Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
Fw Fw EMAIL VALIDATION.msg

Overview

General Information

Sample name:Fw Fw EMAIL VALIDATION.msg
Analysis ID:1533507
MD5:a8590bdf52211068a0f6433599bb4fab
SHA1:b4daffeee0d0294ec3a41fdd90b83bf3cb4d7032
SHA256:8a034d0dd267a660f5903e2361fb92c29b8ccade6851eca7e05777fa62bb4dbc
Infos:

Detection

HTMLPhisher
Score:72
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

AI detected phishing page
AI detected phishing page (A)
Yara detected HtmlPhish20
AI detected landing page (webpage, office document or email)
AI detected landing page (webpage, office document or email) (A)
Detected hidden input values containing email addresses (often used in phishing pages)
Queries the volume information (name, serial number etc) of a device
Sigma detected: Office Autorun Keys Modification
Stores files to the Windows start menu directory

Classification

Process Tree

  • System is w10x64_ra
  • OUTLOOK.EXE (PID: 6068 cmdline: "C:\Program Files (x86)\Microsoft Office\Root\Office16\OUTLOOK.EXE" /f "C:\Users\user\Desktop\Fw Fw EMAIL VALIDATION.msg" MD5: 91A5292942864110ED734005B7E005C0)
    • ai.exe (PID: 2116 cmdline: "C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe" "50E7322A-F90A-46A7-8D74-B5626AD72665" "2B8163F1-AE17-4411-9208-875FEDB14145" "6068" "C:\Program Files (x86)\Microsoft Office\Root\Office16\OUTLOOK.EXE" "WordCombinedFloatieLreOnline.onnx" MD5: EC652BEDD90E089D9406AFED89A8A8BD)
    • chrome.exe (PID: 6216 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://url.us.m.mimecastprotect.com/s/10qwCpYW4xTYjMDfPf1FGmAEO?domain=urldefense.proofpoint.com MD5: 83395EAB5B03DEA9720F8D7AC0D15CAA)
      • chrome.exe (PID: 6404 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2248 --field-trial-handle=2024,i,4959187215483288706,2671594810383570988,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 83395EAB5B03DEA9720F8D7AC0D15CAA)
  • cleanup

Yara Signatures

HTML

SourceRuleDescriptionAuthorStrings
1.0.pages.csvJoeSecurity_HtmlPhish_20Yara detected HtmlPhish_20Joe Security
    1.2.pages.csvJoeSecurity_HtmlPhish_20Yara detected HtmlPhish_20Joe Security
      1.1.pages.csvJoeSecurity_HtmlPhish_20Yara detected HtmlPhish_20Joe Security
        1.3.pages.csvJoeSecurity_HtmlPhish_20Yara detected HtmlPhish_20Joe Security

          Sigma Signatures

          Sigma detected: Office Autorun Keys Modification
          Source: Registry Key setAuthor: Victor Sergeev, Daniil Yugoslavskiy, Gleb Sukhodolskiy, Timur Zinniatullin, oscd.community, Tim Shelton, frack113 (split): Data: Details: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 , EventID: 13, EventType: SetValue, Image: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE, ProcessId: 6068, TargetObject: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Outlook\Addins\OneNote.OutlookAddin\1

          Suricata Signatures

          No Suricata rule has matched

          Joe Sandbox Signatures

          Click to jump to signature section

          Show All Signature Results

          Phishing

          barindex
          AI detected phishing page
          Source: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewformLLM: Score: 8 Reasons: The brand 'Microsoft' is a well-known technology company., The URL 'docs.google.com' is associated with Google, not Microsoft., There is a mismatch between the brand 'Microsoft' and the domain 'google.com'., Google Docs is a legitimate service, but it is not related to Microsoft., The presence of an email input field on a Google Docs URL claiming to be Microsoft-related is suspicious. DOM: 1.0.pages.csv
          AI detected phishing page (A)
          Source: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewformLLM: Score: 7 Reasons: The brand 'Microsoft Account' is well-known and typically associated with the domain 'microsoft.com'., The URL 'docs.google.com' is a legitimate domain associated with Google, not Microsoft., The presence of input fields for 'EMAIL', 'PASSWORD', and 'Re-Enter Password' on a Google domain while claiming to be related to Microsoft is suspicious., There is a mismatch between the brand (Microsoft) and the domain (Google), which is a common phishing tactic. DOM: 1.0.pages.csv
          Yara detected HtmlPhish20
          Source: Yara matchFile source: 1.0.pages.csv, type: HTML
          Source: Yara matchFile source: 1.2.pages.csv, type: HTML
          Source: Yara matchFile source: 1.1.pages.csv, type: HTML
          Source: Yara matchFile source: 1.3.pages.csv, type: HTML
          Source: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewformHTTP Parser: lhuizar@mydatapath.com
          Source: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewformHTTP Parser: test@test.org
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\Chrome\Application\Dictionaries
          Source: unknownHTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.17:49706 version: TLS 1.2
          Source: unknownHTTPS traffic detected: 40.126.31.71:443 -> 192.168.2.17:49705 version: TLS 1.2
          Source: unknownHTTPS traffic detected: 40.126.31.71:443 -> 192.168.2.17:49708 version: TLS 1.2
          Source: unknownHTTPS traffic detected: 40.126.31.71:443 -> 192.168.2.17:49713 version: TLS 1.2
          Source: unknownHTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.17:49836 version: TLS 1.2
          Source: unknownHTTPS traffic detected: 13.107.5.88:443 -> 192.168.2.17:49843 version: TLS 1.2
          Source: unknownHTTPS traffic detected: 2.23.209.150:443 -> 192.168.2.17:49844 version: TLS 1.2
          Source: chrome.exeMemory has grown: Private usage: 0MB later: 29MB
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
          Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: unknownTCP traffic detected without corresponding DNS query: 40.126.31.71
          Source: global trafficDNS traffic detected: DNS query: url.us.m.mimecastprotect.com
          Source: global trafficDNS traffic detected: DNS query: urldefense.proofpoint.com
          Source: global trafficDNS traffic detected: DNS query: forms.gle
          Source: global trafficDNS traffic detected: DNS query: docs.google.com
          Source: global trafficDNS traffic detected: DNS query: www.google.com
          Source: global trafficDNS traffic detected: DNS query: lh5.googleusercontent.com
          Source: global trafficDNS traffic detected: DNS query: play.google.com
          Source: unknownNetwork traffic detected: HTTP traffic on port 49708 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49865
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49864
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49862
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49861
          Source: unknownNetwork traffic detected: HTTP traffic on port 49875 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49852 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49859
          Source: unknownNetwork traffic detected: HTTP traffic on port 49717 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49849 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49857
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49735
          Source: unknownNetwork traffic detected: HTTP traffic on port 49841 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49854
          Source: unknownNetwork traffic detected: HTTP traffic on port 49675 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49852
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49850
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49693
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49691
          Source: unknownNetwork traffic detected: HTTP traffic on port 49784 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49777 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49849
          Source: unknownNetwork traffic detected: HTTP traffic on port 49861 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49727
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49726
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49847
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49725
          Source: unknownNetwork traffic detected: HTTP traffic on port 49735 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49846
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49723
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49844
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49843
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49721
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49842
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49841
          Source: unknownNetwork traffic detected: HTTP traffic on port 49706 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49840
          Source: unknownNetwork traffic detected: HTTP traffic on port 49844 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49850 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49839
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49717
          Source: unknownNetwork traffic detected: HTTP traffic on port 49715 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49680 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49847 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49715
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49836
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49713
          Source: unknownNetwork traffic detected: HTTP traffic on port 49709 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49839 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49864 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49726 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49870 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49765 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49723 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49709
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49708
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49706
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49705
          Source: unknownNetwork traffic detected: HTTP traffic on port 49754 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49865 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49842 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49784
          Source: unknownNetwork traffic detected: HTTP traffic on port 49727 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49859 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49691 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49836 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49871 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49713 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49759 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49778
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49777
          Source: unknownNetwork traffic detected: HTTP traffic on port 49862 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49879 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49721 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49876 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49756 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49765
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49761
          Source: unknownNetwork traffic detected: HTTP traffic on port 49840 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49880
          Source: unknownNetwork traffic detected: HTTP traffic on port 49693 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49725 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49857 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49877 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49854 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49778 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49759
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49879
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49756
          Source: unknownNetwork traffic detected: HTTP traffic on port 49755 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49877
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49755
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49876
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49754
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49875
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49874
          Source: unknownNetwork traffic detected: HTTP traffic on port 49705 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49750
          Source: unknownNetwork traffic detected: HTTP traffic on port 49843 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49871
          Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49870
          Source: unknownNetwork traffic detected: HTTP traffic on port 49761 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49874 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49880 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49750 -> 443
          Source: unknownNetwork traffic detected: HTTP traffic on port 49846 -> 443
          Source: unknownHTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.17:49706 version: TLS 1.2
          Source: unknownHTTPS traffic detected: 40.126.31.71:443 -> 192.168.2.17:49705 version: TLS 1.2
          Source: unknownHTTPS traffic detected: 40.126.31.71:443 -> 192.168.2.17:49708 version: TLS 1.2
          Source: unknownHTTPS traffic detected: 40.126.31.71:443 -> 192.168.2.17:49713 version: TLS 1.2
          Source: unknownHTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.17:49836 version: TLS 1.2
          Source: unknownHTTPS traffic detected: 13.107.5.88:443 -> 192.168.2.17:49843 version: TLS 1.2
          Source: unknownHTTPS traffic detected: 2.23.209.150:443 -> 192.168.2.17:49844 version: TLS 1.2
          Source: classification engineClassification label: mal72.phis.winMSG@18/118@28/300
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Program Files\Google\Chrome\Application\Dictionaries
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEFile created: C:\Users\user\Documents\Outlook Files\~Outlook Data File - NoEmail.pst.tmp
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEFile created: C:\Users\user\AppData\Local\Temp\Outlook Logging\OUTLOOK_16_0_16827_20130-20241014T1332230027-6068.etl
          Source: unknownProcess created: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE "C:\Program Files (x86)\Microsoft Office\Root\Office16\OUTLOOK.EXE" /f "C:\Users\user\Desktop\Fw Fw EMAIL VALIDATION.msg"
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess created: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe "C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe" "50E7322A-F90A-46A7-8D74-B5626AD72665" "2B8163F1-AE17-4411-9208-875FEDB14145" "6068" "C:\Program Files (x86)\Microsoft Office\Root\Office16\OUTLOOK.EXE" "WordCombinedFloatieLreOnline.onnx"
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess created: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe "C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe" "50E7322A-F90A-46A7-8D74-B5626AD72665" "2B8163F1-AE17-4411-9208-875FEDB14145" "6068" "C:\Program Files (x86)\Microsoft Office\Root\Office16\OUTLOOK.EXE" "WordCombinedFloatieLreOnline.onnx"
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://url.us.m.mimecastprotect.com/s/10qwCpYW4xTYjMDfPf1FGmAEO?domain=urldefense.proofpoint.com
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2248 --field-trial-handle=2024,i,4959187215483288706,2671594810383570988,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://url.us.m.mimecastprotect.com/s/10qwCpYW4xTYjMDfPf1FGmAEO?domain=urldefense.proofpoint.com
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2248 --field-trial-handle=2024,i,4959187215483288706,2671594810383570988,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
          Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exeSection loaded: apphelp.dll
          Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exeSection loaded: c2r64.dll
          Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exeSection loaded: userenv.dll
          Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exeSection loaded: msasn1.dll
          Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exeSection loaded: kernel.appcore.dll
          Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exeSection loaded: cryptsp.dll
          Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exeSection loaded: rsaenh.dll
          Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exeSection loaded: cryptbase.dll
          Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exeSection loaded: gpapi.dll
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEKey value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{CACAF262-9370-4615-A13B-9F5539DA4C0A}\InProcServer32
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEWindow found: window name: SysTabControl32
          Source: Window RecorderWindow detected: More than 3 window changes detected
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEKey opened: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\Common
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\Chrome\Application\Dictionaries

          Persistence and Installation Behavior

          barindex
          AI detected landing page (webpage, office document or email)
          Source: EmailLLM: Page contains button: 'CLICK HERE' Source: 'Email'
          Source: EmailLLM: Email contains prominent button: 'click here'
          Source: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/formResponseLLM: Page contains button: 'Submit another response' Source: '2.6.pages.csv'
          AI detected landing page (webpage, office document or email) (A)
          Source: EmailLLM: Page contains button: 'CLICK HERE' Source: 'Email'
          Source: EmailLLM: Email contains prominent button: 'click here'
          Source: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/formResponseLLM: Page contains button: 'Submit another response' Source: '2.6.pages.csv'
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
          Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exeProcess information set: NOGPFAULTERRORBOX | NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information set: NOOPENFILEERRORBOX
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEFile Volume queried: C:\Windows\SysWOW64 FullSizeInformation
          Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXEProcess information queried: ProcessInformation
          Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exeQueries volume information: C:\Program Files (x86)\Microsoft Office\root\Office16\AI\WordCombinedFloatieLreOnline.onnx VolumeInformation
          Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exeKey value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography MachineGuid

          Mitre Att&ck Matrix

          ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
          Gather Victim Identity InformationAcquire InfrastructureValid AccountsWindows Management Instrumentation2
          Browser Extensions          		1
          Process Injection          		3
          Masquerading          		OS Credential Dumping1
          Process Discovery          		Remote ServicesData from Local System2
          Encrypted Channel          		Exfiltration Over Other Network MediumAbuse Accessibility Features
          CredentialsDomainsDefault AccountsScheduled Task/Job1
          DLL Side-Loading          		1
          DLL Side-Loading          		1
          Process Injection          		LSASS Memory13
          System Information Discovery          		Remote Desktop ProtocolData from Removable Media1
          Non-Application Layer Protocol          		Exfiltration Over BluetoothNetwork Denial of Service
          Email AddressesDNS ServerDomain AccountsAt1
          Registry Run Keys / Startup Folder          		1
          Registry Run Keys / Startup Folder          		1
          DLL Side-Loading          		Security Account ManagerQuery RegistrySMB/Windows Admin SharesData from Network Shared Drive2
          Application Layer Protocol          		Automated ExfiltrationData Encrypted for Impact
          Employee NamesVirtual Private ServerLocal AccountsCronLogin Hook1
          Extra Window Memory Injection          		1
          Extra Window Memory Injection          		NTDSSystem Network Configuration DiscoveryDistributed Component Object ModelInput CaptureProtocol ImpersonationTraffic DuplicationData Destruction

          Screenshots

          Thumbnails

          This section contains all screenshots as thumbnails, including those not shown in the slideshow.


          windows-stand

          Antivirus, Machine Learning and Genetic Malware Detection

          Initial Sample

          No Antivirus matches

          Dropped Files

          No Antivirus matches

          Unpacked PE Files

          No Antivirus matches

          Domains

          No Antivirus matches

          URLs

          No Antivirus matches

          Domains and IPs

          Contacted Domains

          NameIPActiveMaliciousAntivirus DetectionReputation
          docs.google.com
          		142.250.184.238
          		truefalse
            		unknown
            url.us.m.mimecastprotect.com
            		207.211.31.113
            		truefalse
              		unknown
              play.google.com
              		142.250.184.238
              		truefalse
                		unknown
                urldefense.com
                		52.71.28.102
                		truefalse
                  		unknown
                  forms.gle
                  		199.36.158.100
                  		truefalse
                    		unknown
                    www.google.com
                    		216.58.206.68
                    		truefalse
                      		unknown
                      googlehosted.l.googleusercontent.com
                      		216.58.212.129
                      		truefalse
                        		unknown
                        lh5.googleusercontent.com
                        		unknown
                        		unknownfalse
                          		unknown
                          urldefense.proofpoint.com
                          		unknown
                          		unknownfalse
                            		unknown

                            Contacted URLs

                            NameMaliciousAntivirus DetectionReputation
                            https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/formResponsetrue
                              		unknown
                              https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewformtrue
                                		unknown

                                World Map of Contacted IPs

                                • No. of IPs < 25%
                                • 25% < No. of IPs < 50%
                                • 50% < No. of IPs < 75%
                                • 75% < No. of IPs

                                Public IPs

                                IPDomainCountryFlagASNASN NameMalicious
                                142.250.186.46
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                142.250.185.129
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                52.71.28.102
                                		urldefense.comUnited States
                                		14618AMAZON-AESUSfalse
                                216.58.206.78
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                216.58.212.129
                                		googlehosted.l.googleusercontent.comUnited States
                                		15169GOOGLEUSfalse
                                142.250.185.202
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                142.250.185.163
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                142.250.185.142
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                52.109.32.97
                                		unknownUnited States
                                		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                52.109.89.19
                                		unknownUnited States
                                		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                142.250.186.110
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                142.250.184.227
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                142.250.186.138
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                52.113.194.132
                                		unknownUnited States
                                		8068MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                142.250.184.195
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                142.250.185.67
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                1.1.1.1
                                		unknownAustralia
                                		13335CLOUDFLARENETUSfalse
                                216.58.212.131
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                216.58.206.67
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                74.125.71.84
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                207.211.31.113
                                		url.us.m.mimecastprotect.comUnited States
                                		14135NAVISITE-EAST-2USfalse
                                216.58.206.68
                                		www.google.comUnited States
                                		15169GOOGLEUSfalse
                                199.36.158.100
                                		forms.gleUnited States
                                		15169GOOGLEUSfalse
                                20.50.73.4
                                		unknownUnited States
                                		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                239.255.255.250
                                		unknownReserved
                                		unknownunknownfalse
                                2.19.126.151
                                		unknownEuropean Union
                                		16625AKAMAI-ASUSfalse
                                142.250.185.174
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                142.250.185.131
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                142.250.185.195
                                		unknownUnited States
                                		15169GOOGLEUSfalse
                                142.250.184.238
                                		docs.google.comUnited States
                                		15169GOOGLEUSfalse
                                184.28.90.27
                                		unknownUnited States
                                		16625AKAMAI-ASUSfalse
                                142.250.185.74
                                		unknownUnited States
                                		15169GOOGLEUSfalse

                                Private

                                IP
                                192.168.2.17
                                192.168.2.5

                                General Information

                                Joe Sandbox version:41.0.0 Charoite
                                Analysis ID:1533507
                                Start date and time:2024-10-14 19:31:47 +02:00
                                Joe Sandbox product:CloudBasic
                                Overall analysis duration:
                                Hypervisor based Inspection enabled:false
                                Report type:full
                                Cookbook file name:defaultwindowsinteractivecookbook.jbs
                                Analysis system description:Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
                                Number of analysed new started processes analysed:22
                                Number of new started drivers analysed:0
                                Number of existing processes analysed:0
                                Number of existing drivers analysed:0
                                Number of injected processes analysed:0
                                Technologies:
                                • EGA enabled
                                Analysis Mode:stream
                                Analysis stop reason:Timeout
                                Sample name:Fw Fw EMAIL VALIDATION.msg
                                Detection:MAL
                                Classification:mal72.phis.winMSG@18/118@28/300
                                Cookbook Comments:
                                • Found application associated with file extension: .msg

                                Warnings

                                • Exclude process from analysis (whitelisted): dllhost.exe
                                • Excluded IPs from analysis (whitelisted): 52.109.32.97
                                • Excluded domains from analysis (whitelisted): config.officeapps.live.com, prod.configsvc1.live.com.akadns.net, officeclient.microsoft.com, ukw-azsc-config.officeapps.live.com, europe.configsvc1.live.com.akadns.net
                                • Not all processes where analyzed, report is missing behavior information
                                • Report size getting too big, too many NtQueryValueKey calls found.
                                • Report size getting too big, too many NtReadVirtualMemory calls found.
                                • VT rate limit hit for: Fw Fw EMAIL VALIDATION.msg

                                LLM Input / Output

                                InputOutput
                                URL: Email Model: claude-3-haiku-20240307
                                ```json
{
  "contains_trigger_text": true,
  "trigger_text": "CLICK HERE",
  "prominent_button_name": "CLICK HERE",
  "text_input_field_labels": [
    "now to keep your account active.BVCS"
  ],
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": true,
  "has_visible_qrcode": false
}
                                URL: Email Model: jbxai
                                {
"brands":["Datapath"],
"text":"This email is to notify all staff that we will be carrying out email validation exercises. We will need you to confirm that your email is still in use,
 please CLICK HERE",
"contains_trigger_text":true,
"trigger_text":"CLICK HERE",
"prominent_button_name":"CLICK HERE",
"text_input_field_labels":"unknown",
"pdf_icon_visible":false,
"has_visible_captcha":false,
"has_urgent_text":true,
"has_visible_qrcode":false}
                                URL: Email Model: claude-3-haiku-20240307
                                ```json
{
  "brands": [
    "Datapath",
    "Big Valley Grace Community Church",
    "Big Valley Christian School"
  ]
}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: claude-3-haiku-20240307
                                ```json
{
  "contains_trigger_text": true,
  "trigger_text": "Sign in with School E-mail & Password",
  "prominent_button_name": "Submit",
  "text_input_field_labels": [
    "EMAIL",
    "PASSWORD",
    "Re-Enter Password"
  ],
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false
}
Google indexed: True
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: jbxai
                                {
"brands":["Microsoft"],
"text":"Microsoft Account",
"contains_trigger_text":true,
"trigger_text":"Sign in with School E-mail & Password",
"prominent_button_name":"Submit",
"text_input_field_labels":["EMAIL",
"PASSWORD",
"Re-Enter Password"],
"pdf_icon_visible":false,
"has_visible_captcha":false,
"has_urgent_text":false,
"has_visible_qrcode":false}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: claude-3-haiku-20240307
                                ```json
{
  "brands": [
    "Microsoft Account"
  ]
}
Google indexed: True
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: jbxai
                                {
"phishing_score":8,
"brands":"Microsoft",
"legit_domain":"microsoft.com",
"classification":"wellknown",
"reasons":["The brand 'Microsoft' is a well-known technology company.",
"The URL 'docs.google.com' is associated with Google,
 not Microsoft.",
"There is a mismatch between the brand 'Microsoft' and the domain 'google.com'.",
"Google Docs is a legitimate service,
 but it is not related to Microsoft.",
"The presence of an email input field on a Google Docs URL claiming to be Microsoft-related is suspicious."],
"brand_matches":[false],
"url_match":false,
"brand_input":"Microsoft",
"input_fields":"EMAIL"}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: gpt-4o
                                ```json{  "legit_domain": "microsoft.com",  "classification": "wellknown",  "reasons": [    "The brand 'Microsoft Account' is well-known and typically associated with the domain 'microsoft.com'.",    "The URL 'docs.google.com' is a legitimate domain associated with Google, not Microsoft.",    "The presence of input fields for 'EMAIL', 'PASSWORD', and 'Re-Enter Password' on a Google domain while claiming to be related to Microsoft is suspicious.",    "There is a mismatch between the brand (Microsoft) and the domain (Google), which is a common phishing tactic."  ],  "riskscore": 9}
Google indexed: True
                                URL: docs.google.com
            Brands: Microsoft Account
            Input Fields: EMAIL, PASSWORD, Re-Enter Password
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: claude-3-haiku-20240307
                                ```json
{
  "contains_trigger_text": true,
  "trigger_text": "Sign in with School E-mail & Password",
  "prominent_button_name": "Submit",
  "text_input_field_labels": [
    "EMAIL *",
    "PASSWORD *",
    "Re-Enter Password *"
  ],
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false
}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: claude-3-haiku-20240307
                                ```json
{
  "contains_trigger_text": true,
  "trigger_text": "Sign in with School E-mail & Password",
  "prominent_button_name": "Submit",
  "text_input_field_labels": [
    "EMAIL *",
    "PASSWORD *",
    "Re-Enter Password *"
  ],
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false
}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: claude-3-haiku-20240307
                                ```json
{
  "contains_trigger_text": true,
  "trigger_text": "Sign in with School E-mail & Password",
  "prominent_button_name": "Submit",
  "text_input_field_labels": [
    "EMAIL",
    "PASSWORD",
    "Re-Enter Password"
  ],
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false
}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: jbxai
                                {
"brands":["Microsoft"],
"text":"Microsoft Account",
"contains_trigger_text":false,
"trigger_text":"",
"prominent_button_name":"Submit",
"text_input_field_labels":["EMAIL",
"PASSWORD"],
"pdf_icon_visible":false,
"has_visible_captcha":false,
"has_urgent_text":false,
"has_visible_qrcode":false}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: jbxai
                                {
"brands":["Microsoft"],
"text":"Microsoft Account",
"contains_trigger_text":false,
"trigger_text":"",
"prominent_button_name":"Submit",
"text_input_field_labels":["EMAIL",
"PASSWORD",
"Re-Enter Password"],
"pdf_icon_visible":false,
"has_visible_captcha":false,
"has_urgent_text":false,
"has_visible_qrcode":false}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: jbxai
                                {
"brands":["Microsoft"],
"text":"Microsoft Account",
"contains_trigger_text":true,
"trigger_text":"Sign in with School E-mail & Password",
"prominent_button_name":"Submit",
"text_input_field_labels":["EMAIL",
"PASSWORD",
"Re-Enter Password"],
"pdf_icon_visible":false,
"has_visible_captcha":false,
"has_urgent_text":false,
"has_visible_qrcode":false}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: claude-3-haiku-20240307
                                ```json
{
  "brands": [
    "Microsoft Account"
  ]
}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: claude-3-haiku-20240307
                                ```json
{
  "brands": [
    "Microsoft Account"
  ]
}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: claude-3-haiku-20240307
                                ```json
{
  "brands": [
    "Microsoft"
  ]
}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: claude-3-haiku-20240307
                                ```json
{
  "contains_trigger_text": true,
  "trigger_text": "Sign in with School E-mail & Password",
  "prominent_button_name": "Submit",
  "text_input_field_labels": [
    "EMAIL *",
    "PASSWORD *",
    "Re-Enter Password *"
  ],
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false
}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: jbxai
                                {
"brands":["Microsoft"],
"text":"Microsoft Account",
"contains_trigger_text":true,
"trigger_text":"Sign in with School E-mail & Password",
"prominent_button_name":"Submit",
"text_input_field_labels":["EMAIL",
"PASSWORD"],
"pdf_icon_visible":false,
"has_visible_captcha":false,
"has_urgent_text":false,
"has_visible_qrcode":false}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: claude-3-haiku-20240307
                                ```json
{
  "brands": [
    "Microsoft"
  ]
}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: jbxai
                                {
"brands":["Google"],
"text":"Microsoft Account",
"contains_trigger_text":false,
"trigger_text":"",
"prominent_button_name":"Submit",
"text_input_field_labels":["EMAIL",
"PASSWORD",
"Re-Enter Password"],
"pdf_icon_visible":false,
"has_visible_captcha":false,
"has_urgent_text":false,
"has_visible_qrcode":false}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: claude-3-haiku-20240307
                                ```json
{
  "contains_trigger_text": true,
  "trigger_text": "Sign in with School E-mail & Password",
  "prominent_button_name": "Submit",
  "text_input_field_labels": [
    "EMAIL",
    "PASSWORD",
    "Re-Enter Password"
  ],
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false
}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/viewform Model: claude-3-haiku-20240307
                                ```json
{
  "brands": [
    "Microsoft"
  ]
}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/formResponse Model: claude-3-haiku-20240307
                                ```json
{
  "contains_trigger_text": true,
  "trigger_text": "Submit another response",
  "prominent_button_name": "Submit another response",
  "text_input_field_labels": [
    "Microsoft Account"
  ],
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false
}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/formResponse Model: jbxai
                                {
"brands":["Google"],
"text":"Microsoft Account Thank You Submit another response",
"contains_trigger_text":true,
"trigger_text":"Submit another response",
"prominent_button_name":"Submit another response",
"text_input_field_labels":"unknown",
"pdf_icon_visible":false,
"has_visible_captcha":false,
"has_urgent_text":false,
"has_visible_qrcode":false}
                                URL: https://docs.google.com/forms/d/e/1FAIpQLSccffzpxl94U2LSAFb-abJo-o41TJisbLsN9qCB0TbrkAjaBQ/formResponse Model: claude-3-haiku-20240307
                                ```json
{
  "brands": [
    "Microsoft Account",
    "Google Forms"
  ]
}

                                Created / dropped Files

                                C:\Users\user\AppData\Local\Microsoft\FORMS\FRMCACHE.DAT

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:data
                                Category:dropped
                                Size (bytes):231348
                                Entropy (8bit):4.3798244596700515
                                Encrypted:false
                                SSDEEP:
                                MD5:3C8803FF8A0C2E3567C84B9C2EB843C1
                                SHA1:DBC9F9A578593F954DDBEB8F209C41E4657A60C4
                                SHA-256:D68834ABC2820B4232B0ABAA77D1A27CF75CFCCEA170379F3A6B627F663D2FC2
                                SHA-512:2994BBE9E58A204E571FCD6470A4F2996582E5453D5B99A70A170B25A562864224C4B4D6C9307BBEDE719C665BE47884557DBBD112B04872D2E705DDCA7BF4CA
                                Malicious:false
                                Reputation:unknown
                                Preview:TH02...... . ...^.......SM01X...,....{|.^...........IPM.Activity...........h...............h............H..h..x..........h........h...H..h\tor ...AppD...hh..0...P.x....h_..............h........_`.k...h....@...I.+w...h....H...8..k...0....T...............d.........2h...............k..D...........!h.............. h........h.x...#h....8.........$hh.......8....."h8.............'h..............1h_...<.........0h....4.....k../h....h......kH..h....p.....x...-h .........x...+h.........x................. ..............F7..............FIPM.Activity....Form....Standard....Journal Entry...IPM.Microsoft.FolderDesign.FormsDescription................F.k..........1122110020000000....Microsoft...This form is used to create journal entries.........kf...... ..........&...........(.......(... ...@.....................................................................................................................fffffffff........wwwwwwww.p....pp..............p...............pw..............pw..DDDDO..

