hxxps://namcards[.]com/e

Analysis

max time kernel
155s
max time network
157s
platform
windows10-ltsc_2021_x64
resource
win10ltsc2021-20250314-en
resource tags

arch:x64arch:x86image:win10ltsc2021-20250314-enlocale:en-usos:windows10-ltsc_2021-x64system
submitted
31/03/2025, 14:24

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://namcards.com/e

Score

4^/10

discovery

Malware Config

Signatures

Drops file in Windows directory 1 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SystemTemp	chrome.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Checks processor information in registry 2 TTPs 2 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	chrome.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133879046622100420"	chrome.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4232	chrome.exe
4232	chrome.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 4 IoCs

pid	Process
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe
Token: SeShutdownPrivilege	4432	chrome.exe
Token: SeCreatePagefilePrivilege	4432	chrome.exe

Suspicious use of FindShellTrayWindow 28 IoCs

pid	Process
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe
4432	chrome.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4432 wrote to memory of 4396	4432	chrome.exe	82
PID 4432 wrote to memory of 4396	4432	chrome.exe	82
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 5244	4432	chrome.exe	83
PID 4432 wrote to memory of 996	4432	chrome.exe	84
PID 4432 wrote to memory of 996	4432	chrome.exe	84
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85
PID 4432 wrote to memory of 5668	4432	chrome.exe	85

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://namcards.com/e
1⤵
- Drops file in Windows directory
- Checks processor information in registry
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4432
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=133.0.6943.60 --initial-client-data=0x21c,0x220,0x224,0x1f8,0x228,0x7ffd5624dcf8,0x7ffd5624dd04,0x7ffd5624dd10
  2⤵
  PID:4396
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --string-annotations --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --field-trial-handle=1960,i,1526591414583907877,497381537324156335,262144 --variations-seed-version=20250313-182214.581000 --mojo-platform-channel-handle=1956 /prefetch:2
  2⤵
  PID:5244
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --string-annotations --field-trial-handle=1592,i,1526591414583907877,497381537324156335,262144 --variations-seed-version=20250313-182214.581000 --mojo-platform-channel-handle=2272 /prefetch:3
  2⤵
  PID:996
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --string-annotations --field-trial-handle=2368,i,1526591414583907877,497381537324156335,262144 --variations-seed-version=20250313-182214.581000 --mojo-platform-channel-handle=2452 /prefetch:8
  2⤵
  PID:5668
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3144,i,1526591414583907877,497381537324156335,262144 --variations-seed-version=20250313-182214.581000 --mojo-platform-channel-handle=3184 /prefetch:1
  2⤵
  PID:2000
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3156,i,1526591414583907877,497381537324156335,262144 --variations-seed-version=20250313-182214.581000 --mojo-platform-channel-handle=3224 /prefetch:1
  2⤵
  PID:1608
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4236,i,1526591414583907877,497381537324156335,262144 --variations-seed-version=20250313-182214.581000 --mojo-platform-channel-handle=4208 /prefetch:2
  2⤵
  PID:3472
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4232,i,1526591414583907877,497381537324156335,262144 --variations-seed-version=20250313-182214.581000 --mojo-platform-channel-handle=4724 /prefetch:1
  2⤵
  PID:4832
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5236,i,1526591414583907877,497381537324156335,262144 --variations-seed-version=20250313-182214.581000 --mojo-platform-channel-handle=5244 /prefetch:8
  2⤵
  PID:6136
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5600,i,1526591414583907877,497381537324156335,262144 --variations-seed-version=20250313-182214.581000 --mojo-platform-channel-handle=5508 /prefetch:8
  2⤵
  PID:1612
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5492,i,1526591414583907877,497381537324156335,262144 --variations-seed-version=20250313-182214.581000 --mojo-platform-channel-handle=5192 /prefetch:8
  2⤵
  PID:5540
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5628,i,1526591414583907877,497381537324156335,262144 --variations-seed-version=20250313-182214.581000 --mojo-platform-channel-handle=5536 /prefetch:8
  2⤵
  PID:3684
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.4355 --string-annotations --gpu-preferences=UAAAAAAAAADoAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAABCAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --field-trial-handle=5748,i,1526591414583907877,497381537324156335,262144 --variations-seed-version=20250313-182214.581000 --mojo-platform-channel-handle=5420 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4232

C:\Program Files\Google\Chrome\Application\133.0.6943.60\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\133.0.6943.60\elevation_service.exe"
1⤵
PID:4436

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:1112

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

Filesize
649B

MD5
f36669488aa01e7723a3c1eda866e0df

SHA1
2ec7cd9e8508e31bc8d74202730f5d69b704c05b

SHA256
56cb2ec9297edf9583109b0f03b4f9e56cf7d56616faa953451ccf95b02fabc5

SHA512
15c66510c070c0c81e19362e22e8222c720414979b340a92733a7f5d80f399436a066d9d1ea292b384413855c4b5a2dc7c5aa2c3cf4ab5c0445b7f727ddebbe9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
120B

