General Info

URL

https://troutthefish69.itch.io/monke-horror-game

Full analysis
https://app.any.run/tasks/641b05a9-4d13-4f24-adba-f055add60c31
Verdict
Malicious activity
Analysis date
15/01/2022, 00:27:54
OS:
Windows 7 Professional Service Pack 1 (build: 7601, 32 bit)
Indicators:

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distorted by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

Software environment set and analysis options

Launch configuration

Task duration
300 seconds
Additional time used
240 seconds
Fakenet option
off
Heavy Evaision option
off
MITM proxy
off
Route via Tor
off
Network geolocation
off
Privacy
Public submission
Autoconfirmation of UAC
on

Software preset

  • Internet Explorer 11.0.9600.19596 KB4534251
  • Adobe Acrobat Reader DC (20.013.20064)
  • Adobe Flash Player 32 ActiveX (32.0.0.453)
  • Adobe Flash Player 32 NPAPI (32.0.0.453)
  • Adobe Flash Player 32 PPAPI (32.0.0.453)
  • Adobe Refresh Manager (1.8.0)
  • CCleaner (5.74)
  • FileZilla Client 3.51.0 (3.51.0)
  • Google Chrome (86.0.4240.198)
  • Google Update Helper (1.3.36.31)
  • Java 8 Update 271 (8.0.2710.9)
  • Java Auto Updater (2.8.271.9)
  • Microsoft .NET Framework 4.5.2 (4.5.51209)
  • Microsoft Office Access MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Access MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Access MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Access Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Excel MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Excel MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Excel MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Groove MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Groove MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office IME (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office IME (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office InfoPath MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Language Pack 2010 - French/Français (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - German/Deutsch (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - Italian/Italiano (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - Japanese/日本語 (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - Korean/한국어 (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - Portuguese/Português (Brasil) (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - Russian/русский (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - Spanish/Español (14.0.4763.1000)
  • Microsoft Office Language Pack 2010 - Turkish/Türkçe (14.0.4763.1013)
  • Microsoft Office O MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office O MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office OneNote MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office OneNote MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office OneNote MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Outlook MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Outlook MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Outlook MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office PowerPoint MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office PowerPoint MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office PowerPoint MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Professional 2010 (14.0.6029.1000)
  • Microsoft Office Proof (Arabic) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Basque) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Catalan) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Dutch) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (English) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (French) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (Galician) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (German) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Proof (Spanish) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Proof (Ukrainian) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (English) 2010 (14.0.6029.1000)
  • Microsoft Office Proofing (French) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (German) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Proofing (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Publisher MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Publisher MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Publisher MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office SharePoint Designer MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office SharePoint Designer MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Shared MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Shared MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Shared MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office Shared Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Single Image 2010 (14.0.6029.1000)
  • Microsoft Office Word MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Word MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office Word MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Office X MUI (French) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (German) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (Italian) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (Japanese) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (Korean) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (Portuguese (Brazil)) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (Russian) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (Spanish) 2010 (14.0.4763.1000)
  • Microsoft Office X MUI (Turkish) 2010 (14.0.4763.1013)
  • Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (9.0.30729.6161)
  • Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (10.0.40219)
  • Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (12.0.30501.0)
  • Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.21.27702 (14.21.27702.2)
  • Microsoft Visual C++ 2019 X86 Additional Runtime - 14.21.27702 (14.21.27702)
  • Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.21.27702 (14.21.27702)
  • Mozilla Firefox 83.0 (x86 en-US) (83.0)
  • Mozilla Maintenance Service (83.0.0.7621)
  • Notepad++ (32-bit x86) (7.9.1)
  • Opera 12.15 (12.15.1748)
  • QGA (2.14.33)
  • Skype version 8.29 (8.29)
  • VLC media player (3.0.11)
  • WinRAR 5.91 (32-bit) (5.91.0)

Hotfixes

  • Client LanguagePack Package
  • Client Refresh LanguagePack Package
  • CodecPack Basic Package
  • Foundation Package
  • IE Hyphenation Parent Package English
  • IE Spelling Parent Package English
  • IE Troubleshooters Package
  • InternetExplorer Optional Package
  • InternetExplorer Package TopLevel
  • KB2479943
  • KB2491683
  • KB2506212
  • KB2506928
  • KB2532531
  • KB2533552
  • KB2533623
  • KB2534111
  • KB2545698
  • KB2547666
  • KB2552343
  • KB2560656
  • KB2564958
  • KB2574819
  • KB2579686
  • KB2585542
  • KB2604115
  • KB2620704
  • KB2621440
  • KB2631813
  • KB2639308
  • KB2640148
  • KB2653956
  • KB2654428
  • KB2656356
  • KB2660075
  • KB2667402
  • KB2676562
  • KB2685811
  • KB2685813
  • KB2685939
  • KB2690533
  • KB2698365
  • KB2705219
  • KB2719857
  • KB2726535
  • KB2727528
  • KB2729094
  • KB2729452
  • KB2731771
  • KB2732059
  • KB2736422
  • KB2742599
  • KB2750841
  • KB2758857
  • KB2761217
  • KB2770660
  • KB2773072
  • KB2786081
  • KB2789645
  • KB2799926
  • KB2800095
  • KB2807986
  • KB2808679
  • KB2813347
  • KB2813430
  • KB2820331
  • KB2834140
  • KB2836942
  • KB2836943
  • KB2840631
  • KB2843630
  • KB2847927
  • KB2852386
  • KB2853952
  • KB2857650
  • KB2861698
  • KB2862152
  • KB2862330
  • KB2862335
  • KB2864202
  • KB2868038
  • KB2871997
  • KB2872035
  • KB2884256
  • KB2891804
  • KB2893294
  • KB2893519
  • KB2894844
  • KB2900986
  • KB2908783
  • KB2911501
  • KB2912390
  • KB2918077
  • KB2919469
  • KB2923545
  • KB2931356
  • KB2937610
  • KB2943357
  • KB2952664
  • KB2968294
  • KB2970228
  • KB2972100
  • KB2972211
  • KB2973112
  • KB2973201
  • KB2977292
  • KB2978120
  • KB2978742
  • KB2984972
  • KB2984976
  • KB2984976 SP1
  • KB2985461
  • KB2991963
  • KB2992611
  • KB2999226
  • KB3004375
  • KB3006121
  • KB3006137
  • KB3010788
  • KB3011780
  • KB3013531
  • KB3019978
  • KB3020370
  • KB3020388
  • KB3021674
  • KB3021917
  • KB3022777
  • KB3023215
  • KB3030377
  • KB3031432
  • KB3035126
  • KB3037574
  • KB3042058
  • KB3045685
  • KB3046017
  • KB3046269
  • KB3054476
  • KB3055642
  • KB3059317
  • KB3060716
  • KB3061518
  • KB3067903
  • KB3068708
  • KB3071756
  • KB3072305
  • KB3074543
  • KB3075226
  • KB3078667
  • KB3080149
  • KB3086255
  • KB3092601
  • KB3093513
  • KB3097989
  • KB3101722
  • KB3102429
  • KB3102810
  • KB3107998
  • KB3108371
  • KB3108664
  • KB3109103
  • KB3109560
  • KB3110329
  • KB3115858
  • KB3118401
  • KB3122648
  • KB3123479
  • KB3126587
  • KB3127220
  • KB3133977
  • KB3137061
  • KB3138378
  • KB3138612
  • KB3138910
  • KB3139398
  • KB3139914
  • KB3140245
  • KB3147071
  • KB3150220
  • KB3150513
  • KB3155178
  • KB3156016
  • KB3159398
  • KB3161102
  • KB3161949
  • KB3170735
  • KB3172605
  • KB3179573
  • KB3184143
  • KB3185319
  • KB4019990
  • KB4040980
  • KB4474419
  • KB4490628
  • KB4524752
  • KB4532945
  • KB4536952
  • KB4567409
  • KB958488
  • KB976902
  • KB982018
  • LocalPack AU Package
  • LocalPack CA Package
  • LocalPack GB Package
  • LocalPack US Package
  • LocalPack ZA Package
  • Package 21 for KB2984976
  • Package 38 for KB2984976
  • Package 45 for KB2984976
  • Package 59 for KB2984976
  • Package 7 for KB2984976
  • Package 76 for KB2984976
  • PlatformUpdate Win7 SRV08R2 Package TopLevel
  • ProfessionalEdition
  • RDP BlueIP Package TopLevel
  • RDP WinIP Package TopLevel
  • RollupFix
  • UltimateEdition
  • WUClient SelfUpdate ActiveX
  • WUClient SelfUpdate Aux TopLevel
  • WUClient SelfUpdate Core TopLevel
  • WinMan WinIP Package TopLevel

Behavior activities

MALICIOUS SUSPICIOUS INFO
Loads dropped or rewritten executable
  • SearchProtocolHost.exe (PID: 3628)
  • Monke Horror Game.exe (PID: 3932)
Application was dropped or rewritten from another process
  • Monke Horror Game.exe (PID: 3932)
  • UnityCrashHandler32.exe (PID: 2300)
Drops executable file immediately after starts
  • chrome.exe (PID: 2380)
Checks supported languages
  • WinRAR.exe (PID: 532)
  • Monke Horror Game.exe (PID: 3932)
  • UnityCrashHandler32.exe (PID: 2300)
Reads the computer name
  • WinRAR.exe (PID: 532)
  • Monke Horror Game.exe (PID: 3932)
Executable content was dropped or overwritten
  • WinRAR.exe (PID: 532)
  • chrome.exe (PID: 2380)
Drops a file with a compile date too recent
  • WinRAR.exe (PID: 532)
Drops a file that was compiled in debug mode
  • WinRAR.exe (PID: 532)
  • chrome.exe (PID: 2380)
Reads the computer name
  • chrome.exe (PID: 2192)
  • chrome.exe (PID: 568)
  • chrome.exe (PID: 2356)
  • chrome.exe (PID: 3340)
  • chrome.exe (PID: 2220)
  • chrome.exe (PID: 3600)
  • chrome.exe (PID: 408)
  • chrome.exe (PID: 1260)
  • chrome.exe (PID: 2452)
  • chrome.exe (PID: 2308)
Checks supported languages
  • chrome.exe (PID: 568)
  • chrome.exe (PID: 3468)
  • chrome.exe (PID: 432)
  • chrome.exe (PID: 3340)
  • chrome.exe (PID: 2452)
  • chrome.exe (PID: 1292)
  • chrome.exe (PID: 3500)
  • chrome.exe (PID: 2188)
  • chrome.exe (PID: 968)
  • chrome.exe (PID: 2356)
  • chrome.exe (PID: 2192)
  • chrome.exe (PID: 2444)
  • chrome.exe (PID: 2452)
  • chrome.exe (PID: 2220)
  • chrome.exe (PID: 3600)
  • chrome.exe (PID: 3664)
  • chrome.exe (PID: 408)
  • chrome.exe (PID: 1260)
  • chrome.exe (PID: 2308)
  • chrome.exe (PID: 1192)
  • chrome.exe (PID: 2828)
  • chrome.exe (PID: 1948)
  • chrome.exe (PID: 2416)
  • chrome.exe (PID: 1336)
  • chrome.exe (PID: 2380)
  • chrome.exe (PID: 3164)
Reads settings of System Certificates
  • chrome.exe (PID: 3340)
Reads the hosts file
  • chrome.exe (PID: 3340)
  • chrome.exe (PID: 2192)
Application launched itself
  • chrome.exe (PID: 2192)
Reads the date of Windows installation
  • chrome.exe (PID: 2452)
Dropped object may contain Bitcoin addresses
  • WinRAR.exe (PID: 532)
Manual execution by user
  • Monke Horror Game.exe (PID: 3932)

Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report

Screenshots

Processes

Total processes
68
Monitored processes
30
Malicious processes
3
Suspicious processes
0

Behavior graph

+
start chrome.exe chrome.exe no specs chrome.exe no specs chrome.exe chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs winrar.exe chrome.exe no specs chrome.exe no specs searchprotocolhost.exe no specs monke horror game.exe unitycrashhandler32.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe no specs chrome.exe
Specs description
Program did not start
Integrity level elevation
Task сontains an error or was rebooted
Process has crashed
Task contains several apps running
Executable file was dropped
Debug information is available
Process was injected
Network attacks were detected
Application downloaded the executable file
Actions similar to stealing personal data
Behavior similar to exploiting the vulnerability
Inspected object has sucpicious PE structure
File is detected by antivirus software
CPU overrun
RAM overrun
Process starts the services
Process was added to the startup
Behavior similar to spam
Low-level access to the HDD
Probably Tor was used
System was rebooted
Connects to the network
Known threat

Process information

Click at the process to see the details.

