top title background image
flash

https://list-manage.agle1.cc/click?u=http://www.leo.lopez.sakshamsevango.org.in/br?bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=

Status: finished
Submission Time: 2021-06-11 19:41:06 +02:00
Malicious
Phishing
HTMLPhisher

Comments

Tags

Details

  • Analysis ID:
    433426
  • API (Web) ID:
    801030
  • Analysis Started:
    2021-06-11 19:41:08 +02:00
  • Analysis Finished:
    2021-06-11 19:48:04 +02:00
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
malicious
Score: 68
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious

IPs

IP Country Detection
40.101.137.82
United States
142.250.180.225
United States
43.250.140.39
Australia
Click to see the 5 hidden entries
142.250.180.243
United States
152.199.23.72
United States
239.255.255.250
Reserved
216.10.243.103
India
152.199.21.175
United States

Domains

Name IP Detection
ajax.aspnetcdn.com
0.0.0.0
acctcdn.msftauth.net
0.0.0.0
list-manage.agle1.cc
0.0.0.0
Click to see the 21 hidden entries
www.australiabondcleaning.com.au
0.0.0.0
code.jquery.com
0.0.0.0
scu.client.hip.live.com
0.0.0.0
clients2.googleusercontent.com
0.0.0.0
aadcdn.msauthimages.net
0.0.0.0
passwordreset.microsoftonline.com
0.0.0.0
client.hip.live.com
0.0.0.0
outlook.office365.com
0.0.0.0
acctcdn.msauth.net
0.0.0.0
sni1gl.wpc.alphacdn.net
152.199.21.175
account.live.com
0.0.0.0
assets.onestore.ms
0.0.0.0
aadcdn.msauth.net
0.0.0.0
r4.res.office365.com
0.0.0.0
www.office.com
0.0.0.0
www.leo.lopez.sakshamsevango.org.in
216.10.243.103
googlehosted.l.googleusercontent.com
142.250.180.225
ghs.googlehosted.com
142.250.180.243
cs1025.wpc.upsiloncdn.net
152.199.23.72
HHN-efz.ms-acdc.office.com
40.101.137.82
australiabondcleaning.com.au
43.250.140.39

