Windows Analysis Report
test@barclays.com.html

Overview

General Information

Sample Name:	test@barclays.com.html
Analysis ID:	655625
MD5:	3ff5b2d36016905e595efd4a6793c17e
SHA1:	ee9774db8ab8b5b156c7ea7933031825d930071e
SHA256:	c786576470e647e9d098001c6a748c17277cc4cf6c2209ce7e4712baff2490dd
Infos:

Detection

HTMLPhisher

Score:	48
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Yara detected HtmlPhish44

HTML body contains low number of good links

None HTTPS page querying sensitive user data (password, username or email)

No HTML title found

Classification

Signatures

Phishing

Yara detected HtmlPhish44

Source: Yara match

File source: test@barclays.com.html, type: SAMPLE

HTML body contains low number of good links

Source: file:///C:/Users/alfredo/Desktop/test@barclays.com.html	HTTP Parser: Number of links: 0
Source: file:///C:/Users/alfredo/Desktop/test@barclays.com.html	HTTP Parser: Number of links: 0

None HTTPS page querying sensitive user data (password, username or email)

Source: file:///C:/Users/alfredo/Desktop/test@barclays.com.html	HTTP Parser: Has password / email / username input fields
Source: file:///C:/Users/alfredo/Desktop/test@barclays.com.html	HTTP Parser: Has password / email / username input fields

No HTML title found

Source: file:///C:/Users/alfredo/Desktop/test@barclays.com.html	HTTP Parser: HTML title missing
Source: file:///C:/Users/alfredo/Desktop/test@barclays.com.html	HTTP Parser: HTML title missing

Source: file:///C:/Users/alfredo/Desktop/test@barclays.com.html	HTTP Parser: No <meta name="author".. found
Source: file:///C:/Users/alfredo/Desktop/test@barclays.com.html	HTTP Parser: No <meta name="author".. found

Source: file:///C:/Users/alfredo/Desktop/test@barclays.com.html	HTTP Parser: No <meta name="copyright".. found
Source: file:///C:/Users/alfredo/Desktop/test@barclays.com.html	HTTP Parser: No <meta name="copyright".. found

Source: chrome.exe

Memory has grown: Private usage: 6MB later: 22MB

Source: unknown

DNS traffic detected: queries for: code.jquery.com

Source: unknown	Network traffic detected: HTTP traffic on port 52163 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 58013 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 65224 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 53161 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 53161
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 58013
Source: unknown	Network traffic detected: HTTP traffic on port 63576 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 57586
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 52163
Source: unknown	Network traffic detected: HTTP traffic on port 57586 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 65224
Source: unknown	Network traffic detected: HTTP traffic on port 65069 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 65069
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63576

Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 172.217.23.99
Source: unknown	TCP traffic detected without corresponding DNS query: 172.217.23.99
Source: unknown	TCP traffic detected without corresponding DNS query: 172.217.23.99
Source: unknown	TCP traffic detected without corresponding DNS query: 216.58.212.131
Source: unknown	TCP traffic detected without corresponding DNS query: 216.58.212.131
Source: unknown	TCP traffic detected without corresponding DNS query: 216.58.212.131
Source: unknown	TCP traffic detected without corresponding DNS query: 172.217.23.99
Source: unknown	TCP traffic detected without corresponding DNS query: 172.217.23.99
Source: unknown	TCP traffic detected without corresponding DNS query: 216.58.212.131
Source: unknown	TCP traffic detected without corresponding DNS query: 216.58.212.131
Source: unknown	TCP traffic detected without corresponding DNS query: 172.217.23.99
Source: unknown	TCP traffic detected without corresponding DNS query: 172.217.23.99
Source: unknown	TCP traffic detected without corresponding DNS query: 172.217.23.99
Source: unknown	TCP traffic detected without corresponding DNS query: 172.217.23.99
Source: unknown	TCP traffic detected without corresponding DNS query: 172.217.23.99
Source: unknown	TCP traffic detected without corresponding DNS query: 216.58.212.131
Source: unknown	TCP traffic detected without corresponding DNS query: 216.58.212.131

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\alfredo\AppData\Local\Temp\e6b0db7b-9f08-487a-a9ef-699c08b3ce7f.tmp

Source: classification engine

Classification label: mal48.phis.winHTML@21/144@8/108

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation --single-argument C:\Users\alfredo\Desktop\test@barclays.com.html
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1708,15171800579801753561,3977679138883550371,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2100 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1708,15171800579801753561,3977679138883550371,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2100 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-62BF39F8-1BC4.pma