PID
3628
CMD
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
Path
C:\Windows\system32\SearchProtocolHost.exe
Indicators
No indicators
Parent process
––
User
SYSTEM
Integrity Level
SYSTEM
Exit code
0
Version:
Company
Microsoft Corporation
Description
Microsoft Windows Search Protocol Host
Version
7.00.7601.24542 (win7sp1_ldr_escrow.191209-2211)
Modules
Image
c:\windows\system32\shlwapi.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\kernel32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24483_none_2b200f664577e14b\comctl32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\propsys.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\lpk.dll
c:\windows\system32\msctf.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\msidle.dll
c:\windows\system32\mssph.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\searchprotocolhost.exe
c:\windows\system32\advapi32.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\shell32.dll
c:\windows\system32\user32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\tquery.dll
c:\windows\system32\usp10.dll
c:\windows\system32\mssprxy.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\devobj.dll
c:\windows\system32\msshooks.dll
c:\windows\system32\mapi32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\profapi.dll
c:\windows\system32\authz.dll
c:\windows\system32\apphelp.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.componentmodel.composition.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.core.dll
c:\windows\system32\version.dll
c:\windows\system32\slc.dll
c:\windows\system32\srvcli.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\netstandard.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.configuration.dll
c:\windows\system32\cscapi.dll
c:\windows\system32\ntshrui.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\mono.security.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.servicemodel.internals.dll
c:\users\admin\desktop\horror game 1.1\monke horror game.exe
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.xml.xpath.xdocument.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\assembly-csharp.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.transactions.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.data.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\mscorlib.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.xml.linq.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.xml.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.diagnostics.stacktrace.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\plugins\x86\audiopluginoculusspatializer.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.xr.legacyinputhelpers.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.vehiclesmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\plugins\x86\ovrplugin.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.windmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.vfxmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.xrmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.vrmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\plugins\x86\openvr_api.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.videomodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.unetmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.unityanalyticsmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.unitywebrequesttexturemodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.terrainphysicsmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.physics2dmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.performancereportingmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.ui.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.tlsmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.textcoremodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.spriteshapemodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.unitywebrequestassetbundlemodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.uimodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.textrenderingmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.terrainmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.substancemodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.unitywebrequestwwwmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.unitywebrequestaudiomodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.streamingmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.unitytestprotocolmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.tilemapmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.unitywebrequestmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.uielementsmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.sharedinternalsmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.profilermodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.physicsmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.particlesystemmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.unityconnectmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.spritemaskmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.subsystemsmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.spatialtracking.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.umbramodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.screencapturemodule.dll
c:\windows\system32\msxml3r.dll
c:\users\admin\desktop\horror game 1.1\unitycrashhandler32.exe
c:\users\admin\desktop\horror game 1.1\unityplayer.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.crashreportingmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.coremodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.localizationmodule.dll
c:\users\admin\desktop\horror game 1.1\monobleedingedge\embedruntime\monoposixhelper.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.imageconversionmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unity.timeline.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.clusterinputmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.clothmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.animationmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unity.xr.interaction.toolkit.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.androidjnimodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.inputmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.imguimodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.directormodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.audiomodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.jsonserializemodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.inputlegacymodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.armodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.accessibilitymodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.hotreloadmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.clusterrenderermodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.dspgraphmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.assetbundlemodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.aimodule.dll
c:\users\admin\desktop\horror game 1.1\monobleedingedge\embedruntime\mono-2.0-bdwgc.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.gridmodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unityengine.gamecentermodule.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.io.compression.filesystem.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unity.inputsystem.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.net.http.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.io.compression.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.runtime.serialization.xml.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.numerics.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\unity.textmeshpro.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.globalization.extensions.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.drawing.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.runtime.serialization.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\managed\system.enterpriseservices.dll
c:\windows\system32\netutils.dll

PID
2192
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disk-cache-dir=null --disk-cache-size=1 --media-cache-size=1 --disable-gpu-shader-disk-cache --disable-background-networking "https://troutthefish69.itch.io/monke-horror-game"
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
Parent process
––
User
admin
Integrity Level
MEDIUM
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\user32.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\wldap32.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\cryptbase.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\version.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\usp10.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\lpk.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\sechost.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\shell32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\userenv.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\secur32.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\psapi.dll
c:\windows\system32\nsi.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\webio.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\profapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\wkscli.dll
c:\windows\system32\netutils.dll
c:\windows\system32\netapi32.dll
c:\windows\system32\credssp.dll
c:\windows\system32\dhcpcsvc6.dll
c:\windows\system32\wpc.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\devobj.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\gpapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24483_none_2b200f664577e14b\comctl32.dll
c:\windows\system32\propsys.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\winsta.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\firewallapi.dll
c:\windows\system32\srvcli.dll
c:\windows\system32\wbem\wbemprox.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\duser.dll
c:\windows\system32\explorerframe.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\dui70.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\kbdus.dll
c:\windows\system32\cscapi.dll
c:\windows\system32\cscdll.dll
c:\windows\system32\cscui.dll
c:\windows\system32\windowscodecs.dll
c:\windows\system32\ntshrui.dll
c:\windows\system32\ehstorshell.dll
c:\windows\system32\wbemcomn2.dll
c:\windows\system32\wlanapi.dll
c:\windows\system32\ntdsapi.dll
c:\windows\system32\slc.dll
c:\windows\system32\wbem\wbemsvc.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\imageres.dll
c:\windows\system32\wlanutil.dll
c:\windows\system32\wbem\fastprox.dll
c:\windows\system32\mscms.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\mssprxy.dll
c:\program files\winrar\winrar.exe
c:\windows\system32\msdmo.dll
c:\windows\system32\speech\common\sapi.dll
c:\windows\system32\msacm32.dll
c:\program files\common files\speechengines\microsoft\tts20\msttsloc.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\ksuser.dll
c:\windows\system32\mf.dll
c:\windows\system32\mfreadwrite.dll
c:\windows\system32\mfplat.dll
c:\windows\system32\atl.dll
c:\windows\system32\avrt.dll
c:\windows\system32\bthprops.cpl
c:\windows\system32\wship6.dll
c:\windows\system32\qmgrprxy.dll
c:\windows\system32\devrtl.dll
c:\windows\system32\mpr.dll
c:\windows\system32\sfc.dll
c:\windows\system32\sfc_os.dll

PID
3500
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=86.0.4240.198 --initial-client-data=0xc8,0xcc,0xd0,0x9c,0xd4,0x6e1cd988,0x6e1cd998,0x6e1cd9a4
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\advapi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\imm32.dll
c:\program files\google\chrome\application\chrome.exe
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\user32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\sechost.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\version.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msctf.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\shell32.dll
c:\windows\system32\winmm.dll

PID
568
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --gpu-preferences=MAAAAAAAAADgACAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1076 /prefetch:2
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\user32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\version.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\winmm.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\usp10.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\msctf.dll
c:\windows\system32\lpk.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\winspool.drv
c:\windows\system32\devobj.dll
c:\windows\system32\ole32.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\profapi.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\ksuser.dll
c:\windows\system32\atl.dll
c:\windows\system32\secur32.dll
c:\windows\system32\dwrite.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\userenv.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\psapi.dll
c:\windows\system32\mf.dll
c:\windows\system32\mfplat.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\bcrypt.dll
c:\program files\google\chrome\application\86.0.4240.198\libegl.dll
c:\windows\system32\slc.dll
c:\windows\system32\dxva2.dll
c:\windows\system32\evr.dll
c:\windows\system32\d3dcompiler_47.dll
c:\program files\google\chrome\application\86.0.4240.198\libglesv2.dll
c:\windows\system32\msmpeg2vdec.dll
c:\windows\system32\d3d9.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\d3d8thk.dll

PID
3340
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=network --mojo-platform-channel-handle=1240 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\msvcrt.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\shell32.dll
c:\windows\system32\usp10.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\msctf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\winmm.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\version.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\user32.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\sechost.dll
c:\windows\system32\lpk.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\profapi.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\nsi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\iphlpapi.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\psapi.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\dhcpcsvc6.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\secur32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\userenv.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\webio.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\wship6.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\gpapi.dll
c:\windows\system32\cryptnet.dll
c:\windows\system32\ncrypt.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\bcryptprimitives.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devrtl.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\devobj.dll
c:\windows\system32\cabinet.dll
c:\windows\system32\credssp.dll
c:\windows\system32\ntmarta.dll

PID
968
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1832 /prefetch:1
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\version.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\msctf.dll
c:\windows\system32\ntdll.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\winmm.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\lpk.dll
c:\windows\system32\imm32.dll
c:\windows\system32\user32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\shell32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\usp10.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\ole32.dll
c:\windows\system32\psapi.dll
c:\windows\system32\userenv.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\nsi.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\webio.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\secur32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\winspool.drv
c:\windows\system32\oleaut32.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\profapi.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll

PID
432
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1848 /prefetch:1
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\msctf.dll
c:\windows\system32\ntdll.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\version.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\usp10.dll
c:\windows\system32\winmm.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\imm32.dll
c:\windows\system32\shell32.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\user32.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\lpk.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\winnsi.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\webio.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\secur32.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\nsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\winspool.drv
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\profapi.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\psapi.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\userenv.dll
c:\windows\system32\oleacc.dll

PID
2452
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --extension-process --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2192 /prefetch:1
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msctf.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\lpk.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\version.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\user32.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\nsi.dll
c:\windows\system32\secur32.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\webio.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\winspool.drv
c:\windows\system32\psapi.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\iphlpapi.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\profapi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\userenv.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\oleaut32.dll

PID
2356
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --gpu-preferences=MAAAAAAAAADgACAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --use-gl=swiftshader-webgl --mojo-platform-channel-handle=1040 /prefetch:2
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\program files\google\chrome\application\86.0.4240.198\swiftshader\libglesv2.dll
c:\program files\google\chrome\application\86.0.4240.198\swiftshader\libegl.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\slc.dll
c:\windows\system32\ddraw.dll
c:\windows\system32\ole32.dll
c:\windows\system32\shell32.dll
c:\windows\system32\msmpeg2vdec.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\imm32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\version.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\avrt.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\usp10.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\psapi.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\devobj.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\msctf.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\powrprof.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\msvcrt.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\kernel32.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\lpk.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\webio.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\ksuser.dll
c:\windows\system32\dciman32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\evr.dll
c:\windows\system32\dxva2.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\profapi.dll
c:\windows\system32\mf.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\secur32.dll
c:\windows\system32\winspool.drv
c:\windows\system32\d3dcompiler_47.dll
c:\windows\system32\user32.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\atl.dll
c:\windows\system32\mfplat.dll

PID
2188
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3276 /prefetch:1
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\msctf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\shell32.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\lpk.dll
c:\windows\system32\rpcrt4.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\version.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\winmm.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\user32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\usp10.dll
c:\windows\system32\sechost.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\webio.dll
c:\windows\system32\userenv.dll
c:\windows\system32\ole32.dll
c:\windows\system32\iphlpapi.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\profapi.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\secur32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\psapi.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\cryptbase.dll

PID
3468
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3364 /prefetch:1
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\kernelbase.dll
c:\windows\system32\advapi32.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\gdi32.dll
c:\windows\system32\usp10.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\sechost.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\lpk.dll
c:\windows\system32\imm32.dll
c:\windows\system32\version.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\ws2_32.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\ole32.dll
c:\windows\system32\secur32.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\profapi.dll
c:\windows\system32\webio.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\psapi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\oleacc.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\sspicli.dll