URLs

Name Detection
https://www.australiabondcleaning.com.au/.well-known/login.php?ss=2&#bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=#client_id=e7b724e5-ef96-4f79-9c01-6e985e042d4d#loginpage=https://live.microsoftonline.com#reff=6d17fd2bdeb846c7987fc53a49f81755
https://code.jquery.com
http://www.leo.lopez.sakshamsevango.org.in/br?bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=Sign
Click to see the 93 hidden entries
https://microsoftonline.com/
http://www.leo.lopez.sakshamsevango.org.in/br/?bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=P
https://account.live.com/
https://client.hip.live.com/GetHIP/GetWLSPHIP0/WLSPHIP0?fid=8a89a375569c494ab67c45a2dc38fc59&id=2825
https://www.australiabondcleaning.com.au/.well-known/login.php?ss=2&
http://www.leo.lopez.sakshamsevango.org.in/br/?bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=
https://passwordreset.microsoftonline.com/js/Webtrends.jsaD
https://microsoftonline.com/N
https://acctcdn.msauth.net/bootstrap_3.3.0_B68S-_daR6nLiLVZsh4XiA2.js?v=1
https://www.office.com/prefetch/prefetch
https://microsoftonline.com/L
https://r4.res.office365.com
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-3.5.0.min.jsaD
https://acctcdn.msauth.net/accountcorepackage_YD-Y5A3nlj0ms1Ks9fXU6A2.js?v=1
https://live.com/A
https://acctcdn.msauth.net/jquerypackage_1.10_5V7LAuc3bNAQx2QQfr1RPw2.js?v=1
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.11.2.min.js
https://aadcdn.msauth.net/ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.icoP
https://acctcdn.msauth.net/knockout_old_GJ62c6D9R5HuKFdkoO8XYw2.js?v=1
http://www.leo.lopez.sakshamsevango.org.in
http://www.leo.lopez.sakshamsevango.org.in/br/?bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=2
https://passwordreset.microsoftonline.com/js/Captcha.js?v=1342177280aD
https://passwordreset.microsoftonline.com/WebResource.axd?d=K8SG-wKQphiVYLlIdWNflHCKk9laM7b9jg1MsaXM
https://www.australiabondcleaning.com.au/.well-known/login.php?ss=2&#bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y
https://microsoftonline.com/D-DT
https://passwordreset.microsoftonline.com/js/Captcha.js?v=1342177280
https://feedback.googleusercontent.com
https://live.com/i
https://aadcdn.msauth.net
https://passwordreset.microsoftonline.com/js/Webtrends.js
https://clients2.googleusercontent.com
https://passwordreset.microsoftonline.com/ScriptResource.axd?d=7mNLgzlwuZkA9TAssKpNEJH0oT16Rgo-ReAyN
https://acctcdn.msauth.net/images/favicon.ico?v=2
https://outlook.office365.com/owa/prefetch.aspx
https://acctcdn.msauth.net/
https://passwordreset.microsoftonline.com/
http://www.leo.lopez.sakshamsevango.org.in/br?bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-3.5.0.min.js
https://www.australiabondcleaning.com.au/.well-known/?ss=2&email=bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=Sig
https://passwordreset.microsoftonline.com/favicon.ico?v=1342177280
https://acctcdn.msauth.net/wlivepackagefull_2169QIWB52Tqqm3jo5_AUA2.js?v=1
https://passwordreset.microsoftonline.com/js/Captcha.js?v=1342177280a
https://ajax.aspnetcdn.com/
https://aadcdn.msauthimages.net
https://www.australiabondcleaning.com.au2
https://code.jquery.com/jquery-3.1.1.min.js
https://passwordreset.microsoftonline.com/ScriptResource.axd?d=lpJqtggTHYeoqLfPDGjso-Zm_BE4vd_5wolP-
https://www.office.com0(https://www.australiabondcleaning.com.au2
https://passwordreset.microsoftonline.com/js/Common.js
https://microsoftonline.com/t4
https://australiabondcleaning.com.au/
https://www.australiabondcleaning.com.au/.well-known/?ss=2&email=bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=x
https://passwordreset.microsoftonline.com/js/Common.jsaD
https://account.live.com/resetpassword.aspx