                                C:\Users\user\AppData\Local\Microsoft\FontCache\4\CatalogCacheMetaData.xml

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:XML 1.0 document, ASCII text, with very long lines (1869), with no line terminators
                                Category:modified
                                Size (bytes):1869
                                Entropy (8bit):5.088243274528233
                                Encrypted:false
                                SSDEEP:
                                MD5:78C336FDFE4254D9E6CECBFBF5151C54
                                SHA1:F3BB242A49EBBF8A880771FF88C53A90C34D14FF
                                SHA-256:B4301C450FD47EA703C96F344FFC73FB2F683C96493FBDC4A25C8D3E59FC5573
                                SHA-512:DD3F9F7775E9088BA975168D049D2A35DCD00B825E1A2350F39959B4491D8BAB12D6D52F886E85BE4F01BBA15DC79BE853D1B7784FCD4F6D109B691DCDC39841
                                Malicious:false
                                Reputation:unknown
                                Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?><root><version>1</version><Count>12</Count><Resource><Id>Aptos_26215680</Id><LAT>2024-10-14T17:32:25Z</LAT><key>29939506207.ttf</key><folder>Aptos</folder><type>4</type></Resource><Resource><Id>Aptos_45876480</Id><LAT>2023-10-06T09:55:52Z</LAT><key>27160079615.ttf</key><folder>Aptos</folder><type>4</type></Resource><Resource><Id>Aptos Display_26215680</Id><LAT>2023-10-06T09:55:52Z</LAT><key>23001069669.ttf</key><folder>Aptos Display</folder><type>4</type></Resource><Resource><Id>Aptos Narrow_26215426</Id><LAT>2023-10-06T09:55:52Z</LAT><key>37262344671.ttf</key><folder>Aptos Narrow</folder><type>4</type></Resource><Resource><Id>Aptos Display_26215682</Id><LAT>2023-10-06T09:55:52Z</LAT><key>28367963232.ttf</key><folder>Aptos Display</folder><type>4</type></Resource><Resource><Id>Aptos Narrow_45876224</Id><LAT>2023-10-06T09:55:52Z</LAT><key>24153076628.ttf</key><folder>Aptos Narrow</folder><type>4</type></Resource><Resource><Id>Aptos_

                                C:\Users\user\AppData\Local\Microsoft\FontCache\4\Catalog\ListAll.Json

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:JSON data
                                Category:dropped
                                Size (bytes):521377
                                Entropy (8bit):4.9084889265453135
                                Encrypted:false
                                SSDEEP:
                                MD5:C37972CBD8748E2CA6DA205839B16444
                                SHA1:9834B46ACF560146DD7EE9086DB6019FBAC13B4E
                                SHA-256:D4CFBB0E8B9D3E36ECE921B9B51BD37EF1D3195A9CFA1C4586AEA200EB3434A7
                                SHA-512:02B4D134F84122B6EE9A304D79745A003E71803C354FB01BAF986BD15E3BA57BA5EF167CC444ED67B9BA5964FF5922C50E2E92A8A09862059852ECD9CEF1A900
                                Malicious:false
                                Reputation:unknown
                                Preview:{"MajorVersion":4,"MinorVersion":40,"Expiration":14,"Fonts":[{"a":[4294966911],"f":"Abadi","fam":[],"sf":[{"c":[1,0],"dn":"Abadi","fs":32696,"ful":[{"lcp":983041,"lsc":"Latn","ltx":"Abadi"}],"gn":"Abadi","id":"23643452060","p":[2,11,6,4,2,1,4,2,2,4],"sub":[],"t":"ttf","u":[2147483651,0,0,0],"v":197263,"w":26215680},{"c":[1,0],"dn":"Abadi Extra Light","fs":22180,"ful":[{"lcp":983042,"lsc":"Latn","ltx":"Abadi Extra Light"}],"gn":"Abadi Extra Light","id":"17656736728","p":[2,11,2,4,2,1,4,2,2,4],"sub":[],"t":"ttf","u":[2147483651,0,0,0],"v":197263,"w":13108480}]},{"a":[4294966911],"f":"ADLaM Display","fam":[],"sf":[{"c":[536870913,0],"dn":"ADLaM Display Regular","fs":140072,"ful":[{"lcp":983040,"lsc":"Latn","ltx":"ADLaM Display"}],"gn":"ADLaM Display","id":"31965479471","p":[2,1,0,0,0,0,0,0,0,0],"sub":[],"t":"ttf","u":[2147491951,1107296330,0,0],"v":131072,"w":26215680}]},{"a":[4294966911],"f":"Agency FB","fam":[],"sf":[{"c":[536870913,0],"dn":"Agency FB Bold","fs":54372,"ful":[{"lcp":9830

                                C:\Users\user\AppData\Local\Microsoft\FontCache\4\PreviewFont\flat_officeFontsPreview_4_40.ttf

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:TrueType Font data, 10 tables, 1st "OS/2", 7 names, Microsoft, language 0x409, \251 2018 Microsoft Corporation. All Rights Reserved.msofp_4_40RegularVersion 4.40;O365
                                Category:dropped
                                Size (bytes):773040
                                Entropy (8bit):6.55939673749297
                                Encrypted:false
                                SSDEEP:
                                MD5:4296A064B917926682E7EED650D4A745
                                SHA1:3953A6AA9100F652A6CA533C2E05895E52343718
                                SHA-256:E04E41C74D6C78213BA1588BACEE64B42C0EDECE85224C474A714F39960D8083
                                SHA-512:A25388DDCE58D9F06716C0F0BDF2AEFA7F68EBCA7171077533AF4A9BE99A08E3DCD8DFE1A278B7AA5DE65DA9F32501B4B0B0ECAB51F9AF0F12A3A8A75363FF2C
                                Malicious:false
                                Reputation:unknown
                                Preview:........... OS/29....(...`cmap.s.,.......pglyf..&....|....head2..........6hheaE.@v.......$hmtx...........@loca.U.....8...Dmaxp........... name.P+........post...<...... .........b~1_.<...........<......r......Aa...................Q....Aa....Aa.........................~...................................................3..............................MS .@.......(...Q................. ...........d...........0...J.......8.......>..........+a..#...,................................................/...K.......z...............N......*...!...-...+........z.......h..%^..3...&j..+...+%..'R..+..."....................k......$A...,.......g...&...=.......X..&........*......&....B..(B...............#.......j...............+...P...5...@...)..........#...)Q...............*...{.. ....?..'...#....N...7......<...;>.............. ]...........5......#....s.......$.......$.......^..................+...>....H.......%...7.......6.......O...V...........K......"........c...N......!...............$...&...*p..

                                C:\Users\user\AppData\Local\Microsoft\Office\16.0\AddInClassifierCache\OfficeSharedEntities.bin

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:ASCII text, with very long lines (65536), with no line terminators
                                Category:dropped
                                Size (bytes):322260
                                Entropy (8bit):4.000299760592446
                                Encrypted:false
                                SSDEEP:
                                MD5:CC90D669144261B198DEAD45AA266572
                                SHA1:EF164048A8BC8BD3A015CF63E78BDAC720071305
                                SHA-256:89C701EEFF939A44F28921FD85365ECD87041935DCD0FE0BAF04957DA12C9899
                                SHA-512:16F8A8A6DCBAEAEFB88C7CFF910BCCC71B76A723CF808B810F500E28E543112C2FAE2491D4D209569BD810490EDFF564A2B084709B02963BCAF6FDF1AEEC59AC
                                Malicious:false
                                Reputation:unknown
                                Preview:51253fe60063c31af0d295afb42228b0:v2:2:1:1590:2:8479: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

                                C:\Users\user\AppData\Local\Microsoft\Office\16.0\AddInClassifierCache\OfficeSharedEntitiesUpdated.bin

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:ASCII text, with no line terminators
                                Category:dropped
                                Size (bytes):10
                                Entropy (8bit):2.446439344671015
                                Encrypted:false
                                SSDEEP:
                                MD5:EBE1BAD71945C2B9F563095F370B25AC
                                SHA1:DC32AC6AF03CFD60738AFA2CD1A8A3BC5EFD4971
                                SHA-256:F5BC64ED6116148244626EE1AE399118594751B35AD513742905293BF5C11D09
                                SHA-512:1C490651AEF55D296ABD3670E36092517CDE0543B4FF1E7642D4771EC66431341B39EB3685982AA1C5211B1539A2230CFDF207AF3ACD47F924A2DD7C500BD0E0
                                Malicious:false
                                Reputation:unknown
                                Preview:1728927147

                                C:\Users\user\AppData\Local\Microsoft\Office\16.0\WebServiceCache\AllUsers\officeclient.microsoft.com\08374176-72B6-4FF5-91A9-236D03ED576B

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:XML 1.0 document, ASCII text, with CRLF line terminators
                                Category:dropped
                                Size (bytes):178099
                                Entropy (8bit):5.290516406304104
                                Encrypted:false
                                SSDEEP:
                                MD5:D5E223D408407953A0B88F9059CB7606
                                SHA1:0A89DCB0D65FE02E659F7054C5577E5A930AADF0
                                SHA-256:38CD5C8E56A68ED0295D327C0108582D7AB3CE3A2FBC6EF8757B9B726EF81E8B
                                SHA-512:7879F0B1D45796E9E78DE8259B38F2DBB52E98624AD7DB438C5AA8E059ADA82340188F77943136FE9FAB411929777214C8F42F1C4AED26CFADD5D87B14005A9F
                                Malicious:false
                                Reputation:unknown
                                Preview:<?xml version="1.0" encoding="utf-8"?>..<o:OfficeConfig xmlns:o="urn:schemas-microsoft-com:office:office">.. <o:services o:GenerationTime="2024-10-14T17:32:25">.. Build: 16.0.18204.40137-->.. <o:default>.. <o:ticket o:headerName="Authorization" o:headerValue="{}" />.. </o:default>.. <o:service o:name="Research">.. <o:url>https://word-edit.officeapps.live.com/we/rrdiscovery.ashx</o:url>.. </o:service>.. <o:service o:name="ORedir">.. <o:url>https://o15.officeredir.microsoft.com/r</o:url>.. </o:service>.. <o:service o:name="ORedirSSL">.. <o:url>https://o15.officeredir.microsoft.com/r</o:url>.. </o:service>.. <o:service o:name="ClViewClientHelpId" o:authentication="1">.. <o:url>https://[MAX.BaseHost]/client/results</o:url>.. <o:ticket o:policy="MBI_SSL_SHORT" o:idprovider="1" o:target="[MAX.AuthHost]" o:headerValue="Passport1.4 from-PP='{}&amp;p='" />.. <o:ticket o:idprovider="3" o:headerValue="Bearer {}" o:resourceId="[

                                C:\Users\user\AppData\Local\Microsoft\Office\OTele\outlook.exe.db

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:SQLite 3.x database, last written using SQLite version 3034001, writer version 2, read version 2, file counter 2, database pages 1, cookie 0, schema 0, largest root page 1, unknown 0 encoding, version-valid-for 2
                                Category:dropped
                                Size (bytes):4096
                                Entropy (8bit):0.09304735440217722
                                Encrypted:false
                                SSDEEP:
                                MD5:D0DE7DB24F7B0C0FE636B34E253F1562
                                SHA1:6EF2957FDEDDC3EB84974F136C22E39553287B80
                                SHA-256:B6DC74E4A39FFA38ED8C93D58AADEB7E7A0674DAC1152AF413E9DA7313ADE6ED
                                SHA-512:42D00510CD9771CE63D44991EA10C10C8FBCF69DF08819D60B7F8E7B0F9B1D385AE26912C847A024D1D127EC098904784147218869AE8D2050BCE9B306DB2DDE
                                Malicious:false
                                Reputation:unknown
                                Preview:SQLite format 3......@ ..........................................................................K.....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                C:\Users\user\AppData\Local\Microsoft\Office\OTele\outlook.exe.db-journal

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:SQLite Rollback Journal
                                Category:dropped
                                Size (bytes):4616
                                Entropy (8bit):0.13654087935378095
                                Encrypted:false
                                SSDEEP:
                                MD5:C7A8DFA06654AD46662D701D8029E36F
                                SHA1:05E790BD243FBD9EFBA09A4577C94C73BC25C96E
                                SHA-256:8ADEC8FCD4AF514FDF915C4EE9FB8382C7338D9AC1B02B3CAC2F5B68084ADB8F
                                SHA-512:73D12ABFCB26EA7BA7013DF967FF9DA3EE976D46D7E51F29C249AEF97EECB1933B45C7EC5B44D1B286D7B342B5C1DCD0221BB12BA9AA632CF6B3B3EC97FF80D5
                                Malicious:false
                                Reputation:unknown
                                Preview:.... .c......F. ....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................SQLite format 3......@ ..........................................................................K.................................................................................................................................................................................................................................................................................................................................................................................................

                                C:\Users\user\AppData\Local\Microsoft\Office\OTele\outlook.exe.db-shm

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:data
                                Category:dropped
                                Size (bytes):32768
                                Entropy (8bit):0.04470641479249482
                                Encrypted:false
                                SSDEEP:
                                MD5:C20C9A1A03F9A37134501F546C2C9CF0
                                SHA1:E62935CD47EB15DCC89F90E2975212643ABEB92F
                                SHA-256:62E3DBB9B4044E35A0903F7FE175FD95C89EC211F99A163FE6020EA2A8FDADBB
                                SHA-512:EB8BC767FFA797F32B9E94A7C43B72A843D70D4BB6F32A589D86FCE4A4BA552CAE31CBB254970F102B031936F9EA1F4F581E37CA49961FBB5DCA4847E41FE91F
                                Malicious:false
                                Reputation:unknown
                                Preview:..-......................O..U.QUg..F....18D......-......................O..U.QUg..F....18D............................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                C:\Users\user\AppData\Local\Microsoft\Office\OTele\outlook.exe.db-wal

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:SQLite Write-Ahead Log, version 3007000
                                Category:modified
                                Size (bytes):45352
                                Entropy (8bit):0.39532918916239307
                                Encrypted:false
                                SSDEEP:
                                MD5:B67B0FF4212356DD713D2468324933F0
                                SHA1:333C576DE742A92F1F98D93F0D73DC4426BE6BE8
                                SHA-256:742E6B2B71CDCB6E4CBBD3770650E15489599958709117FA1417C2A23CA14628
                                SHA-512:8C0E4603CBED851DBCB2F640F9791C8ADD02DBD820910DF37D367768BF235A81969A5BF7605E06AA5FA414A5074058DCDBB4F0177DD45E08189C92B028A800F1
                                Malicious:false
                                Reputation:unknown
                                Preview:7....-..........g..F.....za.i.........g..F...$...L31HSQLite format 3......@ ..........................................................................K.............................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Content.MSO\4CE0EE70.dat

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:PNG image data, 724 x 155, 8-bit/color RGBA, non-interlaced
                                Category:dropped
                                Size (bytes):6940
                                Entropy (8bit):7.859011477298395
                                Encrypted:false
                                SSDEEP:
                                MD5:ACB520B056DC72489E5F224A237602D7
                                SHA1:C4D9DEFA9310A744492F468CBDB40F71E27D229E
                                SHA-256:0DF891B067D8480DAB72871C71977E5F7D862246F7B28E211B7B0932525592DA
                                SHA-512:FD37DDBAB20A60F9E3F337F3E5382ADE36F4D76B7FDB4DA60AC306F290E77CF3CFA7B745494EA59AC35614E85BD3D9EA69B39CE58E35A376D628FB86F9118C39
                                Malicious:false
                                Reputation:unknown
                                Preview:.PNG........IHDR.............B..`....pHYs..,J..,J.wztM....IDATx....q.G....q.6..H@|#........@.n8.<..*.....P.."X2...`.3.z...eZ.0.......O...$...g~...O_.~......./........5......5......5......5......5......5......5......5......5......5......5......5......5......5......m..p=.....'..]UU..o^..~5..g<....$..._....z......P....n..~..j0{..w........YUU.. [.RU.{ Y.`.....mA}\U.g>...t.+.k...r.-._UU.?>..>..z5.-{.=....^....VT.D.5C$.....$.f.5...q].....F..R>..!n........Q..v......z>......`...}....-.A...`..u9.F:.....i ...v.^.X}[..(S...[.8Z.f7.w.....$..)u6.}Z...?....].j..~....|....r".......E....(...@...^... .N...o.........`6......5.v..Y...U_..I...H..._g....[....p=.V..S@...".<.c..&+GUU..c.w....)......d...Iq}.9........:.I.]a=.6w.MV.......D@A..$..>M....3.+....FA...nx...~rSPV...........L.k7..].#yp.&W......P..}...j0._.fn~..R...zO.....DCAm.j0..v{....p=g'E...@.M.....)....._R..8..........O....]..*C....V.^v)X...U.6{w..l........YP........A..+7W......7.....`v.....O.n..d.~%.......<.4.L.....O2.x.

                                C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Content.MSO\CF5CBBB1.dat

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [\012- TIFF image data, big-endian, direntries=2], baseline, precision 8, 522x311, components 3
                                Category:dropped
                                Size (bytes):44504
                                Entropy (8bit):7.868645285097747
                                Encrypted:false
                                SSDEEP:
                                MD5:547E970A4C8166C923F15590CE9E78B0
                                SHA1:BE906283ACEF7B4E8B9B23D337423B3B98197060
                                SHA-256:78DB11AF4FFA59C879F31DBEF28A45A8C9C8E6F9B4E1F7756FB8C9241310A049
                                SHA-512:7D43F724CC1FAFE1005FFBD51C36645724F115CDD2FABA532F50085FBFDBAF8C8D7DB46F46E8D2FF1F5B86882ABF0AC3E27CE22E9C9B3752269891D93697EBFC
                                Malicious:false
                                Reputation:unknown
                                Preview:......JFIF.....x.x......Exif..MM.*.......i.........2...........&..................................................................................................................................................................................................................................................................................................................00..........00.............t................................................................................................................................................................................................................................................................................2024:06:06 09:08:55.2024:06:06 09:08:55.......http://ns.adobe.com/xap/1.0/.<?xpacket begin='.' id='W5M0MpCehiHzreSzNTczkc9d'?>..<x:xmpmeta xmlns:x="adobe:ns:meta/"><rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"><rdf:Description rdf:about="uuid:faf5bdd5-ba3d-11da-ad31-d33d75182f1b" xmlns:xmp="http://ns.adobe.c

                                C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Content.Word\~WRS{B08EA0A9-EAFE-467C-951D-88D2E783D48C}.tmp

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:data
                                Category:dropped
                                Size (bytes):12472
                                Entropy (8bit):3.494728852079985
                                Encrypted:false
                                SSDEEP:
                                MD5:0FD5EADA78BCF3C75D53C2BA580E60DD
                                SHA1:740CEC580EC51F81805FAC1284DD42068F30C139
                                SHA-256:5CF4854977DA5B78FEA380ABCD3F420FBAB5A94768DA94337A2F9D0E89975452
                                SHA-512:92A35719659F166E3E2DE1395A47BF03836B00E64DF04197504FD089D36E32D2380A7F1AACFF8924F7F6DCF941A9DCEE82851CEE4BE6C1E03C654D1E890963C2
                                Malicious:false
                                Reputation:unknown
                                Preview:............L.u.i.s. .H.u.i.z.a.r...L.e.a.d. .T.e.c.h.n.i.c.i.a.n.......e.:. .l.h.u.i.z.a.r.@.m.y.d.a.t.a.p.a.t.h...c.o.m..... ...d.:. .2.0.9.5.2.1.0.0.5.5. .|. .o.:. .8.0.0...8.3.8...1.4.8.8.....H.Y.P.E.R.L.I.N.K. .".h.t.t.p.s.:././.i.n.s.t.a.g.r.a.m...c.o.m./.d.a.t.a.p.a.t.h.i.n.c.".......................................................................................................................................................................................................................................................................H...........................................................................................................................................................................................................................................................................................................$.-D..M............a$.............$..$.If....:V.......t.....6......4........4........a....*...$..$.If........!v..h.#v....:V.......t.....6......5.......4

                                C:\Users\user\AppData\Local\Temp\Diagnostics\OUTLOOK\App1728927143271581400_14AB2E12-A2EC-482F-9061-E7E05FD263B0.log

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:ASCII text, with very long lines (28732), with CRLF line terminators
                                Category:dropped
                                Size (bytes):20971520
                                Entropy (8bit):0.1808816945966778
                                Encrypted:false
                                SSDEEP:
                                MD5:C80D2EE55CEA52E15DA88287F42248D3
                                SHA1:320BBC7883CCA35F320CBD7F98DC9E1DB5EE9097
                                SHA-256:9D10CDA5989816A511C16687F5861E91D6B6C68A41F64D72F4CC8C252B5C2A59
                                SHA-512:91A2C122CE3787F0E6D4BE719F8B60A7ACF3A38A6444D9690A02E1C3E58B9DEADE51CC4B88B8FC76828E810B330BEFA970F04729525AB9AC2B42447D0BF6414B
                                Malicious:false
                                Reputation:unknown
                                Preview:Timestamp.Process.TID.Area.Category.EventID.Level.Message.Correlation..10/14/2024 17:32:23.312.OUTLOOK (0x17B4).0x1060.Microsoft Outlook.Telemetry Event.b7vzq.Medium.SendEvent {"EventName":"Office.Text.GDIAssistant.HandleCallback","Flags":30962256044949761,"InternalSequenceNumber":21,"Time":"2024-10-14T17:32:23.312Z","Contract":"Office.System.Activity","Activity.CV":"Ei6rFOyiL0iQYefgX9JjsA.4.9","Activity.Duration":23,"Activity.Count":1,"Activity.AggMode":0,"Activity.Success":true,"Data.GdiFamilyName":"","Data.CloudFontStatus":6,"Data.CloudFontTypes":256}...10/14/2024 17:32:23.344.OUTLOOK (0x17B4).0x1060.Microsoft Outlook.Telemetry Event.b7vzq.Medium.SendEvent {"EventName":"Office.Text.ResourceClient.Deserialize","Flags":30962256044949761,"InternalSequenceNumber":23,"Time":"2024-10-14T17:32:23.344Z","Contract":"Office.System.Activity","Activity.CV":"Ei6rFOyiL0iQYefgX9JjsA.4.10","Activity.Duration":14951,"Activity.Count":1,"Activity.AggMode":0,"Activity.Success":true,"Data.JsonFileMajorV

                                C:\Users\user\AppData\Local\Temp\Diagnostics\OUTLOOK\App1728927143272354600_14AB2E12-A2EC-482F-9061-E7E05FD263B0.log

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:data
                                Category:dropped
                                Size (bytes):20971520
                                Entropy (8bit):0.0
                                Encrypted:false
                                SSDEEP:
                                MD5:8F4E33F3DC3E414FF94E5FB6905CBA8C
                                SHA1:9674344C90C2F0646F0B78026E127C9B86E3AD77
                                SHA-256:CD52D81E25F372E6FA4DB2C0DFCEB59862C1969CAB17096DA352B34950C973CC
                                SHA-512:7FB91E868F3923BBD043725818EF3A5D8D08EBF1059A18AC0FE07040D32EEBA517DA11515E6A4AFAEB29BCC5E0F1543BA2C595B0FE8E6167DDC5E6793EDEF5BB
                                Malicious:false
                                Reputation:unknown
                                Preview:........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                C:\Users\user\AppData\Local\Temp\Outlook Logging\OUTLOOK_16_0_16827_20130-20241014T1332230027-6068.etl

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:data
                                Category:modified
                                Size (bytes):86016
                                Entropy (8bit):4.44290978913753
                                Encrypted:false
                                SSDEEP:
                                MD5:0C34C991F3153F16FA0640DAC4A2C58A
                                SHA1:286AD8060A74B2FD7492B0A67DAA0AD9E40E9771
                                SHA-256:03E2FB3177F7D3521496B456ADEC65ED7DB746CEF19DB23D7CE8625CC41F2634
                                SHA-512:6EAB4894DA75671AC27C3E293773971D795570B01710B8AE178589D3A36725717B15901A5ED72705B21A16ECCA22A070E166650FE0583E861D5AA48AF70752CA
                                Malicious:false
                                Reputation:unknown
                                Preview:............................................................................d...`........hE._...................eJ..............Zb..2...................................,...@.t.z.r.e.s...d.l.l.,.-.1.1.2.......................................................@.t.z.r.e.s...d.l.l.,.-.1.1.1............................................................`i..Y...........hE._...........v.2._.O.U.T.L.O.O.K.:.1.7.b.4.:.a.0.0.a.6.d.d.9.b.2.1.d.4.e.2.4.b.f.f.5.0.0.6.a.b.2.1.f.4.9.d.1...C.:.\.U.s.e.r.s.\.t.o.r.r.e.s.\.A.p.p.D.a.t.a.\.L.o.c.a.l.\.T.e.m.p.\.O.u.t.l.o.o.k. .L.o.g.g.i.n.g.\.O.U.T.L.O.O.K._.1.6._.0._.1.6.8.2.7._.2.0.1.3.0.-.2.0.2.4.1.0.1.4.T.1.3.3.2.2.3.0.0.2.7.-.6.0.6.8...e.t.l...........P.P.`........hE._...................................................................................................................................................................................................................................................................................................

                                C:\Users\user\AppData\Local\Temp\~DF91EA30DEE953D555.TMP

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:data
                                Category:dropped
                                Size (bytes):163840
                                Entropy (8bit):0.47554721688201446
                                Encrypted:false
                                SSDEEP:
                                MD5:A70B82464E1296ED65900EA172F3E607
                                SHA1:EB8256062CC23F55C3A8D4A94832708C52070B3C
                                SHA-256:70E2655CF3A9ECD1302EB96B67F8A3286E6ADDEAC3A812F4972FE9F3DE8F979B
                                SHA-512:03FB98C0021BE7A882DB7A3D75E8F6D0E7201B926F2574F62F65CB6D7D7F8A2D33F81197710914425708F3CFF05FF52BC0D54A917B7E0101B35EE51D3B21103D
                                Malicious:false
                                Reputation:unknown
                                Preview:........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                C:\Users\user\AppData\Roaming\Microsoft\Office\MSO3072.acl

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:data
                                Category:dropped
                                Size (bytes):30
                                Entropy (8bit):1.2389205950315936
                                Encrypted:false
                                SSDEEP:
                                MD5:04B967BD129BB16E7F6D46AEF0796F01
                                SHA1:83F83D9EBBD332A248060CCA33AE5151F97EBF3F
                                SHA-256:CC9EE1BED86783E3B842AC0D2370B0B510A441CDB8945E4687D4F5047D564CD5
                                SHA-512:18089F62C4EF0069A9807E8AB8765A199D6837FB8BC196D3F54620E029AE0BA662D702EFE0A407633844C53389D3575F6377F1562B8AB0AA250984DDE5EE4D8C
                                Malicious:false
                                Reputation:unknown
                                Preview:....k.........................