PID
1292
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3636 /prefetch:1
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\lpk.dll
c:\windows\system32\version.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\usp10.dll
c:\windows\system32\shell32.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\winmm.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\imm32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\cryptbase.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\psapi.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\winspool.drv
c:\windows\system32\webio.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\secur32.dll

PID
2444
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3656 /prefetch:1
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\msvcrt.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\winmm.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\version.dll
c:\windows\system32\imm32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\msctf.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\user32.dll
c:\windows\system32\shlwapi.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\shell32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\psapi.dll
c:\windows\system32\nsi.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\userenv.dll
c:\windows\system32\webio.dll
c:\windows\system32\profapi.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\secur32.dll
c:\windows\system32\winspool.drv
c:\windows\system32\wintrust.dll

PID
408
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4368 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\program files\google\chrome\application\chrome.exe
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\secur32.dll
c:\windows\system32\shell32.dll
c:\windows\system32\user32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\nsi.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\lpk.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\usp10.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\bcryptprimitives.dll
c:\windows\system32\sechost.dll
c:\windows\system32\psapi.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\profapi.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\webio.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ncrypt.dll
c:\windows\system32\winspool.drv
c:\windows\system32\cryptsp.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\userenv.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\wintrust.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\kbdus.dll
c:\windows\system32\explorerframe.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\dui70.dll
c:\windows\system32\wbemcomn2.dll
c:\windows\system32\wbem\wbemprox.dll
c:\windows\system32\duser.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\cscapi.dll
c:\windows\system32\wbem\wbemsvc.dll
c:\windows\system32\ehstorshell.dll
c:\windows\system32\cscdll.dll
c:\windows\system32\windowscodecs.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\slc.dll
c:\windows\system32\wlanutil.dll
c:\windows\system32\ntshrui.dll
c:\windows\system32\wlanapi.dll
c:\windows\system32\wbem\fastprox.dll
c:\windows\system32\mscms.dll
c:\windows\system32\srvcli.dll
c:\windows\system32\ntdsapi.dll
c:\windows\system32\cscui.dll
c:\windows\system32\speech\common\sapi.dll
c:\windows\system32\msacm32.dll
c:\windows\system32\mssprxy.dll
c:\windows\system32\mfplat.dll
c:\windows\system32\msdmo.dll
c:\windows\system32\mfreadwrite.dll
c:\windows\system32\avrt.dll
c:\windows\system32\mf.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\atl.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\ksuser.dll
c:\windows\system32\imagehlp.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\wldap32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24483_none_2b200f664577e14b\comctl32.dll
c:\windows\system32\gpapi.dll
c:\windows\system32\wkscli.dll
c:\windows\system32\netutils.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\dhcpcsvc6.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\winsta.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\credssp.dll
c:\windows\system32\firewallapi.dll
c:\windows\system32\samcli.dll
c:\program files\winrar\rarext.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\wship6.dll
c:\program files\microsoft office\office14\olkfstub.dll
c:\windows\system32\propsys.dll
c:\windows\system32\bthprops.cpl
c:\windows\system32\samlib.dll
c:\program files\common files\microsoft shared\office14\msoshext.dll
c:\program files\common files\microsoft shared\ime14\imejp\imjptip.dll
c:\program files\microsoft office\office14\mlshext.dll
c:\program files\microsoft office\office14\onfilter.dll
c:\program files\microsoft office\office14\msohevi.dll
c:\program files\notepad++\nppshell_06.dll
c:\windows\system32\cryptext.dll
c:\program files\windows sidebar\sbdrop.dll
c:\program files\common files\microsoft shared\ime14\imekr\imkrtip.dll
c:\program files\microsoft office\office14\visshe.dll
c:\windows\system32\shdocvw.dll
c:\windows\system32\stobject.dll
c:\program files\filezilla ftp client\fzshellext.dll
c:\windows\system32\syncui.dll
c:\windows\system32\colorui.dll

PID
2220
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1760 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\gdi32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\winmm.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\shell32.dll
c:\windows\system32\user32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\version.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\sechost.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\usp10.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\lpk.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\psapi.dll
c:\windows\system32\winnsi.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\netapi32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\webio.dll
c:\windows\system32\winspool.drv
c:\windows\system32\userenv.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\profapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\bcryptprimitives.dll
c:\windows\system32\ncrypt.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\secur32.dll
c:\windows\system32\winhttp.dll

PID
2452
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1612 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\user32.dll
c:\windows\system32\version.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\usp10.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\lpk.dll
c:\windows\system32\shell32.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\msctf.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\winmm.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\winspool.drv
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\devobj.dll
c:\windows\system32\propsys.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\cscdll.dll
c:\windows\system32\cscapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24483_none_2b200f664577e14b\comctl32.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\cscui.dll
c:\windows\system32\psapi.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\profapi.dll
c:\windows\system32\linkinfo.dll
c:\windows\system32\shdocvw.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\twext.dll
c:\windows\system32\webio.dll
c:\windows\system32\userenv.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\secur32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\apphelp.dll
c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.24542_none_5c0717c7a00ddc6d\gdiplus.dll
c:\windows\system32\wer.dll
c:\windows\system32\ntshrui.dll
c:\program files\notepad++\nppshell_06.dll
c:\windows\system32\srvcli.dll
c:\program files\winrar\rarext.dll
c:\windows\system32\sfc.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\acppage.dll
c:\windows\system32\windowscodecs.dll
c:\windows\system32\slc.dll
c:\windows\system32\msi.dll
c:\windows\system32\syncui.dll
c:\windows\system32\netutils.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\synceng.dll
c:\windows\system32\zipfldr.dll
c:\windows\system32\sfc_os.dll
c:\windows\system32\devrtl.dll

PID
3600
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1016 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\ntdll.dll
c:\windows\system32\msctf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msvcrt.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\lpk.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\user32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\sechost.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\usp10.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\version.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\shell32.dll
c:\windows\system32\qmgrprxy.dll
c:\windows\system32\secur32.dll
c:\windows\system32\winspool.drv
c:\windows\system32\dbghelp.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\psapi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\bcrypt.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\ole32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\profapi.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\webio.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\bcryptprimitives.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ncrypt.dll
c:\windows\system32\userenv.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\winhttp.dll

PID
3664
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.FileUtilService --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2512 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\msvcrt.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\user32.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\version.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msctf.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\shell32.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\sechost.dll
c:\windows\system32\imm32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\userenv.dll
c:\windows\system32\iphlpapi.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\ole32.dll
c:\windows\system32\psapi.dll
c:\windows\system32\secur32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\webio.dll
c:\windows\system32\winspool.drv
c:\windows\system32\profapi.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\dwrite.dll

PID
1260
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2200 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\kernel32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\gdi32.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\rpcrt4.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\imm32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\version.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\shell32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\sechost.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\userenv.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\propsys.dll
c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\psapi.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\webio.dll
c:\windows\system32\wship6.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\nsi.dll
c:\windows\system32\secur32.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\dwrite.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24483_none_2b200f664577e14b\comctl32.dll
c:\windows\system32\wdscore.dll
c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
c:\windows\system32\normaliz.dll
c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\npmproxy.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\shdocvw.dll
c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\dhcpcsvc6.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\ole32.dll
c:\windows\system32\winspool.drv
c:\windows\system32\profapi.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\netprofm.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\winshfhc.dll
c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
c:\windows\system32\cryptsp.dll
c:\program files\windows defender\mpclient.dll
c:\windows\system32\apphelp.dll
c:\program files\windows defender\mpoav.dll

PID
532
CMD
"C:\Program Files\WinRAR\WinRAR.exe" "C:\Users\admin\Downloads\horror game 1.1.zip"
Path
C:\Program Files\WinRAR\WinRAR.exe
Indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Version:
Company
Alexander Roshal
Description
WinRAR archiver
Version
5.91.0
Modules
Image
c:\windows\system32\advapi32.dll
c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.24542_none_5c0717c7a00ddc6d\gdiplus.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\lpk.dll
c:\windows\system32\imm32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\kernelbase.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24483_none_2b200f664577e14b\comctl32.dll
c:\windows\system32\user32.dll
c:\windows\system32\shell32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\comdlg32.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\program files\winrar\winrar.exe
c:\windows\system32\ole32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\usp10.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\msctf.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\propsys.dll
c:\windows\system32\cscapi.dll
c:\windows\system32\ntshrui.dll
c:\windows\system32\slc.dll
c:\windows\system32\imageres.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\mpr.dll
c:\windows\system32\drprov.dll
c:\windows\system32\winsta.dll
c:\windows\system32\samcli.dll
c:\windows\system32\wmvcore.dll
c:\windows\system32\shdocvw.dll
c:\windows\system32\profapi.dll
c:\windows\system32\windowscodecs.dll
c:\windows\system32\davclnt.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\srvcli.dll
c:\windows\system32\secur32.dll
c:\windows\system32\ehstorshell.dll
c:\windows\system32\riched20.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\wpdshext.dll
c:\program files\common files\microsoft shared\ink\tiptsf.dll
c:\windows\system32\portabledeviceapi.dll
c:\windows\system32\wmasf.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\cscdll.dll
c:\windows\system32\ehstorapi.dll
c:\windows\system32\ntlanman.dll
c:\windows\system32\wkscli.dll
c:\windows\system32\netutils.dll
c:\windows\system32\samlib.dll
c:\windows\system32\davhlpr.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\audiodev.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\cscui.dll
c:\windows\system32\duser.dll
c:\windows\system32\dui70.dll
c:\windows\system32\explorerframe.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\xmllite.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\linkinfo.dll

PID
2308
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1476 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\winmm.dll
c:\windows\system32\sechost.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\rpcrt4.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\user32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\version.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\msctf.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\shell32.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\ole32.dll
c:\windows\system32\psapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\winspool.drv
c:\windows\system32\devrtl.dll
c:\windows\system32\mpr.dll
c:\windows\system32\sfc.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\sfc_os.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\nsi.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\secur32.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\webio.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\ncrypt.dll
c:\windows\system32\profapi.dll
c:\windows\system32\userenv.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\bcryptprimitives.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\oleacc.dll

PID
1192
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=988 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\lpk.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\msvcrt.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\imm32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\version.dll
c:\windows\system32\shell32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\usp10.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\user32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\webio.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\ole32.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\nsi.dll
c:\windows\system32\profapi.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\secur32.dll
c:\windows\system32\ws2_32.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\winspool.drv
c:\windows\system32\psapi.dll
c:\windows\system32\userenv.dll
c:\windows\system32\dwrite.dll

PID
3932
CMD
"C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game.exe"
Path
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game.exe
Indicators
Parent process
––
User
admin
Integrity Level
MEDIUM
Version:
Company
Description
Version
2019.3.15.5898046
Modules
Image
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\glu32.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\webio.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\user32.dll
c:\windows\system32\psapi.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\dciman32.dll
c:\windows\system32\hid.dll
c:\windows\system32\nsi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\devobj.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\bcryptprimitives.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\users\admin\desktop\horror game 1.1\monobleedingedge\embedruntime\mono-2.0-bdwgc.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\opengl32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\profapi.dll
c:\users\admin\desktop\horror game 1.1\unityplayer.dll
c:\windows\system32\shell32.dll
c:\users\admin\desktop\horror game 1.1\monke horror game.exe
c:\windows\system32\lpk.dll
c:\windows\system32\version.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\ddraw.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\msctf.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\wbem\wbemprox.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\plugins\x86\audiopluginoculusspatializer.dll
c:\windows\system32\mswsock.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24483_none_2b200f664577e14b\comctl32.dll
c:\windows\system32\wship6.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\d3d10warp.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\avifil32.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\plugins\x86\ovrplugin.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\propsys.dll
c:\windows\system32\msvfw32.dll
c:\windows\system32\wbemcomn2.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\msacm32.dll
c:\windows\system32\avicap32.dll
c:\windows\system32\ntdsapi.dll
c:\windows\system32\wbem\fastprox.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\wbem\wbemsvc.dll
c:\windows\system32\audioses.dll
c:\windows\system32\avrt.dll
c:\users\admin\desktop\horror game 1.1\monke horror game_data\plugins\x86\openvr_api.dll
c:\windows\system32\xinput9_1_0.dll