Source: Window Recorder

Window detected: More than 3 window changes detected

Screenshots

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
142.250.186.35	gstaticadssl.l.google.com	United States	15169	GOOGLEUS	false
172.67.150.137	unknown	United States	13335	CLOUDFLARENETUS	false
34.104.35.123	unknown	United States	15169	GOOGLEUS	false
104.18.10.207	maxcdn.bootstrapcdn.com	United States	13335	CLOUDFLARENETUS	false
216.58.212.131	unknown	United States	15169	GOOGLEUS	false
142.250.186.173	accounts.google.com	United States	15169	GOOGLEUS	false
142.250.187.131	unknown	United States	15169	GOOGLEUS	false
142.250.185.238	clients.l.google.com	United States	15169	GOOGLEUS	false
142.250.185.170	unknown	United States	15169	GOOGLEUS	false
69.16.175.42	unknown	United States	20446	HIGHWINDS3US	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
172.217.23.99	unknown	United States	15169	GOOGLEUS	false
188.114.98.173	stackpath.bootstrapcdn.com	European Union	13335	CLOUDFLARENETUS	false
104.18.23.52	unknown	United States	13335	CLOUDFLARENETUS	false
142.250.186.74	unknown	United States	15169	GOOGLEUS	false
104.17.25.14	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.1
127.0.0.1

Contacted Domains

Name	IP	Active
gstaticadssl.l.google.com	142.250.186.35	true
stackpath.bootstrapcdn.com	188.114.98.173	true
accounts.google.com	142.250.186.173	true
cdnjs.cloudflare.com	104.17.25.14	true
maxcdn.bootstrapcdn.com	104.18.10.207	true
clients.l.google.com	142.250.185.238	true
clients2.google.com	unknown	unknown
ka-f.fontawesome.com	unknown	unknown
code.jquery.com	unknown	unknown
kit.fontawesome.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
file:///C:/Users/alfredo/Desktop/test@barclays.com.html	true		low