MD5
eda79825f0779a9e285d2ad032deecbb

SHA1
cc37f8b35656a793676c3c4df8ccd61b9244138d

SHA256
218af7c0d826af35b93d98c124f7ae3267304713d6ea5644d415a6f7336454c6

SHA512
22d9398a7e4e94ca7a015fdfa6217b2011161cd0c3fbb8f8d8a2b94292c4379449b5c10be63fccee2890a39c449459dd310496e8c3e51ff7bfc2b4c41c23f62d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
216B

MD5
d6c640d5acb0cde042b0a16c5dc354d6

SHA1
97280587fd46b3be95574b38ba07e522fbcd72d7

SHA256
60bdeb6a520ac451fe1fa5c69fa40119a0c6da7ee8ec6f00e9fc5619348db213

SHA512
6417b6fa88293a5277b465a982df4eeff7cc44fa43ee4835ae33444450941b6519366ab02c049fde9c72ee6cfb2631ee2555a778d1a431776605b1fe3d07bb76

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\DawnGraphiteCache\data_1

Filesize
264KB

MD5
fbfcedb857cc4c8c5d7159f63c95e036

SHA1
869cfe21081abe22924ecbf5a4729f59a81c0f20

SHA256
423825fd3c626cc96b0eb991baa371b41c268f9d59ac5bf1a0e235cae5d8dffa

SHA512
dffd52bfc037cac5afecd5836ccb48522903bd46d4e2aeb9ba32f3e65b24dd9c5f87d2169989939f0bd468e104f6fcc7c8f9dbb23d23f63a8bfcaadc7629427e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
3KB

MD5
9166dcb364e2f142b9645b297046da2a

SHA1
b0f1bac83d50fbdbff9139354b78f0e060110875

SHA256
6f2798f9078a7dc174ebf7d27690ba69703cd8c12863141d3a47930c8e9257a7

SHA512
fd0db34f19bbd38471b76f0b61d07ce4416e5a555800e886931702961336a4baeb617c2d038db3b6a466936cc7c677e9364de5d6c57aaabb2600853f4181fd5c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
3KB

MD5
4a05cf19d38422937aa277345cbb34e6

SHA1
384ac6592be9cf15ea329a2a26dd7dcbd841d82e

SHA256
6041377e983b048e0b048b52325f4f56529d330bc94ddf219bef1e0f8fc25d11

SHA512
343ec52d67fa8fdb85dfa990b7b8206c544ead42a1e0aba9a4392f9e01ae0d34ccbac8f94d4c0136fce978c2f7ea1a62ceaa5f4ba837a705b71337948e0e6caf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
690B

MD5
f0bb121ff79af22804abe33cc71ffe8d

SHA1
e30fe4ac88ce014cc7cdce30258e97963503f229

SHA256
422c922850ac1c85c2187344e14c0b6636b62af756ace69d8e660a2902a0a233

SHA512
4f3cc60416b94343576ef64fc3904b7161b32e05c3b9d2fed0d0e3954328302475d0c04b30a5aaac7fab629b25d3dc69e746ced0dedab7ff770f42a11fbf98da

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
d32ab438436184e7d9e9d38dd641ab60

SHA1
a2b865ec266f202a6d7babec3357fb6f800ac6fe

SHA256
ec1138e4454e0497a3361af7d67fc288e55fa35e194e6fbc57b9eced6052ee81

SHA512
b6811a3e19bd899eef4a7caa35ca260c65d5d1378ace4beefb807f83b6e26309643d0f913ddef0d8c2d3928a3493a186554c98fe539e96e2d6a7a1230c42645e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
8bfcebb0fd4df5b5a07964e15a8cbf89

SHA1
3809a5c92340cecac35255f0fbc1353b007d4dba

SHA256
c0751742e518ffb0cb3df2c11ee27ab4b3c8bc85cb76ead3aa7b1996d0fa8c24

SHA512
0415c5f2f9f66b5ea4c8aaa02b4984901ec0ab888ce3aa2a84a9b61cbf4f0881a1026f9ee51d53c17e0a02777b8fc66cd6ad9d15d97d30497aca39600d4e5861

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
a19a06c20330020c3de7b3a29b6c8746

SHA1
b2f887341ac54dd5d712f37d725de97fac2b7747

SHA256
df74e03d19ff5329261ff97e1856fa26b36089fdb667c0ef7b4cb0f03b36ff7b

SHA512
4b3f81137baf82fe1c76050216eed1d89252e09e6e3555c805cbfade3e17af11c08a1a924452ec91ceb912f19f53c37529842b70f79a4b26f49d6baa0c50ed82

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
cac5139a9b7ff7115e001ab21f69f301

SHA1
bb5081ed6f08a7f9fbcbc4eb71ec9ecfe423658b

SHA256
0daf92f4bda92dea34b0de77f45721be29c83d7dbd61a08eed138af517a4ac20

SHA512
4fdfeabd1795c76b147f071bbec6c58307f3b0c90358cc3e87a212f7ac3efa39c718bd7bd01c2400966244aed0740549a46dc11ab717dc08387f1d6a826481ec

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
cfccc5e29abae3b76a78978b2f98854b