PID
2300
CMD
"C:\Users\admin\Desktop\horror game 1.1\UnityCrashHandler32.exe" --attach 3932 1839104
Path
C:\Users\admin\Desktop\horror game 1.1\UnityCrashHandler32.exe
Indicators
No indicators
Parent process
Monke Horror Game.exe
User
admin
Integrity Level
MEDIUM
Version:
Company
Description
Version
Modules
Image
c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
c:\windows\system32\usp10.dll
c:\windows\system32\userenv.dll
c:\windows\system32\kernelbase.dll
c:\users\admin\desktop\horror game 1.1\unitycrashhandler32.exe
c:\windows\system32\msctf.dll
c:\windows\system32\user32.dll
c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\normaliz.dll
c:\windows\system32\shell32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\wininet.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\psapi.dll
c:\windows\system32\version.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
c:\windows\system32\profapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
c:\windows\system32\lpk.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\gdi32.dll

PID
2828
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=4292 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\kernel32.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\winspool.drv
c:\windows\system32\shell32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\ole32.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\imm32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\version.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\sechost.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\userenv.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\psapi.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\webio.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msctf.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\winmm.dll
c:\windows\system32\nsi.dll
c:\windows\system32\lpk.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\profapi.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\cryptbase.dll

PID
1948
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1508 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\sspicli.dll
c:\windows\system32\nsi.dll
c:\windows\system32\kernelbase.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\msctf.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\lpk.dll
c:\windows\system32\winmm.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\profapi.dll
c:\windows\system32\sechost.dll
c:\windows\system32\shell32.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\winhttp.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\kernel32.dll
c:\windows\system32\secur32.dll
c:\windows\system32\user32.dll
c:\windows\system32\version.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\imm32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\ole32.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\userenv.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\usp10.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\winspool.drv
c:\windows\system32\webio.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\psapi.dll
c:\windows\system32\dhcpcsvc.dll

PID
1336
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=4376 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\advapi32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\shell32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\secur32.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\webio.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\msctf.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\kernel32.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\nsi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\winmm.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\psapi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\version.dll
c:\windows\system32\userenv.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\usp10.dll
c:\windows\system32\sechost.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\profapi.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\winspool.drv

PID
3164
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=504 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\imm32.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\user32.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\usp10.dll
c:\windows\system32\shell32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\version.dll
c:\windows\system32\lpk.dll
c:\windows\system32\winmm.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\psapi.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\profapi.dll
c:\windows\system32\nsi.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\sechost.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\webio.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\winspool.drv
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\userenv.dll
c:\windows\system32\secur32.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\cryptbase.dll

PID
2416
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2264 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
No indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\imm32.dll
c:\windows\system32\userenv.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\msctf.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\usp10.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\ws2_32.dll
c:\windows\system32\secur32.dll
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\user32.dll
c:\windows\system32\psapi.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\ole32.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\winspool.drv
c:\windows\system32\advapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\webio.dll
c:\windows\system32\version.dll
c:\windows\system32\lpk.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\profapi.dll
c:\windows\system32\winmm.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\sechost.dll
c:\windows\system32\oleacc.dll

PID
2380
CMD
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1048,8488715243025668231,18249990012085048492,131072 --enable-features=PasswordImport --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2300 /prefetch:8
Path
C:\Program Files\Google\Chrome\Application\chrome.exe
Indicators
Parent process
chrome.exe
User
admin
Integrity Level
LOW
Exit code
0
Version:
Company
Google LLC
Description
Google Chrome
Version
86.0.4240.198
Modules
Image
c:\windows\system32\winmm.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\version.dll
c:\windows\system32\user32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\ntdll.dll
c:\windows\system32\advapi32.dll
c:\program files\google\chrome\application\86.0.4240.198\chrome_elf.dll
c:\windows\system32\msctf.dll
c:\windows\system32\usp10.dll
c:\windows\system32\sechost.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\shell32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\kernel32.dll
c:\program files\google\chrome\application\chrome.exe
c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
c:\windows\system32\lpk.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\imm32.dll
c:\windows\system32\secur32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\profapi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\psapi.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\webio.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\winspool.drv
c:\program files\google\chrome\application\86.0.4240.198\chrome.dll
c:\windows\system32\nsi.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\uiautomationcore.dll
c:\windows\system32\userenv.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\dhcpcsvc.dll

Registry activity

Total events
16193
Read events
0
Write events
158
Delete events
0

Modification events

PID
Process
Operation
Key
Name
Value
3628
SearchProtocolHost.exe
write
HKEY_USERS\.DEFAULT\Software\Classes\Local Settings\MuiCache\16C\52C64B7E
LanguageList
en-US
3628
SearchProtocolHost.exe
write
HKEY_USERS\.DEFAULT\Software\Classes\Local Settings\MuiCache\16C\52C64B7E
@C:\Windows\System32\msxml3r.dll,-1
XML Document
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
01000000
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
failed_count
0
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
1
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
2
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
dr
1
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
metricsid_installdate
0
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
metricsid
2192
chrome.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}
usagestats
0
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
metricsid_enableddate
0
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome
UsageStatsInSample
0
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
user_experience_metrics.stability.exited_cleanly
0
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
lastrun
13286680077715734
2192
chrome.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\16C\52C64B7E
LanguageList
en-US
2192
chrome.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\16C\52C64B7E
@%CommonProgramFiles%\SpeechEngines\Microsoft\TTS20\MSTTSLoc.dll,-1033
Microsoft Anna - English (United States)
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Common\Rlz\Events\C
C1S
1
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Common\Rlz\Events\C
C2I
1
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Common\Rlz\PTimes
C
5CEC50F4A609D801
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Common\Rlz\Events\C
C1I
1
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Common\Rlz\Events\C
C7I
1
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Common\Rlz\Events\C
C7S
1
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Common\Rlz\RLZs
C1
1C1GCEA_enNO988
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Common\Rlz\StatefulEvents\C
C1I
1
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Common\Rlz\RLZs
C2
1C2GCEA_enNO988
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Common\Rlz\RLZs
C7
1C7GCEA_enNO988
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Common\Rlz\StatefulEvents\C
C2I
1
2192
chrome.exe
write
HKEY_CURRENT_USER\Software\Google\Common\Rlz\StatefulEvents\C
C7I
1
3340
chrome.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\16C\52C64B7E
LanguageList
en-US
408
chrome.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\16C\52C64B7E
LanguageList
en-US
2220
chrome.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\16C\52C64B7E
LanguageList
en-US
2452
chrome.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\16C\52C64B7E
LanguageList
en-US
3600
chrome.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\16C\52C64B7E
LanguageList
en-US
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
ProxyBypass
1
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
UNCAsIntranet
1
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
460000003B010000090000000000000000000000000000000400000000000000C0E333BBEAB1D3010000000000000000000000000100000002000000C0A80164000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{362E934C-743B-4588-8259-D2482DB771A8}
WpadDecisionTime
159572EBA609D801
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{362E934C-743B-4588-8259-D2482DB771A8}
WpadDecision
0
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
IntranetName
1
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\52-54-00-36-3e-ff
WpadDecisionTime
159572EBA609D801
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\52-54-00-36-3e-ff
WpadDecisionReason
1
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{362E934C-743B-4588-8259-D2482DB771A8}
WpadNetworkName
Network 4
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{362E934C-743B-4588-8259-D2482DB771A8}
WpadDecisionReason
1
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\52-54-00-36-3e-ff
WpadDecision
0
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
AutoDetect
0
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Discardable\PostSetup\Component Categories\{56FFCC30-D398-11D0-B2AE-00A0C908FA49}\Enum
Implementing
1C00000001000000E607010006000F0000001D000C007F03010000001E768127E028094199FEB9D127C57AFE
1260
chrome.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Cached
{2781761E-28E0-4109-99FE-B9D127C57AFE} {56FFCC30-D398-11D0-B2AE-00A0C908FA49} 0xFFFF
01000000000000004D4294EBA609D801
532
WinRAR.exe
write
HKEY_CURRENT_USER\Software\WinRAR\Interface\Themes
ShellExtIcon
532
WinRAR.exe
write
HKEY_CURRENT_USER\Software\WinRAR\Interface\Themes
ShellExtBMP
532
WinRAR.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\16C\52C64B7E
LanguageList
en-US
532
WinRAR.exe
write
HKEY_CURRENT_USER\Software\WinRAR\FileList\FileColumnWidths
name
120
532
WinRAR.exe
write
HKEY_CURRENT_USER\Software\WinRAR\ArcHistory
2
C:\Users\admin\Desktop\virtio_ivshmem_master_build.zip
532
WinRAR.exe
write
HKEY_CURRENT_USER\Software\WinRAR\ArcHistory
0
C:\Users\admin\Downloads\horror game 1.1.zip
532
WinRAR.exe
write
HKEY_CURRENT_USER\Software\WinRAR\FileList\FileColumnWidths
type
120
532
WinRAR.exe
write
HKEY_CURRENT_USER\Software\WinRAR\FileList\FileColumnWidths
mtime
100
532
WinRAR.exe
write
HKEY_CURRENT_USER\Software\WinRAR\FileList\FileColumnWidths
size
80
532
WinRAR.exe
write
HKEY_CURRENT_USER\Software\WinRAR\ArcHistory
1
C:\Users\admin\Desktop\Win7-KB3191566-x86.zip
532
WinRAR.exe
write
HKEY_CURRENT_USER\Software\WinRAR\DialogEditHistory\ExtrPath
0
C:\Users\admin\Desktop
2308
chrome.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\16C\52C64B7E
LanguageList
en-US
3932
Monke Horror Game.exe
write
HKEY_CURRENT_USER\Software\fishballs\Monke Horror Game
Screenmanager Resolution Use Native Default_h1405981789
1
3932
Monke Horror Game.exe
write
HKEY_CURRENT_USER\Software\fishballs\Monke Horror Game
Screenmanager Resolution Height Default_h1380706816
768
3932
Monke Horror Game.exe
write
HKEY_CURRENT_USER\Software\fishballs\Monke Horror Game
Screenmanager Fullscreen mode_h3630240806
1
3932
Monke Horror Game.exe
write
HKEY_CURRENT_USER\Software\fishballs\Monke Horror Game
Screenmanager Stereo 3D_h1665754519
1
3932
Monke Horror Game.exe
write
HKEY_CURRENT_USER\Software\fishballs\Monke Horror Game
UnitySelectMonitor_h17969598
0
3932
Monke Horror Game.exe
write
HKEY_CURRENT_USER\Software\fishballs\Monke Horror Game
Screenmanager Resolution Height_h2627697771
720
3932
Monke Horror Game.exe
write
HKEY_CURRENT_USER\Software\fishballs\Monke Horror Game
Screenmanager Resolution Use Native_h1405027254
1
3932
Monke Horror Game.exe
write
HKEY_CURRENT_USER\Software\fishballs\Monke Horror Game
Screenmanager Resolution Width Default_h680557497
1024
3932
Monke Horror Game.exe
write
HKEY_CURRENT_USER\Software\fishballs\Monke Horror Game
Screenmanager Resolution Width_h182942802
1280
3932
Monke Horror Game.exe
write
HKEY_CURRENT_USER\Software\fishballs\Monke Horror Game
Screenmanager Fullscreen mode Default_h401710285
1
3932
Monke Horror Game.exe
write
HKEY_CURRENT_USER\Software\fishballs\Monke Horror Game
unity.player_sessionid_h1351336811
3834303537393534393836333239363338353600
3932
Monke Horror Game.exe
write
HKEY_CURRENT_USER\Software\fishballs\Monke Horror Game
unity.player_session_count_h922449978
3100