Name	Type	MD5	SHA1	SHA256
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\5dd7ae69-e6ad-4a15-a5cb-99a213f83493.tmp	ASCII text, with very long lines, with no line terminators	606BF84462DA3BF118B57CCBCCCA0908	30346F0C2D4E1C67157820B8F3E3AB43A50FB0CA	663E98BC8873110A1CE0EC471716B51450DA063E329B039D24895E104D936A70
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\7edfe7eb-47ee-4924-af2b-297a69664551.tmp	data	A43AA409DE92FE3BA54E95FD414EC15E	A88649F9083446794C82BBE241D8CBC17F9F4F55	4F3281212878C276CFCA43E8C4454B68801ABBA275FB39FCB20B7CEF84C952C8
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\934a3bab-1920-40b2-aca2-fff43d1629aa.tmp	ASCII text, with very long lines, with no line terminators	C031A298F7A7058C9A93528C9D1B19B4	6BCF1B8576A1DF903900C92ADB2F76FDDD240D4C	7CE0C96EF16826731309298F81D1F37B33E42F10DFEB98ABC763A45E98E65B22
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat	data	FA7200D6F80CD1757911C45559E59C0E	89C6E99BAEC4EBB3E9A97B928FB473D1498EBA88	D9779EA4D6DD544A23C2A1C53146B6A4E596927F47DFA0680B0A7EE751D43BB2
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\05f5fc9d-0b67-4173-b3d0-47807686f7eb.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	9E98E65F7FF1002C90AE93B9CEC43C8D	F4D33182C4C575EAED4900E608AFD08915D7D873	9D597ACFFB15A76D486426C6A69692B0D274F6FC36F47D70E2901BB10FB67E30
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\425d98ad-f4df-4e13-b8fb-41dff37b5585.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\4b5a2f7e-0423-447f-8da5-5df0d2bb6dd8.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	7D53BA39268087A0445A530F4275C4DF	140E0819A240386FB10258BDC9A72D9809EDAC3B	593053B93C985AADF42EB393643439922565C6B3CDD719CE16E520F69B37D33E
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\52d67da0-d354-4a40-bad6-22c5d5bd7bf3.tmp	MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel	1B40AC9ABB964672109D49ABFCFE2717	966E224F2887075825D42D2E7E0063BFAA81A99C	503149B1B47F8296DEDB800251DBD9AF614856F0D7E6AB1C03DBC90EBCE53674
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\592ac4df-946e-4d99-9532-8cb93f7c5a77.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	DEFD43D583EFE7C6727973F1BDF3A4D3	119B8B593A1C9EF3CD18B59D69D98B3B8C30F2AF	2478AE7B4F76CD06021A86DE4B19E23E6F2637B4CBFB8427D787D171F2770BFA
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\7220f273-efaa-47a9-bdff-54e88e0f464d.tmp	ASCII text, with very long lines, with no line terminators	9FE04B27A90D5BE23E33B81EED767497	1FB3F7142B2999CE980EF49174A16BD2EBC20077	73D6BB0B8CA6CE08375D79F20F066375BA26474FFD6B0B3CBB04CF3D6FF09963
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\7a4b5349-6aec-4abd-8d0f-8d8b0bc4a6a6.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	2A9337176AE2FA7AEAD31965F1F811F7	D574ECABB1BCB5BB0D7CCE2471EAF255F646D01A	936450830988A4081D48EF78E1D8BE40C8AD1E991801AB0ADF7644DE5F2636E0
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log	data	2EEF53AE6DE9AD256284DD6755FD531F	261CCFB8513BA731EFDA38A1B282E701F425336F	F4B932DAC8AE2E0D7E6ECEF3499839A01BDD3E11C6EC85786146546E2C8AF8F5
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG	ASCII text	2F321C3082652B29D4BFD091EFABE973	75EAE53F68851DED6ABE8A63FC77FE757669A7EB	C5B740E4F55FE9EB88ABBDFF76E806FC229F1D23EEEF0A5211F271AFD1053540
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_1\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	2E2110A99AD3AE9721A458C95C64C868	72AE17599EDC0B2DC61C41D946E3E296864F2CBA	BB46BA705D5F6F43F66B07EA5DA4CC7CC0BF8FE635CCC4EBBA30A5D4A54158DE
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG	ASCII text	ED64AEF0CFB4EBB413973DD729C23441	A1A4CA6FBAA6CB3A8E4F4ADDCD1560338471BD56	D1BC3ACEB13E1E1FF82C91DE37C82A303ED59A684C0D2107E2A690E25B11EB03
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1	data	DE21D7B08C7B46E96C7227600C2615E7	5D08759EEF7044ED91BD4A3E197C0F94315E9932	55BFA2933016C9F7B529D2D20E19739DB8DD0D33E7B7EDBB92C136DE998A932C
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Google Profile.ico (copy)	MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel	1B40AC9ABB964672109D49ABFCFE2717	966E224F2887075825D42D2E7E0063BFAA81A99C	503149B1B47F8296DEDB800251DBD9AF614856F0D7E6AB1C03DBC90EBCE53674
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\History	SQLite 3.x database, last written using SQLite version 3035005	4D943E53BA68D5573BB84E9E004E97AF	A17DC9505818F35F5AF1BDF9A7A3C3F02D0F4BC4	AACA76BA0C0BE569DCBFF85FB3D661C412633BF913681A0DEE109CDECF8068D7