                                C:\Users\user\AppData\Roaming\Microsoft\Outlook\NoEmail.srs

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:Composite Document File V2 Document, Cannot read section info
                                Category:dropped
                                Size (bytes):16384
                                Entropy (8bit):0.6692743497266027
                                Encrypted:false
                                SSDEEP:
                                MD5:D7F5A09C56113AC874E462D1A50226DD
                                SHA1:3E646DA4E3CDA168F0BB386B53E9A3A97DF8512E
                                SHA-256:B21030ABB85083030446FB2F3371A5A4F6321550B7715C6FC24C658B67FA0ACD
                                SHA-512:44B831D65169FC37611ABA318DEFAB47920D1FDE6AB28074BE7FD26C8C9475126ECDBCECB0AD324A4A0E9668D1F50ACF24A7C788FC53182F33C094CC65BC9B81
                                Malicious:true
                                Reputation:unknown
                                Preview:......................>...............................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 16:32:39 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
                                Category:dropped
                                Size (bytes):2677
                                Entropy (8bit):3.989629807107503
                                Encrypted:false
                                SSDEEP:
                                MD5:46185C715848D410E1FCFABE4F4D2450
                                SHA1:012B8E04138B510DF4E6CB859839BB3B2C89C380
                                SHA-256:E386144E04E58E80583E919AE7262E3E4AC335D49D51C7D70F02C1004FA00B49
                                SHA-512:AD5B95CD1D0F661FC52E6320A1F7B91F914D33EC4D09035B730D3D45F37D92F3A13896BD65C5F10FB0F7365731DFE9F24BA8EB293F087CC90EA5BF290B131AE0
                                Malicious:false
                                Reputation:unknown
                                Preview:L..................F.@.. ...$+.,......^._.......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....FWoN..PROGRA~1..t......O.INY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VNY......L.....................p+j.G.o.o.g.l.e.....T.1.....FW.N..Chrome..>......CW.VNY......M......................W..C.h.r.o.m.e.....`.1.....FW.N..APPLIC~1..H......CW.VNY.............................W..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.VNY.............................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........3.......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

                                C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 16:32:39 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
                                Category:dropped
                                Size (bytes):2679
                                Entropy (8bit):4.002510505994462
                                Encrypted:false
                                SSDEEP:
                                MD5:0D90E7D9C7D4AEA217CE5CFD07708F42
                                SHA1:BED68145250CC0C6D83558B064A87A1A1B85D1DF
                                SHA-256:8F0DE04FFE01A95612B4B930C36253B3AC9A13C5DFDFAD2237873D2CA6786C8C
                                SHA-512:DE108F3AE8A0F2806DD11E9596FA3CF48502B1C1C18307E2C8D9C489696BDF62E970578ADFB7B24952AA7A55723B708A433ED6141E330DD7E1CB46EE7F0F6C37
                                Malicious:false
                                Reputation:unknown
                                Preview:L..................F.@.. ...$+.,.....\O._.......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....FWoN..PROGRA~1..t......O.INY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VNY......L.....................p+j.G.o.o.g.l.e.....T.1.....FW.N..Chrome..>......CW.VNY......M......................W..C.h.r.o.m.e.....`.1.....FW.N..APPLIC~1..H......CW.VNY.............................W..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.VNY.............................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........3.......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

                                C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:54:41 2023, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
                                Category:dropped
                                Size (bytes):2693
                                Entropy (8bit):4.0141506945646555
                                Encrypted:false
                                SSDEEP:
                                MD5:DE2035971DB5FAE8C4ABCF0C9B381505
                                SHA1:E7EEF2738AE7705185E4A6A192B5C64051739A89
                                SHA-256:468BE30A76E41925B872230FD846637961C4D56037BE76059F49DB6154FEAC00
                                SHA-512:EB2D4BCBCEED85EE8FDF8117F8973D51F371ABBAD6E1E829F6E4B522B24890B71292E2FD8B394100D0AC665B585BDBC867BB9BC2AB2E06C5A98A45A343768801
                                Malicious:false
                                Reputation:unknown
                                Preview:L..................F.@.. ...$+.,.....v. ;.......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....FWoN..PROGRA~1..t......O.INY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VNY......L.....................p+j.G.o.o.g.l.e.....T.1.....FW.N..Chrome..>......CW.VNY......M......................W..C.h.r.o.m.e.....`.1.....FW.N..APPLIC~1..H......CW.VNY.............................W..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.VFW.N...........................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........3.......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

                                C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 16:32:39 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
                                Category:dropped
                                Size (bytes):2681
                                Entropy (8bit):4.000952708047316
                                Encrypted:false
                                SSDEEP:
                                MD5:ED287A675964F07C88F979334FE1C9CF
                                SHA1:5D6993155B494FFC15E283A63652DAD22482B6D9
                                SHA-256:26A25435EF08BB3274D92F05CAEDECCFDB1AA7B6AF05BCC72A8126A28726AC29
                                SHA-512:DD976F62ED8796D6A077176F97F835ED1CC3A74C3E4F63001BF06668F5C4DCCEBAA586625FEC49206BA07D2E1F77BEACE9BA29E79D80A2982A87B94FC8A696E7
                                Malicious:false
                                Reputation:unknown
                                Preview:L..................F.@.. ...$+.,.....WH._.......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....FWoN..PROGRA~1..t......O.INY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VNY......L.....................p+j.G.o.o.g.l.e.....T.1.....FW.N..Chrome..>......CW.VNY......M......................W..C.h.r.o.m.e.....`.1.....FW.N..APPLIC~1..H......CW.VNY.............................W..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.VNY.............................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........3.......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

                                C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 16:32:39 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
                                Category:dropped
                                Size (bytes):2681
                                Entropy (8bit):3.992751215349797
                                Encrypted:false
                                SSDEEP:
                                MD5:4D56FB0DBEEAFB544C6B5B6C4BD86CA2
                                SHA1:21BB6AC86D70472B36CFD581B83E8648CD254752
                                SHA-256:94217F7C8D3BB402671B34BD660501EB87E6C2EF589B4C401807803A88EAFB3A
                                SHA-512:9FFE0641E43B0C7C2329876CF05E968349DA33D9C1F208AAA306E6E3BBA38C22012FEC32836973FFEB79C717A2E6536D533B308C49D35846145A2BB64B6B32B0
                                Malicious:false
                                Reputation:unknown
                                Preview:L..................F.@.. ...$+.,......V._.......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....FWoN..PROGRA~1..t......O.INY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VNY......L.....................p+j.G.o.o.g.l.e.....T.1.....FW.N..Chrome..>......CW.VNY......M......................W..C.h.r.o.m.e.....`.1.....FW.N..APPLIC~1..H......CW.VNY.............................W..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.VNY.............................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........3.......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

                                C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Oct 14 16:32:39 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
                                Category:dropped
                                Size (bytes):2683
                                Entropy (8bit):4.001821781712129
                                Encrypted:false
                                SSDEEP:
                                MD5:4FEC55F563BA1FEF5558DA70B3AFDBEE
                                SHA1:6E5F57BE235E89B1CFCE739F52C33895FE906ACA
                                SHA-256:1D2D9F5FA77924A031E97E47EC1F727B1BBAB192088E4C0C9F6518E8D8AEDBDA
                                SHA-512:415C60B0EFB1634C4B420F48C8BD2E190E55273A017092AFA508F1FEFCE6C7D23E9103B2231DC0C85946A376F32A5678BFBE39BBCC9451AD59AB3CB2279CA36A
                                Malicious:false
                                Reputation:unknown
                                Preview:L..................F.@.. ...$+.,.....s(._.......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....FWoN..PROGRA~1..t......O.INY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VNY......L.....................p+j.G.o.o.g.l.e.....T.1.....FW.N..Chrome..>......CW.VNY......M......................W..C.h.r.o.m.e.....`.1.....FW.N..APPLIC~1..H......CW.VNY.............................W..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.VNY.............................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........3.......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

                                C:\Users\user\Documents\Outlook Files\Outlook Data File - NoEmail.pst

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:Microsoft Outlook email folder (>=2003)
                                Category:dropped
                                Size (bytes):271360
                                Entropy (8bit):1.4728248415861875
                                Encrypted:false
                                SSDEEP:
                                MD5:A31692FA3F18305F8D818AD18F714C9E
                                SHA1:B80750E004CDCFB56A069B033D56AF7E5A79B05D
                                SHA-256:831B6B1ECF59AC659D7B55F38754A547DCDB5736393FA418AB895D611C98BB05
                                SHA-512:DAE3748D88CC25E7901DA1CDE3B5811212471D28550FA36E8334C79CC89C944885A268DCB5026D50CD6918DA70A29E68CDB6C9B06C709F0F9521655DE6685CFA
                                Malicious:true
                                Reputation:unknown
                                Preview:!BDN...SM......\...=...................\................@...........@...@...................................@...........................................................................$.......D.......C.......................................z..................................................................................................................................................................................................................................................................................@........~o2........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                C:\Users\user\Documents\Outlook Files\~Outlook Data File - NoEmail.pst.tmp

                                Download File
                                Process:C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
                                File Type:data
                                Category:dropped
                                Size (bytes):131072
                                Entropy (8bit):0.9831164023871994
                                Encrypted:false
                                SSDEEP:
                                MD5:EB5B5D7ABDB90F3CA62663D6945E6DD8
                                SHA1:BF9CED808DB5873B56D3486A55F62181EE161162
                                SHA-256:D37A26A573317A0A6CFED700711618F56334F873F8A110D5AEA96D45B7874D0D
                                SHA-512:C1EDE334259C1A100D63D228B758C4B408963FB090F8B451F59ACF868A8FFF0ACC6821F06775EE0640FCFD38E8BF0F3DD8D07E50654CF4AFF44EABBBA89C3A98
                                Malicious:true
                                Reputation:unknown
                                Preview:~..I0...O..............._........D............#.....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................[_}..D......Wa..0...P..............._........B............#.........................................................................................................................................................................................................................................................................................................................................................................................................

                                Chrome Cache Entry: 130

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:ASCII text, with very long lines (65536), with no line terminators
                                Category:downloaded
                                Size (bytes):1135623
                                Entropy (8bit):5.597239737827506
                                Encrypted:false
                                SSDEEP:
                                MD5:6CCF9EABBB17DC87843049F641256FF0
                                SHA1:EDBD182A1ECE045FF12689EC311306A373D5F2FE
                                SHA-256:75410C1E9FB7B6164F316DCA8E209FE258D3DC762193C972272C36DA45193B1A
                                SHA-512:1EAE4920F14F49BE2615A9837AFCDD11C86D8FA4A81B8624C5D9D3427B673024860B525A064D0238E31D34770BF4E2D9CC1B063E49DE6FCAB7808FE3A0CECE2D
                                Malicious:false
                                Reputation:unknown
                                URL:https://www.gstatic.com/_/freebird/_/ss/k=freebird.v.OYN12OJiYj8.L.W.O/am=wGA/d=1/rs=AMjVe6iFIsZ0gB83iGX8flEwO9w6rx4vmA
                                Preview:.tk3N6e-cXJiPb{-webkit-border-radius:2px;border-radius:2px;-webkit-box-shadow:0px 2px 4px rgba(0,0,0,.2);box-shadow:0px 2px 4px rgba(0,0,0,.2);-webkit-transition:all 0s linear 1s,opacity 1s;transition:all 0s linear 1s,opacity 1s;border-style:solid;border-width:0;font-size:11px;height:0;opacity:0;visibility:hidden;overflow:hidden;padding:0;text-align:center}.tk3N6e-cXJiPb-Tswv1b{background-color:#f9edbe;border-color:#f0c36d;color:#333}.tk3N6e-cXJiPb-u0pjoe{background-color:#484848;border-color:#202020;color:#fff}.tk3N6e-cXJiPb-EfADOe{background-color:#d6e9f8;border-color:#4d90f0;color:#333}.tk3N6e-cXJiPb-GMvhG{background-color:#dd4b39;border-color:#602019;color:#fff}.tk3N6e-cXJiPb-TSZdd{-webkit-transition:opacity 0.218s;transition:opacity 0.218s;border-width:1px;min-height:14px;height:auto;opacity:1;visibility:visible;padding:6px 16px}.tk3N6e-cXJiPb-yolsp.tk3N6e-cXJiPb-TSZdd{padding:2px 16px}.HB1eCd-X3SwIb-haAclf{font-weight:500;height:0;position:absolute;text-align:center;top:32px;widt

                                Chrome Cache Entry: 131

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 72896, version 1.0
                                Category:downloaded
                                Size (bytes):72896
                                Entropy (8bit):7.99302309612498
                                Encrypted:true
                                SSDEEP:
                                MD5:8AFBBEF49E32F6382F8C029DDA485679
                                SHA1:2FBD600C537D820F23D492D907DAC0BD98F0778E
                                SHA-256:D4C4F413055D77B989E4D3BCE7E3CBB45427F251387EABFF8F9709F4EE1B2BF0
                                SHA-512:A18299FDA6BDDE29D6036FADE0A234205D8BAA352BC15BB4AA846730D367EEA737DBB625D65FC49414906B2431290C14AB79A1C36241A206FABF80CECE385D29
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/robotoserif/v15/R71XjywflP6FLr3gZx7K8UyEVQnyR1E7VN-f51xYuGCQepOvB0KLc2v0wKKB0Q4MSZxyqf2CgAchbDJ69BcVZxkDg-JuqON8AA.woff2
                                Preview:wOF2..............e(...\.................................4.`?STAT....P..............6.$.... ..x..g..[...e..c....Vl#Q.....hsH.-3......7:...........*..].....*u.....................%?"7......^.C.....A..jbl)...M..S>D.8.b...gl%g.Z.&\MHZW..{.p.....Y*i5..&....[.LI..ye.j...W.0.p...xR..!E....k.8...Y...+....[...!ye...o#.>....'.T..s.a4.[Lk.k!.*.....d..p.i....k....lF..5~Z..zJ..X.T..lB.1...(X..Uf.k...|K1:..6....a.*..3W......;SvG.J.@!./*..^....v.'N.sB...7..o...a6q.x@k..Z.E-!W..n.K.m'......eu1 7..lG".3......+.A.\.]r..wp.\.\.... 3..V!.x.BP.-+M..BR.N....^F..h.{..uas....0.....Xr...x...=.C....c.A..<.#...#*d.w...<.d........ .G5\m..0RNqivB.xwD...>2s.E.].u....3.....P..`...-..pJ...$Fg...+.1.L;[..s...6.(.Y.+!f..}d..DDh.].3yM*PN#3.}.p....P.8].g..-5OI...'..Il]i.D..oR.g+.+t..G..32..3O...../..I ..bk........(.\.O.....1..c.....Io....e....W...*.I.AG...r:.E.4.......M>.[....!.._.?:$......'.oS...Fw.-...L..J,.z.(......}k.l9._&./d5.l...Vm.z...=...~..D.I......r9..k.6..b...

                                Chrome Cache Entry: 133

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 65828, version 1.0
                                Category:downloaded
                                Size (bytes):65828
                                Entropy (8bit):7.994888729247966
                                Encrypted:true
                                SSDEEP:
                                MD5:9187B9AF4CD2B2C0080F3E41671E52CF
                                SHA1:50810C3D6D3F3AC2155409DEC18086ABC3E17E9C
                                SHA-256:DDD58F9FE28DBDF8AA84F7F39DDDDEBB4CBFE5B0C74470ED72C7624C7742CC30
                                SHA-512:B2AAAFEE669B48C2E66F3BC010CA7FBEE9B2E9B17B11B9BA619412777DBCC35B37F8F098F0F6001428877FB72B0072F451F51577E98D15FC9B00292DAAEA3541
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/robotoserif/v15/R71XjywflP6FLr3gZx7K8UyEVQnyR1E7VN-f51xYuGCQepOvB0KLc2v0wKKB0Q4MSZxyqf2CgAchbDJ69BcVZxkDg-JuT-R8AA.woff2
                                Preview:wOF2.......$......b...................................b..4.`?STAT....P.....d..o.....6.$.... ..N..g..[ ...7..<Hm.f.. ..}=p..!v....m..... ....t.1.R@..\S..kq...xN.%................6.y.g......H8...Z....BH......J.2.R.V.v'l..q+.TI).e.lFmA(..$...-..t.sZ02P.LJP.~)+.z.F....L.M@...fC..|'..i..!(6.....d.2n.Q..YR.9.....#wQ..2.][.,i......\.<I..s.o.Q[....Z.....|.....*.../....=...R.[.1..X...L.Gj.Q..........'IBS....;.%u..T;.gh.y..d..2...7....yV.8..}Sty).\^........IX......p. .=.ze...F.8x..bC..h.Yg4...%......h.|..{`p.....~vx..!..p.v.....t.tB->j.Br.?.Y.. O.s...X....s0.g...].=.Ru.".rR....z......\Z.N.y_...P...h.CMj*!.z~y...?..i}...S..ft}u..N...x......0.l....Fz8U._..;42..bs.....+.zG]..[.Ot....wE..\..,v....GK..$}...sT..Eh...?U;."..f....x.:.i..NC1..._...P.|X.2.%.,....{3.51..*J9.W..}.z..RL.(t.P..2........M._.....+..u.X....(e.v&aI.v......J}....$..O..U..:4I}.h.S`0.....ZY...q.g|)X...!....VM.K.#..K.!...B+!..D...6@^.Q...E..6z....X.`..D;""....D...$..q...{.y......ui^-...

                                Chrome Cache Entry: 134

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 58012, version 1.0
                                Category:downloaded
                                Size (bytes):58012
                                Entropy (8bit):7.997002014875398
                                Encrypted:true
                                SSDEEP:
                                MD5:E88455150169496390368F9DCFC709C6
                                SHA1:672607F20C14829A1071441C031A8411196CFEA8
                                SHA-256:133BB5C5AF6B43D96660FF65F46464F2A03F7D0DEEB8E2A1F8E0AA7CE6770120
                                SHA-512:D9FCD7B9C17DFC2DC256E9537FBD0F653C706FD063859602FFD0229768FA1AF6A5B1D723F7A91AD1EEDD0021C21AEE0FBF894933E352ECF3F4D7B0EF655A273F
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wsf6.woff2
                                Preview:wOF2............. P...6..........................b..X..T.`..(.....m.....l..N.....6.$..p. .....p..1[.....;..z.o?@\V.7.O....).i...m...`<M].4.....I2.....m{...P.4.....Na"........6..Y.4..;C. ....<.!8..}R...i.2..UR%UR%S..uc..b.1....U2.=....F...w.....y..%.....t?@..8\..Y.....F+`..H7...%N.().J2...(..5..w[z..0..C..W.....:..V.v...k..M...%......}.>..._.{....^T.h..|..#.Z.......?d.m....J..+N.<=..........@......_&k.O.....P.FE...aDN.02.n.3j..#.U.....W.:......>..$......d..s..~.~w{.I%j.%1r....0..Q.k.../.{.......~...w,~........1.S..$.$..T..T@..Q.~...O....!.YB!..h..L..........9......)>.X....PMm....p...i.;....tP..&.O..v....61?..y...sfI:.$`.A.(....._.....]....{.;o-.H$....d.......:M$....m6.a.K%......}h..XND..t...s.O..."F.$.-.....Vf...d.:...R..t..(.<..{.{..J..O.X.7<.taU|.~.=..1.8..+&.w......4L$...B.f6'.k^..6....N\.F.4.2...$..U~......1. .m..EBr...D...>y...1... .t.'..jX..\j).2...n...i.....\M....X.j..0.u..`..@......g......._$.*l...B..[W...#.....R.....?...J..H.?......g.Y

                                Chrome Cache Entry: 135

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 1360, version 1.0
                                Category:downloaded
                                Size (bytes):1360
                                Entropy (8bit):7.749168790064011
                                Encrypted:false
                                SSDEEP:
                                MD5:248816E2428823AA2BA6B223B82EC73B
                                SHA1:EC8DD868A619356C0E30606ECA110A239CA0D83D
                                SHA-256:4524691B7547D0D9F1A34FF172D940BEDAFD7725A14A5BD1121807B7D993BFFA
                                SHA-512:DC940B38C218C34AC32B45144B07CADEE60E1AAE7C90F0E657CABD24C09DEC0E43E9B450F9DE107E5A78C2321F115752F8A741362E37FE7099DBA2830BB2E002
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUBiZQ.woff2
                                Preview:wOF2.......P.....................................0..j.(.`?STAT..t......z....6.$... ..D.S.....(.....(.F5Fe.....bS.!.}.^.|...w...........d....(.Tj~^.z..........]4..NR%....>....9Ym...QF..q`\&E...#.9......v....5..X.."...d...H..h...6.GR...h@....F......$"...d...+.....H....@.@`.a.B..u.x.J....j...........uD.`$hL.JXp.......0. .lt. ._.;../L.;.6..*4.X....1h,j:1fr...f...r.,P.8...Vd......+nY...4.17....j.`..P.. .. .. .....M.(.....h9.......... T...P......7$..$...k...F...*..Hs....|..@..%H*@, ....^)...q..`.8m./.........98f...M.c:.7S...c...`.w...B....>.&.c.V..{.!...c...x...82`.t.Z......3....y., .".s...Wj{...[.n....<d...cc(ob.I.YB........E.{t{........8X.....1....m=.c.z.`!.+.f....e..>5..Ha.9..<.I.........-.`.{..#c..ur.......r..[.z...TM.}......&'..'...o.{.....=.JY..l.u.lO..BcG[K..}.......c.....w..S.G..pG....j.Vr....$...".M..0..U|.hVX.+S.{..oV.g...m.m......Q.kKF_.......he[O.l..g...".......$....=_..@...}.S.....-..!...o.....j...OK...`?..'..p.._.H....B.B.<7..

                                Chrome Cache Entry: 136

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 18536, version 1.0
                                Category:downloaded
                                Size (bytes):18536
                                Entropy (8bit):7.986571198050597
                                Encrypted:false
                                SSDEEP:
                                MD5:8EFF0B8045FD1959E117F85654AE7770
                                SHA1:227FEE13CEB7C410B5C0BB8000258B6643CB6255
                                SHA-256:89978E658E840B927DDDB5CB3A835C7D8526ECE79933BD9F3096B301FE1A8571
                                SHA-512:2E4FB65CAAB06F02E341E9BA4FB217D682338881DABA3518A0DF8DF724E0496E1AF613DB8E2F65B42B9E82703BA58916B5F5ABB68C807C78A88577030A6C2058
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2
                                Preview:wOF2......Hh..........H..............................Z..|.`..J.T..<.....H..U..Z...x.6.$..0. ..t. ..I....p.0.VU.......1....AQ...d..x.....R..4.-.c..C$fUc.c..IX..@..~g.xs.....%...O...eJ.w..U.|.......%*..{.......U+..T#.S......`.n.....V.w.4..~P"..zk.%..../........=3...F.........V.FL..;Bc.........A.Uk.U1.b!Y.BH.DL...s.s...F.m.9a..GJ..1..#.`*m5..DI..X5#.........B.Akm.....&..0...{.L.....G......-(.......O4.@3....=......f..l...$.....j..NO...e.Y.tJ2J>F.(.c....08..e...~....D2S7s:.G'Gm........!.7.........r.c.`,.....~.).......c>1.......Y.g2^...T-1.7./r./....>...g.ov@u.?.U.+._...'M..,.,g....!g..9."..yBF.#r+.Ps...%.d=....U...5.b.$:`.4R.II.<A....Q)....e...k.....M.8.z....+.....5}..F........F.d._...].~-](.Lf....Y..W....;-z...;. .@x._v../.%UIm....=s...P.C....G...^..Q.!g.!b._.P....at..?.}....t.z...O(..Y6..R.2.X....k.R..K.gw(.F.K?m..R*...7....dj..7. .r.U..be.4......8.].w.B..B......Y..:..8.N..U...NEm...\.^q..f}.......{..6.". ...y-.Y...N.*+.M E..`......R.$T

                                Chrome Cache Entry: 137

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 31456, version 1.0
                                Category:downloaded
                                Size (bytes):31456
                                Entropy (8bit):7.993355498241683
                                Encrypted:true
                                SSDEEP:
                                MD5:8787E52101C989DEA9FEA21E232FA45B
                                SHA1:F112710595BAA904A62B68C2066DD34D7103E1E8
                                SHA-256:D5C4965A6E9C89DEE7D1389167C821976BFBF55D80E7DCDDFBCB5400B1AE01C9
                                SHA-512:CFCB461162FEED6F093440F8569689B5BA34A0BEDCB10A12A5AF2E470A7071EF0A587331AA920828F8E78792D8E5BF43663540887C247D7F1AB8A14CAA18E2E3
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvgUQ.woff2
                                Preview:wOF2......z.......R...z{..........................F......6.`?STAT...X.....(.....H..6.$.... ..D../..[.+...c........Yo..w..t.x/....A*;4.....`#eM.....v..c.w....V..).RD..ZK7NU..r^..bji..uke.Fk.p......LB..8.....d.OB...........[.$$!.u..f.......6.&0......r.B.u.-..q.../X...7...`?8..$.....#=Iv.+......L.]la.>.s...5@..p..g.....tk.......V....z..BG..`.8..~..........p.......B....}lp....d.z-....}w..\...$........)..u.&.U.*.U..........}.{$..d......'.Jg...B.....EpQI...'.....?.C.<Q'.DI^8U? .).*.......-^....Vi.%. <..k.) G..w.Eq]\...W..J...a.b....,.Z......p..B.Fm...F<~vN.K.Aw.?...s.}6dC.t.`..l.~l..."..-m...nY....i....i...$...[...g..*....@....],?.s.w.._.HE...L.A.6.6f.....F...U.....h...?x......8.....:3...{.SYIBW.].a%..P<;.Tu.~L..4k.dkM....p..J......*.v; ...a.ics.?...,~Bmn...te..?....O|.2..#^.......8*....\3.O......&...B......\f......U6.W.=.-.7...?....3...5....#...QU...W?.d.8V:n..\..tl...0.w.t[....<].FQdKR..\.).....%$qj.o....%..# Y)..cK....\...w.........(..}"@J

                                Chrome Cache Entry: 138

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 42132, version 1.0
                                Category:downloaded
                                Size (bytes):42132
                                Entropy (8bit):7.995169768536831
                                Encrypted:true
                                SSDEEP:
                                MD5:2661BDA6D2BA62A920BE11952BB94849
                                SHA1:7C1EE90488041D444D2289AE42C06D1958F34584
                                SHA-256:ADD6DDD7FEE32D58EBA385983AB7DCC9657AD97CDBD4BF4594DB38675847EDB4
                                SHA-512:D89115D310603052FF8E9C10F23322F64C74A6E4588F719E37A9368969122752357BB1BD3F45136D34AABE6DCEE717B462684A2D861931635B63AA876AED0719
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDLshRTY.woff2
                                Preview:wOF2..................0..........................$...r..4.`?STATH..*........Q..6..6.$..^. ........[...E.2v_.0.%.......-g..`.)..Wz.0.p.;.L7w".C...}........H&2f...i.B.(.s8....\.M..\..)kW.......z].L\.-....."q..pvGW.F..+0e..fv....5....H1Yu..&..U.]...fiQ.....'..3.-..X......PT....,K.5.....^.W..LB...d0...d0.Jv.%.........7.$....,QQ....".d....N.x.Z.?g..Z.LI....Q.{..D..j..M..L..<..1..CK.......4.......8....s..y?..=..D...\.M...?.U...N.7..._..dR)..VS%K./...G.M.?..[.B.s.o....I<%..hp....JD.+.z.....g..."...UX....T.J.q.B...y~n..}c...#R...B..|,.(.`R..." .G@l...a....)..{...H...........$.:*...g...(R.w......|.}6.<.M..J....5c36uN].K...E..r.c.{;n.7k.&b.._..O.i....A.Iv.N..: ]I{.t.B.....s.tz..wYgo..eJ.ej..?.....bd.%..."...C........bc...,b.BZ'........U..........B.....#.m.....c.6JJ..Q%0Z..Zh.D.60..0....N....;,..<.....g)......9.M.RE.......ET.:..\..E....o2..4.....8...&....w..w~(*...a.#.T....l........(W..f...6r..P..."......*@....@....3..Sq8.J..(....u:...%3.?T<....M\

                                Chrome Cache Entry: 139

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 4196, version 1.0
                                Category:downloaded
                                Size (bytes):4196
                                Entropy (8bit):7.947790388565488
                                Encrypted:false
                                SSDEEP:
                                MD5:92CFF5BF3D47970DEFEF49EBF56448DB
                                SHA1:163E2B870500AC648A075A008408C9FA73922953
                                SHA-256:AFD7B4CE1230FC5D6CB58DAEBEED6BCD09EBEE1E4414367596BC3BB33F62444C
                                SHA-512:49627E12E0B3DA7B6C5F616D3DFF3AFA24F2F7C247B46A34E6A99F0476863F071797CF265AAB2C5758CA265FFEC7E5846AE80715350795EEB40615124D2335B2
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/amaticsc/v26/TUZyzwprpvBS1izr_vOEDOSf.woff2
                                Preview:wOF2.......d...........................................T.`.....$..m....X.e. ..6.$.<. ..x.W..<...3.5]O.../..!.m`_..5~.X...;c...S.#T,.5V...*...`u......t..#$........A...2.p..l.{b+H........p.....@....3@..%....k..[....(....l..]cv.-...m..(....=....1..=A....5E....|..v?D...Xa...w@..J&.%k..)z.Q..8..4W..f.2H$W.h+t....$9..=..q.-; ..P.qJ..$.Ua+L..0.....'..u71..Bg.F..U. C".....!M...)V........M._s..mW.w..X.c.A....`n.....{.@..-J....B}...q.o.0..>.Q....|.z....BBh......sIX.$av_5...J<./..;........|h.......2.#..0F...4..b...}E..d..\......1..N]........`.0B.....?A.9...F....+I.BX.....(W....1.t.C....[.t...jo{..< H....F.+@..@.v......D.L.oD....Yr.("/M._..I...m....^...`....W.OZ.O..0.p!tQ..?.......a.1-e...Z....k.zb....j;!.&........m.-......;..,....`....3...?.!wT.{.R(.y...>.i.>..o......+.db..:b.....vj..)..\...2.&.nk.q.W..F..tM...._c)......@:.Z^..;...O..6".P.V..}x.*.4..b/....[.S......~4..c.^..m.....2..p..lB.K..O....>..K......C.m....M.H.Y..a1..:.0.Ki..7..(\.f*.3

                                Chrome Cache Entry: 140

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 64068, version 1.0
                                Category:downloaded
                                Size (bytes):64068
                                Entropy (8bit):7.995942836449749
                                Encrypted:true
                                SSDEEP:
                                MD5:EFD94F0EB81E50A5F75CFAC73257EFC2
                                SHA1:E8C4E0A66E8BA85DE2BDACA59CBCC55CED60BBCA
                                SHA-256:3A6C1001C36D7F2F8AD4DF369BAF38217AF3ADAAE94A5625651C05F4C3A38BD3
                                SHA-512:215837C93B5FF3247D5912CEC24216CFF64C16DC6B07F620424E9DB101DC6FDDC792B546F42744D74FF08785D6CA2143A6D45F5C1D4B84E357DAB942456BA42D
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/amaticsc/v26/TUZyzwprpvBS1izr_vO0CA.woff2
                                Preview:wOF2.......D......(@..............................>..l....`..d..$..m.....h..&.....6.$..X. ..x.....<[..q..].)..].....'0}@..2%~.s..<mE.*..n..,U.......d2........XV...Q..Hexa.f.lE.&...c1....T..4...e..Uj....{..qL2.p........ZG..(.Y*Kz.-......M.=.5q.3.f..C_ ..Q..Y.F.p6..E..T..$...H..I3..g'/M..OE../.n..M/=.f.......G.r.h.......i)k....I.c...Y.`.{.O[WCe.]Um.F&Z.u`"..........S.W....Y..}"..i..T.....gl.......H.m..b..Jru.KH.*...$.PI.J.....+..q.$.p.m..ZY.U.g.@4..:VAV.N.ed.....\...~..s..........h.h.....d..A.....~..Q..O...v.;....l....,..KJHI.J..E.b`4.).}g.y....mz......!:GBu.).....>.`.....>W...Ad.,@.!.D............T.S.!..jf....N......WnU....X.9..t.....F..JNz0....x=..2.u.....!.....=....}.M.DY....b_R..W.*<..?.l.!.[.m.6.T.X..B;h..^.B).u./g...].....$.l7....G,.ff.J..L........%..?..6a..G.........$......X.U.e.>....v3.m&Y...nX> .V0p.I^.Jw\.b[...=3..P..<...Av.k.......Ia.....x......Ja......jSH.......P.6>Qi.*..m..b%N+F.......O..{.s.O...XqR.j......P...)/i/..&.R..i6.......iw.

