Malware Analysis Report

2025-08-05 16:58

Sample ID 250127-zb49gsvjgx
Target https://url.uk.m.mimecastprotect.com/s/m96GCr8EWiN7BYATzhWS4xtO7?domain=link.shetrk.com
Tags
discovery
score
4/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
4/10

Threat Level: Likely benign

The file https://url.uk.m.mimecastprotect.com/s/m96GCr8EWiN7BYATzhWS4xtO7?domain=link.shetrk.com was found to be: Likely benign.

Malicious Activity Summary

discovery

Drops file in Windows directory

Browser Information Discovery

Suspicious use of FindShellTrayWindow

Suspicious use of WriteProcessMemory

Modifies data under HKEY_USERS

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of AdjustPrivilegeToken

Suspicious use of SendNotifyMessage

Enumerates system info in registry

Suspicious behavior: EnumeratesProcesses

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2025-01-27 20:33

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2025-01-27 20:33

Reported

2025-01-27 20:38

Platform

win10ltsc2021-20250113-en

Max time kernel

299s

Max time network

289s

Command Line

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://url.uk.m.mimecastprotect.com/s/m96GCr8EWiN7BYATzhWS4xtO7?domain=link.shetrk.com

Signatures

Drops file in Windows directory

Description Indicator Process Target
File opened for modification C:\Windows\SystemTemp C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Browser Information Discovery

discovery

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133824836278699663" C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 1156 wrote to memory of 2928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 2928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 2472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 2472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1156 wrote to memory of 1264 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://url.uk.m.mimecastprotect.com/s/m96GCr8EWiN7BYATzhWS4xtO7?domain=link.shetrk.com

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x220,0x224,0x228,0x1fc,0x22c,0x7ffe1bf2cc40,0x7ffe1bf2cc4c,0x7ffe1bf2cc58

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1928,i,17324323162537913317,11278791015142748364,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=1924 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2184,i,17324323162537913317,11278791015142748364,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=2256 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2304,i,17324323162537913317,11278791015142748364,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=1876 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3120,i,17324323162537913317,11278791015142748364,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=3148 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3128,i,17324323162537913317,11278791015142748364,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=3200 /prefetch:1

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4352,i,17324323162537913317,11278791015142748364,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=4644 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4648,i,17324323162537913317,11278791015142748364,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=4644 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=4972,i,17324323162537913317,11278791015142748364,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=5032 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4984,i,17324323162537913317,11278791015142748364,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=3172 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=5108,i,17324323162537913317,11278791015142748364,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=3220 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.4355 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=4356,i,17324323162537913317,11278791015142748364,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=4868 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=4900,i,17324323162537913317,11278791015142748364,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=3388 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=3380,i,17324323162537913317,11278791015142748364,262144 --variations-seed-version=20250112-180253.846000 --mojo-platform-channel-handle=5000 /prefetch:1