Files activity

Executable files
100
Suspicious files
59
Text files
147
Unknown types
9

Dropped files

PID
Process
Filename
Type
2380
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_951028406\_platform_specific\win_x86\widevinecdm.dll
executable
MD5: 9d28785a5c8a11aa3d46b4d4dbf6a11d
SHA256: 0721ae68c35686460b6addd373536068d2bb1271a760d67f876d129656c9fa44
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\UnityCrashHandler32.exe
executable
MD5: 9d9c7a71984c9e75346d83f234881acf
SHA256: 3b524fe9c6866ef594e3672ec414ead7e5f7c1b9625820048e42e8003d105cc5
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\UnityPlayer.dll
executable
MD5: 3c33edbb3ef9f99a6bc373e6d4f07160
SHA256: 22e249ab6c9d7cde2c9414e4a6f029c36af91e7bd9d2c7311b26d59e44c1068b
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\EmbedRuntime\MonoPosixHelper.dll
executable
MD5: e314c0ae3e4eaba130ee758120dfc0b6
SHA256: 4942573e11ed1b10645421328026f50ec8437e6f156aa3bc65c072d320795e9e
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\EmbedRuntime\mono-2.0-bdwgc.dll
executable
MD5: 10ecb9fd47ad526382ba8d26dc5d33eb
SHA256: 3bef967821e504387a9b1ef5aafb3d9a1ca21d2faf511bd52fe71f27a638f22e
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.XRModule.dll
executable
MD5: 765f9f437b01b0ee0cb676d712602f59
SHA256: 5da231d23a666f3a6b5b4a8017ae6fb1b7ef1eea11e0e313317f3538df1fb08c
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.XR.LegacyInputHelpers.dll
executable
MD5: baf63a6a9e4ee57473cca4911d14c989
SHA256: d45de6a30021662e73de1fac45c73426ec761718ff7879a677846122b6f5afdb
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Plugins\x86\OVRPlugin.dll
executable
MD5: 10f434abbced9f0c20abf31e3a55ce3f
SHA256: a5d95e8d8a6b1a5d7cc326b4146e2d0efe1c2c41978a9e42ac898916f0676cd6
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Plugins\x86\AudioPluginOculusSpatializer.dll
executable
MD5: baf1a292951b8168e922bff1d84293d4
SHA256: d2b370463a702b89a69d585f5f27fa2c3ce0e2aff6f7b520a70cecda26c2c5b8
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Plugins\x86\openvr_api.dll
executable
MD5: 358d46ab0cbfdb6fef633261e9844106
SHA256: ccbebc28819787794d8b5d5a1752f91e065a1d0b4c97f5b34c96ebddf983da8c
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.WindModule.dll
executable
MD5: 0fecee9846e03cf4f189370c36b64242
SHA256: 087e1cf065a16fc954ddea629b229c9f4395a337be4bfc5c871a3562c7fbf7a2
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.UnityWebRequestModule.dll
executable
MD5: 423c1284005aa91a464ab2a888564613
SHA256: 98d81274276cb46b5d9261c72d9b72c55019cd013a8361cc4058382efccff3bb
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.VFXModule.dll
executable
MD5: 9f491d15ee3289e40580f2cd3c9060f0
SHA256: 1c092c1a72eee44400ceff4ca55568e9a72ce6b9717e01f4077d0718d12528ad
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.UnityWebRequestTextureModule.dll
executable
MD5: 468689d51ea0e9cd541eb4a858ce69ce
SHA256: 43905669ae61f6bd0c8c32cddf1128c8be5e33aeed6f37a9d245959610adbd3d
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.VRModule.dll
executable
MD5: fa1aae37497797a5cb3a5b05a785307f
SHA256: 30440f6d4c294f0310a629bc8623249d4b68788874e502cd4e4e2b48efc8022b
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.UnityWebRequestAudioModule.dll
executable
MD5: a184f7a6e196cc465e2ed4d003b898ef
SHA256: 1151c53c77f33e9ae11c04a298019c2d365c8e8a676375e870c659330c99e60e
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.UIElementsModule.dll
executable
MD5: 3b35e5c5bb48871a497aa4061892be9d
SHA256: e4cbff1b8828cc3a1acf02966b837de794f36faf6e375dc67de302b1c3270685
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.VideoModule.dll
executable
MD5: 4087afcec89cb475f6044560fe831053
SHA256: 43e40fd8768a65eb71819608f4de11b10c29d5ad40bc82e778e827defe43ff63
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.VehiclesModule.dll
executable
MD5: 36300b2818abe0d34d9496ad3f2290a4
SHA256: 4ab0bd69ab18cc814f6a5349992de795d465c0e71a00f6147b2262721eb5ac96
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.TLSModule.dll
executable
MD5: 4da7ccd97305a2a1ef65f0de22385052
SHA256: 7e071241312b12ecf19443cb22e9f06a2cab72ea2750c8df55d5c76211f094f9
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.UI.dll
executable
MD5: c50e4da407adb42e3bfaaa274c29f720
SHA256: 3558a23a6099c3b52575de18be5b70f6c6ad6f19197ec80f65d9816f896a0c13
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.UmbraModule.dll
executable
MD5: 90364e829101675fc5d8839d95334b26
SHA256: 5973e833af0045a87b96da9948efb7edd2952ee651c9971b755010308a2bb790
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.TerrainPhysicsModule.dll
executable
MD5: 740ec6b7aeaac5e29a2915e4fdd2bbae
SHA256: 22cb51a2c73f3d2775be4d2d3538c6a8e8f5f4f67a9505714c1ed6575f9754e7
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.UnityWebRequestAssetBundleModule.dll
executable
MD5: faa061c299eaf47fef33490b1b7b4e20
SHA256: bf0c0ef6d5898fa73ca910a039c3566db898ff0ba3022b3d5dcec6ab25ac3b89
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.UIModule.dll
executable
MD5: fb8bd388f542f440c817394582075a03
SHA256: b30a5b5ea43a0662a86de1e345164a91c1c8c051bb4731a0192ec5cb1bb433dd
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.TilemapModule.dll
executable
MD5: 33bdc8f542e25a266b5681278a78a373
SHA256: 01daf7cc5225babcf6bdd95d9385a4f4ddfbde04fe073e54c19fab5e0c012717
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.TextRenderingModule.dll
executable
MD5: 7a7cd9fd46b1d9f7bc0477a5e8907bef
SHA256: 9ba43d2c1c87199347e4c211dafe9b00d0e5e8900f9ee63b28021ce212f7a247
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.UnityAnalyticsModule.dll
executable
MD5: 227f6f453eb25961c9aa6159315a9b3a
SHA256: 79bf21fa6fed59b9a159c3bfbf1035062fcd738c6e6f6121d679573931c87e49
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.SpriteShapeModule.dll
executable
MD5: 36cb425f9215de03e8f34cd38298b422
SHA256: 882bb2a7d831e2b3579ffa3b26ff3a43df9e45cd426cca79101af36d0f2a85eb
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.SubsystemsModule.dll
executable
MD5: 517e4f0137a00f3268bd98ab653fb560
SHA256: d458dda7669881c082a5c6394ac57d4f654c1047f5d05e99de5708f0d1d18ce4
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.UnityConnectModule.dll
executable
MD5: 34065747ea463ce236e8de1c757a392b
SHA256: 35f35c3d2280aa2b3e53c64bfd013550cdca89fdefbdb1e9f704e89c87de4a28
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.UnityWebRequestWWWModule.dll
executable
MD5: 29685a7a1330dc2646377be220318cf6
SHA256: f5080f03a20968bd498f70860aeecc1170f708fe0fd9a90c0c7d6b268e78af26
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.UnityTestProtocolModule.dll
executable
MD5: 7474dd6d8a3f0dd943388dbe89c8d644
SHA256: 41be182641abbbc6c4bf41821e0b82e06ace8bd38eab0ae62eea337984c286d8
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.UNETModule.dll
executable
MD5: e104d6851b1a2b2e571f2317f82800a9
SHA256: df49912e4e1138e26c0b7d6dabed438b223e585fa57568d31ee1116e0a061d99
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.SubstanceModule.dll
executable
MD5: 9e5d657a3e38eae7ab9acc2e3dcf4803
SHA256: ce41c4855fe1fe95438dd44dde724be741f2d31c1f7ff223e9e3f302a5f07a4b
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.TextCoreModule.dll
executable
MD5: f58632bf85898d3cca09b1d97eac3041
SHA256: 07d5fb3bb3b8e6275e5d6ad0c892c161590f0d835975b9e78f81fd45304f975e
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.StreamingModule.dll
executable
MD5: 261b7d07e6ab8ff1e127f7dd61846857
SHA256: 9edf3e6a71a318280766d6b4932b043fd7561797cba7377510c7d8ece0a16d8a
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.TerrainModule.dll
executable
MD5: 03110a128651cda3c3d28775080c5803
SHA256: 15f35a3241d54510dde8f1003577bce00c006c79d876185be7d3ade3dfba30b7
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.PerformanceReportingModule.dll
executable
MD5: e6e8957c1bb624adb421b674b58aee7d
SHA256: c878501fe0ca0a4e062346049bcace4a51d06e05c9f3d8d640c7c38fe654d685
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.PhysicsModule.dll
executable
MD5: 60daff82ea477601f934a4f0a4d8b0ac
SHA256: 5fea704f21cd0bc8228142c95df907fa3800ff757f2b2f5ae8f99d0fa5f7d37b
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.ScreenCaptureModule.dll
executable
MD5: e83881c73f98233f9db0b2ac435202e6
SHA256: 213f017cd10d71b487630298613f1afd27fc0bc87a89111a4fd1ef231f40087c
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.ProfilerModule.dll
executable
MD5: 065d5cbf8a961580fb77153fd7e75275
SHA256: a898ddd5f20ae4022e9ababae621030c50f08d5930e37a7ee20797b26622b48a
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.IMGUIModule.dll
executable
MD5: 4d0b6af12ade82611c0f1f509419b063
SHA256: 34bbec3261bbfb9f5154111cfe87fd198e5b9d58b53cad512cfed76e179a27b6
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.CoreModule.dll
executable
MD5: 6f94a5e4d420d9ae8703a022623ea34a
SHA256: 5f45fabc6ed9e1ef6f57ffe83cd2aa4564e54e4f53fcb791d68d50cecd74e859
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.SpriteMaskModule.dll
executable
MD5: 48adf8ff226c47423637e9fa410c7394
SHA256: f9d2638ca3c66afbe6b35848d151f067e73c9fcd9379984672fdb680d55756c3
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.InputModule.dll
executable
MD5: 08d2ff9aafa88b77e026d5ee45d97769
SHA256: 1d940088e00c3283d4f62d221e5140479e843b7e1bd32e8043fd250bf4da43b0
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.InputLegacyModule.dll
executable
MD5: b834e0c961601a22a0fa38498e7d3fe8
SHA256: 0a80cc7a683e3736e41a058911660d2f814c356b1d8e3c9af0ef4dec0d74fbed
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.Physics2DModule.dll
executable
MD5: a04515601ea5092e6e1b99e76ca15b62
SHA256: 74bff54536521c3a6ff8f01aa51ea0cfa01aaae5cc792af0998d19d2c5be251c
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.LocalizationModule.dll
executable
MD5: 55f662329cf10bc79bbf44988d284334
SHA256: d1504a6a03dd7046145f0707fe9b5003a8f6bfdfb364ad5c33a9c0d4a3cef8ec
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.DSPGraphModule.dll
executable
MD5: c05062c3f0a88f940d9f451eb18e43f1
SHA256: bbff0246f37578e23977b68ad366b79b6a21ea499f6afef894fa3099d099f327
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.SharedInternalsModule.dll
executable
MD5: 49f816bfec752be43b062649257864cd
SHA256: 1b94ee948df8eb7c8a875c48329e22321e5cdf39e65c0971ea58c6951e3fd529
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.ParticleSystemModule.dll
executable
MD5: 12af09d8f5d48f021fcb0dc3f0cd8afa
SHA256: 91154bd9af645524db2933c346f5325936e80f0c8ee07196b136d4617bbcd9ff
