c4936587bf64211d87803a1acb62a0b4a166b3f615468990c445f25d13a7b67ac9d3940be0b11b

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            08ca6499f6d0ea48cb3363dca1dc9bf9

                            SHA1

                            5bbbc1eb27a2c0374ec37718db241a88f0c77c80

                            SHA256

                            bf9091d8b7b087bdad1d5962e7acf94ab80d53d66746127b7b1c2d2d80bd0259

                            SHA512

                            18c635fbb3943ba265a212117b9e88fdd1c2702ee568948bb4aa1b2852c6630f78fa94b90847aa72fa2f1a0d9c66fa61a1208354994b17e76b2f70f615c87d96

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            bb9e50bbf18543273598b6b2512618ab

                            SHA1

                            c51ce9b340ac4599767fe5effa22549a31b0d244

                            SHA256

                            f653ce8dd3e956d7ec7dd5e0a4f8891bd8390e09c0529c67c083ac780625fa77

                            SHA512

                            1c49ed31e06cf8ec1c7b97585ee22f2afc086e99e66be287174dea06430a112aef7f0991ba8fc77f58bee66d700bd94bbd632aac73fedd264a56a24da3292443

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            7d26218b91bd6128123dd87f6321dbc8

                            SHA1

                            a0ac9b851d0f4aea0bacb2221323e0d23184cfec

                            SHA256

                            ee5112b3a71f0e7c0ed6c9c7c88e4642d5c387e53070d0557e44d82819bd5395

                            SHA512

                            a4450599f3692d6700234cd5e3361ba76d1eea8cdf41a7718e0f13ffc87e40eeff916411b4dc1e812c10d63b5875da746546092083626f7cc9af08f236196a41

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            f9cb6b48a8a642cefa9924316c77438e

                            SHA1

                            7fd791286b86a711fedd2c6d59743df45b8873d5

                            SHA256

                            5338ff8c941fb025ac07bfa6c81a17624c20aa65d80d1d5fb6b7732a57eaf1a8

                            SHA512

                            08fb3622383eef108b1bda830d7024e0c85e4dd83c1d4b637110fd2312d6dcef354d8622cf1c54ed9a824ff8ffbceebf5fcae4385c1e337b46e066185c5404f0

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            cb1184f193aeed72e767156dab96aace

                            SHA1

                            df33b560b7bf94ef93a869f1ba5541c842eb1266

                            SHA256

                            aff02298e6ba44b172fffd4a36e8a96076799dab5e1e52946137f95c47cc1f1f

                            SHA512

                            d1afa7fd6fb2a0ea082ca5120b9cf1fc73a09b2b9741083d354410a9f40cf6a5b6ac599428b91dc088d0708600e21dad24947aaeb25209b12aa5a6c651436edc

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            cf05b7d9b44119471355063f7db009ba

                            SHA1

                            40d7aef235e9b7352328a4b9569d9c8fe749fd16

                            SHA256

                            b82bb9bb5eb8cc4e4ade1f9cadeac0eade1a0634df624c99f135b1dcf7e40ac0

                            SHA512

                            4a0925e84c8bd657bcdebcd5491ab11769865062a8e1df0abf0bb6d397db05683bd9081f56b9f3f463bf01d8fdd6228d639895001f442f061426aa370e27aea5

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            cd438ba64ae49e7a7f405891c0be0914

                            SHA1

                            02f5cef33321f2b0ebf09f2089ca1b790e95fd93

                            SHA256

                            779a43f8328dca1da14e2526fcf64209e61818e21f5b1b0df3b23e6df35e441d

                            SHA512

                            71a4f0eca434f9c26c2b6985a320e173286a067430415ce619ac9ed2b11d5f398397bdb9c14016f54e16beef82747b48facd5036c67e2f902bd51f3b958d8d88

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            24b04e5228bd1f351fc4dfa9492ab4ec

                            SHA1

                            94781507e35a332269a9efc6fe296970dea7242d

                            SHA256

                            26cfbca14a039232b7a1bfcf83f476eb8ad204287f297c11c15742b763ef9e9c

                            SHA512

                            5118d34f62b8da61d5fdd2eda2018a462fde61ad4ee9a0b5a8fb18c9c2bfef258c41e5a193dd42f76f0d0837add720f3a43ba6726a3ebc8ca6232c145b5eb445

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            8bcd7cd2ea17d551b7ed753bc4820ee8

                            SHA1

                            d6e9e78f302d708160827544bb918f8361ea92e7

                            SHA256

                            56a6c918c5a5ba6f3ea224027996522981537d5c5f0381764e380dea10691c1a

                            SHA512

                            8cb040c8f832304ea2781d0e5bdef0b9145de0c7184260544f771c2c68328e453d3c30b0203dcd681391b6bdc2bafa106e3ba95b1b021c1e33c80bff992f8efe

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            eb594f5aaefc8438d7a8dba51d461b7d

                            SHA1

                            3a4e72afe0f34ef74c68a4b096e613ce1aa48765

                            SHA256

                            4c698e5da9f45813531fde9c5ab711971eafec24187a1349a18fa7c8b897cf56

                            SHA512

                            544c765d36d397c4a2a73247d8800d8da5c2059e3478d37d716a3759992629ca8516056926c8a0a625786f95d59a644138ec40a64d456506ad6d62606f6a6b85

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                            Filesize

                            10KB

                            MD5

                            b0fdeb01f69ee1ab493afea738639d58

                            SHA1

                            8df736728ddb782a46c62b17cf8059ae4ad96913

                            SHA256

                            1fb200ea46b08179d299f400e6617b4f3e7fdd54d56d795de11341c5f557f0d2

                            SHA512

                            640f2bd76eb4f9ca394c680f52a36238307c84227eb98866261cc969c6e48a3c7df35a2556eb052ceecdb2295a867b337eb2b6e3938db093e6cd49f0c16e63f4

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                            Filesize

                            228KB

                            MD5

                            12e334a235d381391bb86c37f07c0c3a

                            SHA1

                            338e32b48d3e13efbab31cc8aaf3a48368e40264

                            SHA256

                            bd901eed06db045ef950787b1470c0739fe18fd214f34c670bd51453ea79128a

                            SHA512

                            e843478a2264b240e1b80aa1ddfbf2e86e3295b25bed4c407ac64e35cbd362a0f59c32a18847c19e61bd9491ba52ce59b09bb728e5bc80050f462eab2e498495

                          • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                            Filesize

                            228KB

                            MD5

                            df17ed148be33b7c85d00d7380b8921a

                            SHA1

                            2f480263ad11b9d232a75f61074ed6eec3f521ab

                            SHA256

                            2235f62267effa1871614d4e3356225030f5b1b62446b5c03dd72f323a709986

                            SHA512

                            33ed415de0d68519c46eec6aad3de52180a4b813acf089f970c8cb72dd1c7fd38fcbe75bbf2bf10287eaced2d07f9dd2e44c76210498b08b4395e9a39a10a9df