SHA1
2068d1775df62467ac04e84b1567a388674e8a6b

SHA256
7166e9b073d9b633cce1a33134e31aa09f98fa3abd9141f83beed6a6defa0ff0

SHA512
46836701a3d48e044d68625a37cd53b0bd3ed75d45732725c94f2e795ab4e32ef0118e60a7f2a12bbb0bc3087fe05961f26ffb482728dffb36685a2d58f66708

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
63146b7a3e3e1d50f33218604322b44c

SHA1
dd99921862f662036e6de38e736e36dc9b165bc9

SHA256
58a8219f11d2cfbe61ef439164a9ee4e4afc329525f28ec20966ec6b1caf4402

SHA512
cd48c74017ee6145527f9f2f94d683d7ba0a2f6a89217464f2b8657bb1e32f2dbc3d4cc229945b39b1d239a2abedf8aaf9eb9078e02d554cee62cc8fafe3d392

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
11KB

MD5
0ee03315c8e4135a5c5af85d7cea1daf

SHA1
fe4773184ac5ea11391850b79bb2fb5709fc0837

SHA256
9132cfb426044d6fcefee0dc26e666fd88a0cce870f8e5df035fe0d6ee39bd88

SHA512
735d1139f1c23092dab1982589f803302710f43391a6a6b6f78831d84b0dd22fa0dddf8ae50401771843fc25648ffe94bca2a13470896a5e49a9b91d2d1a41ed

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
15KB

MD5
9c935a74fd5d7bf12e97577b4270a31c

SHA1
763db74b5e04b693f8b2dca5d408e97a2045376b

SHA256
2166a860a2eed8d2dc377bac0bcb92bc9aa62ac0ed48078b2d3cb5ad0610eb06

SHA512
6ec23c92448650349ce83c9098df48e0db657b64cc602a51be2a897d95d46fa7420e832773964dffcc2fe3350d4842c5d1793d1a87ef18be2b6b7722c1e24b66

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
72B

MD5
5d7d33d8016f70a32c1b94e00fb06374

SHA1
7a2d5f036495e6f70b31c22d3f646134df9aa2b1

SHA256
408a112bc68b0a553a9c61b747dd732a0f9b23f1a93a9a88aba2f806eb2868f6

SHA512
121ec6a0d2f962021e1e114f2d6d96ce3ec700c2bbbe037d7d22f0070bdf156d815a9047630513cbb5bce8e5e7b1c96536a1cdfd9dd6574ba9dbe1fd48333246

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe57cd72.TMP

Filesize
48B

MD5
2ac115b2cee12b00a4b05f0309a9e5d1

SHA1
f3fb653a9066d28a3fb69247d357485d4a877a6b

SHA256
a4757341e46c9e2de3de86645549a8329adbc7afc6be6e00cf98f63cef764c07

SHA512
315a7eaf73b8012a3c6e52f024e53a3a0425222de095f867f6a632568def56477802013e29c9b951a6813543e8131d79ecd5d1d9c89824b349befc5e3c32d78f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
81KB

MD5
f09c420f6807f2a3ce77fe17f82d4a31

SHA1
f84ac48a2638e2a98d30a1148366ce410aaed2b5

SHA256
e4d83439b29109175aa9683469c2007b2380754c2f9b5bd05e1a45d15a312e79

SHA512
f727d34432e3aeda528dd658b37d132a9d5c84216ba911f287fc66d61b55b896a086b9c5ee4e964b2d4c4e8a17f2b3a91e19ca927b1708b702ed3380a3306ddb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
80KB

MD5
7fbfbc4f60f5b812126ecc509c48d798

SHA1
8dc6d9435d51518388609094e1ab801681d43cf5

SHA256
a797e9fee02f93b49b2ffa18f642b25b30c49635f405ee5456c23b1f4b8a4766

SHA512
f81b70a2bbdbb0d4c189ea6aaaad07a6315d1cd9386b819e109238926fe2ea5fd295878e79482bd8a57178c3889a4fef2b5da208ed70254f3d0410bbd238db5b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
81KB

MD5
b75e4d041ed0d2d39763f75b33edee1f

SHA1
3052f6e4c99df37d622be58f31652cf0a64ed985

SHA256
b7c8fbd191e5c27b26ba214a854c0d9bb03363dfb07a60f95d4e483e01bc4e7c

SHA512
5ef357ed725c809f8a01d8e0d323b4c088d806cbc4c9644e8eea17601a9a7d42f742a9124754fa9a8e777b85dcb4b4f125ef8b41bc81e8aaf24c9a75f6e872ae

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
81KB

MD5
ac69b8f9851414df1958979cd03f8d95

SHA1
709899b47f382a4f6b4508a4747ff9a7d25ddbec

SHA256
72a208c60aefc872833cf6c57e073c60cb91799a50b0ad2338063b03c1ecdeb0

SHA512
c81d89494b116aae3c83fe530238559f1b88639c621526b4de9b1556986074e6aec8bfb7f3c4091f164b5c656c5162bbd46ee6ee09e3ff5ca26306e48d3e4def

Download Submit