                                Chrome Cache Entry: 141

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:GIF image data, version 89a, 1 x 1
                                Category:dropped
                                Size (bytes):43
                                Entropy (8bit):3.16293190511019
                                Encrypted:false
                                SSDEEP:
                                MD5:FC94FB0C3ED8A8F909DBC7630A0987FF
                                SHA1:56D45F8A17F5078A20AF9962C992CA4678450765
                                SHA-256:2DFE28CBDB83F01C940DE6A88AB86200154FD772D568035AC568664E52068363
                                SHA-512:C87BF81FD70CF6434CA3A6C05AD6E9BD3F1D96F77DDDAD8D45EE043B126B2CB07A5CF23B4137B9D8462CD8A9ADF2B463AB6DE2B38C93DB72D2D511CA60E3B57E
                                Malicious:false
                                Reputation:unknown
                                Preview:GIF89a.............!.......,...........D..;

                                Chrome Cache Entry: 142

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 1664, version 1.0
                                Category:downloaded
                                Size (bytes):1664
                                Entropy (8bit):7.800722707795522
                                Encrypted:false
                                SSDEEP:
                                MD5:F19AC4E354F2BCE2E6341B804767E11A
                                SHA1:A197ACF3FA097BFBAD358400BD07EAD8865F6FCC
                                SHA-256:A631F36B97689FFB94AFDAEF8032E78479D469894A2B18F007DEA806DC1172B3
                                SHA-512:F923634378A4236509C4F2C0514D4FA23B4DE4A28E24CB29EDAE81CA9204A9A8DACCC0621FA440FBE193AF51F4B72CF467229C04FC8240EFF2517D2B679D454D
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4WjMDrUfIA.woff2
                                Preview:wOF2...................#.........................2..r.V.`?STAT..|....T.c....6.$.6. ..h.[...h.QTo&...`.XwB#4. E]=|..7.s..NH..5.+P..B.g)..P....3.Q.n.<..Q..........5M..i).N.H.../..{.....D....P.V.e.j..R].(.U7...`... ..p....FG.........Jy...O..j...,..x5.V.r....t`@9.....#..#.8.....o...ik*C9.R.LP.. ...4.hx.+.(WJ.R.b...y...+..-.T.H(b.@...;...9.AM......!.....=.b.e...C......E.HAV...B..H. .^.h...j-+o".Z9."...P'\9@....s,....o...J....,.<.....Y....R.-.G.\...x..Ya.;...P..DK;..(..........@.@&..#.9..l....'..w....x... ....-.y...Xh..y.....1.O.&.n.O..T.9.....b....V...L..jy8U...;..mj_.P.`C~.(W.........\......O=....0.!.....x.V.nA....b......A^|..i t..m#$.\h.6B'...b.9....&d....zE...|.L...P..".....+3U.....v\.aS.%."..B?.(|.PO*.`...*...T9..e....Gq.qn..3.L....3.R....L..w........D.m{...........q"..q.fKx|.)4\..6.....x$_MC..m]:o.?6...0.X..G.e.c4G....{.9.......9.Y.9.53.l.Q5....;.._,.KS....By......J}.....z...'/~d8zm..P.e..a.9.f....F...fp...fm.F=P...P..M.N..H.i..k"2..~....|.V.s$.Xd...&>[,..

                                Chrome Cache Entry: 143

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 45536, version 1.0
                                Category:downloaded
                                Size (bytes):45536
                                Entropy (8bit):7.993627122085847
                                Encrypted:true
                                SSDEEP:
                                MD5:3C33061F3F982F2234262844D0FEE4CA
                                SHA1:C4BB9DD654244A9EEBE0D6F12ED4C4E853B18252
                                SHA-256:6504F1B88B6DE335A0FC2D1802EF8B000F6569792F509D4635128DC0915D6D70
                                SHA-512:9EF8F96559F614C2BBFE33D0F385C0A7723E6E95DF9EDA30ABFB6CCE879E5F39E22138773D57749FC762F12EC23E11ACC9DA0B6F4D99CD0A39D50C8F56B10D4B
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/playfairdisplay/v37/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiukDV.woff2
                                Preview:wOF2...............4...{..........................X...L..,.`?STATD..t.....@..Z..j..6.$..P. ..`..U..[...*c.({...'&..!&F................6.uf..S.l.V...i.x.........].D.,..K..@...:un..7_....D..K-M.mJM#....m.mV.A..'...~l.4T1.4........iF..#d.......G~.....>.r:.r...NC+..U..75..6...g.wp7...............J-<.h%....i.P_......P.R......)....BS.9.m./.*.M.>@....1.(..?..,...._.y.....J'...RP/c.&B..J..h....X.C...UBG|T.u+..e.I......[6...~...&...1.1..}......J..`....\?..aoZQ/lhL.}t@EH.y..ZA....HjP*.g.%d..<.....v._L...]...`.a.#<. <...KS......I....t..@[V-...^.xe.&...n@do.Y"....%T@p0..Xp..........>.}....7...D<.M.......ID...m%.A2....[a............j..;IJZ.....L.e.Kyd5"....OO8S.AR...~.c)....A.8..?8...RW....{..>..P(z.4.+............#/.....*9..j........`..N{h/tb...^.....t:c.57u[...`E.f..\..~.......D..UQ..~..x.hJ.H....Z.F.B~..S...[...q..-f).....mP....l.E..#.R...[...0I...0...h.eyGzu........_...Uw...Cr....+.B..9.&....~~.g..Z..y...^.p .i....$...,...$..Mm9.m.i&....n'.n`]......y..c:B;.

                                Chrome Cache Entry: 144

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 1748, version 1.0
                                Category:downloaded
                                Size (bytes):1748
                                Entropy (8bit):7.840525971879245
                                Encrypted:false
                                SSDEEP:
                                MD5:6DBF91A51C653C0BA098FED5B34ACC55
                                SHA1:599EBB3EE593F5C381AF2429993AF2FD01610C0F
                                SHA-256:39DBC90B7B4C41925E680E6EA13E84E975E936AA8DE9B04A8C401A332FBDE393
                                SHA-512:61FF9094CF2248DB64F8E5B665F096E76DA8DAAFD8939E0B4AF0B147BD43F848D201779B079F1F486EAB8C1F9BF3192443B6BBEC1D80B76D2227C446569203E5
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu5GxK.woff2
                                Preview:wOF2...................x..............................4.`.f.T..<......G......6.$. . ..t. ..I......m;...$I9I=c>...Xo./*M54k.I%2.@...%....].P...!......R.I.(>3.W:3*.8....L.|7...B..{S..........E$....N0F.S-...5...H.S.....(.......R..q.%..p./.....X'....z.......csz...i8...3b..@/..q..0x..@....}...N.*._.5$..!ympz.6.........zL....x.!.}...q...B..Q.a.2....y.....Y{=.Q.g....m%2..k.7/G.g.o..L~ ..J.?/*p.*.E^.l.J..+30..=4.=.......@..0..p.m..(..iH..a+|...7!..<3.0."A.v.......&.l]....,G.)..R.CI..KY.\B........fU.....)..b+..S..L1k.]..n.iXq]}c.2.K..t\...B.c.]G......I..9.+fT.U.....=.n9B..s..n.[Q.TXg,]..=m....L.~..Y.%l..\.HM...r..5S9.<.....%\C..._5.6e....1G..Q\.M.....4."R...J..C.".L..!z..d......08MozlZ./F^.E...*.....x.Nk....#eTn&.Q.PK.)..H..=&....@...\..(..w...{)I.y)..j....e.u...}g...tZ...q.y.X.5....{.........0.eQ.R....7.2..Q.2.....~.u2.S.JyE.}FJW.4..+K............o$&6......j.E.5....~|.%5.H.;...eS.....o.._...5..v.]_..g..;. g.&........./....#qU. ....w..o.v..[..y..2......])

                                Chrome Cache Entry: 145

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 39708, version 1.0
                                Category:downloaded
                                Size (bytes):39708
                                Entropy (8bit):7.995101602136828
                                Encrypted:true
                                SSDEEP:
                                MD5:F311A35802EF8FA61FA06206EF76278C
                                SHA1:6179B813223849FAEB0835B285A05E5B2A8A4AD4
                                SHA-256:FF8C9A38C906236A4025B752DA6A83403DF53F22F0FB8B88155B7B04A5229904
                                SHA-512:44459C9D934891747B017A83489905325CA9CA5BD4232953AA4AF6770553930C8D2844115650E3FD5415971454DE866EF57EECF7C4ADFB1F1002601412A78390
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Ew7.woff2
                                Preview:wOF2.....................................................T.`?STATH..j........7..`..6.$..<. ..X..0..[.~..I.~+.H..)&y..a..\16.........`.^...@..6........IE.L3I;a.@..(..!..{d7a...]A_1`.(..|....0..9b.Z...`u6.CT..w..w....`..?..q..?.....e.....H_.~...z......|.P...J..m...W.."..f.%...D..ew..&...?QJF...a.f...&.,.Q.r.....L....D....-2/..a.{....A..M.....2k.7..&.5.d.#....z....a.<. |!..CfVV.>8s+......K.fZ.Z..H....\.[..u....d....E........J...s..so..yg.-.....R.o../[.D.8....].&r}.H..$_..........9......\...I...;@....fA..u..I] .#........s.[....D.z.vd.B.-4.....7.#./.oe./iY.o.D!;;...mv*..&a..J(J.E..*....L...M]....t.........m.+7YD..i.6.>i.*..&!!. .%@. .R.jJm.NO.....vj..u;1..Sk.........L#......k..Q....p....W..^..%Nx..'q..~....Y.z2.U=A.Rh$..h..f..w......s..r,......Z...m.3.I...u".!n.i......|.w.[.g^.!....Y.1.O.7..i.@.p...zM.%c.!....e,.s......c..e..e......~.Z;MmB;1....J$.....Md.L"..mB..>&.R ......].r....0..l.... @X..l............u....kE.@.P.P._jy.Q.......A..@I....."

                                Chrome Cache Entry: 146

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 58892, version 1.0
                                Category:downloaded
                                Size (bytes):58892
                                Entropy (8bit):7.995858140346243
                                Encrypted:true
                                SSDEEP:
                                MD5:386F2237074CC59495783195EA1F1295
                                SHA1:81B3014B28B6E7EF2FDB39ED73D18EE38F1C36A5
                                SHA-256:66A070C331573AA324FA2DEAC1A1B42B2D58E9660268555EE382D857E651E33F
                                SHA-512:CEEF23D705E9D11C1FAD6D6704F2D1B3A59EE65B85CF240483484AE213E30DC2B59370BCD2FA61016256468A319B5033FB6F48C505BBCADA79B7489C1EA36CD3
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5Ofg.woff2
                                Preview:wOF2..............58.............................t..(..T.`..(.....m.....h........6.$..|. ..r.....1[&.q.....uW..g.;.T.6....d..^!.X.r.C...|...J....M2....x....P...M.@...1{.%....lJ..N.&..8..n.- ..a.c....~:...pa0a5Z...E.^...i.@M1pD.K..zb2Y]h..n.h....~.../...-..X.h7.J..TR%U2u...6..|($)i`......<.,..5Ex.X#...w/r.....W..3.J.G....Pe....b.........Y2.~.i..fG.....gq...... ..9.x....?.S'}S.d.C..;..L.%..+...*.=.{...9C....,.D.s...F..)2B....T..h.H...H.U`.......*.......Y8...q...%...e.++#+}...tv.^4D.$.....e......`?.^o...P.Y..q..0.L.../.......v...%.1...,2.L.(..~.............<......4/c..zIIW..;*+Tlf...S...]..b.J:.NA:..A........f....R..A.Xa.Ph..Ii.......B...........J..i.j@..ZW.........IV.....P..`.+!.2.......d~..<$5...S*....{....e..-..U......g.SH.}...........~........,.R.d....P..t.?..E.A,...UI...z7.7..x8.....0.. !.cs.~....U. .)..l..{>.DdS......6...]x....X.=.*.@....T..\..9?O......bD.`D........pYq.S.t..0lE...WP... Cc......lZ.C.....Cwp..V/....k.f^......b+

                                Chrome Cache Entry: 147

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 37488, version 1.0
                                Category:downloaded
                                Size (bytes):37488
                                Entropy (8bit):7.993533567842416
                                Encrypted:true
                                SSDEEP:
                                MD5:2A7652831C7699009E0C25DABF93430A
                                SHA1:6B0A143D883AFB8FF3CA2BF55B448AF8B68F2F89
                                SHA-256:C3525FCA875BF7203E92F116E0C5532DD5B5FE0F0CA5E12C6C4C8B9BD77566E2
                                SHA-512:5AB58B2A6B9A39A2F14E824E9FA0005D2A615A95AD1496025C1DB67EB6B7F9F67ECA26EC96665EFDBCA86AEE237300714E52705777503DE1D0F6EFCFD4F21D0E
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4WjMPrE.woff2
                                Preview:wOF2.......p......................................p...r..r.`?STAT...6.....X..!..P..6.$.... ..h.....[.|.E.bl.......nRU...9...s..9-...C)(.*.Z.....".d......!..i.i...6E....A..f.-G.dL...L,%.Q....,..Qs..........'.kF^.3,#w..!p..Z.z..~.?2./..^.... U%U..#.y:.f...Bg....G......y...eT......;..~BPZ.=..4R.Ti...nb.oG.r..j...P..J..u.....4M.<.).Y.K..i.S.E...%-...>b..(AqH.kv.@"......h.|g'.F...T.....lM.c\..^.{.w..)M..$H9...&.}2a..I...v.fL...J.5...6.Y...(,.aO..`...?..M<.x....A..N..!"O.).zU.7=.S.V....{..p.t.|.n...Y.......m.....G..a.R.PI..(i.......DZ.lb..`.`ba.5.Q W._...9..A..O....}2.&t.)-r.3.).n..N...v.-.;g.a.'.l...6...(..}.#....Va4..7..`.C..(...,.U...uQn.s....5....P....,...T 8..v.<...j........B'c....Ah4Ba$F.Y.sz.eD..?..w..*.N".......).o7...j.l../E.5...[J=..O|s...r..5.C..^7.:m.Zy.`.......K./....}x.?.u..............mJI%..UhiRK..._..ME....-6.......)c.....2............?..X..D".#..}.........mh..nm;...r@r.~....i..@..?_R..x.*..Nm....p8..p.i........\._...P=.u...v..W..eCmw

                                Chrome Cache Entry: 148

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:SVG Scalable Vector Graphics image
                                Category:dropped
                                Size (bytes):199537
                                Entropy (8bit):4.705288692920627
                                Encrypted:false
                                SSDEEP:
                                MD5:53BB04865802E54AC8AF8A4B671BFA1A
                                SHA1:C330354F2BD383D4A86E0CEB9E93539457E09215
                                SHA-256:42E25531F7AAC9B4400C3C6E9ED2FF0B60F2972C79553CD09293EFC17B2335AA
                                SHA-512:BB951E8EEE524C84B2E939F93B96E7E4808FE3F0781F769134A2687B0D0F5C9177C26CB0DF1CB65063630A69A87A73862613B11AD61A73DB468DB56431F182B9
                                Malicious:false
                                Reputation:unknown
                                Preview:<?xml version='1.0' encoding='UTF-8'?><!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd"><svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1" x="0" y="0" width="26px" height="10682px" viewBox="0 0 26 10682" preserveAspectRatio="none"><g transform="translate(0,6738)"><path fill="#5F6368" d="M11 17h2v-4h4v-2h-4V7h-2v4H7v2h4Zm1 5q-2.075 0-3.9-.788-1.825-.787-3.175-2.137-1.35-1.35-2.137-3.175Q2 14.075 2 12t.788-3.9q.787-1.825 2.137-3.175 1.35-1.35 3.175-2.138Q9.925 2 12 2t3.9.787q1.825.788 3.175 2.138 1.35 1.35 2.137 3.175Q22 9.925 22 12t-.788 3.9q-.787 1.825-2.137 3.175-1.35 1.35-3.175 2.137Q14.075 22 12 22Zm0-2q3.35 0 5.675-2.325Q20 15.35 20 12q0-3.35-2.325-5.675Q15.35 4 12 4 8.65 4 6.325 6.325 4 8.65 4 12q0 3.35 2.325 5.675Q8.65 20 12 20Zm0-8Z"

                                Chrome Cache Entry: 149

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 64164, version 1.0
                                Category:downloaded
                                Size (bytes):64164
                                Entropy (8bit):7.995558995622934
                                Encrypted:true
                                SSDEEP:
                                MD5:8C548F65E1DC239D9F8F4F3F52457E59
                                SHA1:9A1F4B732127BB53F1F17EA6C905A886A456FD62
                                SHA-256:1382DECC32857B4DC59FAAFDF57088D9F6917B18ECE82CC47F84010224008C05
                                SHA-512:EB3B25CA9B4F01B96E08BDA238FFB704EB9D80DEB13CACFA246E27BF4686605A829EAB23D328ADFF1E03979306E95A30494EACD26BB13F3021CFF6C17DDAB5F5
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/spectral/v13/rnCu-xNNww_2s0amA9M8qsHDafY.woff2
                                Preview:wOF2..................>..........................F...>..".`..p..F..v.....0..y.....6.$.... ........J[....4..^...o..$....CL.@.@Q.....a........}G....mY..P;.U................O.R....lr..OP.A.D...jkk..P,...T.*...[...u.C.>P5.pd..W..'.7..25...2UA...{..-.r.*.46.....T..&..k.s......}..\U&C.}Z[.Q..Y.y....o .Y..d ..@..l.J!...0.9c!...K7..J.......C..n.0.O.........UrF,UJ*HD.".Q./.b-..7C.. ...C..P%.\........jk..Q..u.$....74..+fn.B&.z...[...$.2U.J.7..z..'\9...9{.eu..Z..e}.d...|...y.V.,e...P....e.:.Iv.?...(.je..d........@..?p.R.b..//..W.f..V*f%.....T.K..b..I...q9.}..!/..tZ...5j.....g`.^Tp....p.g._4......(.t..?3sjV....F<.=S_.......kR-...T.......\.o..}/\.O..7....I........G......S'.$$}\@..zGp.J...Do......@UU.,.W~.,......7.H.6...$../....U.Q........F....r..4.]...%.8..<.-R....'...U.:?.4.'.fY.1vl..!h.&.i.p?...p.{...<.s..p./}..2 ...=..#......{.G...@.p....@.4k.`...u...........m_.....G..]....Y0....(.#F.."" .*Q.."..(.....Q.3.JI.J..r^....Glk,.....n.(..D..e...jw..KS0.+.H....

                                Chrome Cache Entry: 150

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 44316, version 1.0
                                Category:downloaded
                                Size (bytes):44316
                                Entropy (8bit):7.994860790146446
                                Encrypted:true
                                SSDEEP:
                                MD5:F4B0DF592BED06B7E1AC275945D8EE61
                                SHA1:DBD15D6534D7ADEF8E4AABA1A89E7A2CE22B16FD
                                SHA-256:C8FB82DF9421FA2DE18E11B89200EECCB188DAB713331F06C6C8782AD5CE5437
                                SHA-512:BE5EA92F8F78869D5EF69D96B2688FD6637E3BAD65C15AA83E118C2C66357B9417993BECCD752B12A68A6C0E6ADB7D1E69F6FB1E8221CC608EC33726DED7C69C
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/nunito/v26/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNiSnc3jw.woff2
                                Preview:wOF2...............0..............................$...x..4.`?STAT@..*........O..6..6.$..^. ..<.....[......S.....t..`..k...W#..EJoVXt8~A..W..y...~J.......%..^.p.</."..u..k.z..4.P.8....q.L8 3.y9.X..........%..+.Q...#...].......}.p.xE6.......aYp......4...V........{wy...i*.i^.IG.G.dw...7...5.,W...#ch....h..O..l..z.......W...Ge.9.R}.._....N......L...lv[{7?.$K.o......W...fn..,.+..^UIGd...'/.<.es..;...*...F....N@rIO..(......C..Mx....1.uo.@z.rw....b$....;.&P..'...a...t..?f.bq....^....#...?..=....<L..xc......!........{...3..g..+..X.......Dm......I...B.J2+v.3.D.E......]."..(...s.a...V..RCH.d7.@j!.R.$.......X:....l......;[.r..........3...............U...... '..;P.o.@>.e.... 7EP....#..R!n.:p.g.......l'..~.YR,.r.TG.....r.I.W.!.c/ .w..W..U..a/.....e_[........{..J..dM.F.._..[6[].lF.....d...P......~...3?.1...g...d.kK.RJX..../T.....C..y.c...P.p"..!....y.W{;\/].....e.P.....,....0...._.'....g.s\<FBH .w.nF..<....XAq.3..{.K&..%.Z.;......!.*...Z-.

                                Chrome Cache Entry: 151

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 1256, version 1.0
                                Category:downloaded
                                Size (bytes):1256
                                Entropy (8bit):7.767364329523114
                                Encrypted:false
                                SSDEEP:
                                MD5:6DD9A903A2068612E4F0D7572E284077
                                SHA1:A87CE7B07CC3C4F09AF54E2310B97F4678935F7F
                                SHA-256:35015DC730E404653F8B00639C287105BC4D09A58C9235659B99150AA1B220BA
                                SHA-512:19001F23C7697FC0838D828A34D56F85658E188E2AF704AD117BE0A60063DEF37A8B960548E4BED40612F855CA9C26947382111634B841A9628B8AAD9DA48BF9
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/lexend/v23/wlptgwvFAVdoq2_F94zlCfv0bz1WCzsWzLFneg.woff2
                                Preview:wOF2...............(................................F.(.`?STAT..d....t.`....6.$.*. ....[...c.H...xC$BE.4"S.....4.........t.b.L.Z.......Y.l..h../........`.!..8..I._2a.n..............)..o...om..j..t.....H^c...'<.u>..(...; .)o2>...a.(..@.BS..M..].....bs.[.7#. .....TYb.MI./sL.6u..2.`;X.0..-hS...wV..E($...gR..{q...9.F:.F:....D...@?.....?Q...."h._..."...\.....0.v...p..C..... )....@...P`8L`8...`.0......@..RB._w....d'D..........T..q.F....Q..v...u.r(.m.....%..x3B...!.r..[....{!..........S.$...m...&8.hHp0=...y....*..lyr.....({Wo?...bE...n~.X.'....&.%iAtQd..M...l....Z.....Nj.}.7....^..>.L......B........h....f...Cg.s.....oRP.G.....&.7..K..........9I...L.)S..Ub|05~..).5..Z......H..ad:..{{..g8..0D.Q....G.LP.....P..........B......-ut..V!...T....m..#..[.)oEe...]U...M.|.5LT..b.........d.D........J..-i.U,n'.o.!nm@...........F}6^....u..e..W.a...~.v(..c.x..._d....r^.).:........@.0....`j..XG...5.`4..W....K.c..5...<.7...%.<){....'(....N.A5.......bP.[m.`T.xp....+.....X.h

                                Chrome Cache Entry: 152

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 72628, version 1.0
                                Category:downloaded
                                Size (bytes):72628
                                Entropy (8bit):7.993648298573699
                                Encrypted:true
                                SSDEEP:
                                MD5:0F19855AD401FDEA3E11BFFE0D4E265B
                                SHA1:44227668D70FC0289CDF988867A619E8E2960CE5
                                SHA-256:9A0BEE97B056F9A0972D23BA254990353FD2FA23E11F0B4BD34B25E1AB4A0A4D
                                SHA-512:339FF2A58B0DE425C410A21011901823B2D833356D5BFE586D251E33F5D594C68D62F016C779CA5509B46E648EF4809FAAA603029B656A0730ED5D46E7A48BFF
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/robotoserif/v15/R71RjywflP6FLr3gZx7K8UyuXDs9zVwDmXCb8lxYgmuii32UGoVldX6UgfjL4-3sMM_kB_qXSEXTJQCFLH5-_bcEls0qp6I.woff2
                                Preview:wOF2..............P\...P..........................P........`?STAT....P.....T.....6..6.$..h. ..R..?..[.....w.....2..N9tq.Y.&...!vk...j...f..cl.t+;...pY.......q......I.....................G|n......?s.... ..$@..2AQPD.Z...D...S.0...M..R......+!.Wky.P4.Z.4[..-....t....g.-V=....1@..\d..>.Z. f#.s!.#.....@...!.O..>...d.GB...qF#.9Gr....r.S_..X.#.:.#Sm.\(.!.7H...[.1.Q.+..x.2..1..}w@.nb-.....fY'.).w$:..C.D..[+..h4..u.fP.r..z.G....B.U(.r *..... v.......8.1......P.6/...Or.$b..'...wb|..3r......$.....HI.p....6.hp)$.....g..."2s.gFh.&*..$...+.....%z..R..R.V....9....D.tN.w.ts3i.I..&B...l*|.9..O..o.-..O.s......6.p..A)..2z[A;.b/....fi..%V..Q.kn..A...F..6...Y..=sy..q..jN..U....ae."m..|d.i.K.T......p.D............*.y.)...qu.^.\..I....5.;....y$.R.P.s.oV..+Vk..'.3...C...;...io....Y......}|.6...lYhaf....]..d7...b..4.u....5.3F*.@..-I..$.....N.f....T.....C..1...?`.%dM...fHw.9.$0-..}.pF.ia;7.N...(.!.A........V..wF7.J`<9.J\...S ..i...3.cn52.2?........D?.Il......mE%.

                                Chrome Cache Entry: 153

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 34184, version 1.0
                                Category:downloaded
                                Size (bytes):34184
                                Entropy (8bit):7.99444009565784
                                Encrypted:true
                                SSDEEP:
                                MD5:1ACA735014A6BB648F468EE476680D5B
                                SHA1:6D28E3AE6E42784769199948211E3AA0806FA62C
                                SHA-256:E563F60814C73C0F4261067BD14C15F2C7F72ED2906670ED4076EBE0D6E9244A
                                SHA-512:808AA9AF5A3164F31466AF4BAC25C8A8C3F19910579CF176033359500C8E26F0A96CDC68CCF8808B65937DC87C121238C1C1B0BE296D4306D5D197A1E4C38E86
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/googlesans/v61/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
                                Preview:wOF2..............X......................................4?HVAR.k.`?STAT..'...J/<.....`..(..Z.0..N.6.$.... .....K..[O;q..w....z.....%.O.t'*.R...*.6.{..@.k......C.B..Z.uU.}..!.".....]jK.`&.\..4...US.......x..C...1g.:.+.?.t<....J...C.p.c..J...........V..H1.6.~..n.]~"R*>..s....7....FE1.S/m....}..<....M..IHB.._8.d.3"......8..t.;f._~X.A.&n.1..t..v...n.._............eS.......!V."v6.xm|M..O.z..,....,...N.1......y^7...^^.$.!.$<V..B....."j..!2..Y"..{w!..Z.[...]H....*M-.*".8j.<..X.[{..UI....ML.J.?4B.....]..4..()^Bi.4iD/..]....../I.-.J[D...........c...)63.U.rFpW5}.9$..2...t..:.MW.c.N...lK...3^......./..v. !...;..v.w./^S...\U....|.......Y9...a.z.....i..$J.U...Ks....0Q*.........iy.....M..@..........&..c.kh.(<.O.....~..#.-.gfw.t...nbo...]0'G.!.2.8....y.K..;%......_).W..?.'.DTR.H....G.Al..d......g>.6..(.."4l...3$...\_.W}..R...\.o........`..q...@XG.wpN......!....&...\.&.....N..5..n......g..bR......HV...s...e..r.0ty&.SW.j.{I...".m .s..T....l....@th:..aM.

                                Chrome Cache Entry: 154

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 60648, version 1.0
                                Category:downloaded
                                Size (bytes):60648
                                Entropy (8bit):7.996486811511533
                                Encrypted:true
                                SSDEEP:
                                MD5:0E46400F3E919D0CB74068D448D9DAA9
                                SHA1:BE7343C9CFB3CE5388F38F2A8D302ED8AE8C7D6D
                                SHA-256:9FC62F0847BBEB2B050932BC04E8D60087955E2BBE3659FBE89408F4C62F2F7D
                                SHA-512:6A2850BADBC3AC36022E717DA1811808B16997CA6EAF58D106F8F3F9D15ED1F3C1094E8DEF9F4717DA31B8D7EE8D46812FB1C473F916059FB47C83BE47CF344F
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/spectral/v13/rnCs-xNNww_2s0amA9uCt13D.woff2
                                Preview:wOF2...............`.............................H......".`..|..F..v.....<..0.....6.$.... ..^..)..J[$x......uo9......S.$.N....q'.1.#fF..mS.M.g..j........_..@..........,.6g.....$......Z.j.t.A...E.^.N...E.1.O.!`>..q..\FD...k.x......(.....X.{.XZ.N.<. "...*..:.o...u.J.@.mp.........s.., F.r....^......F....#.b.......GA..N.jKQo.S|*f....Z....v.B...=.. B.}@..;.....DzEBF..QP4J'&.4z...+.tn....T.Z.K.....n..VT2nF..e3.]..p..6.q+?.h.3.~..+.I/)).&.....{.......h|.q...F...W.-)........v.$ZA.N. ..y?b....kt....Q.J..f.....RJI.Z8..{.TI.d...=...R....V.9^>v.z.*.[q...^4...\.2T;..Q..TN....b.s.._..mF..5.2!...d.,\...:."/.q.t.K)...#..5.....M.......kI......%4.3... ..i4#....:...E...8.U^.....)...]"G.r..yB...`Sf..........[~..s`.:......I...x.$@.RC..8m...Ig.............:.0..:..S..F.q..f4048..........6...a....5.*.2..|.....i.+........J.....coi...].....W...e....=..62O.F...1.....X=..}.=.b!...I.i..Dr..."4.....ZR.$m...}.m#..U..PEt...:...|...6....}.`..#..#F..#.......M...