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache	data	F6858E2EB0D9057C7ADDFD95E0388BB7	BF9D2C3D4CC4FD2C856CB5A2CEE376E46DDE334D	48473C173A2A557AC869EB3592594DACF63142F5B2357B9A7C9D3C54EC9DE78C
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG	ASCII text	1E962BEFB590B4E940A3603FA8D5BFB2	83A086C37A984D34C8B68E91C7273536A43A9E7C	B469A0FD3142DCC68CCD84CF58F088263B06259A5BF2202767438654912FF600
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Login Data For Account	SQLite 3.x database, last written using SQLite version 3035005	5BA75311B1B0D6276E298ECCD12B8B07	AD9ABB15695F177530511DFD188EB8C33B8F7929	AEB7F25D09A00715C768CB87BA66EE544830347F998CCF218DE5C2072C4AAF3E
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)	ASCII text, with very long lines, with no line terminators	9FE04B27A90D5BE23E33B81EED767497	1FB3F7142B2999CE980EF49174A16BD2EBC20077	73D6BB0B8CA6CE08375D79F20F066375BA26474FFD6B0B3CBB04CF3D6FF09963
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)	UTF-8 Unicode text, with very long lines, with no line terminators	7D53BA39268087A0445A530F4275C4DF	140E0819A240386FB10258BDC9A72D9809EDAC3B	593053B93C985AADF42EB393643439922565C6B3CDD719CE16E520F69B37D33E
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log	data	A66EFAA590A0D16B1874A35836BA0A4B	BB750C61E162420271F89A90F2B58F43587680E1	B9AB1ED7609E2254B7D4FB655B57B21B2BE601646C4FF0B207C411E8BDD9E654
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Sessions\Session_13301172988058248	data	66D7F18B5EE1106295AEB6F7BA114F8A	B89D443CBD8810F0D25D985A67053C591F60D371	525680BF2EB62A206A2C078BBFAD3EBABFD0730971070517682003018477CFE8
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Sessions\Tabs_13301172989165152	data	5FCEA6CE4F44879903C7B7B219034FAD	229CC2BF13B8554F48E10E9717D4F739D8E78437	6072BBFA7A2CF8D6F505A59FBBE217949414B5CAE833BFD1C7CDA62F3A54594F
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG	ASCII text	83DE52D6537120C3358301269F132826	D3DC7BEF5FA41F104E0DEE99018B7898C4034D9C	A5C94A6AE6DCFE12CE6C2737C6A959675DE87A7FCDA6A102619278E494CCABEF
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1	data	F50F89A0A91564D0B8A211F8921AA7DE	112403A17DD69D5B9018B8CEDE023CB3B54EAB7D	B1E963D702392FB7224786E7D56D43973E9B9EFD1B89C17814D7C558FFC0CDEC
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\MANIFEST-000001	PGP\011Secret Key -	5AF87DFD673BA2115E2FCF5CFDB727AB	D5B5BBF396DC291274584EF71F444F420B6056F1	F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG	ASCII text	8FE41E4DB3AB25D3A9DEC47648E5FD88	AEBC93DA47A9A7A42DBCE4171009CAEAF9B56F5B	7601D002D420632409BA7B9B42DAFBC918B4A4117F1B3594CA6BB3DD33262833
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG	ASCII text	DB77A6ECAAA45C5E2DEA06E59416992E	AEB265427B8C069FBA10301F1937533F82A18625	0AB7C52814035FB3F8C0122311CF908C938514FCA9F2776036FC9CD4B055269F
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Visited Links	data	932B3CBB4FFEF066B8F4E492F17AA39A	872DD3F75498BE4E61960E85463837293FD06841	63D24EB3FD5816D83FF649E69621BA0ED54615DECD72408FA70BDAED76A4C0C5
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\Web Data	SQLite 3.x database, last written using SQLite version 3035005	6D741023AA69E2D4B124E4436F15E1A8	781C1E2C45C02C80FF693CA15A02525F4BCC91FF	1D43AA9AAE20BA2B89AAF6101C93FAF4318116B0F0579A5EC04FC103AA978F19
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000006.dbtmp	ASCII text	AEFD77F47FB84FAE5EA194496B44C67A	DCFBB6A5B8D05662C4858664F81693BB7F803B82	4166BF17B2DA789B0D0CC5C74203041D98005F5D4EF88C27E8281E00148CD611
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\f6839c5e-12a8-4271-8c6e-3b1843bbc857.tmp	ASCII text, with very long lines, with no line terminators	027AA32DDE338A03F559A5BA14CD04D9	095473704A68D1DA87835E9E53BF3A6B515F633D	F8FE11A8AEE9A82682D4D1C8A18AF32523400B6326DFE142E198EAA3571CA1F8
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Default\ffc0ae26-ecd7-4faf-8bc3-14b4ecff9872.tmp	ASCII text, with very long lines, with no line terminators	6252C023D5B949049BA78169ED2BED3C	B23D7E17556071E8D07CE01B881AABE15EE0A2BA	0783F05D811A2BD0499E75892026CC77717328D034E9C709E2BA6939C2C84BC5