Network

Country Destination Domain Proto
US 8.8.8.8:53 209.205.72.20.in-addr.arpa udp
US 8.8.8.8:53 url.uk.m.mimecastprotect.com udp
GB 91.220.42.215:443 url.uk.m.mimecastprotect.com tcp
GB 91.220.42.215:443 url.uk.m.mimecastprotect.com tcp
US 8.8.8.8:53 215.42.220.91.in-addr.arpa udp
US 8.8.8.8:53 170.201.250.142.in-addr.arpa udp
US 8.8.8.8:53 22.49.80.91.in-addr.arpa udp
US 8.8.8.8:53 5.114.82.104.in-addr.arpa udp
US 8.8.8.8:53 72.32.126.40.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 97.17.167.52.in-addr.arpa udp
US 8.8.8.8:53 link.shetrk.com udp
US 104.21.61.42:443 link.shetrk.com tcp
US 8.8.8.8:53 www.hornbillcorp.com udp
US 104.21.42.148:443 www.hornbillcorp.com tcp
US 104.21.42.148:443 www.hornbillcorp.com udp
US 8.8.8.8:53 42.61.21.104.in-addr.arpa udp
US 8.8.8.8:53 148.42.21.104.in-addr.arpa udp
US 8.8.8.8:53 d1rozh26tys225.cloudfront.net udp
GB 99.86.249.96:443 d1rozh26tys225.cloudfront.net tcp
GB 99.86.249.96:443 d1rozh26tys225.cloudfront.net tcp
US 8.8.8.8:53 96.249.86.99.in-addr.arpa udp
US 8.8.8.8:53 hornbillcorp.com udp
AU 35.213.200.2:443 hornbillcorp.com tcp
AU 35.213.200.2:443 hornbillcorp.com tcp
US 8.8.8.8:53 53.210.109.20.in-addr.arpa udp
US 8.8.8.8:53 206.23.85.13.in-addr.arpa udp
AU 35.213.200.2:443 hornbillcorp.com tcp
AU 35.213.200.2:443 hornbillcorp.com tcp
AU 35.213.200.2:443 hornbillcorp.com tcp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
AU 35.213.200.2:443 hornbillcorp.com tcp
AU 35.213.200.2:443 hornbillcorp.com tcp
AU 35.213.200.2:443 hornbillcorp.com tcp
US 8.8.8.8:53 48.229.111.52.in-addr.arpa udp
US 8.8.8.8:53 hornbillcorp.com udp
AU 35.213.200.2:443 hornbillcorp.com tcp
AU 35.213.200.2:443 hornbillcorp.com tcp
AU 35.213.200.2:443 hornbillcorp.com tcp
US 8.8.8.8:53 9.179.89.13.in-addr.arpa udp
US 8.8.8.8:53 hornbillcorp.com udp
AU 35.213.200.2:443 hornbillcorp.com tcp
AU 35.213.200.2:443 hornbillcorp.com tcp
AU 35.213.200.2:443 hornbillcorp.com tcp

Files

\??\pipe\crashpad_1156_USLCHCFOEPOLIKES

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

MD5 759a6b309ec001f8ddbba66bc66fcd15
SHA1 573b00c35ceb282f2d702f65d68f64f948ac4e06
SHA256 0190425f75efda4df6f2318560fdd00c7bd67a55f958f86d158ed49198481a75
SHA512 35e02d96dcc7bf5ff22246404643d42081c7ff0eb5bcbc96ae8315c348cce2b87faf0b88cb425e67d5262a740b4a9907b563fdbdc2c92db79d456ece359a2b18

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 571a885c10a1770ce4792222b685aaa8
SHA1 a2a38bd0cda71af0dd7f69743a7f20bd742b6e5b
SHA256 9bf0fc6d42a5f1603cfe0ac6ea80cd645821e1523506c991a50053934a470f91
SHA512 5718c2c193f7dc9c3413d33c95b6d8fae8a91f05cc4a38950c7e296d7862ab4606c2ce884213461791084aaf4882434aff542036d5a6e0c36f84c278c73fea3c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c4c8ec4e0fdd2d66899d2c36af10704d
SHA1 2a0baea0fb063a98bcae565593823aed22d57be1
SHA256 e240b10284984851471cf1398ff243d4bebb47c1daf0850895e4c14d8741726b
SHA512 561e458155e0724dc6496be7b6594cb4ed38ea0a78222a77fdd25c109b5299f1f214c6c23e8de8a409203bfcdaeca7a41143f2a5b07b5c4693055cb784297a4f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 1bd351fbb87f61e4eafa755de88db924
SHA1 4de48cf555228b0c03bf965c5f15cf9d50d2f354
SHA256 409c965a942776f4c3876d84029863b54f486c40cadcb81d6ec6f0cc8c980ded
SHA512 88b7cd1ec70f5ec9288b660d309509e85d3fab83ad9ecfcd43cfbc633da56c3b977ae85f5d10559a9e74a3d2a78d8e3045a1745c367df0136993a44c371c9a27