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.JSONSerializeModule.dll
executable
MD5: 44eb5405a2d59fb5ea6f32b5afc692b3
SHA256: ee0869adbcc1102d207e23940b32c06fee63a0c5edaf13677d6d12b954d0d5d9
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.ImageConversionModule.dll
executable
MD5: d2541f0a8304a2e984d53689748287d4
SHA256: ab37fed3e9ed24a882bf63af22a43948702386683fe4b455585703d3ef2a3eba
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.SpatialTracking.dll
executable
MD5: 21008ebac528694b2c009e9189a148de
SHA256: e00cf6b6cfd28f27afcb579ac95c33a6226c71433a4d04044705992d2ae92a95
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.GameCenterModule.dll
executable
MD5: 650fff2dc5a100cf5f617ecc8e82ae76
SHA256: ade5e0b683f2a3d95b962fe43bcc2fd55e6877c754257a8031890d4487b11426
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.GridModule.dll
executable
MD5: 514c9957538309da7db7d8351f5828c1
SHA256: e32a94a823aff2b66d47e88d29cb93004cb36bf38de88787e2c77101a23d7d96
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.ClothModule.dll
executable
MD5: 22fca12ee22b2315fd0d59d1cebd79a4
SHA256: 4049e083e0e20b893b274e40daec44ab814ad8b2087612a5249a88f67ef14313
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.CrashReportingModule.dll
executable
MD5: af12ac0c0ccf8404ede513ee4758fb3a
SHA256: 73326a9cd928d46ebf13d398d5f37c22cad0113f7c3b4512d7869d41357326e7
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.HotReloadModule.dll
executable
MD5: fda2bb8f6e298a36d4103b0a4e3f9dc1
SHA256: 26fd7f85aeac89a3456d009d79de2e015981f0aa206108635c86b9b953a14633
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.DirectorModule.dll
executable
MD5: 21e4b4ab8c9dba50d7bf0f3737acad46
SHA256: c0304d9b0be4b3f63f0512630474aef2adef5dc7fe8631eb677a3eb2cedaf751
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.dll
executable
MD5: e41585fc097b5f571fa9cbd8eeec884c
SHA256: 899f0d9b6ec3cb058a83bf6d58ee6ed9417532d7c7f5948975e327d7578b7c21
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.ClusterRendererModule.dll
executable
MD5: f3b4bca291dfe8008b18c0dc2b4bb4bd
SHA256: adfc106b602da4edc292c5664870e46d069a711f8dbbb237754113d810dd631a
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.ClusterInputModule.dll
executable
MD5: b27c985b4da6546ece342107403ec96b
SHA256: 4e9256873d447bde43430aa23632dd5fa5a7198c5fff2c6fda0e3eb29fa76b4a
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\Unity.XR.Interaction.Toolkit.dll
executable
MD5: f28b6d632ea5f88ea861bdd24e437e51
SHA256: 9add7a07bd32da8caa5e3074d8a0cc27f7470724cdd80ce001a98501b88f883a
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.AssetBundleModule.dll
executable
MD5: 7e4fe26f89b56095a8a87b8dff41033d
SHA256: 1e83996595446222814784b0e46ab1de9694b7ee21900757c26a7ad449b12291
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.AIModule.dll
executable
MD5: f80116a28c637ebd9c467113c480b2f3
SHA256: ac9f6aee2dfecf2a4a0327388b9847efed3bd2f4b944b6394b020ffc378aaf65
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.ARModule.dll
executable
MD5: a223bac61ae90a8b7c47cf2b952d30f5
SHA256: 644ff73530921f1ae1cb537146cc5f1a2a3ee21b0401917d81ac1226f478eb3b
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\Unity.InputSystem.dll
executable
MD5: 7d5f4e9ae0322254682de6b51b536d46
SHA256: d63d0077c331c8373d967ed95f37a8ed69199f4c369d388aef9405736c0c2fbd
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.AndroidJNIModule.dll
executable
MD5: 6fd1315bb62505838f75f47aa8e19667
SHA256: 69daaa51223e964d6bb84e0f5cc13f0fb58902356c1f27dc15e4c0ba04ea9af7
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.AudioModule.dll
executable
MD5: 639a09899db171f0d5725a85f8c7fc35
SHA256: 6195edce26bad570858e5f5380457bc588abffa6e3ecb63c9b1cc815547303e0
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.AccessibilityModule.dll
executable
MD5: 34f77f48b9e43ea1e1c74448d56645af
SHA256: af31bf9886cb23fc515dde4f600932b7137d636d332057fbbca44a4b80f0aeb9
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\Unity.Timeline.dll
executable
MD5: d8b07c682ab9ce9697d7458a54a1031c
SHA256: 51a722766f016046cd2c5ee22aeadd404bbf5fffd4b5fa0097941e6cdc55759f
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\Unity.TextMeshPro.dll
executable
MD5: 308bae1e4d6f90dba78fe8e1c43a3beb
SHA256: 0dd889f48a8d431de315ebe0e6415b1c2e7b70997b31a30cc768c3b6efbadeb0
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.Xml.dll
executable
MD5: 910341b055627c1c6f83444a96ee4daa
SHA256: 8a4e9f8be2bebffabf3398c0ca8f5756ebb00d6f90f65bb68b486f2953511a4d
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.Xml.Linq.dll
executable
MD5: 13489016860b776576969ae7c4a08a91
SHA256: 7152197c2d69b60a24b9af3323b45b76bde9f9f63a447c69090656289ac32c1e
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\UnityEngine.AnimationModule.dll
executable
MD5: 26744ab6c0585904513f11150ab9f8fd
SHA256: 792f1f0060da7666a16105290381cb49ad8966007f747ce5e7a31ff4f6b0fad0
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.Xml.XPath.XDocument.dll
executable
MD5: a9550b31f294bd35d030f4760b591bf0
SHA256: c53307ed65e10be7f252ee8c93a6261af7a7c44b5006631f57950624c3f06f5e
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.Runtime.Serialization.dll
executable
MD5: e38f503216d5820dfdf2d469e194f999
SHA256: 988564a6a6cdd7efc8d541434ccff96bbc2f7f9349290b0efaf5735046cd582f
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.ServiceModel.Internals.dll
executable
MD5: db77383f6a5476198c0e065e12d183a7
SHA256: ab27dd2afdfab73dd36c5b90a542c78a69822d8add2bba3cc95db8990b23f4c4
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.IO.Compression.FileSystem.dll
executable
MD5: f9a07c1ef58c863f89e74f11a3b21447
SHA256: 221abe4eea00347c51ac7409b47ba7b08ccfdaae8e36e706a8ee0d4de6ceb87a
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.Transactions.dll
executable
MD5: 372716edcb838185812ae2b1f729c6df
SHA256: ff78a8b68809535c1d93cc6e511c79e0d2f85d97b358da2a8a76eca8c8f2e4bc
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.Runtime.Serialization.Xml.dll
executable
MD5: a9f4cef4a4cbc618fb55e324be0ae949
SHA256: 2394dff209954e143795bedba8ec9c737e17ecd96e3a3a02de6d7c2631f04152
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.Numerics.dll
executable
MD5: 885b5345047df2ed6298401f3acf3159
SHA256: 01d3b2dd6375da4378b8c9951a6bbb4997dd6a0651753e5736aa1b0587015f35
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.Net.Http.dll
executable
MD5: bd7504b63578a8030ab7c19f1bb27c61
SHA256: 50d4aa1f4403c12563d433ac51cc9908a5aa035a7fbb741098aa457c182dcf02
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.Globalization.Extensions.dll
executable
MD5: f09c5ddef200f21725e5fde17d3b9016
SHA256: 4e8c5ad3450450ba6bc6a474300f2445094870f2bcc9ca16472fb2f3adb88ebd
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.dll
executable
MD5: e77922c3b48ef7408c1352d2e34de3bb
SHA256: f65b76e0ea69f8e416195b31af1d1cdf55d1daed6786c4b075997744171419dc
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.IO.Compression.dll
executable
MD5: bd03377bb478fe581834bb237b4c6725
SHA256: 6045d16e65834f67b2604359a137a4b74434293813ccab0d86b34c5f7b1785fa
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.Drawing.dll
executable
MD5: 1afff3a67c365aed5c2603e9c69d8c51
SHA256: 41d7f9907c43d1c9dda3cd4a9eda76c836dcc7daf7f657ba993f6b6d9c146ae1
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.EnterpriseServices.dll
executable
MD5: dfc539cf99bd0437f3aad9388089a9f0
SHA256: d7dbde8512788eb603866ea507e32b98455602e80cfbf322e008f485a9410bda
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\Mono.Security.dll
executable
MD5: f7acab1e09deaa11c9bdd0d723363016
SHA256: 8c47b23389f9eede068683ed8b64b5a466f986499112983290778b30accfd1ba
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\mscorlib.dll
executable
MD5: c029b89b35e166565c842c019bb4f541
SHA256: 57b1777906dfb298a210d2af16dcfa491764757641d761af8af8a857b923b13f
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\netstandard.dll
executable
MD5: 92e14598f1f886b75f0a02bf934350b3
SHA256: 994be039eb23da7b0c14fc2fa2c09b3ca2a73bb330e840275ab8275063716f0e
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.Data.dll
executable
MD5: d314b95fb863cdd6119abc7e28e7c1fa
SHA256: 23dae8379e8c412f69caa0668be411c87672a775ce473e18faf01f56c114e079
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.Diagnostics.StackTrace.dll
executable
MD5: 1fbb019db62578427a660fdca39139fe
SHA256: 4701e843059674accc1c87038ec41f3cecbadce2a65755f527c8b65b0cebc8ce
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.Core.dll
executable
MD5: caf99bab07df42b6e4544ae64dc4d908
SHA256: 2d702d211d34e9b94ca18a5ef10a6c2b0fa40fb2cb09751348c7d5bd4dffed02
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.ComponentModel.Composition.dll
executable
MD5: 7cfe714806f245e2571e58be288ea10e
SHA256: 596500c15e90d4b63573a19da292009c95b02e05005f48077d7fc0850dd220fd
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\System.Configuration.dll
executable
MD5: 322b6c03c68792cea563b6d416f3171a
SHA256: 7fd76f6d5fd37cdff7095b521ce0d182d0b6ee25725fdac7615ce7dfd060d57d
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Managed\Assembly-CSharp.dll
executable
MD5: 24d493f58446fab10a3a70199b3e1404
SHA256: 1cb0368a511c42ccbeacd5bbb65fcab99cbb63b90ff77332c3d26711e1b9cae7
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game.exe
executable
MD5: e8901cb23dadc5890f0ab7618a2bd477
SHA256: 7e5bc1121904afdf1bee4656fd64574a2bb6349b99f142ff755cd087a4e6e045
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State~RF12675d.TMP
text
MD5: 6116b5537b0d8bc8656fa62ac3346f84
SHA256: e3806dd5697aa0cfe364b30ce1060599d8335db4b952e230942f293bc92481b6
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\83a39b3e-b959-4444-ae44-e76540d20d1f.tmp
text
MD5: 13d9f7fc75c1b921306825245b0e0957
SHA256: ed6068e5b48c68da316f0ec8509b2593f1be5de27a8f285e60353615f184c8ce
2416
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_2059836452\LICENSE
text
MD5: ee002cb9e51bb8dfa89640a406a1090a
SHA256: 3dbd2c90050b652d63656481c3e5871c52261575292db77d4ea63419f187a55b
2192
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_951028406\manifest.fingerprint
text
MD5: b9751fe8643e1ad60d7b6357d3fd859f
SHA256: 025b431a60e211862e10146ca8069f1992da39cc9c3d87f585d2a448fb871fd9
2192
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_2059836452\manifest.fingerprint
text
MD5: 4363c3b17b029c0f5ea474299112a23a
SHA256: 38475be00a69a57762c5cde55339baa1a632162848299d5abb08d79e54adbb6d
2416
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_2059836452\manifest.json
binary