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Last Browser	data	DE9EF0C5BCC012A3A1131988DEE272D8	FA9CCBDC969AC9E1474FCE773234B28D50951CD8	3615498FBEF408A96BF30E01C318DAC2D5451B054998119080E7FAAC5995F590
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Last Version	ASCII text, with no line terminators	3A0E5D4F452CF99191634D0FFAB744A0	F115BBB898EEFF640D8D19AD44A86C3FCDFFC0AD	B9D528D3AE283039F4700C7E4E790744C58A26353A91B536DD91CBA4F648A35F
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\Local State (copy)	ASCII text, with very long lines, with no line terminators	B9FEA487887EE7D470950B1FC6228D29	60C02A858180B7CD5D1FFFA9D99A7E1064D93418	95F746233B6E090E9503E6DF9AB1E7CC8FB081B5A00890276CD0397BD69D23D9
C:\Users\alfredo\AppData\Local\Google\Chrome\User Data\a7e5f443-b449-45ad-8e8b-7d84a52d0a3a.tmp	ASCII text, with very long lines, with no line terminators	B9FEA487887EE7D470950B1FC6228D29	60C02A858180B7CD5D1FFFA9D99A7E1064D93418	95F746233B6E090E9503E6DF9AB1E7CC8FB081B5A00890276CD0397BD69D23D9
C:\Users\alfredo\AppData\Local\Temp\1bb9848a-13e0-481e-9182-6f8c10c78242.tmp	gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)	A83A2746B84F1CF573B02965B72ED592	85CC572D6F90029EB99AAFA56297D1BCA494313A	DF4B53C1C7C48E80753D4945E6EC7847084F51BF57F0ED9D341326C74651D6EC
C:\Users\alfredo\AppData\Local\Temp\cd7b350f-5982-4504-8046-216985eb3307.tmp	Google Chrome extension, version 3	541F52E24FE1EF9F8E12377A6CCAE0C0	189898BB2DCAE7D5A6057BC2D98B8B450AFAEBB6	81E3A4D43A73699E1B7781723F56B8717175C536685C5450122B30789464AD82
C:\Users\alfredo\AppData\Local\Temp\cf3055ee-f737-4238-b99a-ce800a1e765f.tmp	gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)	3E5CCD9B583763AF68E28C5101373167	2005CDC0A8070B65E321A197D576698ECC267496	41412C0863920BA95E9FDBD3AF000CBE926A73C078997A233DF55379A5C4D274
C:\Users\alfredo\AppData\Local\Temp\de7d353a-91ad-46d9-9dca-e1f03ca82a0b.tmp	gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)	2A37AD0EC191D53104BB46953AC6C43C	FD23FFC5B7E4A6B45FBD88A486D15FAA51DC07AE	51F075EB69486CB23B32A0776782B4A1B2AF204429AB94510469E02B115E56CC
C:\Users\alfredo\AppData\Local\Temp\e2101325-4ca1-4db2-95b9-c345399cc004.tmp	gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)	7F0FCE2F184F63FED8E9929FB106C282	0582EB5BFC7FCCCC1C77A860F00E351E61F5DC67	7C33F333216849E50AFC9550DA7DA4450D221B837340716ACCEE3766FFD4A62B
C:\Users\alfredo\AppData\Local\Temp\e6b0db7b-9f08-487a-a9ef-699c08b3ce7f.tmp	gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)	51055D2BFDA62ADF265DAB3E6F6E9E8D	1B31763846FB99C0638CCBA379C81FCD3B9F8BAF	D6A7818A7AE6CF87D1164B86CDA2C4A2E8A0E884A9CD7204A758EAD48AB82B30
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\bg\messages.json	UTF-8 Unicode text, with CRLF line terminators	6F8E288A9AD5B1ED8633B430E2B4D4CA	F671D3D4BEFA431D1946D706F4192D44E29B6F08	A114E2783D0E9B12155017323BA70838F0F82A71C7EE8DC1F115AE36991241F8
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\ca\messages.json	UTF-8 Unicode text, with CRLF line terminators	1FDAFC926391BD580B655FBAF46ED260	C95743C3F43B2B099FEBEBC5BD850F0C20E820AC	C67898B67F9C9209EAFDA6532B62D5789863CFB855998DD6A70E7775316CEC20
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\cs\messages.json	UTF-8 Unicode text, with CRLF line terminators	76DEC64ED1556180B452A13C83171883	CFB1E56FD587BCDC459C1D9A683B71F9849058F9	32290D69A90E6BAAC428B10382C99221B12773BB9A184F3B93DFB48A4F6D7A40
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\da\messages.json	UTF-8 Unicode text, with CRLF line terminators	238B97A36E411E42FF37CEFAF2927ED1	4E47AC90BA24C8F4724D9293FA40CFD4ADA66FE0	4977D4A053542FF66967FAED6B06585DD70E68E20BFEB533B66FE3287F9655D9
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\de\messages.json	UTF-8 Unicode text, with CRLF line terminators	6B3E916E8C1991AA0453CBA00FEDCAAA	D6366D15912E40CA107FD42BFE9579C3336A51F9	A62FFAB910E31531758EEE48B2CC71A8857BEC3021DEAD50B668CBA3C8667053
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\el\messages.json	UTF-8 Unicode text, with CRLF line terminators	05C437A322C1148B5F78B2F341339147	AB53003A678E44A170E73711FBD9949833BBF3AA	A052C32B4FCAC61152EB0ADB2C260FB6A8256AD104AA0013DB93E9798D41A070
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\en\messages.json	ASCII text, with CRLF line terminators	91F5BC87FD478A007EC68C4E8ADF11AC	D07DD49E4EF3B36DAD7D038B7E999AE850C5BEF6	92F1246C21DD5FD7266EBFD65798C61E403D01A816CC3CF780DB5C8AA2E3D9C9