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b60c048e97fa18d917848ab9c61a5974
SHA1 bb3be0073da2c3d1f4caae29463b566094d10708
SHA256 740922cb71af4f1175a168d2b72ebbf741a66c3abd077213183dc0f29516391d
SHA512 39e6221a3a672706b7b008577a9ae6a9a647854b1d1d1259ac7a251a6cb3c2bfb1e15f78a598213fdf12cf9c848d7fe1fbb27df8b38ef428985c3434bf47200d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 71a1bf15ff3141de45103774ebff6039
SHA1 4636a0561982b7ae245041d6d519d328cc472eb6
SHA256 36526378f348e7d799816506e36aa8897ea8c8b8252d7c803eeb5ebd755bc24c
SHA512 f12de6e4371f82bf2f35afba0d3b63a03cc81b2bdceb7d2434bb84e8a2d98a531cdaae39eca8c996477085d232759fd3ba7f85f1c29447f4e0144b8bbd6cc91b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 b87a4a81c9c6e2696d51773e861ace06
SHA1 dd0b5c75484b1851a0b2883d7db15245296b8e7a
SHA256 1ce56c1851a298bb9a53d9f947567655e181d2c7978ae34292ab6b00c1275632
SHA512 2ae6e6a67cdb004ec9935832ca92d8f1c553a88fc8365336bcac101048f847b8b41d8300cb33be3e54f0ffa7759ec16c1de1ab2ba63ea88e891bffd73f97d96f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e6c6bfa53685fa648c98578fe5be6d02
SHA1 fcb519fdc8a2b8cfb1595f63af0a400520a06e72
SHA256 f30a57411a9e591fcd845df904378bae8aa08672a5d396136a7b93fe15d9c15a
SHA512 8c97224943885557cdd1394f2f0220513cf983ca3084022e026068d3e3a68dc644b3376db81ff15771e264e619ed8d155f23485b5bd64c2a43eb73441d5517b9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 63555b9a99142a876cd63e007a0c8137
SHA1 4a5e983d446129015d2679e412fadf1e69127a65
SHA256 7e09a0af0a560451d533e55d4e21dc2a94dacbc875a3bff532b37f04eb8a7a2e
SHA512 14358e7b471a7edc62baa5ad3f22710b2cfe50d3c1ec235a14291e6637f1541e7793d1456a9803f2bb6c11772f5be3f2a3be73ec04f0a6949bd03a614f3310b0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e58952b8630711e8e357f972f2c8c3f2
SHA1 373e6892de0ac9105df55584a750a82a6ab4028f
SHA256 94e0133d6c3866cc2c10218cdbc9c51ca392471327cfc65edba4b3159d170422
SHA512 0911f20650895b6fee21cbe6d7ab8488e7c7e7bced39b4a88ba4904a97a6927be34416a4575d888df8f6533e7a96e2b32db5d72aa9e81fbd3d62997c7411720e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 5d231f78a969316d74ce318fa7cda7e5
SHA1 1b76bf02846465e2871d7374ef0130224d3faaca
SHA256 f640c5d0fb9a95d423e390a7b4a75060074fd1cf062a416015ce2cb59bb6c87e
SHA512 e6fcf02e29bc4de422f6ad12e6cab789aeb82a8d66ee06ea89a02e2704d44831fcce9cccf08242ee1f9f91a74fe135d2539b0b2c6fe91bbdde8ad608104236e5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 40e2e1d97cb39601f71a28a3ed5bcbd5
SHA1 de8f938a382537396947e134a1c536c9487dd1b4
SHA256 900c1b5ef9a9a4f8ec6edd90126d9a96709701dbb4ba8253a785b6c0653d908e
SHA512 cf97d3f7f0c2931bafbbb369c63ccc93c59511228ac12e35fdd5555449553ee0f3678c4c45a039d8a9e753b127079fcdfa2497e4831b8ad95448527ab67c88b0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 15bdcbc8ae02ceae7eb745b845370d88
SHA1 7138efca91e234ca112551dfb06235060789b6e9
SHA256 18577f5ee296c27a16574ef818726afdcc907f760482e8d19c921cf13c201cc7
SHA512 59355a9546e8e532edfdad55749f36dcffde70f949c9e1e971e0574f82b06b386e1304643430ffb8bdc425d300c84d7e641ed3446a90a52561872e4b0b3844e7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 60546e8d59c700586896f910258cf740
SHA1 a780412125132bac6f5292221e7e03d8aee3060e
SHA256 414eb1c9e1681802068d5ad425417516986c442353a3ddb1b997b859a424a938
SHA512 9d4f7e7714bbf9f209f00a3948f926592f4668c99ee5390195b35a374df1517160e80bc1683ce78e081b88152f8030de9962f55bae010b9ab6bc4d8509e4fb42