https://passwordreset.microsoftonline.com/?ru=https%3a%2f%2flogin.microsoftonline.com%2fcommon%2freprocess%3fctx%3drQIIAYWSO2_TUABG46RNH0MpCAESUlUkBoTk5NrXj7oICT8Sp4kT14mT1BFSFL8SO341durGAzNjJ4ayMVYwwIT6D-jUGXViQkwICQkx0f4Clk8633rO-gpVgiVQAk8LWAnbfUxAghzROoMyIwqiBIMBdETgFApJSEEcYCYJ4OzO-ubLk1cfr943xLeXxrMv-StwhmxNkiSKd8vlNE1LoW07hlUyQr_sjQLTCcafEeQSQb4jyGl-2QpQkTvLxxSksZ0dQDMAhxACigYlzeXcll_1NFdJBoI5afIAaJlBSqrnaC6baG7L0_Cq28oUUlarU1msLFqqQTQzJdHUlqM5ADQzDUj9PWIgVK6_ga9lWjoQ2u5AGHhf87dkdp5M8JsJZ05m_cqv2eHMH0ZhnJwW3uQP60ToNoei01EFfOCyrhdg42goHmViTTJQUpsuaDrSiYNYbfPGHIuq9a44IElZSlpHRz0mVXuSPqaVTE77vm4e18eNiO3NzERXycjsuKZtMpYrqtzUttrjflDrs3N0UWmgaVusy9Wu74mEjqITz8d1ZsZJUtTgjuUDs88y-6jepuI-nMYeQxyLkcKiOxWhzx3UmirhdHncaxBGV-dNRbFsKuTZdlhNDZjZ8DiLWShjZKLQknY0z9p-A9SVoLOQx2qmcXIvVaeZ3ZMXcM5HI67RodEdHTYzjwQ1_ABvsJ8KxWuZfhhcFDbCyAocczuahbbjWd8KD-PEiiZWkDpeHAYvvDAww0AfLW70Xy4hP5burRY3Cw9y27knd0Fhd3V1fTN3Q3-WkHfL1y0xzBahP_rAnt_fL278_Z27WC4fjg1P163uqOZ0Nc4dE_tJJYisiOdHlBXZoEscliW2o_GHzef0LnZSRE6KxYvi7T1h2KqoHZVtCWxbwIfgZzH_eiV3vvafOv8B0&mkt=en-GB&hosted=0&device_platform=Windows+10
https://list-manage.agle1.cc/click?u=http://www.leo.lopez.sakshamsevango.org.in/br?bGVvLmxvcGV6QHRlY
https://passwordreset.microsoftonline.com/?ru=https%3a%2f%2flogin.microsoftonline.com%2fcommon%2freprocess%3fctx%3drQIIAYWSO2_TUABG46RNH0MpCAESUlUkBoTk5NrXj7oICT8Sp4kT14mT1BFSFL8SO341durGAzNjJ4ayMVYwwIT6D-jUGXViQkwICQkx0f4Clk8633rO-gpVgiVQAk8LWAnbfUxAghzROoMyIwqiBIMBdETgFApJSEEcYCYJ4OzO-ubLk1cfr943xLeXxrMv-StwhmxNkiSKd8vlNE1LoW07hlUyQr_sjQLTCcafEeQSQb4jyGl-2QpQkTvLxxSksZ0dQDMAhxACigYlzeXcll_1NFdJBoI5afIAaJlBSqrnaC6baG7L0_Cq28oUUlarU1msLFqqQTQzJdHUlqM5ADQzDUj9PWIgVK6_ga9lWjoQ2u5AGHhf87dkdp5M8JsJZ05m_cqv2eHMH0ZhnJwW3uQP60ToNoei01EFfOCyrhdg42goHmViTTJQUpsuaDrSiYNYbfPGHIuq9a44IElZSlpHRz0mVXuSPqaVTE77vm4e18eNiO3NzERXycjsuKZtMpYrqtzUttrjflDrs3N0UWmgaVusy9Wu74mEjqITz8d1ZsZJUtTgjuUDs88y-6jepuI-nMYeQxyLkcKiOxWhzx3UmirhdHncaxBGV-dNRbFsKuTZdlhNDZjZ8DiLWShjZKLQknY0z9p-A9SVoLOQx2qmcXIvVaeZ3ZMXcM5HI67RodEdHTYzjwQ1_ABvsJ8KxWuZfhhcFDbCyAocczuahbbjWd8KD-PEiiZWkDpeHAYvvDAww0AfLW70Xy4hP5burRY3Cw9y27knd0Fhd3V1fTN3Q3-WkHfL1y0xzBahP_rAnt_fL278_Z27WC4fjg1P163uqOZ0Nc4dE_tJJYisiOdHlBXZoEscliW2o_GHzef0LnZSRE6KxYvi7T1h2KqoHZVtCWxbwIfgZ7HweiV3vvafOv8B0&mkt=en-GB&hosted=0&device_platform=Windows+10
https://outlook.office365.com/owa/prefetch.aspx
https://www.australiabondcleaning.com.au/.well-known/js/maximum.js
https://www.office.com/prefetch/prefetch
https://www.office.com
https://live.com/Ri
http://www.leo.lopez.sakshamsevango.org.in/br/?bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=Sign
https://list-manage.agle1.cc
http://www.leo.lopez.sakshamsevango.org.in/br/?bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=j
https://www.australiabondcleaning.com.au/.well-known/?ss=2&email=bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=
https://exo.nel.measure.office.net/api/report?TenantId=&FrontEnd=Cafe&DestinationEndpoint=CDG
https://account.live.com/resetpassword.aspxRecover
https://acctcdn.msauth.net/oneds_Xr2D7Nex80v7A-8bxF8jgQ2.js?v=1
https://passwordreset.microsoftonline.com/ScriptResource.axd?d=4g-KgwMm_BqPQdbE5kksnnK4aEUO_ElVq3B3i
https://passwordreset.microsoftonline.com/WebResource.axd?d=HAV6PjMKiAmtAvxBgE9JDGqR1xYgZB9pt2QBI2F1
https://passwordreset.microsoftonline.com/js/Button.js?v=1342177280
https://aadcdn.msauth.net/ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
http://www.leo.lopez.sakshamsevango.org.in/br?bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=T
https://client.hip.live.com/GetHIP/GetWLSPHIP0/WLSPHIP0?fid=0256f3f1c27e4d6e932d97776c3cd4c1&id=2825
https://acctcdn.msauth.net/datarequestpackage_h-_7C7UzwdefXJT9njDBTQ2.js
https://dns.google
https://microsoftonline.com/Z
https://www.office.com/
https://account.live.com/password/reset
https://microsoftonline.com/v
https://aadcdn.msauth.net/ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.icoj
https://assets.onestore.ms/
https://client.hip.live.com/GetHIP/GetWLSPHIP0/WLSPHIP0?fid=9eee0ddc2b4e42129178b8f55c049679&id=2825
https://account.live.com/resetpassword.aspx
https://australiabondcleaning.com.au/I
https://passwordreset.microsoftonline.com/?ru=https%3a%2f%2flogin.microsoftonline.com%2fcommon%2frep
https://passwordreset.microsoftonline.com/js/Button.js?v=1342177280aD
https://acctcdn.msauth.net/resetpasswordpackage_X7k_NcCIooflIFuKCGNtCw2.js?v=1
https://live.com/
https://www.australiabondcleaning.com.au/.well-known/?ss=2&email=bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=2
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.7.2.min.js
http://www.leo.lopez.sakshamsevango.org.in/br?bGVvLmxvcGV6QHRlYS50ZXhhcy5nb3Y=2