                                Chrome Cache Entry: 155

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:ASCII text, with no line terminators
                                Category:downloaded
                                Size (bytes):40
                                Entropy (8bit):3.895461844238321
                                Encrypted:false
                                SSDEEP:
                                MD5:F8BC0E6A30BE8B892F5675CA35A469CB
                                SHA1:1A558296BBA9C20D67FC33098A6AF19511AABD82
                                SHA-256:EE7C434C1742F4120B16809CD9FB8C626BEB67A1AA9121D9073F89390BFBBDC1
                                SHA-512:DB0081530CEF5CC7F9B7EEAEAEB7AD98883A64F7ED5400508D4163FF07F3EAE4C9C3B4BF60F29ED32609002133399EA36C4C6579A23EB4732CF8070D9D3C5E79
                                Malicious:false
                                Reputation:unknown
                                URL:https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xNDkSHgnXMQMoPSIzLxIFDZFhlU4SBQ2RYZVOEgUNkWGVTg==?alt=proto
                                Preview:ChsKBw2RYZVOGgAKBw2RYZVOGgAKBw2RYZVOGgA=

                                Chrome Cache Entry: 156

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 36840, version 1.0
                                Category:downloaded
                                Size (bytes):36840
                                Entropy (8bit):7.993562127658027
                                Encrypted:true
                                SSDEEP:
                                MD5:3603078A7B178210AC17285E145B4A8C
                                SHA1:D57FD925F10C47D039FCDA3CC8A2A12D23E134C5
                                SHA-256:DCBAF64460B4DB78BA16EE6230D2C90215DDA58CE8C285348D624FE32DBC470E
                                SHA-512:495F1BD5DE5FDBCB73865CBB3B5E966906E527E6E9204D62492F433BEB4E8E31F2934A64FADDF805E44A8488B36E8C98C12C70339177F6F10541331CA7F407D7
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/comfortaa/v45/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4Y_LPrE.woff2
                                Preview:wOF2..............................................p...x..(.`?STAT*..6.....0..r..R..6.$.. . ..P..#..[]}...M...*...".l..U....Nn..@.T..$E.c.8...g.....oJ.2..........%U.B...yr.... )K.\saQvb.Q.8.B{r.y.I....!.c.SJ%.rN.$.kI.WB.../<.....i5x}.*.|a.km.YvB..jFHY%...I..S.k^L3..J.V[..:...ng.j.y......L....WJ.S..;Cg....N..oQ..O..E......c....|..V.........S...O{..7....~.......}x.[.1F.......I..}DR5.7q.|..."M.F..N.....P..%....B.q...P..I.^..fs....B...TO2...[]..csj$.<......$....}J.<v*O...Z[..w.5.q..G.! .-%i.".*..&b....`.*U"H....&.e.">a.r......=.....).Fjy...p...O.u.;@s.L....U.m}.lb...-e..."V~.........G......m......qm.n....).A.3.Y..x...@x...s.j3H...p.YS.w.p'..b...w.6..o[..M......!.....%<..x..C..&.k.XK.-.Z.*.z..k|...........nr......x.X*..q.........^....7X......K.I'..y{i...H.7$|.ka.._d.l.q..".l.?.*W...`H-Ja..."{..zF...H....!.SqX>2..!....)...-.....S.?":Qz.....]....;...\..-...t..h'[...s.p!x..3]........'^.]f......L4../%X..>?1.....A...,@.+.i..?%M-..C.{.J:........./..E...l..

                                Chrome Cache Entry: 157

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 41676, version 1.0
                                Category:downloaded
                                Size (bytes):41676
                                Entropy (8bit):7.994510281376038
                                Encrypted:true
                                SSDEEP:
                                MD5:C619C10C85CA3DD6D4B57CC59BA2A32A
                                SHA1:92A0D8AC165CF6788BE6259F901FBA1994886D91
                                SHA-256:C129C2C42B2F1D5AF9BD5B9858F0EBA8215EE3EBF61FBC99866E107B2C0AF4B5
                                SHA-512:BEC65C9991CE74CED298E75A30369CFFE9D40F26B7EA10B7E16469D32AEDBA85889E063B2A571F0FB38B8E560F3CB26E7551A4FC6736F4EC2B6DBCE614E141A0
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDFwmRTY.woff2
                                Preview:wOF2...............4...f..........................$......4.`?STATD..*...........6..6.$..^. ........[g......U..r.....+g...n.-..6H..'>K...;....+.v.......%.B.............U...<<.8jF.2.2|.)P..pcv8/q.h..r."....T....E@r.1;.$C.R.Zr.^..Vos....[...nJv..:..]..$.p7%Sb...QIt.q........I.:..".0=i1.p.,..fh...8...\.?..n.o...O.....7j..*....YC........H.W8."...c.....O=.....wjXy..`..,.T..[..$...w.....^....|...s....+.....Z....m..E...~.tl|6......:X..........20v...6V.x....M..K.6%.oD.m....F..<?.?....=V...#..R...Q.._...#b#V.....)*U&.T)!..PJ.....O.^.+y.c....AO..%I...r...g.....-Ff.0...;<?..........c.....1X.0b......3..T0...3...<E.......N.9-1.Y..=...#./.o...."u9.hl#T./D6....F."t..e.%,.s...&.#P..G..n..Y.*....X.N..._h.j..~..j..*W.$./.T.>.....e......S)..`...~......Z.c.p.q.P.HP..oO.}...2..R..(S.Ph.a..0.{.k...o".x...t2..tB...r.}g.<...otO.I.....Q...a.).......3p:S.$.......IB........!Ja%..=...36.......SD..+.T^%.k.m.u.W...3.9.L.p.?..'H.MK.`.. .v.]...(...u...(...c...r.|k.......i..]....

                                Chrome Cache Entry: 158

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:SVG Scalable Vector Graphics image
                                Category:downloaded
                                Size (bytes):1510
                                Entropy (8bit):4.0355432662902455
                                Encrypted:false
                                SSDEEP:
                                MD5:CECA603BD198568DAB00E6DFC3120706
                                SHA1:871C637521103DCE8F6DF9AAC0D1B62900D511B8
                                SHA-256:F4AF84EFE90891185D9B29A841181CA9D26D7560864EA47B6CD709D3B964AEE3
                                SHA-512:D3F4A52AEADEA52FDAC82C8B9A7427897359B43C3FBCF3E79AACBF30571B3482C991C5346069CC5DDD474C3814CF6507065C4914369C1236FDE641A934A08706
                                Malicious:false
                                Reputation:unknown
                                URL:https://www.gstatic.com/images/branding/googlelogo/svg/googlelogo_dark_clr_74x24px.svg
                                Preview:<svg xmlns="http://www.w3.org/2000/svg" width="74" height="24" viewBox="0 0 74 24"><path d="M9.24 8.19v2.46h5.88c-.18 1.38-.64 2.39-1.34 3.1-.86.86-2.2 1.8-4.54 1.8-3.62 0-6.45-2.92-6.45-6.54s2.83-6.54 6.45-6.54c1.95 0 3.38.77 4.43 1.76L15.4 2.5C13.94 1.08 11.98 0 9.24 0 4.28 0 .11 4.04.11 9s4.17 9 9.13 9c2.68 0 4.7-.88 6.28-2.52 1.62-1.62 2.13-3.91 2.13-5.75 0-.57-.04-1.1-.13-1.54H9.24zm15.76-2c-3.21 0-5.83 2.44-5.83 5.81 0 3.34 2.62 5.81 5.83 5.81s5.83-2.46 5.83-5.81c0-3.37-2.62-5.81-5.83-5.81zm0 9.33c-1.76 0-3.28-1.45-3.28-3.52 0-2.09 1.52-3.52 3.28-3.52s3.28 1.43 3.28 3.52c0 2.07-1.52 3.52-3.28 3.52zm28.58-8.03h-.09c-.57-.68-1.67-1.3-3.06-1.3C47.53 6.19 45 8.72 45 12c0 3.26 2.53 5.81 5.43 5.81 1.39 0 2.49-.62 3.06-1.32h.09v.81c0 2.22-1.19 3.41-3.1 3.41-1.56 0-2.53-1.12-2.93-2.07l-2.22.92c.64 1.54 2.33 3.43 5.15 3.43 2.99 0 5.52-1.76 5.52-6.05V6.49h-2.42v1zm-2.93 8.03c-1.76 0-3.1-1.5-3.1-3.52 0-2.05 1.34-3.52 3.1-3.52 1.74 0 3.1 1.5 3.1 3.54.01 2.03-1.36 3.5-3.1 3.5zM38 6.19c-3.21 0

                                Chrome Cache Entry: 159

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 40412, version 1.0
                                Category:downloaded
                                Size (bytes):40412
                                Entropy (8bit):7.994886632164997
                                Encrypted:true
                                SSDEEP:
                                MD5:7332D3B0FA7568125CE6FE9EC4D55151
                                SHA1:1822E1EF270F935E5FF8EF83BBE8D0C27CA3CC55
                                SHA-256:17406C4E4926C81DCD8F3832B79428CCF82F5A3AF17C03AFD0E37F13413851B7
                                SHA-512:EA96241276323BF4835A2247FC299149E8154EB4121BD7F0846D3A514774ABCCA51F7567C348D4E9BF9FEC94F7CBF6E2374C89DAAEB397E1B8B7D3D417FCBC4C
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/montserrat/v26/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq6R9aXo.woff2
                                Preview:wOF2...................y..............................8..Z.`?STATD..d........6..b..6.$..@. ..<..:..[.......55...m..)...WW.7...[:....n......?.......2.1M..%.......[..nBdf.E,2.^.E..L..j.k.k.m..,..7a.."..Z.O.|QFe..1Y.>...C.6x.RZ?...=]..........9U..2.......i;...Off.h..$$.~}s.....\b.T. .IH..."..]Xn......GT+!....(....w1...hn.....j.b.Q.Su...6...VK7..vI.?.yFO..sP..E..Fx....(; ..i.).P..).....S..5...z.Z..w....z......N...3"~Lf}..z7.....T.k...]S.)~VX..v.b.......VBN..7Z...7I..1.u@<6.*.m.8.....eV...48..%tV.<?.?...V..l#7....X3.6.XdZ.....]...j..QcH....g..6.Y.}....B7.6K.w...C...8..%'1..4^M...Q..H.....6.t..'.M..?S...u.#z...0`..cltm...J%c(.R-...!..)"......3.}Q..K..)Y-......4...U.d..(\...M7..i.AB....y}..~...}.7$.41/%^D44.d.H?..x..@(..*\.`.w:B.o...t.{|kZ....|..`Y$k...~..c.}...7.(w....p..1.l<...o.........5Y........8...DR .`.........k.3/.;.....+...F.....d.3....')9.......X.j;u...C..|...]..)!...'.7.&..a4..O....;g..A.b...c6.-"..2..X..Wgo..{5h.]A".SLw.)..:$l..4.-c.q.v8.k...dk

                                Chrome Cache Entry: 160

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 41284, version 1.0
                                Category:downloaded
                                Size (bytes):41284
                                Entropy (8bit):7.995064975939542
                                Encrypted:true
                                SSDEEP:
                                MD5:87595E01EADD10489540C2BC9532C831
                                SHA1:E3EA9372FC50308AFB080F0AA0C1B544873E7896
                                SHA-256:BED2897761BB0A09F1993AB40B94D35B1E2B3C57039379B888503C6EAC7DCE70
                                SHA-512:62B45A99DDDDAF13A857380714567ABA0386E2C0A8A89FB378C1123645F693FE4062F075D143B153021FF556F9235F76275F3D73DC79401FCCC29E405AB09F9F
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/playfairdisplay/v37/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_qiTbtM.woff2
                                Preview:wOF2.......D......................................d...z..f.`?STATD..t...........\..6.$..4. ..\.....[.y.........v.}.$.oU...i+s.:o...,.}6"v;|t.......?9...i..PQtn..]..S....D.V..0s...N.y.4....."S....3.(...c..j%...-...Q........ .{.943.h.....N...}..P^Gt....._U.....\3P..k...q..C~...%..eCYv..>.....u.....Q..kJ..4Y.~%31R..2...H:.{...Ue.j.!j....-z..$.*a...$N.$>4I...l..a...._*?../.L.b....]..n4..Fe.j...&9U..j..NX...D.U.E.....).^.KR..t..........L.o..P..U`.z...N.G..~......8*<*$.....(Q@..$.*.$$O@J..+.".%RF......h..,..}....%.k.m....>.NF.....u.y...O.+...`.0;8..i..).;.z...|s....B..;...!R.kY.3..|.g..i.|.f7i:.J)t1dI....A.D.........%..T.U..h.D....a.'AHO.<.wo.y...B.'....1.e.....X.....G..q.M;K.p.x"M.Q.g.G..|X.w......."./n;.i.......b>..........*M.J.I!D..A...s..J!...<...hx7.n...t.-.r..m.$b....m.B....B....~*.:UI!...{.Bd..!,.=...r...@.d`..~...sw..d..E..=...C.U.$%.M!...Mz...O...`.W...2....N......R......9...F..r..'..?...{..h..a.../.@@.O*Z...:@......"y?>c....O..uw..h.H

                                Chrome Cache Entry: 161

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 1416, version 1.0
                                Category:downloaded
                                Size (bytes):1416
                                Entropy (8bit):7.811377924682188
                                Encrypted:false
                                SSDEEP:
                                MD5:E2D07BCC7B3C68F09F3517CD26B496A9
                                SHA1:1BC266CB846B248865B43E53CCD7C8117A70B7BA
                                SHA-256:CC93B0C6CCF01063B9788530CA2389636059624B18599DE8EDEF8D4054255474
                                SHA-512:35DA3761609813625AD4A9FDF9253617CE61EE350F08B2915ED38C66A50DDC2AD35B5D0D0E4B8993103E4E40A116621FE2AF2D0A9C4D71D18F9B1098B82215D0
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/robotomono/v23/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vq_QuW4.woff2
                                Preview:wOF2...................1.........................4.`?STATH.d....x.=....6.$... ....6.....Q.0N.....1.C\*...d..T...'K.......s..fC..h.....F..fiM.m%j . .B.(.40fBM..9...S/M})...K..6.j...?.ok....n?Dv}..?_W..V....Ewo....Y..x............<._7"Pa.Hd....r.E..n6:.::/}H.dP<...w\..... z.....H)'...,....Y.....e...b)...k...2..<l..8...~gY.U.M"R!.zM2.\zM\.|...c......@..0....h...s.#...]r`.!}....4..d.&......gf..n.d.....v>|s.P__G..GKBa1w!...#!.A.....mNq...Bw.P"p...J..5.....D..Q'...B..L....CK.. [T$,.`.G...IP,Y....A.J.l$6..A.}...`..8..;..]u....&.[....m.@..]z..C......'Z+.l.4*..Xc.. ...%.d....x.s_e..P..J,...81#...>........+.8.K!...E-C...%.,......'.....2{Uy.4.....xH.....B.......Mfn......`.q.X7u0r0...q....q..d...O.b$'...r.:PW.C....P..S....XS...2.....K..P...u.S.bd.@k..'.o.:.z.=...?/.y..m~>#\..._.Fi..w[[.<.t.i.cG...8..`.d..R.9.L....D......4.`.@@$Xjp}.1l.G....]$.;..L...9.E..o..\..e..#...f..p.=.~.qp..)J......".L....:..].....oS.u&....F.6.....5....H5.eai..~..x.[F...E..y.7l.m...s...

                                Chrome Cache Entry: 164

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 1516, version 1.0
                                Category:downloaded
                                Size (bytes):1516
                                Entropy (8bit):7.795649487038873
                                Encrypted:false
                                SSDEEP:
                                MD5:314C94C93E0D293F63A2C41F8E82C852
                                SHA1:A648B285460C78DEADB882996F09FD75D8ECAB74
                                SHA-256:CDAAE795074CED24AD382F9F21C4F2E3443D3DC27BF6F75AB5CB43D54F23F009
                                SHA-512:25F6E258E641129B61CD4CB37111CFE8C55E44627B7F79E1F26FCC023600A418AAE40303BEDD1F2CEE18943D844744AEA0EFAE9496303DCB737462D59604705E
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw_aXo.woff2
                                Preview:wOF2...............`.............................,......`?STATH.l....d..."..6.$.:. ..|.w...`.QTr:.|u`...C.(J........c..4.".x.....C>..Okl...T.E...D(].4K&..n^....s......+.\*.fP$.'.D|....Y<...w.D.I.t.\.<...,..?A..\.K ........A..N].'..u1....,".^..J...5......~.f.....-.3..4......S......H....H..H...0. g.6..9+&.C... .%..!....$.$....2...$..u...Lx....$RK.!..%.......26.A=.W.........A.......J"_..8(...G...n9....EcPE3.....DS.p..A.....PZ%...Jv..D.Id ..j.W./..fO.....Eq."......Z......r..rQ...2.. ..G.....dT^.#.......c4D|S..G.!s.J@.P.....P..c.....1.wI.Hed...g..H.)*..R.........7.NU.8...R.8..}**B[c.;..U...]_..........O.WQ.....LjT6..C*J.......s..w...ZR2.Uc...0.=Z...td..Bn,.U=.a.QQ....kW.p....~,...M.q...^.......Dbb.kqV....')..Q<.(.V.3.%.......~...o.&..@..`.2....>U...&!.bWOeEge.&Gf....g;.v..u..dUOV..GP.....^.?.#uR...N;F.4=._......f./jw.h...z...S.:..XCZ..W\r.{M...)...-..J.x;.l..Qu).*?.......;.hf.J.hp`..: ..u.R..on_.V..~'.a.j..F._.r.....FU...n.$E[[...........x..|..n...P...

                                Chrome Cache Entry: 165

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 64968, version 1.0
                                Category:downloaded
                                Size (bytes):64968
                                Entropy (8bit):7.991086223648761
                                Encrypted:true
                                SSDEEP:
                                MD5:38B24F2C1F13FF0FE4D75754439192B1
                                SHA1:B85F7DC43D9DA69F8C5034F682D047EB3C5B6B9A
                                SHA-256:61514A54C59FA9A216CBD4BB4FC24B58E3956088D4E0FBC85BB63160E874EFCC
                                SHA-512:431383CB96CF7DA1E372F46DDAB4AD0DF26F86370EF52772BBA352D46CAD51B06D0662217AB945D217C1B040AF228BB114DDBEE5D3C708D589AFE6DEC97167E4
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/robotoserif/v15/R71RjywflP6FLr3gZx7K8UyuXDs9zVwDmXCb8lxYgmuii32UGoVldX6UgfjL4-3sMM_kB_qXSEXTJQCFLH5-_bcEliotp6I.woff2
                                Preview:wOF2..............N....a..........................P...,....`?STAT....P.....h..U..6..6.$..h. ..j..?..[....^..v..|.Ia@.Z.T.&1..s......m....2.bZ....i...H{.O...m./..*D..|.................,?.rs.._..{...&7....C...@.X.V.(>x..H.B..IHk&>..(g.PV)$.9.^j.H*M)...KPm..I...]...:...^....Uq]3.q.b...JM$+..f...0..y-.E.=j..C ..bP..(^..s..x2...F..9.J..=.K..CE<'."..#n....*...w*D/..H'.~...r..\.bBRZ.....]..g.M..-.u#'j].G.&?Us/..W......r...b.|.:U.m+\....-.W;...7.".Df.R]...)..;.$l.<!=..i.|.Wt.Y...Z..Fe..=.^....z.&...;.R...;,...G..ic..#...Rg.%..M.?.N.I.<U.U..$.c..hh.!.KY....jp/.zP..}.....V5.....<.....4....A..Q._...9...i.......e.J\:.....hh../.zR...[g........^. uu'D[!..@c5.......(\.`.ct....4.......!......~S./...{=S.M..x.[..e...e..J/9......R?..LUf...$..L.....G......7.+.?2..NZ.'y.....%1....j<........t..w.S..OxfN#sv.b/..cw._.-x@.I.....G...a....^.B.&../..~?S.G...L*/..<....h...*yWy...k.,...e..w.3}V..dE]Z.....?.....(..q~n..Fb..`....jC5t....2...,....a...? ..S@.7...%b.%Z...*O|...K.

                                Chrome Cache Entry: 166

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:ASCII text, with very long lines (794)
                                Category:downloaded
                                Size (bytes):799
                                Entropy (8bit):5.136793733935219
                                Encrypted:false
                                SSDEEP:
                                MD5:184E07AD7E7E6A1A6EA3A15795083ACA
                                SHA1:F6E8767A16B1AA10CF84C16D46FFB33BA0CBA6FF
                                SHA-256:224271FF5B8F6ED9509B3F219768061634CF5E168D53F06D8C30346A51040EB9
                                SHA-512:C98DED4FE0C3E89E5FEB986AD196F5644253D15DA1DBEE5DE932B21657449C8DFD4ED5F76730E352EACF54939AE6D90458A7DF07A6257A00F35BB6C16727E5C5
                                Malicious:false
                                Reputation:unknown
                                URL:https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&gs_rn=42&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
                                Preview:)]}'.["",["detroit lions dallas cowboys","nyt strands hints","night sky comet tonight","nobel economics prize","game freak pokemon leaks typhlosion","reddit no healthy upstream error","national hurricane center atlantic","denver broncos pat surtain"],["","","","","","","",""],[],{"google:clientdata":{"bpc":false,"tlw":false},"google:groupsinfo":"ChgIkk4SEwoRVHJlbmRpbmcgc2VhcmNoZXM\u003d","google:suggestdetail":[{"zl":10002},{"zl":10002},{"zl":10002},{"zl":10002},{"zl":10002},{"zl":10002},{"zl":10002},{"zl":10002}],"google:suggestrelevance":[1257,1256,1255,1254,1253,1252,1251,1250],"google:suggestsubtypes":[[3,143,362],[3,143,362],[3,143,362],[3,143,362],[3,143,362],[3,143,362],[3,143,362],[3,143,362]],"google:suggesttype":["QUERY","QUERY","QUERY","QUERY","QUERY","QUERY","QUERY","QUERY"]}]

                                Chrome Cache Entry: 167

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:ASCII text, with very long lines (532)
                                Category:downloaded
                                Size (bytes):538571
                                Entropy (8bit):5.5544245450910505
                                Encrypted:false
                                SSDEEP:
                                MD5:1E689CCA517955A8270CE9803E88BF93
                                SHA1:A0AC0DB01EC0C7EFA721E75AE9D545A0ECECE2E2
                                SHA-256:C93728E7341CA538E55663903E5C18D034E31F2DF6A058B2F27920A37420F50B
                                SHA-512:9408A375F226DCAADD159D9847392167D426CBC16B96B1D9F769D117069501EC2EAA482526D52C2C33671CC66209FDC43F2595D49535D4B28A2B40C05222A2B3
                                Malicious:false
                                Reputation:unknown
                                URL:https://www.gstatic.com/_/freebird/_/js/k=freebird.v.en.zIS2MaIzuyc.O/am=wGA/d=1/rs=AMjVe6iDXYbnNp7GJjKtCDbS3bXEPJSKmg/m=viewer_base
                                Preview:"use strict";this.default_v=this.default_v||{};(function(_){var window=this;.try{._._F_toggles_initialize=function(a){(typeof globalThis!=="undefined"?globalThis:typeof self!=="undefined"?self:this)._F_toggles=a||[]};(0,_._F_toggles_initialize)([0x60c0, ]);./*.. Copyright The Closure Library Authors.. SPDX-License-Identifier: Apache-2.0.*/./*.. Copyright Google LLC. SPDX-License-Identifier: Apache-2.0.*/./*.. Copyright 2024 Google, Inc. SPDX-License-Identifier: MIT.*/./*. SPDX-License-Identifier: Apache-2.0.*/./*. Copyright The Closure Library Authors.. SPDX-License-Identifier: Apache-2.0.*/.var ha,ka,baa,caa,daa,eaa,ra,faa,jaa,maa,oaa,taa,$a,ab,cb,vaa,waa,lb,mb,zaa,nb,ob,Aaa,Baa,tb,Faa,Gaa,wb,Jaa,Kaa,Laa,Haa,Ab,Oaa,Saa,Taa,Uaa,Vaa,Raa,Waa,Fb,Xaa,Qaa,Eb,Yaa,Zaa,$aa,bba,cba,eba,fba,hba,jba,lba,kba,nba,oba,pba,qba,rba,sba,Ub,tba,xba,yba,Aba,Bba,Cba,Dba,Eba,Fba,zba,Gba,Jba,Lba,Kba,Oba,Zb,Qba,Pba,Sba,Tba,Yba,Zba,$ba,aca,ic,hca,kca,lca,gc,jc,mca,nca,oca,sca,vca,pca,uca,tca,rca,qca,wca,xca,z

                                Chrome Cache Entry: 168

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 2484, version 1.0
                                Category:downloaded
                                Size (bytes):2484
                                Entropy (8bit):7.903859306518773
                                Encrypted:false
                                SSDEEP:
                                MD5:9160B78EE0B90045C930EC35D1C3A91E
                                SHA1:3DA7830A860E809B29AF6A65017D56A1FA121892
                                SHA-256:BF2174B338F1EEBF563FDD9BD3909F5269B63AE05A9EA26A738870CC6B504B08
                                SHA-512:A9B5CF35FC94666CA48BC4002AA72C8DD9DD79D5ED62E69B8ED823F8456A2978EB4577969187DA8733D3B927C9F052439830ECE8E2793104B099DA43B262471B
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/robotoserif/v15/R71RjywflP6FLr3gZx7K8UyuXDs9zVwDmXCb8lxYgmuii32UGoVldX6UgfjL4-3sMM_kB_qXSEXTJQCFLH5-_bcEliotl6Z8AA.woff2
                                Preview:wOF2...................X...............................X.`?STAT...t....l...(..6.$.L. ....k..............6.5z.3r..C.*IEM.\^x(..Yp..=3......>..n6. W"V..]-)`..=].$.,+<.......j....Y. .K......xx:../.8......7n....).KZm..7<../.!i..L..C.B......s{........X....(..k..X..`."^..R...gsw......xR......(f.*..Z)....p6...8.....W}@.....V.....a......w....,....i.#....b...H8or......e|..b).?.....S.L....g.._.#...Y..h..e..zVD.[E.y...L.m.a.2..*.D......3cU'.FV?..R...4.....f..2"\........E...HU;...i..[...[^wZn.....5a.x}.i8f ..Y}...JuEi!.Pv...s'..V..&.6..M..!....L.l:F..........X...{[>l6.s....[.O.....&(..{....z.....).!>rfF....2$..s.d...XS.4.L......u.....J.*.0..W`.a..]..$..x.=...4.1......._>M....[m.).b...8.p.!...`.....q.&B\..........9.t.....E.G..-M..T..`.7M5@............1.C...N..I...H2}....a.$....{z..L.f.$y...g`.0-6Hm....u.z.q..H."....I.cc..{..J<8A....l.._A.5.i0.`..t.D.U....4.||;N.G.Vo^dk....FMFt...........'~.U|.;C. i...&pr..7.t2.c(.p.N\8.h..g..0 $y...5....u]..{../.S..!.

                                Chrome Cache Entry: 169

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 46840, version 1.0
                                Category:downloaded
                                Size (bytes):46840
                                Entropy (8bit):7.994725589879299
                                Encrypted:true
                                SSDEEP:
                                MD5:FA1ADF616690586A617E2F265AB761B0
                                SHA1:802AF2A60A925A68A50C3BD3C157D284E1B51362
                                SHA-256:28AFB7554B3B29A5587799EACC92FD889378089FD568E5C8430B41D83D012B3E
                                SHA-512:5C2AD9BC7116418A763A8D2AD6D5B458AB38480D2B31441EC8FD97E1FD708535E447A8991211A4BAC846AE5F0AD9FAC206FFEC1D07C3B1523128E6E0477FBAD3
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/lora/v35/0QI6MX1D_JOuGQbT0gvTJPa787weuyJD.woff2
                                Preview:wOF2...............<..................................h..8.`?STATH...........F..r..6.$..`. ..h..r..[h....nE{...9.dsXJ1L...n.SV.......^mYF..td..a.....................S.h.unv.jf.Oa.> v!1..#"...G.\r..&.a2/.0./V....T6?.%..G.tyc[...+..H ..9.v..J.}A.%%..*.M.D...$.jX..........*....u."...y......T.&.A...R....*....,X.z...;C01..F..Re#E+H.].b4T=g.*..S.z.[.{.&.sv....-.....{.{g:...K^.-.~...7...L..W..v.....p4.\.F9......3....Q..'.LO-..E.......W..?...4!.v.G."'T..zV..dsU.$..T<...tM.T...y3}^E..I}......"..bi.q..|!...I..Y.>..,.9......lc.....=R..C..PTPD,DT...0.0..#...........X ......y.m..;........ZD..+...?...Z.4....5bm_..m..5.[......>.... 6......1..`0.....F7..P..{`.s".........}....n~.[o.g.........Z..Z.".....2X...Y....~k...(..K.....!4.H..{>.o.:."!....A_M0.2..9._[..-..p..........h...YB.7k...k.....^..?..?..P..r._.M...d&..O.:..g....oU....9H7..(.}..}U...z]...-. .Y..tw...k.a......9..J....V.;..g...'.p...........6.8.YGdc......H.D.i....K...e....[$.]'..v...*).C..