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\es\messages.json	UTF-8 Unicode text, with CRLF line terminators	82719BD3999AD66193A9B0BB525F97CD	41194D511F1ACC16C1CA828AC81C18C8C6B47287	4DB9B2721E625C18B9E05C04B31AF5D9694712F1CAAF6219ABE34BB08E5DB1C7
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\es_419\messages.json	UTF-8 Unicode text, with CRLF line terminators	6B2583D8D1C147E36A69A88009CBEBC7	4D4DEEB4BE6AA0181825F3371A761ABC5B4D5937	6659BC3705311D7641A73995DCFEA80C7734F2F4EBBC3787B3892A240348324F
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\et\messages.json	UTF-8 Unicode text, with CRLF line terminators	CFF6CB76EC724B17C1BC920726CB35A7	14ED068251D65A840F00C05409D705259D329FFC	C85800BF45942FCC7FD6B1DF929C25F9CC2A977A6678966BD03D4B6B69889AFD
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\fi\messages.json	UTF-8 Unicode text, with CRLF line terminators	3A01FEE829445C482D1721FF63153D16	F3EAAADDC03F943FC88B30B67F534AA13E3336DD	0BDE54B20845124113383B6EB81E43A0F05E4EB0C44BEE3C1DFAC4CC5FEC2836
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\fil\messages.json	ASCII text, with CRLF line terminators	57AF5B654270A945BDA8053A83353A06	EEEF7A4F869F97CF471A05D345E74F982D15E167	EC002ED92359F67818B49455DFC579E140368E6A004080AF022FD4F57F6B03F2
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\fr\messages.json	UTF-8 Unicode text, with CRLF line terminators	8D11C90F44A6585B57B933AB38D1FFF8	3F9D44EA8807069A32AACA2AAAD02FD892E6CC90	599491F8C52B945C16C441ADF45BFD45AFAE046DA07757D97C56AF4DE75ED3B5
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\hi\messages.json	UTF-8 Unicode text, with CRLF line terminators	E376D757C8FD66AC70A7D2D49760B94E	1525C5B1312D409604F097768503298EC440CC4D	8106D98C4F8DA16DB698444409558E29CC96735E188BFA303C333A5D99231C1D
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\hr\messages.json	UTF-8 Unicode text, with CRLF line terminators	8185D0490C86363602A137F9A261CC50	5BD933B874441CEACB9201CCC941FF67BAED6DC0	A2B2EC359A9DD9DCCCE02859CE1E738BD30FAA4A05F1DC522893FFDF722BBC15
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\hu\messages.json	UTF-8 Unicode text, with CRLF line terminators	85609CF8623582A8376C206556ED2131	1E16EB70DB5E59BB684866FF3E3925C2DEF25A12	32A249749F12ADB6A220BF9ADC272C7E5D9AD5497A38B0086D961E3ABA17FBC6
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\id\messages.json	ASCII text, with CRLF line terminators	EAB2B946D1232AB98137E760954003AA	60BDC2937905B311D2C9844DF2D639D7AC9F7F67	C6E8800450602DE0F39FE9F6854472383813FB454B08ABAE7E25A9167CE004C3
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\it\messages.json	UTF-8 Unicode text, with CRLF line terminators	A328EEF5E841E0C72D3CD7366899C5C8	2851ED658385804E87911643F5A4200B1FB26E13	CD891C45F7586FB4A2514205A11F260E4A6D4482FA03D901909DD9F57BE0536D
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\ja\messages.json	UTF-8 Unicode text, with CRLF line terminators	9B3A5D473C3F2BBFAEECE94A07A940B8	61BACA342CF766BBA15C7B4D892A0E7DAC9405AA	706312A4A2AEF3317223F141EB2B82685345B7EED444F16BB4DF3A272716DA1F
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\ko\messages.json	UTF-8 Unicode text, with CRLF line terminators	9F6B4D82A70C74CA751E2EAE70FAB5CF	0534F125FFCE8222277CF2BE3401C59DAF9217F8	D1467B8D037114403E8F4EFC52E88C4A7FEB96126BE4CFF883FEFF1084EF7E68
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\lt\messages.json	UTF-8 Unicode text, with CRLF line terminators	4CA644F875606986A9898D04BDAE3EA5	722A10569E93975129D67FBDB75B537D9D622AD1	7C311AB751D840D750C11553C083785813E079C1D464FE568A98C9E3EF3DB96C
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\lv\messages.json	UTF-8 Unicode text, with CRLF line terminators	C5CE2C51391EAFD3DA9E4C71549A3C28	1F67FF6EF6E90C0CE3AAF56ED543A3EFD381574D	1FA1DF2CA8516DEF490FB8484E9AA498ACFF80EEF5C9258FFE42D3678E6C7DED
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\nb\messages.json	ASCII text, with very long lines	8F0168B9A546D5A99FD8A262C975C80E	B0718071BD0B7251D4459E9C87DF50C14622FBD6	F03FA7384DF79EBA6E0274D570996030F595A3BF6B781929DD9DB6593262E41F
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\nl\messages.json	ASCII text, with CRLF line terminators	7A8F9D0249C680F64DEC7650A432BD57	53477198AEE389F6580921B4876719B400A23CA1	92BE7C2DC9CFBE5A65E9CE6488D364C8D7EC19E7B67A31E4D43C1CB2B169671C