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
PGP\011Secret Sub-key -
#
Click to see the 97 hidden entries
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
SQLite 3.x database, last written using SQLite version 3032001
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
SQLite 3.x database, last written using SQLite version 3032001
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
SQLite 3.x database, last written using SQLite version 3032001
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
SQLite 3.x database, last written using SQLite version 3032001
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
Maple help database
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fd9925bdad311f6d_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fca8dda49898d420_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\db243429-63d0-4e4c-b9e8-3dc94e482ab2.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\bf5ae8f0-82c0-483a-b23d-a6a465cece41.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f6ef8939da32ec75_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\33c44a09-f198-46e7-82f2-a99a935d3993.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\26c40031-9f82-44c3-8d35-6e3540319a60.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
SQLite 3.x database, last written using SQLite version 3032001
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\49194089-12e9-4067-9855-1e5bf754d56c.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\13216249a71837e7_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0decd6ee54701714_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\094e2d6bf2abec98_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\05711a550dadec40_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\00e9eabc0bc6d2eb_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
ASCII text
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\84277d50-d269-4904-8d24-25a123a949d7.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\72fad40a-67ce-4a33-93e3-6890c6366c4a.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6d7cc2ea-94ba-4460-8232-bace5164261c.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6c8ab708-f920-488c-984c-281359aa4590.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\49b072ba-d04a-4ff5-8eb9-7df303b61fc6.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\263002cf0fbb71e6_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3c7c14e5-c815-4e98-955d-484ff39c9d95.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\39045de3-6310-467a-a3b4-436f6cd96dbd.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2dda344b-3aae-4748-a746-802fe5bbc0b1.tmp
very short file (no magic)
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\67735183-2479-4dba-bd01-82d1b41d0e3c.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\6615a104-cf27-467b-a198-95c501166212.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\522efdb9-21b2-421e-a05e-721589dbb363.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\2e9496c3-9951-4076-909b-efa9dc9a6ba4.tmp
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\11a4e9ec-dcb9-4579-a2d6-3da61fb7a126.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\0501df76-b361-4a0d-a5f7-973b0bfe6765.tmp
ASCII text, with very long lines, with no line terminators
#
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8f3c2e2c260a7099_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f46ad1d2652b0b43_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f469a98fdcf53c25_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f31034cd60667b7f_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f2f9dc233f4dd8b6_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f12d30eb3faa08de_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ef31c506f3510843_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d2d66a99f78ccae1_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\cb15386b3caf164a_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a64bbd896a35b6e4_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\98431752fa0d1df4_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\949d2b57c43cbcd6_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\914981e1a3a6bf84_0
data
#
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
Microsoft Cabinet archive data, 60080 bytes, 1 file
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8ba90312ac6aad2e_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\83b9c3db1088f864_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7f239fb82bdc9a15_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7e4cea594f77c74d_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7cab34efca253074_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\64ea806cd0219a37_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\59f8bbf14d4853fd_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4278acc4333443e6_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\397eaf5d020aa337_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\308e7fc8113abdbe_0
data
#
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\280762aeaed2bc04_0
data
#