                                Chrome Cache Entry: 170

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 3576, version 1.0
                                Category:downloaded
                                Size (bytes):3576
                                Entropy (8bit):7.929396607787142
                                Encrypted:false
                                SSDEEP:
                                MD5:3451C91ABE3E05F03BBA52CE59A258E7
                                SHA1:19FAFD4F56FECDC013D8AF0DEE6C51E9A338FA5B
                                SHA-256:D4BA92453033372B440E5E762EEDEC60DEC8B3C32008F599B1C7F46376D64216
                                SHA-512:828B536533E183C5E6D8A904675AF7A6C24A38D30C5AE454640F453C0EFC8FF4BF55CFC98F7C30559D156DC8F9FA3AAE63D02C0F7B9C0ACE46DABE5E2092C105
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/spectral/v13/rnCr-xNNww_2s0amA9M_kng.woff2
                                Preview:wOF2.............................................*......`.|..F..v....H......6.$.0. ..v.....J......l. ....Md........<...3...W...Z..2.R..4........9x.......'f...Bl.m...C..Q.L............iK..LX.W~.F. .t...RP{T..ju....W....Q;na{h.....KC,."Y.[.....?.k.IN;$.t<...3&}i......!......B;fa.l...X.#Y1.w..l...Q+'...rD....\.......00.>S.!.]..h..........H.b.V.C...........@.A.....Hg8ne.a.)R..;L..k.......f..x.X....`L. Q.qp(.....X.K/......z.........d..$...!.0&.....Q.F.cx......j.vF..t=..[....X;g.8.t..Z.....&L.T.U.RU......|1e.)h.'.>......!.....W.+...X.........N...c..5.g.I..m.H.u...V.E......J....4}..r.....i.....9..W....N...u.~..0."./`.....#P.L.zZJN.......U3..k....a.B4y..OX:.d..1..?.2S....e8X.....5y~.Cs.b....+mZ.R,..2XEd..i!mx#L..'#.:O..k:G..`.....t.........L...?.^8)..x!ie..6B...........B. u+ ..7.F(8...y.I/RVO...,.p...*....x........i.;1h.Q0...C.2..!.......7.......\B)( .C..H...B.JI%....?..{$..ZB..h[.,S....tj....I2.(s/'".%*.4cz...1.f^.$L.,.1g..J..(..........Y...;

                                Chrome Cache Entry: 171

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 55204, version 1.0
                                Category:downloaded
                                Size (bytes):55204
                                Entropy (8bit):7.996026949578432
                                Encrypted:true
                                SSDEEP:
                                MD5:303F0DEE25055EA1A1C53F8C44B83EDF
                                SHA1:552AB5948D02D19FF851777D58DBE0DCF836681C
                                SHA-256:DB8FAFFB5E867554C1AB9B0EDD0E11E8B5A3D4B9842D860A11646371C2B84D79
                                SHA-512:8480CA89F845168FC64FAC0F1FB6C6E62A2C29DC59BD0AA821D06C1B426309916DEF57F90933712750DE70FD32CD3A3A4C2B2CDA15EADCC3A0B4C12B68774339
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/spectral/v13/rnCr-xNNww_2s0amA-M7.woff2
                                Preview:wOF2..............X...>..........................N......".`..|..F..v.....(.._.....6.$.... ..v..)..J[.V......x.o..a."..6.h..L..o.a......fj...'>.......@..!.|...........&.X...d...Q..Sk..^.wP5.).T..^i!.l..Vx..z.2..~.]..%......sM.......7,.I}.K.M.V|.l.F.g......o.N.j.G.\..,u~8&.+]).N....f..1..[.M...X+..Tw.u.+<.l..X...$.4...M@.Us.W....N..bWJ+Ta..C.r,..C-...F...<.....U..YY...g[....i.Q.VJMyE...#..N..L.K.....H..q.GQ....a....!..p...tbI.UK..... ..S.....|..$.(.L-..........w.:..L(......4).9.x........CE..Wt=..w..{..L.k...|.].ih........JT5.........w..o."a...V.R........`)..(iyvf.2..0.A.W_2#......tx.#5-.C@<6OT..E.+F...._..t....SA..A.]`..6.q...!.Ig2.)...mk............V.x..5..Q.Q..~ZT.l..i.T. ..&*.....h...P..X.0<.6.....wpw....(.......-.....C.Mg.@..ta.B]..s-s.3.......?.\'"...E8.v.zbK.y7UqR.<.o.........d6X1.d.>. ........y.z.ux..TU......!znp.<!....0V-5....H.....l.M.'..7..K.,..7..o.@%'..QC..W.J..,.l.....@.@x..W`O.z.....:)#.,......%8.. .H0BA...i..I.`Rp..4)...p.....c.

                                Chrome Cache Entry: 172

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 50664, version 1.0
                                Category:downloaded
                                Size (bytes):50664
                                Entropy (8bit):7.99441041171138
                                Encrypted:true
                                SSDEEP:
                                MD5:2EAE80C528D1D7A39C57805DE3E9C799
                                SHA1:37ED517E2F44EF14D8F2C4679F9EAD44B050759F
                                SHA-256:46B9F52EC517DDFAC84DD566720D00CF3C54AEFF1D543AA9C95FFF830985FA13
                                SHA-512:84DB87D648A4823380EDE80089F3E1683B11B70703CF5BD540A11C55859AFC2D063173AD89C9C448AA3A8C855329B242E032F42AB7C8E384E85B82E5C9BF3D98
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/lora/v35/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-MoFkq0.woff2
                                Preview:wOF2............................................. ...Z..h.`?STATD........X..>..f..6.$..H. ..L.....[....r....@..*mp...M/.6.MJ.sl:.....4..m................c...{.T.4..[.m........S.i..s_......0..6{.).``..&.;B....rHI./..b..` .)..b..,.{.....f...QJK|vh....VuW..?...M.....2.........8..b.9@B..{.Q...'S.|..&f~..x..8....!%..k...x...%o.)./])[...N.G<.#.!/D..U.ZN'.e..b/.;LL.."..B4K.nr.$.R.~..E*z.A...C.4i..o....4.....o!.z."...'u.z..Hh.....KO.T........T.......w=..=.swe.W..._t^.....O.Q.!o..N.]l.! ....D...k...tkv/...I..+...B(R..&"6.A.<M...ED.*""(B.4...@J{l..."6Zx.....U.3./ ........9.......r{w.*.E..V...m............"-....PZQ.Q6.....e.B.AR}.'...f.....+..'.....5.Dl~lj........-.RJ..T2.7...p...B......Pe....aDCX.]..Z......"4.t..b,.j...<.(.Au/M.j....O.i.P{DE`KN.P....\$]....U..B.R....3....hi07p.....ynx...0.@0...3.B....i....b+...r.4..6.L).pq.c.nM.p..;.t...+.+,!.....L_(.......x...m._{..FB...h"Eo$.J..C...$..y-6.........5K~../#...P..J...O......++.8.5....y..q....L...V.(

                                Chrome Cache Entry: 173

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 40184, version 1.0
                                Category:downloaded
                                Size (bytes):40184
                                Entropy (8bit):7.9947257644633645
                                Encrypted:true
                                SSDEEP:
                                MD5:1C31342F0BE5BC0E2B1549932CDE2F81
                                SHA1:A5AAB8D96192515329B7D888CFC5B7B113FAD53D
                                SHA-256:184819CFD66EEE3BBF756A609A0EA8034F09DCF8C68CD817B08358D8E5579CA3
                                SHA-512:C73F50D3B12B6EEABE02B6050DBFDC7FA420EB793281926F3E9CDC72A883B4E789A6506373E7C4CA61D9543E86BEF1B320147B1A283FA8B9A77FBE7F1C108760
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM70w7.woff2
                                Preview:wOF2.....................................................4.`?STATD..j.....D..^..f..6.$..H. ..@..T..[....rlcs:Te.h[O...._.]~i..s+...t....v...j.......IEdK3...........G.b.hp....`...A.d....%......t..+.xe2s..+....o.....F.].a.rTS..!.n..q#~.........)..}`......uw6.T./...}m.P.\....b...o.].DC....N..."*.D.w.{%........h....`....i.....U.g4.sw....d%... w72.y.N[.f.1_..Z<4...e_.M"&.!I....JRT""g+.w...>............vz.......\*.;A.3...l..A.it.A_....JD.%.v$./..+)YN.pDL.....7...%..i...^]KmR.9..D.;3..v...//...nm.jd..U.........)\q.\......p.G.!.GY..3.6r.......k.\.....w:Dkk....C8<2UP..#.C........h.6....P........@@....o.o..I<......x@%........_>L.u..WI.1]n]....X.E.h. ..R..n.......B.... BT,..R.=~..97.D..xE.TE....X..t.......;3...Kh..*UT"...4mb....E.D.....w.O.{.#..E..x...4. MSd..L_q..Tkg.l.D.,.....u...3vd.....O.............V.o....$..g ....2;.|?.Xm.......i..........."..\..;T....nn_+...w3.^'x...V.a...v.M..F..(b..@.f...8...0.A..o..D.c..f.ri.@.H....).N..$.Y.....`Y...d.,..o.........

                                Chrome Cache Entry: 174

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 2708, version 1.0
                                Category:downloaded
                                Size (bytes):2708
                                Entropy (8bit):7.889250991886075
                                Encrypted:false
                                SSDEEP:
                                MD5:B12C8BACB108B452B1DBB90C3D1FF1D0
                                SHA1:ECF97F8E8FDA216564CFF508D3B9E126D8666372
                                SHA-256:588A0396D786BB25120D5B559B9D546C3F276BC5E17E9D6ED1AD609DC0871CDE
                                SHA-512:A0C8212C5291E5160B2125B76CAF92F8DCB9219DE39CAAB082861C6B5FC4EDFEB1B1D13A07B458CF61E4E6EA551F63DA24A24E39285A00226B108721B9E35D11
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/playfairdisplay/v37/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDRbtM.woff2
                                Preview:wOF2...................4.........................(..:..(.`?STATH.......4.*.4..6.$.`. ..x........QT....#!s.S..%j1"[.8\Z..(..........T.&.@w*..uuU.<.."...x.h..j@|...p...R'FR.G...w.lMhD."..D.*D.....&.0}.p....f...}..m]`Q .4"/...Su'..B#7.h..V.l.t..v.lB./b....0.D...G.G.$.!.+.)...DRL.7...........`..@6..J...@.D...C.. #(........D.Ic;....5.#{e..U._.F_.K...`.%.g:_......!.V.?..{k_....@...=.$[.+$. 4... .0..4 .J.1.)..=....\.iW....=.".F{....y.D)......~.L2.8H.'G...>.G.........^.f.........$D...PrH...s..9.y...n...X:Ig..N.. ..v"......-..!.....kuy..=t.T..b...r.6...Vr.us...[.=....}.e...NB..LB(..;2.pD.T$.W.#..G.....u.9..(2?..T..B@wq..0.W"'..5..0...$.....|.-........../...@..!yD..:[.....cb..=...Ub.#.}.TD.....g.M2=........O4."....I.j569'j.....a..l.}...Z_.&k.#.iBH&.......5.9.|2.....+....=(/.3...........);...(...x..>^rx.K.....dB...y..\&....[.+..Mm......32........A.f#.^f....V..[f.P....Z....I{...\X0<PS../.F..$.IW.<..=....c.>!..w.7N..Gf..^.w..@_..#Pp... .].......z.h..q...t...

                                Chrome Cache Entry: 175

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 57612, version 1.0
                                Category:downloaded
                                Size (bytes):57612
                                Entropy (8bit):7.9962205728688245
                                Encrypted:true
                                SSDEEP:
                                MD5:10D2BDFD7A17F5E0210C90D99A8B5ABB
                                SHA1:89CF52504233C328782A7250F56DAD603FA74A91
                                SHA-256:D8977152B314FCD5D04BEC050367C0AAFA91899501593E9ECB0D6090CDAC29A6
                                SHA-512:5C9174103871D7C0AF82050EB056CE6002F6867BA9C97B0A833285CC9F28326AE4534F8F93A5231F185BEA8941944002415AE3B63B79DE4A973D9E02715EB569
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eSZM.woff2
                                Preview:wOF2.............................................b..^..T.`..(.....m........r.....6.$..p. ..j..p..1[........=.2........`...).m.......*....t'.d.T....../I&2..\.."....8.m....2..tJ8)^...Iq..R.h,..i.er.W."!gC..2YL..S.*..................,..Y{..X.....]..9^vp]...T...}PKA...e.\u....A](...E.:.u._.xH?....F....7c"n........&E....:N.^.<`f/.[N}.B....T&..\.......L...?/.......j......lb..3<..}Hd..n.kW....U.....z.'8n.........P!s.j..{2..m....J..k...D..+;..~..F...d.......DK1u.....{+F.#..`.`...#K.d.Q...h........b.`..0.....R../......H*..H:....nN..$..a..J...&...zi.l.mg_(.%hK.x..3@s.W.50.....5cl.a.5..4@.0.#...T.../?R?..}.2._...y.v..-..-l.XL...S....-lu.d(.90.......D....c#,.q...h...w..a.l9.-.o.v...>* Q.A..Nq)}F.Vb..:.9....kY..V.....1Y.D.....K...9\2...d...J*.........C.....A....U#.....x.(CP..p.h$.....>....w..5...5.YJ+w.pt#q..b...b;{...tj'T.r.?..k.P.T.s._.."...h..N..fw...{..w...&..... .....+y.H...`9Y0...m.....!....jtT..3..?...2._.d....8%.E:.<{..@...............53..A.a.a..w..n..@

                                Chrome Cache Entry: 176

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 32644, version 1.0
                                Category:downloaded
                                Size (bytes):32644
                                Entropy (8bit):7.994593554315655
                                Encrypted:true
                                SSDEEP:
                                MD5:3F02E1AEEA84F97C26CE78E796009467
                                SHA1:3A86908B3E689621F23A326A8F3FD4B794599C00
                                SHA-256:68425336934A956337B4593A3D47D51D2970D03AC4A9C9FC795596F13EB21775
                                SHA-512:6574651139BF6A97CBBA6E020D6208CDEA122BB2BC1F88DFC4EF7CCA877CED229E5B5C6D2D7C2E2EC60C4AB56D8EB006AEE2E335258F04721C6E8A71DFF0EC78
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZogUQ.woff2
                                Preview:wOF2..............S,... ..........................>...l..6.`?STAT*..X........a..H..6.$.... ..,../..[.+...r......!.na=3..;.......`.a.2..m..t..uM)n.......d.v.z...E5.......N.s...Xji...0'l.pG......ll.#.8......j.....UR....>...:(.H.!..U3..i....D..Ct.-.y~..w.\.).........?'..=)...<)....v|..b9.A.5.T....>...&].a..iFj.....u...|O<$g.#.$.xQ..frE.i>qS..&..U.F3.@.7....k...z.=.WB...r}...Of._..u..;...I.',*..(Z>47...Mq....eP".Xq.#|.._|..t..H!...3.5..Q........m.x.`c.+7Vo...#.+........./.G.H...Fi........7...~..Q d.LT+.o..%1..,..*~....;..Q.(...K..D)..........h.Mb.I.4....S..\...L..._L.......?....a#$FI&"..,.P-.S7Ec0%..........}..I...".j.D.... ..r.n.G....8#..XTG.....g....Tw.k.U.....F...<.......{B..J'..QV\.-..."G0....O5..... .Zf=..........O.Z........_....G)......p./.m{.B..di.C/N.....hJ.^.....&..`:..T}^.D?..eN..^..nG..x..[G..&W..v'........K.D[Is&..p.@.h.T.......H.$.q...*B........l.f3#4..QhQ..p......&.F...P..J...Cl....m.0u.a.a.......o.*...E.91)...a..i..M..K.|(...:......?..

                                Chrome Cache Entry: 177

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 58200, version 1.0
                                Category:downloaded
                                Size (bytes):58200
                                Entropy (8bit):7.995376794548573
                                Encrypted:true
                                SSDEEP:
                                MD5:895A08A8F8DE0B5D91F3F6999243B76A
                                SHA1:3FB36CEC53FDFD5CE97CBD34FDD0A6E5D8255B50
                                SHA-256:AADA1AC84EDC0A0F678A12E87B835B9C5A71FC4CEC407CA0420C6561CB53A439
                                SHA-512:C82E7D5CE1BF938BA00FD6531702DE3F89045E9C9F9B0A3652F237A02887D02B24D5B07AE2D1FE7805525C21CEC9FB47FB1DA775BB0791EBB4A8975F86AAEDD9
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/spectral/v13/rnCt-xNNww_2s0amA9M8kng.woff2
                                Preview:wOF2.......X......................................L......".`..p..F..v.....L..Y.....6.$.... ..n.....J[.x..*Cnv{...@KD....m..........}..%k<QoS...m.4...8.nO;...............tv..#$@....Vl../.#...D....:..(.wJ.>S.r...n..A.._bNi]......0...d2a....y...wa..}....A.T..Z.h..m.b*........D'.Q...K^........4.q.....Fx...[....p#...*...u....4N.{..4.F.Z.>.7..F.WJv...n..$~....h...@.....b.u.P{4..B..'...Vb(.A~.....].Is.]....G.F..i.4....5.e.d.e.OX.;>.z.>.<.5tQ.j..|.).........C..C..+....Gm.U..Z.M....m......q..O..J...6.{qkxn.._.....S..'.b....h...s.W.[R....%.......J..b.D....g)...*..].d.M.].m3...S.E.Y$1)lUR%#.Dz..b.........(.*...f...X.C<...+.5L..C..y......^.a9'..,.Y.....\`T..M.rP.p..c@9.V..*;..}..../q.@Y.*......q......6.k../.....:..!...].|.j#..2....[.f..l...F...:.S.Y`q.....E.5Z....."." .&..a.0@sK...m........f...F.HIA..z...._..W.7..z?....o.>./...f.3..Y@...~.n......c....'~..87_U7.(...&"..u.|...nh_2..s..;...Q....F...z\../.;w.....F..Y....M.,.....(.....N..L.ek....

                                Chrome Cache Entry: 178

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 41288, version 1.0
                                Category:downloaded
                                Size (bytes):41288
                                Entropy (8bit):7.9945345147413285
                                Encrypted:true
                                SSDEEP:
                                MD5:C2016E340130CA6E2ABB66D40055B6F4
                                SHA1:9A999B20475FE5CA7314918BE5BC09555EA44022
                                SHA-256:347B8E3E68694A70F4B024CDBEE7FB7ED5F98C19D0DAFEF6B8F237191C796F03
                                SHA-512:975CC5E203B9BD6D9312E30D519938DC0C437ECB7C1FF8A1FA3328B21413B4568E9CF6B1105C5C0DD9F9F61912342FDE9ACCDAC101963381777A65954EE1DC92
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/montserrat/v26/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq0N6aXo.woff2
                                Preview:wOF2.......H.......0..................................8..:.`?STAT@..d...........h..6.$..L. ..f..^..[....5..$.Y.......H-...............q0...p...... ...9L.......{.........+Z..u..{.m..m.gd.e..9en...-V...lT..Rg..e..j..~.tzW...bg.+..u.I.T.z.u2w.!..g....PM...kd...9W.N}..*6......l.".a#.D%*...d+~..^.MW..uQ.z..........J<..:Hrb\.6.....WY/..k.q...;u......O...x.l..6....[.:.q.a..h9e...h...*P..X.l...O...?.>......^...,^..d...z#....VDF]?..M].t.d........D..=-..%.....s......{.y.....fc.2+B.B.......woo...0..1.'R.".6Y.ba#.XX...A..E%..(.D)..F...Ao..A.....8K.u2_.....&..|7.....6...T.8..........;:.Q.AA.`..677....(..s...oV.=[...v...v.W.^{$...\....](72...22......22..(7.......l.m.r....V.$d.y.5P7....Z......H..$!....8..|.....Y......3R880.....}Q.a.0..k.W...l...>..ov...BR#........L...K...\.a.......'.I.<.L#..H..D../_E,.l..t....y......".....x..P..@..(........S..m...%'.R..A..F..9.....NM.........K....A..3o/...!...@..?cH.\~-..2l-......kf...h4p...=!QJ!......*...l..U..x.,XbKi|.I..

                                Chrome Cache Entry: 181

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:ASCII text, with very long lines (1747)
                                Category:downloaded
                                Size (bytes):224408
                                Entropy (8bit):5.611900602582568
                                Encrypted:false
                                SSDEEP:
                                MD5:939A550453E7CDDD340FEE3FA5826ACE
                                SHA1:2ED891E100982422D878AEFAC02124E625C5DB4F
                                SHA-256:2C820431C7733752B201B958D3908B4789BC624A51B44775E2C6B24D49FF99E0
                                SHA-512:7452AF80CE87056CE1FEEE0D0A02ED009BCA19178F33ECD1DB8F9AE4C50FC55EBE14A32D52C094A99A7B1F275F04C62C0EC6C7C0CF5B73871E68FEE9848BBC26
                                Malicious:false
                                Reputation:unknown
                                URL:"https://www.gstatic.com/_/freebird/_/js/k=freebird.v.en.zIS2MaIzuyc.O/am=wGA/d=0/rs=AMjVe6iDXYbnNp7GJjKtCDbS3bXEPJSKmg/m=sy1m,vGOnYd,syi,syt,sys,IZT63,vfuNJf,MpJwZc,n73qwf,sya,ws9Tlc,sy5,sy6,sym,syl,syv,syc,syu,sy1f,sy1g,sy1d,sy1e,siKnQd,T8YtQb,sy12,sy10,sy11,sy15,sy1a,sy1u,sy42,sy16,sy1b,sy3y,sy41,sy43,V3dDOb,sy4s,sy4v,sy8z,sy8y,sy4t,sy8w,OShpD,sy7g,sy91,sy93,sy95,sy92,sy94,sy8x,sy90,sy96,J8mJTc,gkf10d,j2YlP,sye,sy19,cEt90b,KUM7Z,yxTchf,syb,syd,xQtZb,qddgKe,syj,syn,sy4,syr,syz,sy13,wR5FRb,pXdRYb,iFQyKf,syw,syh,syx,YNjGDd,syy,sy14,PrPYRd,sy17,hc6Ubd,sy1j,SpsfSb,dIoSBb,sy1k,sy1l,zbML3c,zr1jrb,EmZ2Bf,sy1c,Uas9Hd,sy7a,sybf,WO9ee,sy1i,sy1t,sy3u,sy3v,sy1h,sy3w,sy3z,sy40,A4UTCb,sybz,owcnme,UUJqVe,CP1oW,syf,NTMZac,mzzZzc,rCcCxc,CHCSlb,sy1r,sy49,sy4a,sy46,sy47,sy48,sy4b,pxq3x,sy3s,sy3t,O6y8ed,sy1,sy7p,sy9h,sy5v,sy9e,sy9g,sy9b,sy9c,sy9n,sy9o,sy9k,sya9,Sk9apb,sy9a,syd9,sydb,syat,syde,sydf,sydg,sydh,Xhpexc,Q91hve,sy68,sy5z,sy66,sy67,syao,sy6m,sy98,syaj,syam,syap,syaq,syar,syas,syal,mRfQQ,sycz,sycy,CFa0o,szrus,sy1v,sy45,VXdfxd,syo,sy1o,sy1s,sy1p,sy1q,s39S4,sy1w,sy8,sy31,sy20,sy2z,sy30,sy6y,sy3b,sy3c,sy6u,syc2,sy8q,PVlQOd,NPKaK,sy2r,sy32,sy3e,sy3m,sy3o,syc0,syc1,sy8r,sy2p,sy2y,sy39,sy3l,sy3h,sy3j,sy3k,sy6g,sy6l,BVgquf,syc4,sye1,syea,fmklff"
                                Preview:"use strict";this.default_v=this.default_v||{};(function(_){var window=this;.try{._.Ar(_.Lx);.}catch(e){_._DumpException(e)}.try{._.v("vGOnYd");.var XOb=function(){this.type=1;this.view=null},MY=function(a){_.Q.call(this,a.Ca)};_.C(MY,_.Q);MY.ya=_.Q.ya;MY.prototype.j=function(){return _.es()};MY.prototype.start=function(){return new XOb};MY.prototype.cancel=function(){};MY.prototype.render=function(){return _.fs()};_.St(_.tAa,MY);._.x();.}catch(e){_._DumpException(e)}.try{._.qIa=function(a){if(a==null)return a;if(typeof a==="string"){if(!a)return;a=+a}if(typeof a==="number")return Number.isFinite(a)?a>>>0:void 0};_.rIa=function(a,b,c){if(a!=null)if(typeof a==="string")a=a?new _.Wb(a,_.Fg):_.Gg();else if(a.constructor!==_.Wb)if(_.Xa(a))a=a.length?new _.Wb(c?a:new Uint8Array(a),_.Fg):_.Gg();else{if(!b)throw Error();a=void 0}return a};._.Oz=function(a){for(var b=[],c=0;c<arguments.length;c++){var d=arguments[c];if(Array.isArray(d))for(var e=0;e<d.length;e+=8192)for(var f=_.Oz.apply(null,_

                                Chrome Cache Entry: 182

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 116852, version 1.0
                                Category:downloaded
                                Size (bytes):116852
                                Entropy (8bit):7.997713935602442
                                Encrypted:true
                                SSDEEP:
                                MD5:9FC7A466292A81DBCEB5B9F194B87757
                                SHA1:B9994940CAE8121BB4ACC923972EA0B0B6BF177F
                                SHA-256:8BA9D0704A43A49CD21D4917C76A1828BF6D60EAB09612A2049199652465BBFA
                                SHA-512:5A721B05C621E2A10642A275372B21A4A2813F37FBC24B8CFAA2EE2D8F95D06737DD17E921D4BD90C50A17BC9325B14B4ECED296BA9BDF92DF8B5389D9268C19
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/ebgaramond/v30/SlGFmQSNjdsmc35JDF1K5GRwUjcdlttVFm-rI7e8QI9_.woff2
                                Preview:wOF2.......t..........................................h....`?STATD......... .....P..6.$..L. ..L...n..[M...1.....8DE..Z-...fH}.g..9."G..f...W9..C..'O....yfU%. M............X.<..I..s6=.J/.....Q@..C.].b."r.eU7=..L?...L....(m..-4.uq8.t...JT...h.H.s{P;.&.7.J..L3....p..-*.JM.G....[......&"".U@?`6;.y..I...f=..y.Z.S.........G.._.....m.h....c....*.A. .Ul:rv".."...+[.^.&....B..-jz**..u.C.,..e....'?..(.zu..J..!..f."..H...1m.m]....b.xX..w...D]..m ....Ob.b.2......`...!ix]DmV.$.QJb[..C|j..S....h....9:..B*s...bD..<V....rO.#3......P....I.S...F..=..<[.......lL.*.".*..`.vH.h...5...4..7..b.{~.......Y..h....kv..}.......t.H..R}Im...8{..@..J.2..{.Y,.9.....&x..4..5...../.7.-_do.9{.=..._...m..c..}E.(5)...vdM.o.4;...........|6yzo).igF.+..V)(..TV.<.M._sb.s.d>d..)..~.t..,...n.g.y.\\.....).4Ml._P.s.J..k:.5..+.A.v.....5 .9.UD.D...Kt.mG\............ppg.$.6...'RYJ......3D........E..1-...(....%$@...L.T...i)P.B.h).RJ......P....t...+R...P.....$...i......J.....v..X....,?......[..!keF

                                Chrome Cache Entry: 183

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 126660, version 1.0
                                Category:downloaded
                                Size (bytes):126660
                                Entropy (8bit):7.997861876113917
                                Encrypted:true
                                SSDEEP:
                                MD5:E171410D243718D27D3C6BD5306ACA68
                                SHA1:6BCDBCD43497AE839A84A26FB83D68BB07A4D5EE
                                SHA-256:62205E2E2B22EFD49A3A0D1C10C5F59AFA8F4C59B087825FB904263E73489DDC
                                SHA-512:B2167AE822A4CF64460FC88430B1CEB7B905EE35F88F16EF817BAE2FE924053875AB73E6BB170B3808C16D74D6B62E86261FFF0931C75AB0FEF5CE4217094908
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/ebgaramond/v30/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-6_RUBg.woff2
                                Preview:wOF2...................]..........................>...<..P.`?STATH...B.....P........6.$.... ..h...J..[}...*...xw...pE.......!.n.y.A..._......8|k...7.Au...HD...&W...O1...............o9.6y3....!... .p.?...j[+.0WQb..B.b?.A.....Q.n.....X(.L.0..n..=bf?........|...'....i'eT)U.\.2J.(.J..-U.Wv5.^..{n...........:,.E.a..Ix...o.t.....h..L...:........Z...+....D1...Q.1..Q..c*..x..)..&z....b....cQ./S...6......?.9.d..0......@j...0.....L?.;.g.zQ.R....">..U.U..d).*,.ZG9.1...b.U....Mn.=....q.......].+tqt.4..g5...$....(<.I&.4.kD.XV.\X>'me&&.W....".....BR...Tvws.z4y.m..{.&.6..=d.`/st.`..<..)I,x...X.G.F.....\.......==.].[.x..e.x...w..<~.X...i()MG._.)a..$$!.H......z.R.....z0.$$..f..w.....e...*HB....?..gY..(.....W..gy[@f..O5....*...0;......E.>.. .3!x4l...A...%.._/.h.c.w.e.(;d.H|1S/YL....}..M...0j.Y.~.......#..k..oBD5."...%..fXZB...............^....)..D....n..f.f.m.U.*.c...~..E|...d<H..%.....6."%i..b..5....?s(o.kM..~......_.....<d......i..~M.\....~w.....L..Q5..5]3