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 dce8c8a98e639a9320fae2efb087bc40
SHA1 d5af7bffc6e76b97cb4c62a55b847d1a70dd639e
SHA256 e88a7f8e82706553bd8000cc69a4ec852389a1a6ebaea2ccc95baf4237633d71
SHA512 e4a7e303cba0ef2147cb3805b0ffa58ebc56c18a3100695f5d1cf459bb628704715641a3aab882429d33728a7bebda526fa97468d6456ce375ad032c1f69d343

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 614a9c21704d0e03f27d65ba485eb9cd
SHA1 759d435fba0d55b37e84b118932e27816fc9382e
SHA256 0f4c042c5cfdd82b87b65aaf6080d63a98bd22c5e0bb958a30278151ebae8969
SHA512 fa6f606b1e81492aa0aab116f271ce5143e5e3d6995fba5c3a3fbe4681e2683b919850ad9ab42f9d2ee6695627c6bab243fa08ee3fc58f4b9c1d55c8d54b64a0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9da09a3ff13e4a8d67a01aab3b3d4637
SHA1 a4c5ac8b4247abd2b520c7eecc80ee87e51dc201
SHA256 2ac57657f24da1881ee0cf5992097f7c2f97a3927a2847c5c081aeff40f9fde2
SHA512 06114a35d917617026b3f04bb1d25c6febc71dc0d255b99d0616566faa1685d6cb2486cf140ea598e8334c08588dc221d1a59a38c23537e0943ef480d076ebf2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 dfe0d521be635695c15d61077dc08c1d
SHA1 3fbd9ed2ba92f08c01f0b2a25dd1adcc797f171a
SHA256 f962899504920082ae08ab8902f0028d0e94261f90bfa594a2facd2664359303
SHA512 4879926f29e43e4111e0338dcd33b7d59ece207084ede1f5e9c5970bccd3d742d954254b40b1f17badbb3d1921658c3bd6f85b0b1bea512f9aca5e6652071895

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3c80868c9bb601d09562b6a25a263578
SHA1 ee25fe710ed4d49ed09f5613177ec7660bffc34e
SHA256 e130a87ed323e8708159fdf9e20d23bf7660e08a5e5962e8d5774e4de106f565
SHA512 f426de52aaa498700dfbbdfca4c647d552d92115c39b86badede5c2c6bf6b7bdbb4bb0dd27b6aaecebd0bb0a90d4237b9b36a62a05d36ae45b1887d4c9fde59e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 721b5857b0f3d8af134fd0878d26127a
SHA1 300772ebea3ff4f33050063db5ee35e884b7aecc
SHA256 26578ea4fca367759706be0803bff56dd2a49eb766e22233ff11df66778b782d
SHA512 f98a8e81d41b2fc5a9e1bba40deee311c2fda26754a7b9f2640bfe7f25775e2dd38d206cd808bcd2a06d3d838748f1677bf696522c0b8f318b48aa458702e7f4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4f8fdc5629de76d8b7cfb74a82ef43ae
SHA1 e8b9c27f4962ece43ed7c91b9207ac6ce5c47864
SHA256 0ad05ef520ff30cfa0a3a2928bc47b11a25e17b22d1d9c076fd3cafc3bb6bf9c
SHA512 3cf3090090e28e4d2da4c21651714e4598f7391ba9fcddf43f1a14fa0121d532fec9e9539d439ae3dd11151ee9576985821655100b437c4bc45005096d2946e0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 745f54a85b3a413023e622199ae84099
SHA1 de22de63fdedf6cae1882eb1d6569ade4c6ad365
SHA256 7fa6fc23d3ed83778c8670b52b3d6742756e922983ef4176e354e44a480d1cf5
SHA512 09bcb3a391505a9ff83c1f4c61f835dd714a4599061bed874359927e4b55279aabf7a3af1788f8c5b4180ae0e2852a75ed7a8527f2133c2b4701f174456a705c