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\pl\messages.json	UTF-8 Unicode text, with CRLF line terminators	0E6194126AFCCD1E3098D276A7400175	E8127B905A640B1C46362FA6E1127BE172F4A40F	E2699F98C511B18A2AFB82EAE9A4804B646C4FF1077D80E77C17A3943A6373C2
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\pt_BR\messages.json	UTF-8 Unicode text, with CRLF line terminators	86A2B91FA18B867209024C522ED665D5	63DEC245637818C76655E01FCB6D59784BC7184E	6374880FDD1F8AF1EE8AEA6A06B73BE0AB265AFCEB4FE6F08BDE3B3989264B21
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\pt_PT\messages.json	UTF-8 Unicode text, with CRLF line terminators	750A4800EDB93FBE56495963F9FB3B94	8BFB915488A4EB3CB33D68E2E59F1F8447DB7D61	C1C94F65FABAF17DEF98A8587711A56D61B1E5607500E9B01F2824DB109F9E83
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\ro\messages.json	UTF-8 Unicode text, with CRLF line terminators	98D43E4B1054A65DF3FA3CC40AB6FB6D	46E0A21C4DA2BB5D4D8F837AE211C1B6FA26E7E2	113A13900CBA62FE8AED06751971C23A80A99B47F9BE219CF884D57DB19611D9
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\ru\messages.json	UTF-8 Unicode text, with CRLF line terminators	DB2EDF1465946C06BD95C71A1E13AE64	FB4F3ECE9ECECEBBC6CA2A592A15FB9C1FDFB811	FBAF22CE6E16DE174CED8CB5EA3098CCA1C3426A2111FF33BD3E64DA64ED67AB
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\sk\messages.json	UTF-8 Unicode text, with CRLF line terminators	8DF215D1EFBDABB175CCDD68ED8DCB0A	2B374462137A38589A73FDD00A84CBDC7E50F9F4	7FA16AF97E6CFC52EC6008EB679D3F30E7E0C24F9EF2D18A9228EAF4DED9D63B
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\sl\messages.json	UTF-8 Unicode text, with CRLF line terminators	3943FA2A647AECEDFD685408B27139EE	0129DD19D28373359530B3B477FE8A9279DABB7D	18AFF072EE0DF7C3495045435C752A805606E6D5D462EF2321C443F1773F4B3A
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\sr\messages.json	UTF-8 Unicode text, with CRLF line terminators	D485DF17F085B6A37125694F85646FD0	24D51D8642CDC6EFD5D8D7A4430232D8CDE25108	7FFDE34C58E7C376C042DE64DEF6481DAE32BE8B70F0B18EDF536290CBE0C818
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\sv\messages.json	UTF-8 Unicode text, with CRLF line terminators	D372B8204EB743E16F45C7CBD3CAAF37	C96C57219D292B01016B37DCF82E7C79AD0DD1E8	B8BA77E0089B0676545EC16D32468B727812B444F90B33A7A5B748E6C36C4388
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\th\messages.json	UTF-8 Unicode text, with CRLF line terminators	83E2D1E97791A4B2C5C69926EFB629C9	429600425CB0F196DDD717F940E94DBD8BFF2837	2FECA577F43D97BAEEA464741D585892103585208FD0A935B810A03BDCE83C88
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\tr\messages.json	UTF-8 Unicode text, with CRLF line terminators	2CEAE0567B6BB1D240BBAD690A98CA3B	5944346FBD4A0797B13223895995CAB58E9ECD23	A7CB86F30C9C31FE5540282C308BA96ADB4EC16EF98C87129EB88105E5BEF5FC
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\uk\messages.json	UTF-8 Unicode text, with CRLF line terminators	AB0B56120E6B38C42CC3612BE948EF50	8B3F520E5713D9F116D68E71DAEED1F6E8D74629	68ABA284751EB9C856032062EF9B1651E2A1E5CE5FDA0977FFC97D63BA7BED9E
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\vi\messages.json	UTF-8 Unicode text, with CRLF line terminators	7EBB677FEAD8557D3676505225A7249A	F161B4B6001AEAEAB246FF8987F4D992B48D47BE	051F96ED874C11C4A13589B5F68964E4F5B03B52DDA223D56524F2CA23760C04
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\zh_CN\messages.json	UTF-8 Unicode text, with CRLF line terminators	BB73BF561BB79F89D9BF7C67C5AE5C65	2FADD3A1959B29C44830033A35C637D0311A8C9C	D804F2A040D21D7511EFD5213D8E1721D64964A1A0DBB48E21622CEEDC9D967E
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_locales\zh_TW\messages.json	UTF-8 Unicode text, with CRLF line terminators	5FF50C673CC0C661D615F0CFD0E6DCA0	60DFF98DEAB9C4746B288BDD9C94B3BCAE5EAA85	C6F8C640F3353A7B9B1432A0C139C1AEEC40133800E6C9B467B63991AD660308
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\_metadata\verified_contents.json	ASCII text, with very long lines, with no line terminators	0834821960CB5C6E9D477AEF649CB2E4	7D25F027D7CEE9E94E9CBDEE1F9220C8D20A1588	52A24FA2FB3BCB18D9D8571AE385C4A830FF98CE4C18384D40A84EA7F6BA7F69
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\craw_background.js	ASCII text, with very long lines	6EEBED29E6A6301E92A9B8B347807F5F	65DFB69B650560551110B33DCBA50B25E5B876DE	04CD9494B0ED83924DAD12202630B20D053D9E2819C8E826A386C814CC0A1697