                                Chrome Cache Entry: 184

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
                                Category:downloaded
                                Size (bytes):15447
                                Entropy (8bit):1.7278338539839808
                                Encrypted:false
                                SSDEEP:
                                MD5:8DF19EC399BE913884590015105AA584
                                SHA1:5502576575AFF37A626934FA655C124291C58AD6
                                SHA-256:D48A0F5A08249E1768C06ACA31C16D50D1216434E1C91BA322CF5521577A59E3
                                SHA-512:89D09ED10A4E440A423443586F111E247C3BFB1BE58AEFC3E62586354EF21F0CCF66619F54F6BC06CD81DD81C57B60DFB3D052C37AE8DC0E972963B67B3380C0
                                Malicious:false
                                Reputation:unknown
                                URL:https://ssl.gstatic.com/docs/spreadsheets/forms/favicon_qp2.png
                                Preview:.PNG........IHDR................a....pHYs...............;.iTXtXML:com.adobe.xmp.....<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?>.<x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.6-c067 79.157747, 2015/03/30-23:40:42 ">. <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">. <rdf:Description rdf:about="". xmlns:xmp="http://ns.adobe.com/xap/1.0/". xmlns:dc="http://purl.org/dc/elements/1.1/". xmlns:photoshop="http://ns.adobe.com/photoshop/1.0/". xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/". xmlns:stEvt="http://ns.adobe.com/xap/1.0/sType/ResourceEvent#". xmlns:tiff="http://ns.adobe.com/tiff/1.0/". xmlns:exif="http://ns.adobe.com/exif/1.0/">. <xmp:CreatorTool>Adobe Photoshop CC 2015 (Macintosh)</xmp:CreatorTool>. <xmp:CreateDate>2015-08-12T10:01:56-04:00</xmp:CreateDate>. <xmp:ModifyDate>2015-08-18T09:59:41-04:00</xmp:ModifyDate>. <xmp

                                Chrome Cache Entry: 186

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:ASCII text, with very long lines (572)
                                Category:dropped
                                Size (bytes):1507
                                Entropy (8bit):5.455270045426057
                                Encrypted:false
                                SSDEEP:
                                MD5:6CFF3CE8814B171B537D113FF9BED569
                                SHA1:47C0AADADE1388CE0981EDB38F338D375AF0313C
                                SHA-256:FEBAFC77C300DD80A51A6BCE20D8DD0282C09574DE6421682661E7F26F11E68B
                                SHA-512:8341A7D898F24BD9CBE4AE447844DF94CD1C86464A04C443A4785EF89D5C20D95DB6285FF5F9C60D24DFA31318EFD74654BA38C8B4E1709804E57BA90C3B86EA
                                Malicious:false
                                Reputation:unknown
                                Preview:"use strict";this.default_v=this.default_v||{};(function(_){var window=this;.try{._.v("sWGJ4b");.var orc=function(a){this.Ba=_.q(a)};_.C(orc,_.E);var trc=function(a,b){b=b||{};if(b=b.m9)switch(_.xh(b,2)){case 1:a.Ta("MIaCgc");if(b=b==null?void 0:_.aL(b,1))a.open("div","fFsnHe"),a.Ob(prc||(prc=["class","rRld8e"])),a.Mb(),a.Ta("lBL31d"),_.U7(a,{icon:164}),a.Sa(),a.close(),a.open("span","Pw1xR"),a.Ob(qrc||(qrc=["class","FczIpc"])),a.Mb(),a.print(b),a.close();a.Sa();break;case 2:a.Ta("EXhbA");if(b=b==null?void 0:_.aL(b,1))a.open("div","QqNTyb"),a.Ob(rrc||(rrc=["class","rRld8e"])),a.Mb(),a.Ta("m6mm9e"),_.U7(a,{icon:139}),a.Sa(),a.close(),a.open("span",."lJICRc"),a.Ob(src||(src=["class","RHiWt"])),a.Mb(),a.print(b),a.close();a.Sa()}};trc.Be=_.tx;var rrc,src,prc,qrc;var V7=function(a){_.S.call(this,a.Ca);this.j=a.service.Lb};_.C(V7,_.S);V7.ya=function(){return{service:{Lb:_.jD}}};V7.prototype.o=function(a){var b=a.data;a=b.type;var c=b.message;if(b.Hc)this.W().Va("XgsRcf"),this.W().Va("Jj6Lae

                                Chrome Cache Entry: 187

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 3640, version 1.0
                                Category:downloaded
                                Size (bytes):3640
                                Entropy (8bit):7.935496811135212
                                Encrypted:false
                                SSDEEP:
                                MD5:421B045B5EB019D56F6407AE63E57A92
                                SHA1:F0D0D18A1887D371B18C1B06B99AD2D3C0923E8D
                                SHA-256:5DCEBB5EC80A2DDAB469A77F1A37412C34205EF76D054131083B0BF663B786FB
                                SHA-512:A426E4F8C2F2397038F4A1F60ADB091BA097DABE9C4ABF8967F80B20C98F1A7569DE9CCEED89716329FBBAEF0DD0AFB4B5EFF0E6C96DB152ACC86F1CF799C2C9
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-eiZM.woff2
                                Preview:wOF2.......8..........................................T.`.|.....m....0.{. ..6.$.<. ..r.W..1...#..4...lc.K.e+c.@3.gq.:#..n....CYG..Q...W.sN...If..w.?7A....5..Rh......D......c.Iv...w........T..dMy.?...x$.H-.5.....GQ@.....G]..,..|H!T...x+mK.M-....X.u0n...O..5..mS..+J*.|..CS......E...#........,.%l\...v....?.}...=.Fu..)eo./w3...8..i.lf..!y"U...3:.8..vy...*.....(..(..c...!....4....1.....0..`.....Q..4| Z...j...B....h.h.v.K.(4.d..o..J%`(....zP...0#...y..#..B....#..L.......C..#..P.>+.....@.X....m....F.........AO..t./..X......(.....tq.i....P.....o.M..).m.......bX..n.1...n...-.;........1kR....p..w]0.x.fYz......[W.^.Z......#.K........... ..:...x..O.Q.8[.PK.(.w>'o........^..KV.H.+F.1.qh%Whx*....Z.).*3.4{..;.K..w0....N .Dn.Sj.l>..|Y.....&.U..4.^../<.@3.....VBhD...P.8...&.........7.e../.....G...}x.Ne...,.,.n.....T..4.6`....i.M..+.YC-..]@.4.6..qi$%.Y2,.L.=...6...u.10.g.2%9..;..fC.j..P.2QHv..T4......X"lz'..n..N...5...|...4.)|...($..Y..9.3...F.t....rN..

                                Chrome Cache Entry: 188

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 26992, version 1.0
                                Category:downloaded
                                Size (bytes):26992
                                Entropy (8bit):7.992281768071691
                                Encrypted:true
                                SSDEEP:
                                MD5:92BAE553B71BC6DEDFB17E73BA5029EB
                                SHA1:4B581AF52A479729888031EB60722A306A68DA55
                                SHA-256:49BE4E1A8B5E250DE2A7A738CAC6C157E4148414CAEAB4055D92DA8152D95619
                                SHA-512:8895176C2915FF0AF40D923256CE4371B639B24945D9E4183B8146EAFFF8DCA58E87E3CCFFEED8B2CAC88A7BB2906875C4E3CF1DA6B39F4563821A8AC287E130
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/lexend/v23/wlptgwvFAVdoq2_F94zlCfv0bz1WC9wR_LU.woff2
                                Preview:wOF2......ip.......8..i...............................D....`?STAT*........<..A.....6.$.... ..h..x...!...s.!............gK....r..u&5{.H.IgT:....?5..qi.i.c.m.^!.L..dZ ..=.%2......m.....\Fr...=.,a%..D%..1...r.".o-s..N%.9.u8.s.1&[k..B..m6D:.t..M.z.;..F@.A.RIT.I.y.Q....N.. kG..dD^x....*.bs.JLb..2.St..f....|.Y}.M|.y>!.p.|../sT?T.c'~.......g<...D.H..Q..'}...........3.+.....fN].D...."0n....?....$..)@JR.\ ...n..WX;m....d9.R.?.....B.....R..\_...~.m..V._.ml.*9pL..Jj..(9.Mi....rL.`m.`.S.|..g....?..O>...)...hc.f%.m.6.7..Z..c.T.....%...n.Z"..i..G...|.=.A1:..9.......r....+=1...........T.5.....5....B......F.,Z....)..E7..q).!...:.0/.V.9O./......}z1)`8..T....,.......I.@..?.FT@q.M...{S.A.c....sI........ .K..5.mP....Wg.s.'....IuaD..........~.+......`.-.[.....(g#.........,..[..|r.u...3+..J~......p.=...1.)o..W.J..45.f.8..A. .Qg..H.N..O..yc....."k....w....2\.Z...q...a.7....C6.C.....fg..3;... O...........9.gp.F...o...I.O.W.Y...*..<P.R$..{.d.6UY..R4.{V.......!?.x.

                                Chrome Cache Entry: 189

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 4344, version 1.0
                                Category:downloaded
                                Size (bytes):4344
                                Entropy (8bit):7.937797980739236
                                Encrypted:false
                                SSDEEP:
                                MD5:E5A3502E3717398EE835D98F84874738
                                SHA1:75C4C2D0F1A2EDA7E16A16293BA840E19991EF1A
                                SHA-256:E5ACBE17FD4E63CCA2CE1B72E482FC2411D27D9D534476AD7F0108B9DF087FCE
                                SHA-512:609920E215906893F52928F75E2A7B4704F5FCD4D5D8F2258A9D410EFD06270DEBA734F41F6BBAB7C5FEF693C40A2CF3A84B57250F360484D2789C928ED202EF
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/lobster/v30/neILzCirqoswsqX9zoSmMw.woff2
                                Preview:wOF2..............".................................p.`.l..F..m....8.L.(..6.$.L. ..<.}..<.. E.b.8...5..F.Am.......z=...$q..".........].)..~....3'z...0.v..r.....2....L.!..O..?w........X.Dd..X.e.....U>}?:.....c.}..m-..........@......]A.K#=,..M.+....k.gE..... .e..}s.4Y+j..........]!yHI."..6....../[....l..X.....M...zD.tQ=@.'.....4..E..jk& .".. ..{...lA.<.-.@.>.nB...J;9$U.}U..m...p.?.^.$.9...d.........;W@ajktUe....P......B1..o.....M D..Hb...i.:B..2..).U.:....U....yx.z[*.....:...M.......r.....3Q.....835..Z.`.*........J..........v.......v..a($X..B..OCdd..hLxQd"I4.MS......1.4....u..@..Q.(...ia....x..'...y%~=..@....l(h.P...H0.....t..H.5a.hXtH.~...;?Y.>.;....q...F<.7.{.i..>.sH....[y.Y.p..W...X.6.%...(F$.M..N.Gw..:..b..0."..`......*...R./.....LS..kA.h.A..%. .R...2.^_0.cW Z..C..,4..`..=.X....j.j2J...g..PtT....<y..,.\._...s...{.*R...:..".. .@...)....+.3.)...,..g9Bj.Q...O.A....y&.:....eo......Z.2......8\..>?U.O+p..|./...ra.qHG&...FA}....($.k.:.z.(.....tT@.g

                                Chrome Cache Entry: 190

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 99952, version 1.0
                                Category:downloaded
                                Size (bytes):99952
                                Entropy (8bit):7.997773585050746
                                Encrypted:true
                                SSDEEP:
                                MD5:4DC58D8C42A13CD77CF2CD978F639388
                                SHA1:221EDE548E9E9CF711595D6511C73CD8EA4EB595
                                SHA-256:B93F4669CC09016E4D1AD1836A4CD1EBCF832C22979E5FA11DB4F7C3620223AE
                                SHA-512:52D3C3AD61265E984ACE82FF6F1AD5B663E76955309866EF7B7D9EA985AD2917FB06FA8BDD96B61208035FD1E2F7DD26A9BE91322A196A0B628C22BC50242613
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/lobster/v30/neILzCirqoswsqX9_oA.woff2
                                Preview:wOF2.......p.......,.................................L..P.`.....F..m.....8..0..\..6.$..X. ..<..c..<[#q.....U..t..._MK?...G.u......9.PU.FG.c{y....9..|............@&..0J|.Uh.R......7De.A...$3...5..v).(..e..J.TP.B.Q.....1.e#..D.mw.'.W.@..a.a..:.R^c......tv...............pc..c..Q..I.......O>KV..A6..C.B...:..e..5.9XVC..!Y[..B....?.3<.s.v@&..E'a.G....}?I.(k4{W>e.......W1.(...W....w../?.<.%.9.]._.[..v~..j....xm....Zj...S.J.I..9..W3.u.VC.. . ...:;@..<."9v~CTC...Sj.V...q.~.'"....9......F. ..+...E.Q.R3.=13..Q...2.eHR8...a.8>Q.....=....mD1.")..!..m.....J.:..c...^...z.....zQ.V.S6s...A.c..x..I.'...4:/I........G..c.t"Z1.y..M..;.p..y...2..~. .P~`;.6.g.)m..pLRUA..-.}.hg..Z.i.\.iw...v7..f.......X1*.....su....=0...8..].&...Xl...e(.T`....+.'.4.y........f.mN...vVtT..B..........7.sSRr.*Y.c0:.C1...,.o..{.F.....z..w.6............1,sgD$.d`.S(.b..a^....HyJ".Z.2....'.w..M/..I~......n.w..D..L..b......_.r++......r.z=..Q~p-;@..i.....T.)ju....?...z.H.P.p.rC.q..t......j..

                                Chrome Cache Entry: 193

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 50264, version 1.0
                                Category:downloaded
                                Size (bytes):50264
                                Entropy (8bit):7.996208458310892
                                Encrypted:true
                                SSDEEP:
                                MD5:AB5E010EBED9BCFB98CDB5BD47D3E430
                                SHA1:5D1AA4B896BF05AFE8978F74E2E88A53B0D9BB6E
                                SHA-256:B5477EC958C9F1F06AF0D54F50633B66C76C5E010450283C5620CFC79E57E963
                                SHA-512:EEF8BCC39498E40562E6E919969492E20093AC577821C34E85D78387F7B0ECDFA90CF14FFD2A8F64FEB608BA0253397F674E10CDE82FE2CC5E80BBA7CF25BB4C
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/lora/v35/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-C0Ckq0.woff2
                                Preview:wOF2.......X...................................... ...0....`?STAT@........X..#..h..6.$..L. ..v.....[....1v.n.,...u.0..-........a3......7.B.....].............-Y.._.>....""].t.kuc.C..nR.U.......9%#D..G..%.d...f...U..f.C=.l.5B...1ALPh2.2...D%#i..A..o.v..d....w.f.6K.tf. U...."r...d#.UD.....5Y.....;.D~9.up.......i.[.O.).t...0..7..w..%..T......;.9CB....>..|JF.....~..G..~..........+}...]W..s..h..._.%;/TK....b~x.....l.l.YH.[.AL..*h8AL\Ry.t.Z...*c..-aBf..,...Y...K@.7..R...Gi..O.........ok.16..(q.......|,"m..........0.)........Q..V.o........<..r..SK........B(bR(.GJ....*.uJ%......._u.7....X`..#.s..Y..k..;.$A.i.r.%...d,.|...}..D2j!h..I..&...c...Y.d.z..."....x)e$...u...@&..*.:..g.a<.z..'y....l..qRv......(...[N.0..g.. ..f..O...J..s},.s^U.-.3,.2.yO{.l....[J....G.n...LR....@....$}......f.GF.}/..^..p)/....?$...1.?6....!&...;~@..r'Y...d.r.A.B..f...K...../diJ_.aw.%.......&....a0.f..m..P#.2%....c.."....{.._e...mT....!0.c....b....>...)`.[.C.a.m4.x8...7..

                                Chrome Cache Entry: 195

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 64656, version 1.0
                                Category:downloaded
                                Size (bytes):64656
                                Entropy (8bit):7.996287850457842
                                Encrypted:true
                                SSDEEP:
                                MD5:28E2B282CBDDE4FBEF925AA25DF6FEA3
                                SHA1:764C6B373670D221C28CD5DA0584FCEB1C444905
                                SHA-256:B1DE6EAC3059CA778E6D2367182C7F11EDC81E09971E56F788DB308A674EA7EC
                                SHA-512:54D8A320ADDC0205D3A57D768B80A06B7AD09D47E79DD4248B068E20D0A65F00C5E96871FB6AC09B9CE2B8D8AA77656384FB11F58902A42D55A0DA804F0CE6DA
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/amaticsc/v26/TUZ3zwprpvBS1izr_vOMscG6fA.woff2
                                Preview:wOF2..............60...*..........................8.......`..d..*..m.....\..1.....6.$..X. ..`.....<[W.q.....D.nC -.u.Z..07.A._.N^.....q..nU.$`$......'.1.n..@E.J*........0............^.`...d..+.f....;[.;..'2.[3z<...|....^i.=...X[..6*Q.m.L..7zO....XH>....i..m8........x.B.B.(.?.#x'/v...>.l..J...J.a..i..'....#.$.{.tIV.[w..q.&..37{.I.#L&....\..9....H....f.3F.zq2M+F..5..............yPI'...].%..'^.....N.7q.L...!....6`DM.1.KbLF.Pj....'(b.R...Q....b`....-.=....<..{_.......@0(!..EJ"B.`+A..5(.......8.=....r\...\..Xy..b..5.....z'...^.8..l..Ny.....3.....H.0...]~.!...@F..N.B.+Y.zP|..gg..,.(.^.....x...Z5g.T"7x.:.a..BU.....2=.....S#L..mYQi.k./.77>m....F...].J..o.Q.F..!.1...3f.1c..3~C.1cF.1c..3cF..v.. .$..........KrI.._.K...JO!.z.RD......."...!B......... X..u.p.$...-.........L:L.i.-K!~...|)..2v/......!.i...".mFR...?.YJM..l....Y.6..G...........2q.t..!dh..Uk`.0t....#.j..O......!&.Ql..9J....y...[qQm..V;_.j..8.a....m;...i..L.c7.`......?...^d..i.1.!..8...#.....

                                Chrome Cache Entry: 196

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 1528, version 1.0
                                Category:downloaded
                                Size (bytes):1528
                                Entropy (8bit):7.7753709629209045
                                Encrypted:false
                                SSDEEP:
                                MD5:EB7377208715318B001D920F049E318B
                                SHA1:9E428185FC78B5F18B11D1B29353433939B08B5B
                                SHA-256:10505DF86B3638BE7B5707A542C0C7C80ED856F14E037BB1C64BFAF712B0AB75
                                SHA-512:B6C0273E30938C67D2CC260D04A7E356CA750F3FE332700FC739966041AFC010AB2E04739E6F627A88042EAD1A5B14F37C580EF6E00D6869DDDD2E303DD04D35
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDLshdTI3jw.woff2
                                Preview:wOF2.............................................2..2.d.`?STATH.d....D.L. ..6.$.8. ....u.....QTr...<.m5k..)..-.....q.....?..sW..._..7......JE....FE22*.....N}..f.......t.N.!.v,......8q.'......p$.`fJ.JA:S..F.............'}..,...u..A..H...h<0.....G8...9_3.....q.....b ...0FB$,..........W.1...J. ..D..C@H.....D1.a.xp..(...c.v..|.A../O....K,O......L1z..&...H.1!aN...d..s.....:...f..S..P.A..I....%..)....6..r..].v`.....V......c...a.IuE......".H..i......B.#W.....s.R......m.?...H......$q`X....T.i)C..^w.>]. ..;..Dx.5.@.4.^.P....k..........g3..|..3.eYb.2hd.2K.L......wg-....;s......Q.'..(5..L'...*f.W...L....<.*.9k%.6.v.$......&.w.*...w4..k......6..Bj....R.B.r....d...I.5cb.8...{w'...6J..98.q-.HLa.".J?.-.>...3+......)..gtwvb.j.8u..vW."*U.:......y.......+:....D.7=l....9j.v...T8r. .........`...qp=.<Tr=...D......d....H.C.^,..%..S.:.=3.....s.9.$ .8~.Q....t>.6262..8..SP....s#.r.S>y..(M.......I(v..JUL.....$y9.EU...&z:..T....QD..Kn.....p.xI$,.,I.......n|...N.+

                                Chrome Cache Entry: 197

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:ASCII text, with very long lines (3817)
                                Category:downloaded
                                Size (bytes):122913
                                Entropy (8bit):5.472136552318629
                                Encrypted:false
                                SSDEEP:
                                MD5:0E46F1208A65DEA2631A3BAD0A09E1FE
                                SHA1:F286F70876DB7F668727057AEE401EDBA5269B7D
                                SHA-256:94BF15959C201BE7CE4EE345AE3CCE61DE0F85426CFAB1FF596148C834D1C747
                                SHA-512:F755466BED39220668C6E7BCE86B52870EBEF536A002654497695DBEA1492287BB42FBF02B5164ED727277063E7D3E70C07BD1936845870F96537DFB34E58011
                                Malicious:false
                                Reputation:unknown
                                URL:https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
                                Preview:(function(){var m,aa=function(a){var b=0;return function(){return b<a.length?{done:!1,value:a[b++]}:{done:!0}}},ba=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,b,c){if(a==Array.prototype||a==Object.prototype)return a;a[b]=c.value;return a},ca=function(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var c=a[b];if(c&&c.Math==Math)return c}throw Error("Cannot find global object");.},t=ca(this),v=function(a,b){if(b)a:{var c=t;a=a.split(".");for(var d=0;d<a.length-1;d++){var e=a[d];if(!(e in c))break a;c=c[e]}a=a[a.length-1];d=c[a];b=b(d);b!=d&&b!=null&&ba(c,a,{configurable:!0,writable:!0,value:b})}};.v("Symbol",function(a){if(a)return a;var b=function(g,f){this.$jscomp$symbol$id_=g;ba(this,"description",{configurable:!0,writable:!0,value:f})};b.prototype.toString=function(){return this.$jscomp$symbol$id_};var c="jscomp_symbol_"+(Math.random

                                Chrome Cache Entry: 198

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 41584, version 1.0
                                Category:downloaded
                                Size (bytes):41584
                                Entropy (8bit):7.995215789973138
                                Encrypted:true
                                SSDEEP:
                                MD5:71151932FDCC1AC7E09BF80A592DDA78
                                SHA1:7049019D7FA6D570CA9B57525224313656B36E8D
                                SHA-256:68C3F849762D80F759A7702F52B6F9C432173951D7D5E830C98CEDFDEBA5E53E
                                SHA-512:B438132A3327189B36CDF6675E52A4E319735A180AFA9B44261F3E1C36F5EDC86F4F8EDC873CAD4520FF639D5A2A617C84155F535516249D334BC02BF8815DA5
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/robotomono/v23/L0xoDF4xlVMF-BfR8bXMIjhOsXG-q2oeuFoqFrmAB-W4.woff2
                                Preview:wOF2.......p......RL.............................4.`?STAT@..P........w..r..6.$..r. ........[J.qF..</(..RU...>.`.9.[%.N9....#.<H.;.Y.....".....x.GQ.3...p.Tx...r.Zs.j5.0...r..f..i.]O.xZ..|...&;......j.8.i..&.......]...G...u....F.......]cs.x..a...r7...Udw+.+;P.R..Jh....U...puXL...>A...E........w..l.r.:m...T.VA...o....i*.........Y./....H<@.(..0.Rp.....9FT{.}...]..[]....E.."...Tjr^..o..>...H....e H.mcD.u3V}K.......u...........[.D.F......-..v..v.d...1`....6*"....F...>VR.......:<.....2.m.16.{.....uw\:..rD:Q.3..k.K%.......h....F..N}w.h..db:R....{y...."...#.N..i.34...<..n.O.`$..$..x/..x...........;...:!v.#.c..`..M..w.1!U"].ce......J...b.....u,g.(.|+......%.}++...S...>.x.......o.+..L..>~{w...;..i.2.H..M....!K.#F.a.`..1[.-$>..9..y.:1..T.s/....u...V.C..`)..r....B....)"v...d0g+4....I.D.Ii.tw.ar.W.R5mO.......q0.Ys=>.A.U]...>.E.4U;n.....~.rx.....U9..v`.9./._...].$E..B..W....K...p)..)!...u.~...^.....I......N..o..Q......v....x.D..i.i........#.......

                                Chrome Cache Entry: 200

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 41220, version 1.0
                                Category:downloaded
                                Size (bytes):41220
                                Entropy (8bit):7.99561943989194
                                Encrypted:true
                                SSDEEP:
                                MD5:C8D3E0F677AC007C9FADBA09A1C4C7BC
                                SHA1:83389D80FDF1BEE58E69DB1F38968404EAC57846
                                SHA-256:A9ED2DC63202E8E1E06CC22EB23D39212A36034D90DBC76274EC7F85DEB1D3C2
                                SHA-512:849C7C1D32C22286CB4216D92E2FA55E65FC3CD621780153F3758190694C0FB74821533B6F043C081F9B9327E5B911978B8BF7A79E12C1823090A5BE43200DF6
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/robotomono/v23/L0xoDF4xlVMF-BfR8bXMIjhOsXG-q2oeuFoqFrlnAOW4.woff2
                                Preview:wOF2..............Q..............................4.`?STATD..P.....t..'..r..6.$..r. ..r.....[..q.y.g...C..MV0..@w..{.5...q.b.<_...g'.2.z.n..4..{..D..)s48J.2U.LToD ...Q3e..~..3J.K&..6.J...J..X6.l.S..n.h...h..w.N...........2).x...T.^.....~........ .-..a....=..l{dK..).S...X.:....V.......k.?..z.!.>..20v....c......j..A..5...D....M(....v.w..3..:...:.:g.;sgE.M.#....6...E..@%%.OQ...R?.C.n......2&!.2....,B..5$.(2D..Q....vX..X.a..V......u..[..(EZ....(.D.{{..U.dM.`#%F.........Gic....z.O.....k.UJ.t..#...P*1A...?....yI.F....I.,..y`f..K.-Z... .....m0.%q....[Wz../.....k7..1..j....{.Py.....e..b..@...g.s?X3.H....y...I.A....y.H....x..a.]..B.(.&Ai@...19.D.4.a..ky.........F...4.N.Bw........... K. A.......6w...5........%DL#.o...>0...C~|.L....v.B!... p}....n.p....!..;...^.$F..3!9".....Ak....~f."8%@f-u.Op..T..[..r.{...B.H.".(....|.P./V....v...}T..r+.p....x.....r....?...;fO@.........T....r.$.....w..........|.%..?...?S..*..@.5.k..h..4.|.o..$......4@V7)..:@........>..

                                Chrome Cache Entry: 201

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 100756, version 1.0
                                Category:downloaded
                                Size (bytes):100756
                                Entropy (8bit):7.997403019876083
                                Encrypted:true
                                SSDEEP:
                                MD5:4498A1A925FD2D5630BA89B78739E194
                                SHA1:C757EDCF6538B1F0968F69A7618C564DCAF7150A
                                SHA-256:54EFCB5570863B2329C2C677749C85C7ED337F5C16BF38CAEA17807196150293
                                SHA-512:3510CF6C3ED3786716329466F5575F63563B6C0DFEC2F78E3CA8C881F6C17EC066AC21EDDA970ACB377E610F1A5C937D9CBBE38DC690A30F12FEF49EDD93189D
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/caveat/v18/WnznHAc5bAfYB2QRah7pcpNvOx-pjfJ9SIc.woff2
                                Preview:wOF2..................0..........................<...8..2.`?STAT...P.....D..).....6.$.... ..~.....[..r...GE3n...g.T....&..^Z........Q'..#.Q...u.....+...U6L..$!P.co......4w...rIQs.'.nXX9....@...N.W.....X...Z6SI.(.........I...zC.H.U.[.M."............\.....w.N....Q.w...L-zGg%..S.....Bcwq!].z.H..V..T........w...7...jE1.:.zR.U-.....f.e.'._9.y".$"#.(...M...=....[t.X..Rv..1.>..g.o.P.?..q ....4RsP..I..?........].Oq..k .q...PJ.ii..}?.W.r.BA.Y_.M..........$,.Nd.:.'..r..(.q:/i.e..C.......:...kq.....8.}.8.S53..=&6...+..Y.YY.......o.>....s..x"5X......z...'h.D8<N .E....s....v...hh+........RE..5....D^.....i.i\.f....*......~.xJs....n......Gl......%..X.L.VW.1.A*.........Us...xp.G.^4.J.... ......#b..=uF..\Z.F....[x".y{....g..>..Z1....*`....;<.?.~'.ui.q.z.0...Nz...9.l....h...Qa....|........R.RjZ7..2h...g.T..Z.U./.....nCj/._..Z...... 1. ...H...&%......es!tbf..\.....h.k.|......=...1...,.sxI....dcW./k...o....._...{k.N.....:.`.*?......`..T.K..k.._.. ...D.