MD5: 7378519b599f24bc013e942b71f44afa
SHA256: 0c34d71f1991171b9887c707f9b6b076aa37bb0bed741710362f0bf03257a7dc
2380
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_951028406\_metadata\verified_contents.json
ini
MD5: 3eaecfd4491986233c0a01a29640351f
SHA256: 99231dda6bfa8b87a3d896c787c377f63f592652dd183c4f957f3994906684cc
2416
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_2059836452\_metadata\verified_contents.json
ini
MD5: 6c9914dbae19fec6f0e9f92acd2abbd7
SHA256: 7ea171b574deb0b77ca2a042850dbdc1f7d6cb69fa7ca65da2f5dc716e4e3eda
2380
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_951028406\_platform_specific\win_x86\widevinecdm.dll.sig
pi2
MD5: 4073f39e63b1727ec19734136d0b3128
SHA256: 79f8b7f449b73074aff705d0d7bb6d66c6e4ff0a7f09f452eb040b9debeefddc
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State
text
MD5: 13d9f7fc75c1b921306825245b0e0957
SHA256: ed6068e5b48c68da316f0ec8509b2593f1be5de27a8f285e60353615f184c8ce
2380
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_951028406\manifest.json
binary
MD5: e15ce41ad7ab84f270a12db01724a30d
SHA256: aa864a94111184edb69b3a611be8351bae36b09045de7ef2652e156d0d0ead89
2416
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_2059836452\crl-set
binary
MD5: 17aef67bfdafa08559bc31469a854b88
SHA256: d531ddedb9c973e3c74f2662f5ecfe68e111918f15d294a329c14ac1f433fe68
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State~RF1123f0.TMP
text
MD5: 6116b5537b0d8bc8656fa62ac3346f84
SHA256: e3806dd5697aa0cfe364b30ce1060599d8335db4b952e230942f293bc92481b6
3164
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_762910137\manifest.json
binary
MD5: 3fe38aebb85fb278ab6572dd26b50ef7
SHA256: 7590f010f679fb88a7981c8fa4419e60fdc87bcd24658e7ad593e74441ad6941
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\acb02cef-dafa-463d-b0c6-c7f86830e574.tmp
text
MD5: 6116b5537b0d8bc8656fa62ac3346f84
SHA256: e3806dd5697aa0cfe364b30ce1060599d8335db4b952e230942f293bc92481b6
2192
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_762910137\manifest.fingerprint
text
MD5: 2c7df72a4059f4e5a326049d5b07288f
SHA256: 119f6bfc74e3364ec0e066feb71a6d9eec8d7b83cb1bdab396bc21a02be1da53
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State~RF10e987.TMP
text
MD5: d619ff0b9378faea1a962e0a8564b3d1
SHA256: f9bccd12c312c797d7d80fc120c65421cb502950be0b1d67c5500b282d274dad
3164
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_762910137\_metadata\verified_contents.json
ini
MD5: 59640fa85554b6250c4ec0981a91c2f9
SHA256: 82fbe9b87e4413ec42bcb82d9c094abdb0cdebea93ecc30b98af0acb13dcc18f
3164
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_762910137\safety_tips.pb
binary
MD5: 2700a3258bdd4475b698bb561e6ff6bf
SHA256: ca97d807693c791794eab7a09e65971294f00ec1a26be0e540867d1e34c84a3e
1336
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_1054956862\manifest.json
binary
MD5: 488111215dab3bea15e72c6a8a740bfa
SHA256: 0dda9a17d54e586598a6200db854be52654d3e9def07363cd1e837569af88974
1336
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_1054956862\tls_deprecation_config.pb
binary
MD5: dfcb813d6c003fb3e2fca9f5295e9f58
SHA256: 0c5490ca2f6d61c2d410e7907be97b3bc36b3e4de614e1f5431278dbccad4c79
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State~RF10a0e5.TMP
text
MD5: d619ff0b9378faea1a962e0a8564b3d1
SHA256: f9bccd12c312c797d7d80fc120c65421cb502950be0b1d67c5500b282d274dad
1336
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_1054956862\_metadata\verified_contents.json
ini
MD5: 3ad000e7d0e26616aef71adec88ce7fd
SHA256: 5e32f16d52a5577a937f2c8513ca35c9e6be351a7a0fbb74278407df504d86a5
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\c25d8b6e-1766-4e1d-8f60-0cfbd2f31cfa.tmp
text
MD5: d619ff0b9378faea1a962e0a8564b3d1
SHA256: f9bccd12c312c797d7d80fc120c65421cb502950be0b1d67c5500b282d274dad
2192
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_1054956862\manifest.fingerprint
text
MD5: 55b444fdde72163407f4d74649a3b408
SHA256: edb55f2f05a6f02ab2bf5c78aa4f261155a514d8d178c0b7e698f589f4381349
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\7b82ae7f-b42e-43d7-8cdf-108e4364b645.tmp
text
MD5: 6116b5537b0d8bc8656fa62ac3346f84
SHA256: e3806dd5697aa0cfe364b30ce1060599d8335db4b952e230942f293bc92481b6
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State~RF1066ab.TMP
text
MD5: 015ee3c42f1b21dcf756eaf86f8316a5
SHA256: f6d32a1c9d09c8993b3882507c84afb4354433cbc8893d05df2f9f189a513368
1948
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_1791134729\english_wikipedia.txt
text
MD5: 5713cf8a57fe61cb28fc99a88323cbde
SHA256: b29af10c62218f948eb299e0c68b176ab1c5ecdfe9813bd957bf2c434e90813e
2192
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_1791134729\manifest.fingerprint
text
MD5: aaba0ca80a4e0a9430cb364baf2d7359
SHA256: a6ac0b6539b193cb04a4ad7c2b8feddcb16f664662fb5904b8ef45d369f81be3
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\b405e899-8e23-460c-9bcf-7710cd38abc3.tmp
text
MD5: d619ff0b9378faea1a962e0a8564b3d1
SHA256: f9bccd12c312c797d7d80fc120c65421cb502950be0b1d67c5500b282d274dad
1948
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_1791134729\male_names.txt
text
MD5: 0951d82428623061017b1254cad02f4d
SHA256: 34519e42ef61ea5eae6b9f74a735926c86ed8d1c19d21726da1af6039a66c688
1948
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_1791134729\surnames.txt
text
MD5: fd371a8cb1595f425332063f52f8e842
SHA256: 3362648c77af4ee84a6383800fb5a5cb0493703d4bfc1557e05f315fc41b2699
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State~RF102e94.TMP
text
MD5: 015ee3c42f1b21dcf756eaf86f8316a5
SHA256: f6d32a1c9d09c8993b3882507c84afb4354433cbc8893d05df2f9f189a513368
1948
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_1791134729\us_tv_and_film.txt
text
MD5: 9c2d1b4b6932aa765231e0d0ed2c4f99
SHA256: f146e15ecba3f37adcd7aa4fb23797555d1ab55489fbb0b989c60073f638aaa0
1948
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_1791134729\_metadata\verified_contents.json
ini
MD5: eda568bc05bec8d04cb7c4a732adcad7
SHA256: 039506017d095f98f81645b91c345d74cf30c809181c65c69bd72089ad2f42ea
1948
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_1791134729\female_names.txt
text
MD5: 826b02933e2bbf07ebf69e3da323d389
SHA256: 08346ad80d8d829fda1064485420da1e0771ba1e0dcd954252d43b61c5116aaf
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\0cb8c3eb-ad0c-4200-bb33-3b18bf0a8cfe.tmp
text
MD5: 015ee3c42f1b21dcf756eaf86f8316a5
SHA256: f6d32a1c9d09c8993b3882507c84afb4354433cbc8893d05df2f9f189a513368
1948
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_1791134729\manifest.json
binary
MD5: e0ea009c1401df0e94c92099a565f736
SHA256: 0f9bcbe5de3b725746147d9593dea28be0e19329b5608381f1293caadb56539d
1948
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_1791134729\passwords.txt
text
MD5: c1934045c3348ea1ba618279aac38c67
SHA256: f65b16793f0d335c87bf5bb4b19bcfc457462396169080b8c11a7c6f1d8b3731
2828
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_212921474\manifest.json
text
MD5: d0ea261db146ad36cff25b60e0636e6f
SHA256: 427b191c368a973a970565f4b3ff0365c9d26213bb11a5d277329a6cbcfb940a
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\169b8402-6e07-42ec-b0e0-2521f52060ae.tmp
text
MD5: 015ee3c42f1b21dcf756eaf86f8316a5
SHA256: f6d32a1c9d09c8993b3882507c84afb4354433cbc8893d05df2f9f189a513368
2828
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_212921474\preloaded_data.pb
binary
MD5: b4fe2db97a16fe084dcf2f90cd5d6a58
SHA256: 80aefa570c4adbcb039045228d649bcf2a4ac15aa7cfa20fda89cdc48bf967a2
2828
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_212921474\_metadata\verified_contents.json
ini
MD5: 42c19c1d56dda2fb12104dce02e28763
SHA256: ee07186d03bf4afb0a600cf267939055b911b00e8d9793ed36d243d47bebcdbd
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\eb4001af-65ac-4ab7-9592-159045d86688.tmp
text
MD5: c6512361660d667dd05e4ee9abd62178
SHA256: b7e0ac4280116992dc34080a5eef7a0a1510b70d314c10a9b95fca3b611e3225
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\4.5\web.config
xml
MD5: 08101241b15b53ef0ab908f6d388881f
SHA256: 15a2c7a9242bf54d3ccb3e07fa6d8f84ba8b303d8877243787a1103009941bdb
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
text
MD5: c6512361660d667dd05e4ee9abd62178
SHA256: b7e0ac4280116992dc34080a5eef7a0a1510b70d314c10a9b95fca3b611e3225
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Preferences~RFfc7ac.TMP
text
MD5: 437c7b285b183f587f124a19f8583f1f
SHA256: c7bb953b75ea4315d586b1681713d67251b69e58c9faf9a91144bbe26cccabe2
2192
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_212921474\manifest.fingerprint
text
MD5: ef68fd3d331b89ae82978ea591f02874
SHA256: 4ebaa7f12ca231b42bcf1a661bb14e698ea59c2a383334923f78d27e4b81bafb
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\config
text
MD5: d9bc824737177af5792846f26507231c
SHA256: 60099cf91bb1a5717fc1f2d23cf36a61d3bfb70d9489fbb6f4bae98c560bf3d5
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\mconfig\config.xml
xml
MD5: f34b330f20dce1bdcce9058fca287099
SHA256: 0c56e34c69124510fa8c19e7b4c2ca6c1c4ff460ae19f798dd0ca035809e396d
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\4.0\machine.config
xml
MD5: 24c866ce8037fcdca2287234eddff637
SHA256: 6919d5af506aae0d93e91bd83418a81895a5554b9f54cf94aad20d025a4db664
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State~RFff43a.TMP
text
MD5: cf6172a87243c859217a62ad1279611c
SHA256: 17b8c32c849ce7b92d663a440c7bdc5c97f1734d4b1b2148ea10d0ef2cdcded0
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\4.5\Browsers\Compat.browser
text
MD5: 0d831c1264b5b32a39fa347de368fe48
SHA256: 8a1082057ac5681dcd4e9c227ed7fb8eb42ac1618963b5de3b65739dd77e2741
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State~RFfb9e1.TMP
text
MD5: cf6172a87243c859217a62ad1279611c
SHA256: 17b8c32c849ce7b92d663a440c7bdc5c97f1734d4b1b2148ea10d0ef2cdcded0
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\browscap.ini
text
MD5: 378be809df7d15aac75a175693e25fbb
SHA256: 4ddd50f31fb968f30bedefc253a46dc3f2890192d05cdaa9e0a64a056eee807e
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\4.0\Browsers\Compat.browser
text
MD5: 0d831c1264b5b32a39fa347de368fe48
SHA256: 8a1082057ac5681dcd4e9c227ed7fb8eb42ac1618963b5de3b65739dd77e2741
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\5f451e65-82d2-4375-a492-5de4603ae07c.tmp
text
MD5: cf6172a87243c859217a62ad1279611c
SHA256: 17b8c32c849ce7b92d663a440c7bdc5c97f1734d4b1b2148ea10d0ef2cdcded0
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\sharedassets5.assets.resS
––
MD5:  ––
SHA256:  ––