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\craw_window.js	ASCII text, with very long lines	1709B6F00A136241185161AA3DF46A06	33DA7D262FFED1A5C2D85B7390E9DBC830CBE494	5721A4B3F8E09C869A629EFFD350B51C9D46F0AC136717D4DB6265C0EE6F9AC8
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\css\craw_window.css	ASCII text	67BF9AABE17541852F9DDFF8245096CD	A4AC74DD258E8E0689034FAA1B15A5C7C56DC3BB	10DFBD2D98950B79EE12F6B8E3885AABE31543048DE56AD4FC0A5E34D0D9D4EC
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\html\craw_window.html	HTML document, ASCII text	34A839BC40DEBC746BBD181D9EF9310C	8B4EAA74D31EED5B0BABA3CA5460201F6B10DA46	BB8742615E4CD996AE5D0200E443AE6A6F0B473255F03AFFDB8FB4660DE4554D
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\images\flapper.gif	GIF image data, version 89a, 30 x 30	398ABB308EEBC355DA70BCE907B22E29	CFFB77B8A1724B8F81D98C6D6AD0071D10162252	2B73533F47A99FFEA9CC405FFAFA9C4C53623F62487AEBFBA415945120B22040
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\images\icon_128.png	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced	4DBC9F9E6F5A08D299BAC9E54DF07694	BB38F5DE34B1E0BE1109220BA55271087A4D9EA5	91C2718DD23B4356D71F88F6146868369033291086DF327534546DFA459BEB0E
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\images\icon_16.png	PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced	FB9C46EA81AD3E456D90D58697C12C06	5FC450F7D73CCFAC8F0D818CB3392BA4D91B69DE	016CA659BA080E194FBFC0929602B16506ED60AA6019FAA51410C4FD93B583E8
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\images\topbar_floating_button.png	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	8803665A6328D23CC1014A7B0E9BE295	9DA6EE729D5A6E9F30658B8EC954710F107A641F	D5F9234DC36E7FFA85F35B2359A4F82276F8395EFA76E4553507EA990B27FC6C
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\images\topbar_floating_button_close.png	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	0599DFD9107C7647F27E69331B0A7D75	3198C0A5F34DB67F91A0035DBC297354CBC95525	131817CD9311C03DF22D769DD2AD7FA2E6E9558863A89F7E5E1657424031A937
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\images\topbar_floating_button_hover.png	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	7CB6B9DC1A30F63B8BD976924B75AD96	0C40B0C496D2F2B5F2021C117EC8610AC03AB469	721B7AAA9A42A54A349881615A12E3A26983ACA48E173FD2F66E66AA0D725735
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\images\topbar_floating_button_maximize.png	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	232CE72808B60CBE0F4FA788A76523DF	721A9C98C835D2CD734153BBE07833C6637ECD68	AFA4EA944CBDEC8543242E627EF46D5BFD3766DCAC664E7E50CDEEF2B352740C
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\images\topbar_floating_button_pressed.png	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	E0862317407F2D54C85E12945799413B	FA557F8F761A04C41C9A4BA81994E43C6C275DBB	5C10CE0589EB115600F77381130B70AE0B7B3752614D86D4C89E857658AA222B
C:\Users\alfredo\AppData\Local\Temp\scoped_dir7108_695416080\CRX_INSTALL\manifest.json	ASCII text, with CRLF line terminators	01334FB9D092AF2AA46C4185E405C627	47AD3C0E82362FFE5B881DF8D71D6F79AB7F5796	F52714812D68C577A445169D11E84DF6751C2D6886BC429643072BB5D61C6C27
C:\Users\alfredo\AppData\Roaming\Microsoft\Spelling\en-US\default.dic	Little-endian UTF-16 Unicode text, with no line terminators	F3B25701FE362EC84616A93A45CE9998	D62636D8CAEC13F04E28442A0A6FA1AFEB024BBB	B3D510EF04275CA8E698E5B3CBB0ECE3949EF9252F0CDC839E9EE347409A2209

ID:	655625
Product:	CloudBasic
Start time:	11:15:49
Start date:	01.07.2022
Sample:	test@barclays.com.html
Cookbook:	defaultwindowsinteractivecookbook.jbs
System description:
Architecture:	WINDOWS
MD5:	3ff5b2d36016905e595efd4a6793c17e
SHA1:	ee9774db8ab8b5b156c7ea7933031825d930071e
SHA256:	c786576470e647e9d098001c6a748c17277cc4cf6c2209ce7e4712baff2490dd

Windows Analysis Report
test@barclays.com.html

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Software Vulnerabilities

Networking

System Summary

Screenshots

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report test@barclays.com.html

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Software Vulnerabilities

Networking

System Summary

Screenshots

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
test@barclays.com.html