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\sharedassets0.assets.resS
––
MD5:  ––
SHA256:  ––
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\sharedassets5.assets
binary
MD5: 4063e2d05bfbec38f52a52308e334e9b
SHA256: ad1f30f4e9089dc81f93e16d1285b56b974409815a22dc6d7eefb5ff3cb03d5c
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\4.5\settings.map
xml
MD5: ba17ade8a8e3ee221377534c8136f617
SHA256: ce1db1ad8a9512073164e3eccdc193f7eda036e1a9733caec4635de21b2865c8
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\4.0\settings.map
xml
MD5: ba17ade8a8e3ee221377534c8136f617
SHA256: ce1db1ad8a9512073164e3eccdc193f7eda036e1a9733caec4635de21b2865c8
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\4.0\DefaultWsdlHelpGenerator.aspx
html
MD5: f7be9f1841ff92f9d4040aed832e0c79
SHA256: 751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\4.5\DefaultWsdlHelpGenerator.aspx
html
MD5: f7be9f1841ff92f9d4040aed832e0c79
SHA256: 751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\4.0\web.config
xml
MD5: b127480ee9f0b8dab6a3f73ad79dd332
SHA256: f1a6416eeedd9d040387fd85dcf7d6e074b6644c6829d08be220ff9fc32efb31
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\2.0\settings.map
xml
MD5: 22c818a23169e12bd3c8587b6394c731
SHA256: 49c6160f9d54af4270a3b4e997fc4a8301f79b9e2070118fa46ddbcbbc44f9a2
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\sharedassets2.assets
mpg
MD5: 4c83d4d4d7047f1748b570e43b255f27
SHA256: e0cfb2e572f8949da6e574ad721bf3e65b16c625043a616d92d288400e316e7d
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\sharedassets0.assets
binary
MD5: 15789ee669ae24a0f243f8087971e5cd
SHA256: 10ea71995587e9cf0e2f2056cef1c92aa0b1d2330f9df274f9bea00da2c6ee16
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\2.0\web.config
xml
MD5: 2b6303c4f12762b71051db6e947f90a4
SHA256: 3c1a76a5849074b437d297656a208a3bef6d84b982153542b9c797046c601dfc
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\resources.resource
––
MD5:  ––
SHA256:  ––
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\resources.assets.resS
––
MD5:  ––
SHA256:  ––
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\sharedassets0.resource
fsb
MD5: 479dc2749276ed9d777cbe3058f64d65
SHA256: 1a4f47d3fba0390f908c550da4e1b640c9647b7e67248191be5711b55f12979a
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\sharedassets4.assets
mpg
MD5: b64438fb1d087d8b5292e17aaefc5ec1
SHA256: e345e98e0488b32412e85dc609e83951f872c470433a07d956cd2fa9f76abe8c
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\2.0\machine.config
xml
MD5: cad24142abba464dd90777c3d347ef88
SHA256: edc5bcf685d930a607bc097927260a3f9ac7f52dd809db68158298bfd934b7ce
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\2.0\Browsers\Compat.browser
text
MD5: 0d831c1264b5b32a39fa347de368fe48
SHA256: 8a1082057ac5681dcd4e9c227ed7fb8eb42ac1618963b5de3b65739dd77e2741
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\sharedassets1.assets
mpg
MD5: c720cb5978b4f4407d7a4a92419ac70c
SHA256: 56511222431c45b6fcb11896865c0989ac1f648514fde2c1d0aa0d7516b7a754
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\sharedassets3.assets
mpg
MD5: b64438fb1d087d8b5292e17aaefc5ec1
SHA256: e345e98e0488b32412e85dc609e83951f872c470433a07d956cd2fa9f76abe8c
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\2.0\DefaultWsdlHelpGenerator.aspx
html
MD5: f7be9f1841ff92f9d4040aed832e0c79
SHA256: 751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\MonoBleedingEdge\etc\mono\4.5\machine.config
xml
MD5: 0869544722561f5aff0eefc83fc7b001
SHA256: ef9b9387168fd1dd6c996f96c134d9c44f8eb06f9587004bf997252a520182d6
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\BrowserMetrics-spare.pma
––
MD5:  ––
SHA256:  ––
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\resources.assets
––
MD5:  ––
SHA256:  ––
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Resources\unity_builtin_extra
binary
MD5: ca38c00f3a5a8d8d316d80ea257e29c8
SHA256: 4b874488db6dbf65eb971820d120a783ec5579f2fdf447db8470d3f236c7eaf8
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\Resources\unity default resources
binary
MD5: a5a7b7aadf016e35f2f90c05c699c42c
SHA256: 565649b99f42a95183a318146b9ac8c24abd623e9e25f4aa243eaa9d146a80d1
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\level5
pi2
MD5: dff12cabe321849e0c99e2b0fe8bb321
SHA256: 417150cf09cdcbbccd56b5310da0590f02680602651bc2c7133badb7fbedacf9
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\level3
binary
MD5: 9a0d840a20bb1694d3ec7cd539a88347
SHA256: 99831c993c8f9ad916b7227153ec0949b26a19e08658826cd31268748a1cca78
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\level4
binary
MD5: b0cf95de02bdc3b646b22073d91c2622
SHA256: 439a14760f0fc2be07238780b37975c4fb0db46a6443532baaae8c2112618707
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\level2
binary
MD5: 2076f4b87c3a377ac1dcaf9fa5d40565
SHA256: 70963c5f8b23931f250c2e5bde3f1e6f8eff6c410ba4a32dfc2fba185ef27388
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\globalgamemanagers.assets.resS
binary
MD5: af316fb12e9724249c499bd7da530f19
SHA256: 5fee6be637decebc50da3e5e825d503e943d73a4538c15930c3443f00a56dcaf
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\globalgamemanagers.assets
binary
MD5: 389a88f89442918c9ad472bf84aaec6f
SHA256: 43c0cf52932d56e1d3b174c530d9348b45babb22af3c88854b3c9d9282c0f797
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\level0
binary
MD5: b0ef24305ae458010b5114f351a94c1a
SHA256: 0651b5575dd38ea0139db30b7d60f9862f22b48a413d6e2c7108097696df0849
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\globalgamemanagers
binary
MD5: ba5dc539c8d4895d2dd7654d673a1214
SHA256: c69d84d62aa17ccc40be10e18a9415189830c62c8a61486651a972c2a6bdbeeb
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\level1
binary
MD5: 2520fe91ea540d3fb4bc6241698c2160
SHA256: 37c8831df8a35d93cbd88011a8eeab5c95ef1dcba4da2faf9e1d813d789cf34f
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\boot.config
text
MD5: d200b37cc8f4e4b89436cb6400946ddc
SHA256: 918593daf37ce82f97bfbb5a872b5c6589cfe2956c2ed8001f5bcccac05ffdd8
532
WinRAR.exe
C:\Users\admin\Desktop\horror game 1.1\Monke Horror Game_Data\app.info
text
MD5: 447c69a8e4b021c9b648fb5f595af33f
SHA256: 213b33da11cc54c2818d18647ed0d03429c9fc0ec522726b641528d94bfd3a55
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\c356f772-d779-4015-a96f-6f415454001c.tmp
text
MD5: 437c7b285b183f587f124a19f8583f1f
SHA256: c7bb953b75ea4315d586b1681713d67251b69e58c9faf9a91144bbe26cccabe2
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Preferences~RFf7f0a.TMP
text
MD5: b978e0099e8144e75b0c2589ef445570
SHA256: 3d1b1d3089227bed17f78d8a17a0715ec591ccc457c8a7666caf74cfe2e07721
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
binary
MD5: 5c76ee5cc7f1c7a1bc9600d9e6c4c608
SHA256: 2476753acfe5d849d74cd21fb666a794e37a5e4360d3ac9033bdeef0e6258ed3
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\5c5b0dc7-bc11-419c-b41e-3dc5140b0675.tmp
text
MD5: cf6172a87243c859217a62ad1279611c
SHA256: 17b8c32c849ce7b92d663a440c7bdc5c97f1734d4b1b2148ea10d0ef2cdcded0
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFf7ecc.TMP
binary
MD5: a9d29c44d7ea894725af45b8b947363c
SHA256: 85698ea2c4fdb69c412e83d9ae963325b4dc7fe931b17fe80caa3e526b2e5577
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Local State~RFf7e2f.TMP
text
MD5: 33b3c02bf61e1f71e2d273b8c0dd1d70
SHA256: e66210331d3286481468e8486ede47c93139b6a1c7f3bde5d82170dc31a3a10d
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\c1fe4432-ad25-4553-86fb-8d6db4866a41.tmp
binary
MD5: 5c76ee5cc7f1c7a1bc9600d9e6c4c608
SHA256: 2476753acfe5d849d74cd21fb666a794e37a5e4360d3ac9033bdeef0e6258ed3
2192
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_948035221\manifest.fingerprint
text
MD5: a260b00d6505b0181308e6d573d813f6
SHA256: c0ff5475b3215abeafcea48d3798e342f84077a526b2f272beb3538880789f55
1192
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_948035221\Recovery.crx3
crx
MD5: 7ebbe06233c74d47bdb914d8afa24308
SHA256: 36a56323ca678c7070637c765fbe1c52eaccc8234afe126a9160246e1542e7a9
2192
chrome.exe
C:\Users\admin\Downloads\horror game 1.1.zip
––
MD5:  ––
SHA256:  ––
1192
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_948035221\_metadata\verified_contents.json
ini
MD5: 71ae0825f223c4fd74e379c7b44e30f9
SHA256: a07420e07e72334fb6d8dff4a45c7355d11b117e5833feaf22d00f2da051d91f
1192
chrome.exe
C:\Users\admin\AppData\Local\Temp\2192_948035221\manifest.json
binary
MD5: 18bf540793a76c42e591f91949a9c83b
SHA256: c503fef6c5ffcbeee90622e25d2479d3b7fdac8c3e62cf499bfb8cf93768b5fe
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\DownloadMetadata
binary
MD5: 4d030e9b5de415a58c079e683e580d77
SHA256: e047fb3b193ecb5f87ecc0e76bba393a76296ddcfb0b6420d22ebfade8cafe55
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\79d40c9a-8079-431a-a088-c2ebf22fecec.tmp
binary
MD5: 4d030e9b5de415a58c079e683e580d77
SHA256: e047fb3b193ecb5f87ecc0e76bba393a76296ddcfb0b6420d22ebfade8cafe55
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\DownloadMetadata~RFf5819.TMP
binary
MD5: 52d6c763e9c2f98c2a708f7bb26d6710
SHA256: 05de8082a32f2b4648eed4b25f693895225eea1909cea099c65558057b7d59f3
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\d869cc2d-69c3-4a85-9c88-b4fe9e8c3822.tmp
binary
MD5: 52d6c763e9c2f98c2a708f7bb26d6710
SHA256: 05de8082a32f2b4648eed4b25f693895225eea1909cea099c65558057b7d59f3
1260
chrome.exe
C:\Users\admin\Downloads\horror game 1.1.zip:Zone.Identifier
text
MD5: fbccf14d504b7b2dbcb5a5bda75bd93b
SHA256: eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913
3340
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State
text
MD5: a07d0f7fd7a5bb6318cc47942b387daf
SHA256: 08c12b448949380a8939a2cf66e2735a34f55d5b61a2d123a36899bae38a5a96
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\f5bad67a-7ba1-40c5-8380-5e90117d171f.tmp
binary
MD5: a9d29c44d7ea894725af45b8b947363c
SHA256: 85698ea2c4fdb69c412e83d9ae963325b4dc7fe931b17fe80caa3e526b2e5577
2192
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFf430b.TMP
binary
MD5: 51710324371d049ac37531dff48666fa
SHA256: a4b8dae304c358c674c65c04af246d91237a2440ad6e3582717fbc30f8e1100d
3340
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\c3dc713c-9f66-4a3e-afc5-91181b017165.tmp
text
MD5: a07d0f7fd7a5bb6318cc47942b387daf
SHA256: 08c12b448949380a8939a2cf66e2735a34f55d5b61a2d123a36899bae38a5a96
3340
chrome.exe
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State~RFf45ab.TMP
text
MD5: 754eaf5a9250886bb4dec99ea2e40877
SHA256: ffe04e366cac48d4d156535