                                Chrome Cache Entry: 202

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 2560, version 1.0
                                Category:downloaded
                                Size (bytes):2560
                                Entropy (8bit):7.866416223385858
                                Encrypted:false
                                SSDEEP:
                                MD5:AAD954B1FF4E297C5D137133C4BB36C3
                                SHA1:781A7FFB51D787FA807F1D861A4D003BD33E42E8
                                SHA-256:C28A9A498502C596ED0275021BDAEF2A57225D9460C650706907FC95F7BA6D80
                                SHA-512:149F0D8CC70A8D6D3567917DA7F43D125BAB19D1B420E6921C38E278196E168E3D3FAB6C2C3608ACBDA01F0A660267B35A5672DF80CC671B3167A4CCE4DE6D9F
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/ebgaramond/v30/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-6_RkAo9_.woff2
                                Preview:wOF2...............$................................ ...`?STATH.......L.s."..6.$.>. ..h.c.....(...v..I....y~...KxD=....XL.#...Hc..?.....{.............vgz..E..\.O.(.@..,..........FD5DHW:.....3a1.L...M.C..7Dj`(.\....\D.q..<o...............).>.......-....m.....;.......@..C5.@].9.6..J....}o.........T..F..%$.08.G....g..M..(.|..Y..(.R .R...9.{aK.`.b/h.f?C/K..9.|..M`.O...b..i.}....s......O.;.....7.!........Ep.Xx.....#tl......c...>v...1.E#]..k...j.aLK4,.n[.......>..U(c.'..K .....g1..l=.. ....&.9Z..".r..P!.K.....I.I..J..)W.p..+..:....u]A.FGG.{..:e..)w....%...Zt5n...G..;...5!......0...0.`....(....R.bQ...o..l...m].._L...fp.Lp].=..v.u.k]6y..+`...V..k...9:.e....c...c..v..oC.(_....F|.&..e.ny....(....V&....s6..I..VR...RW.*k.P5j...^R{.r....`]Z..Iij^;.C.QCO..4.a$'.w.HC...E...{....i...2.....K5y.j.....v.#%..n.3...y.o_..:.:....c]......;E\.k...v..AI...r"..1.3.~'..T..{=...N..amh.S...1.."H-.8..bl...U..Wz.<..Vr..gi._..cwB..8.k..~...{.+xx3....C.^...)..k.Kz...lr^

                                Chrome Cache Entry: 204

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 25940, version 1.0
                                Category:downloaded
                                Size (bytes):25940
                                Entropy (8bit):7.990402611464527
                                Encrypted:true
                                SSDEEP:
                                MD5:472997FA70DA7203D0AAF11F7B166C93
                                SHA1:17B746D4980DF5C0EFFCB129B63FFF1FCBDB8999
                                SHA-256:5110D967DAD4A4E2D1578B5A1E27E210F03DAD636892CEA6D7F8B1BB617BCF2B
                                SHA-512:6BE9C1998D004BDB1299D23B2BCF3ADEE693893018842E9A5DE2E58B19023CADB16FE9A95F6FEF7DA70AFB203871C6C30E530221FE8E0FEA7AC08E911B34AF23
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/lexend/v23/wlptgwvFAVdoq2_F94zlCfv0bz1WCzsW_LU.woff2
                                Preview:wOF2......eT..........d....................................`?STAT............].....6.$.... .....x.........t*J.U.....@.lW3......G"L:#.......&.9l3O.u`.........CSX5m...i.%W..!...8i...V.I".&V...%J.w..u...6....OU....rLy....c_..t...L(k..z..2.|S...Lu..TK..../u.Y..5.P.>T........BJ,......&.#....T..K..e.5......D..~....'.v_.......g..D;U+.!..i..D.......I.........O&fm...0..*.\...!.2.h..&K....$T-..P.."......R^.xt.<....&y....\...h{b.H.../.2h...."."0n...K..]..=o>.U....RjD..G.[.wI.!..Bh.....@.,..W@.A........Qy..X*.bD....Ry).B@.. t..s.w9....U....(2....e...cc,..l0`..RO...30..........(.....8......Z.=......bo.E..HFa7%M...8U.G.g.Nv...8x.d..`......a...i3..1..Rb.....H..N..l..x`.[..S.B..t....`.g.C..TB!..I.5t*Cix.3.b....e.c..E.Yi.T...7...`......L....!..l.9.O.~...X.XH.;s..^{.o).R .."^..|...R....n:P...:H.v"..+..T.......i...9(...z.`{.. .D..|..^.Z.?..i.T..FO.~../....f.."...IWUd..`....kr].;};...g.b.Q.&+*'....J..f`....Y...6..x.W.~.."..t.K..dd.....m4.!.NH....q.m........^...

                                Chrome Cache Entry: 205

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 84892, version 1.0
                                Category:downloaded
                                Size (bytes):84892
                                Entropy (8bit):7.997781229266095
                                Encrypted:true
                                SSDEEP:
                                MD5:0F0BE34D30705D3F21ECCBBFBFCBE983
                                SHA1:96A0C04F6610AE014FC1179641861C1A96DD6DD0
                                SHA-256:E05FD4C39D2671D0FEBCF551364287A41D4889CA4692817722459FF34940AC81
                                SHA-512:45B00B7B0962DCB3BE109981A9D41682E36767F9A2056F6751B639B96F97824D59867B7700F61C68BABCF35FC1C4E3719E361B25339C10346CCB12694E1492C9
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/pacifico/v22/FwZY7-Qmy14u9lezJ96F.woff2
                                Preview:wOF2......K........x..K5..........................&...F..(.`..............@..6.. ..6.$..z. ..r.....K[.w.....>..f...G./...=[..l.Awl.e.....m[......p.`.MoL.........d"...Iv.IZ....._ac.6Ls...BWn.Rr&.4.y..]L...i..Ri.$5.>.......W...&./WtpW.I..$!...5.....#.k8.n..e....3...s].f.+.q.~.h..C...rZ..3B...._..d..W..5m.Y..%......H.z.)'M9O.U...yz:.m+-...>....N.:..2...[..nU...<G_z.;;......E.d...J....L1...{.....7..;{....I.K..s...x.JHF..Z@u.l......W.&..dp....#..>/..q&r!..0.0J/.........%.....j...k..].5...QM.O..t...A...m.69p.{..kr........w.v|j...Cf...c\7...DZ.aL...l. .........{_o.6.cA.D.....a...3jb S..#....G.?C.'F7.. .....g........D.K...8...Z.J9D...T.ynU.............i.%Q.....H.1s........=.... *F.T..(........5`."o...0X%.l#6rD..../v.Qo....~....~.!.m..y......g...!. ....pU..t..g..r..t.#1.0D...6...!.z.W6.N..P.$/..9..6.Q......7g....8.#...y.E8..#....?L-.80.B{..O...t..,..[[.E...6Y..T....$[.g...+.KX.. !4.xj.^..e.2+.:*W.wV'.T/Z8..MJ...)M...............>.M.-.|.k{

                                Chrome Cache Entry: 206

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 50032, version 1.0
                                Category:downloaded
                                Size (bytes):50032
                                Entropy (8bit):7.99687526963219
                                Encrypted:true
                                SSDEEP:
                                MD5:3A1D827D4C9CEA1A4D9AC216BF6A3D0B
                                SHA1:B3464CCD91897B1DB6CF5EB06E7A4F89F31EDB94
                                SHA-256:CC7B21390D89052DA348CF014A9F38412956B535BA362D5021CF9B2707F03DF6
                                SHA-512:E2D8C5FC730AB3E648E2DCA07F462E993E2125D777B16A5FE393D1EB3A2EFEEBEFB65A7BACD058AE04B3A6B3E0883F6952824692AE28696011052C7737BBB19F
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Me4A.woff2
                                Preview:wOF2.......p......................................j...j..j.`....T..<..... .....Z...x.6.$..0. ..t. ..I[K.q..v..T.n2.H7.u%....A.-.r.L...MCx...p...%......8.o;.mw.T....&.Ia...J)%.t...5g.mo.......p..Y....O...yV..j^.Li.5a.1....:66?.)..).G...ptC..e..aS.K...r.....(.w.l..r...wE..iC..F.U._jK...S.mT.j.)>.."....T.{L!.?>7t...*..wUn}.d"...:\...0.J..@.....Z...-M|.8JRe3...a.'.?E........Z.).R..!?....6.%.....gI...../.Wc....{...J$!+ ..$..]XG..}..y~n..{.`..aQ.1.9b...0..#.. ....&..........G+"*6.....7@s.ncTKJ..D.........5r..6j0....*..Ry.Q.~.xq/.=[.3..h..|SRD.I.....ss.].!)$.I.......9.......d......c..a;..[R_..f'.Pw`...]..~.....|......p<."..........,...9o...$..H......@.+\...t....5vJ...Y.GI .,.}k......k?O.V.X....a5..X $<B...]..P..d..T...o....d`FFDF.VRqC=l..?..Cn.........%..YB....{#\..o...f-.DdL....}|.!.=.~k...,.....H^....c;..e[.`.c....t.^...0|.3..G...u.D0...tN..hX...(.....S|..a.".|a........j"...o...1N4..c.n...L.PM...?......jT.on..+-,.e.....b??...yY..k..v.+a.Z..*......J.,.7.....

                                Chrome Cache Entry: 207

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 37800, version 1.0
                                Category:downloaded
                                Size (bytes):37800
                                Entropy (8bit):7.993884030418155
                                Encrypted:true
                                SSDEEP:
                                MD5:2B097CB2DC262C764A2C97D4E233918D
                                SHA1:83DB49B6B6DDA13ADC82726197CC2B243EF647DC
                                SHA-256:7615AED2ED8F1361D3ABA2B6CE6612468463E660E8BD4A4302B24C113EC57308
                                SHA-512:74193AA72286C60886138955917F87171F2FE483D6C2F35BB1CF1D17A0390F05149FF73EF7AC5550281A45CB0F9608D9C1BBB3AA5C3DA2843D21F61111601333
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/robotomono/v23/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_Of2PRg.woff2
                                Preview:wOF2..............7....L.........................4.`?STATD..`.....$.."..r..6.$..r. ..l........'pg..q;h...g.......E...U0.....x.}......Td.6...c......Q...j..M...e5EJ.V'..#%.Y..m....\..>.....S..k.$/.g$.gZn>..0..S..&\Y..A{.......t.......6....A.!.y.Y;.].~..........?G.'...u....U`...Q+NT.._/...}FrF:.'.+7.q_....%=...1....,...=:...A.....,@B.D..x.......7...~{.WA*d..VU.../.>.Rb..!B....tX.i$.,H...a.......)....b..z..>........y....1`.`...T.h4....\...b...fV....#O9.$...MCB.W.~Z..N^.6.5..<.x.u.X.....$U8.G`4N".'<Dp.wY...2=.kXK...0..........7.......M.....!p..@D..:v.:.-.o...)...a..8..l....<.\...x.gT..........m...0..8.A>..h...[0...0..8A.%r...{.......f.......L*..9....*p..........q.[^6..s.....[h.-.. ....#.E._..Z&.g......)....T7%,![........A.8...b......C...@....Z..9QK{.4.{4.T...o.....D.1ib..Y.9.=.}.3.T.h.b%B.f.&."-R2$.......R....+y...+OW....T.Jgy..(..F.2.}...F.)......^.T.....a.t..i.....g....."....R.J@.s.BU....,fvAp......H../../Q.;,...`..y....+&9.T.(C..sw.;We...nzwn.+.........q.`.

                                Chrome Cache Entry: 208

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 57236, version 1.0
                                Category:downloaded
                                Size (bytes):57236
                                Entropy (8bit):7.99608783144297
                                Encrypted:true
                                SSDEEP:
                                MD5:212D9F17F0F5D037532FA3B8FC14B8DE
                                SHA1:C332A9F57F2C7931F2A930B5D91BCF244E38FC42
                                SHA-256:53B183E10D8C5DB234637E82BEF4014117BD41C956C69AF55FA0165A7BE31666
                                SHA-512:F36B776390830548F3B7931B223E94301D1711C41D8E9F0AE43A50EAF9B3D0B1FDC66708802E2C53F416A7DCFE8937EFAF1BA0CF15CF83E20C955AA3853D1710
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNpWg.woff2
                                Preview:wOF2..............P..............................t..^..T.`..(.....m.....`........6.$..|. ..Z.....1[....n;.U.p....JF+._.7.Sn..IA..o.l..n.,...p......d!r.}.>I.6PU..f$....);9.R.j.J..B.....PJ..!...u.|.'{/K.M.L)..h1.......g..k.9^3f.y.S..>].z.o."(......V}.?LE...EyF.Y.J..v.v..E..S...:..+.{......Rag.DOT.1._.....Up..V.V..5.W....xg.G......}.fH"!........'q.....{t...z}i).9.C)E.CR.;..5.......#.W..W[.l......A..D[..m.k.Y9y......U....W...?...o.{...(...$G.3D.c..s...6....;.:.msn..v..lv........{...4..-3.-....T.vJ....-W$...:<.$\.....{>{.u.....&qSq......"L.E4.u.......{^.>.iT..2.d...R...JX....j..X.{g..9...A0....q"C..G....W.e...vM!t.@.=Q......G....3...0.D....X.......pwQBa.HC..`wm.d............@.B v...@.$A.*.......*j.......n..uZ...n.^.+..K.o.@w.ap).a..!Q....4....f..Q.k.....1..P?.....a.....'>....5.<...... ../.....8...~.S...z...iT.\.k...;K......D~..K....P.7.?.....P..!.%P..Z....r...U{..'......2kDP.8.......L'..A...C....k.M.P.nJ........$'...bW...a..v.j.hv{+.?.;.._.L...A=b.

                                Chrome Cache Entry: 209

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:PNG image data, 1200 x 300, 8-bit colormap, non-interlaced
                                Category:downloaded
                                Size (bytes):284525
                                Entropy (8bit):7.997770690998032
                                Encrypted:true
                                SSDEEP:
                                MD5:EDF2D92EEE9B9752A81999142438D772
                                SHA1:43645EB7C2A201601FAE7B49D1E09BC22622FA42
                                SHA-256:2A1374606FD0DC8EFF7DAE0533443F7B7AAEAE0BDD89EE03DF81224D69024D89
                                SHA-512:B26FC7B48E54BD03CA5679643A320F34089DF8BAE6258ADC993AD29E6299957F7FC7C12F34496A99B0D51E0D745D359A5C9F505205F5358BDF91054DCAFBFFD0
                                Malicious:false
                                Reputation:unknown
                                URL:https://lh5.googleusercontent.com/g-woak6srTrWGqUQuHdxHaTHvc9ZCFmi3B84xq-1Ujx_r3AeUJ_yQ3Hqj3S-idsnvfO0Vd5lpQnlv9fs5HwBkcnUg3iSrJAlC2MRqQHzSi6jccFS0DKl9wRFxzgGmulwGw=w1200
                                Preview:.PNG........IHDR.......,......c.b....PLTE..i6.E!.v8.....,........xC.g1..8..F.H(....G.V).V&....X2...fs.y...7.e).3.x...E.E.d(.....R.t...D.wM..Y1.3yh.5..F..7...\\.i.....E..'se.!.G.v.....E.....l.!..6.m..&.)./.....W....zj.o"}p6.{..Y.....I...x..z$.#..`...3ys.R.W.j..&.|...X...w'.....].v>..f...... ..6..$jd.y...#hYI.c..O.4.....U .W..7S...R....k....mm....QR....0..o.....t..V.x....G6..3..S..G..V.o...m......a...Q.z..(t.V..>.l....`n..D..........6nV.q..=G..dpH.]^...}.J.......................................................................................................................................................................................................................................................................................................;s.....IDATx^....\.u&x..^".X..b%.B!..EQ.b.....P.E.V[.....h....L.-.4.v.O.c....ptDG......^dK..].e....$%....@..`a..BfV..|.]......@6I....].....{..+...hE.c)R!.}k.7..y'.0.#.E!....o.(:..M..g.F.

                                Chrome Cache Entry: 210

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 37632, version 1.0
                                Category:downloaded
                                Size (bytes):37632
                                Entropy (8bit):7.994612552386459
                                Encrypted:true
                                SSDEEP:
                                MD5:1FFAA430DEB705DF128762D9990F8EFE
                                SHA1:847F8CA1CF199A602AEF0EF42AEBF5F825584E19
                                SHA-256:2706DFABCBAAF2DEE90C3A10C168D5F5691CE787DCAE9E77CD038F66B08FC4BA
                                SHA-512:24B0B6016AAFD2C96C5110B4EB19FDB965E4F12007552E710B33F38E7621F3329D28570BA40E25041E17FE27624DE52294890585836590B509F2BF28DD92736D
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/robotomono/v23/L0xuDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vqPRg.woff2
                                Preview:wOF2..............7,.............................4.`?STATH..`.....p..n..r..6.$..r. .........A.'.m.....h.j..a.......II.k...q........d#.<x=..|S3..@..;..#....J..p.xx.<..R.....E].&..*.R.....L....6*k..(x.E."H....v.A...x[...1...Z.G....j....q.).....W.D.pe..w.8..M...{.|....G...KlS..2.vi3DC...<.......b.$.n... ..J0gx~..N....M..S=....j..w....b%z.7Q[.....6......y...(x..3...y.~*..Q..0.l@.c.c...t.17.......X..f.Q..z.7...r........,..-..x.+A..I"..M.i..?..?|..).J7.F0......U.....z..i3..:%.X.0%.'...7..v{.......hCz..y..8u.....!.......`.z..../.=S.Jh...P.....T.&n%V[..sp^.aB.A.k.....f.8..n.i^[1#[..........d......-.....ST.}gN......ZK.Z. /I..b.H..4.y...m...g..#.GI.s....F8..d...V..L.........i.....g${.......t..Q..M...s...u.%K...|..0.6...|..<......6.....;.0".....P.x.y..y.\P.B\.......e6..Y.nq9.v*$....=....'....?...B....d9E.....,f9.....b..d+\..S.k|].d.\Y..>.9..[..f.=c]...36.$,~UQMU.@.`0..c......4.Z.v..s.KkM.^..^..E......?Uu......{...0..K...i.6B..A..I5..I.....|..LN.-k.....1.jPu.F

                                Chrome Cache Entry: 211

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 43772, version 1.0
                                Category:downloaded
                                Size (bytes):43772
                                Entropy (8bit):7.99497933742288
                                Encrypted:true
                                SSDEEP:
                                MD5:36338672609C9EC1D83AF4E1AFF7B0AD
                                SHA1:287BF3611440E9377DD71C0620AA63448D632F06
                                SHA-256:E268433F792E81D03D24617E0A4D6ECB5728278A805E7D12493E06802AA671A7
                                SHA-512:6A4F62F6BFB02679F2887CB62E1BAB06F5FAFEB80BA44AED733ABFD0FBD1F8EAF545316958CC8D5FD74E6685D68CDC1BC037FA02810FFF98BC9EB95719DA7A1C
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/playfairdisplay/v37/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_k-UbtM.woff2
                                Preview:wOF2..............................................d...$..f.`?STAT@..t.....l..=..\..6.$..4. ........[.{..5.....+..kL.J.....)x.].....J..'...R.........IE.K3.vcx.....Bp..G.:D..UT...{C......P@F..r8+..d.!Si.$..F..7..v...{.>..+u..u..,v.g.J..%g.%.D%*Q).^2..n....JT..jF.7C..H..8...d..D.V".&...|>^[.e.l...J.YYD0W0_..n..ulm..y..2...M_<.b'3H..'..+Yb. .w#..h..o.1.coJ........)mO..s....!'J^D....KC.,sa-.?.../*Q....3....o.......g.....t).y.=..U.%o..q#k*.&_.?C..ff....8.82..W..0...D.V@..$-.BZ.$JE.8...<*D....@.m....%.....w..rw.jr.XP1.H.Q%.. ...."..H.(.X..-...A....q...v.....]K....D.QB.Eb.q..</.....y..G..<v....w1/W1*.i...O...sU....P.z.L{.K4.T.I.po.^g...]....JK..7}......._x.7.g.a.w.%..r....`..+5.a...*.>A=......H#1...s.58/..d....#....-?l.[y.........i...p.x....@@.v....AhF4...!........A.....}._.........V.J.(.D(.R.G!.RPa...? .W...Wo......%5h......Q....J#ZI..oN.......I../......K..(...)@....h.R.+...9.9...C.Q........z.u.DI......L..7.p.{...l*J.&..y!.I..C......W..vEk.....k.

                                Chrome Cache Entry: 212

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 5044, version 1.0
                                Category:downloaded
                                Size (bytes):5044
                                Entropy (8bit):7.951901332858743
                                Encrypted:false
                                SSDEEP:
                                MD5:5E37F6030CF935F9CBD3FF5A22E08D2E
                                SHA1:C77AE7DD7501F4F578884BC034004F8619FC3D17
                                SHA-256:867352B1C82C47D71A11744E3886441A848780DCA87928BAC596E5F3473BFAA3
                                SHA-512:32D2C92FE4A8EA3A5DA9F103F6E36CF035804F529DD488A593A700566FF14A1B6F2A02AB9527818F7891DB88C6DAF5451251D21A6C8CD2FAA637884D142D3C08
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/pacifico/v22/FwZY7-Qmy14u9lezJ-6B6Mk.woff2
                                Preview:wOF2..............)`...W............................h....`.t.................6.$.X. ..r..*..K..&#........<./...1.x."..T.Vx..j.)...UUoG....@..X...d.~.W....l.3H.Y.e.......+?RX.(.Z.#.....#.i...y.~?...x.M...7..%..D"$*.....i..).25f..2.........f..%.ifB..mQc....2=4%]I.....WWrQ%..(..g.......k..o.z..]...$`....._....Y"..Y8b.......(m..O..WM:...1."...H..r...B..!..sN..,%In.P....1pH.$.i.g. .+K1.V..{%. ..A....l9.x.P...'..W.$...B......M.5W...j.3..gc%..zk4.[.E............m.q.6G@DT.Q..S...5vY3j.!....i...h...=.Ox..._9Q$WPX\..2..<..R+qYG..H..K./.F^}.....=.\/W<.6.....4.l.\t.......^.Q...Q....`.Hn.Y..Z.BI...eCP.......\....f|w......5..^..eK~\~p.....$!....S3.....-..e@w.....2..f.W....`?d.'...........)(..8^.cO.}.f\.(...[.;q[.Q..e.wR./S.@q......q.l..q.z..m|.p.H....9...W.....-...5..ZB:.......YV.jC....[.....7...n;m.d.I.F.ly...O.bW.R.d....c..M...^v9[j....'......r.z_......7./...~A....W.|Mci...Q.7...9.A..i...\....2.`.W_ ....6...()..s....7.\..j.....@o....m....w...6.....,

                                Chrome Cache Entry: 213

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:HTML document, Unicode text, UTF-8 text, with very long lines (1136)
                                Category:dropped
                                Size (bytes):1555
                                Entropy (8bit):5.249530958699059
                                Encrypted:false
                                SSDEEP:
                                MD5:FBE36EB2EECF1B90451A3A72701E49D2
                                SHA1:AE56EA57C52D1153CEC33CEF91CF935D2D3AF14D
                                SHA-256:E8F2DED5D74C0EE5F427A20B6715E65BC79ED5C4FC67FB00D89005515C8EFE63
                                SHA-512:7B1FD6CF34C26AF2436AF61A1DE16C9DBFB4C43579A9499F4852A7848F873BAC15BEEEA6124CF17F46A9F5DD632162364E0EC120ACA5F65E7C5615FF178A248F
                                Malicious:false
                                Reputation:unknown
                                Preview:<!DOCTYPE html>.<html lang=en>. <meta charset=utf-8>. <meta name=viewport content="initial-scale=1, minimum-scale=1, width=device-width">. <title>Error 400 (Bad Request)!!1</title>. <style>. *{margin:0;padding:0}html,code{font:15px/22px arial,sans-serif}html{background:#fff;color:#222;padding:15px}body{margin:7% auto 0;max-width:390px;min-height:180px;padding:30px 0 15px}* > body{background:url(//www.google.com/images/errors/robot.png) 100% 5px no-repeat;padding-right:205px}p{margin:11px 0 22px;overflow:hidden}ins{color:#777;text-decoration:none}a img{border:0}@media screen and (max-width:772px){body{background:none;margin-top:0;max-width:none;padding-right:0}}#logo{background:url(//www.google.com/images/branding/googlelogo/1x/googlelogo_color_150x54dp.png) no-repeat;margin-left:-5px}@media only screen and (min-resolution:192dpi){#logo{background:url(//www.google.com/images/branding/googlelogo/2x/googlelogo_color_150x54dp.png) no-repeat 0% 0%/100% 100%;-moz-border-image:url(//ww

                                Chrome Cache Entry: 214

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 142920, version 1.0
                                Category:downloaded
                                Size (bytes):142920
                                Entropy (8bit):7.998331954193963
                                Encrypted:true
                                SSDEEP:
                                MD5:643086F598435216DC497F1FE1174F85
                                SHA1:FD3050CC2BFCB38D36876B66CAA15D97AD3098BE
                                SHA-256:15FCE9FC686A7ED24AE85F394838CCA6DC46CA2AA43DF5E35A9EDCD3EAF3577F
                                SHA-512:CC899A561B18A00EBD949238CCEEFB78EBB0D7F61579C20DE1EBC6AD1273D6C393E3CB7DF0A41A8DEEE3B30EC9325F3443C5A760ED9C9BEC93BBE5E185A6C68A
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/ebgaramond/v30/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-DPNUBg.woff2
                                Preview:wOF2.......H.........-...........................>......P.`?STATD...B.....$........6.$.... ..P...J..[2..^y..>_..h|..m.L..M.`...n.Yy<Oc.......<7.c.c...........!......{0R............F...m6.~...p..H.C....P....%Qaj.Y.4....rV.........K)..v].....pF5.l0lJ*.F.i`.$KED.......j..'o.s.xi-...u.Z..L..Y...%r.H.E.*....(....+..+.LT....@.(..@..Z&$../.....v.e...2.5R.;.JK$&)-.}{s.;.....?.3.6........Z..\.....O.C....,.z..|...-.#.R._ZJ..<;0..C.\.p.F..k.r.....Uj..?..k.."0?.~...`F.^(.k.[...oP$.6~.5.Ya.....(.o.N/..<..5......s=.*.r...xa.8G.Wg...Zeb.Z...w.;..D....~."5..-l...0.z.F.,p...h........P$^..s.,.=..M?x.|.[..[...0.s...Q..x._.Tl..Ej...S.......%I.,>.H....&.g<......Q?..I..W..O5.M|.7.)\. .$..*.......J...O........_..>..;.....y.\t_....Zk...t.....2.....O....[...._(q.'..|..Kt{....#g.....[.$.!e........~.....KOC..\...."........~..<I.Z.|i...D.X........f.>....3..>.O./...n.;..)T....].-...b.......0k..b:....x.+.....k.U.f..".....U.+.........J..g.3.f9EtETZ.4q../....g.!.....][.

                                Chrome Cache Entry: 216

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:ASCII text, with very long lines (1572)
                                Category:downloaded
                                Size (bytes):29128
                                Entropy (8bit):5.55152451974718
                                Encrypted:false
                                SSDEEP:
                                MD5:4E8F6A9FE4F8B1DDE86BA8B77A5B325B
                                SHA1:8EDE3F62EF2390BD9BCAD4F5CBC3D43A2A820099
                                SHA-256:3940BA99BE7275A189182F6E8E6CAA4A43FB8F3C01B5C73B2C619B416AA2F08A
                                SHA-512:264DE43CFF9062BB6FD8FCF30EA2AB967CEFBFDDA85140ABC37F1D66E682A6D0437DBEDFC3B165535F43D30E38A7677788F13D63A444A0A1CEA104F57D9D8638
                                Malicious:false
                                Reputation:unknown
                                URL:"https://fonts.googleapis.com/css?family=Google+Sans:400,500|Roboto:300,400,400i,500,700&subset=latin,vietnamese,latin-ext,cyrillic,greek,cyrillic-ext,greek-ext"
                                Preview:/*. * See: https://fonts.google.com/license/googlerestricted. */./* armenian */.@font-face {. font-family: 'Google Sans';. font-style: normal;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/googlesans/v61/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPiIUvaYr.woff2) format('woff2');. unicode-range: U+0308, U+0530-058F, U+2010, U+2024, U+25CC, U+FB13-FB17;.}./* bengali */.@font-face {. font-family: 'Google Sans';. font-style: normal;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/googlesans/v61/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPiAUvaYr.woff2) format('woff2');. unicode-range: U+0951-0952, U+0964-0965, U+0980-09FE, U+1CD0, U+1CD2, U+1CD5-1CD6, U+1CD8, U+1CE1, U+1CEA, U+1CED, U+1CF2, U+1CF5-1CF7, U+200C-200D, U+20B9, U+25CC, U+A8F1;.}./* cyrillic-ext */.@font-face {. font-family: 'Google Sans';. font-style: normal;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/googlesans/v61/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_I

                                Chrome Cache Entry: 217

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:ASCII text, with very long lines (1747)
                                Category:downloaded
                                Size (bytes):350886
                                Entropy (8bit):5.624469578380261
                                Encrypted:false
                                SSDEEP:
                                MD5:9A8748CD5832310C3F90261343F3BE63
                                SHA1:AAB5E6EF8B42964F141B2421EE59DC42A9C712E9
                                SHA-256:9ACFDD536E0017DF6DB3454FCE0B1300F7BF237C977DBF8DD7219EDD94374F3B
                                SHA-512:A79EC291BBE9B409660A7CB58B7097C386311C6FAF428B747DE087AA0290D908B7155EA54238E830A4307C3FFF76A3723A1B3D7ED1C35DA5845F00B6B8924971
                                Malicious:false
                                Reputation:unknown
                                URL:"https://www.gstatic.com/_/freebird/_/js/k=freebird.v.en.zIS2MaIzuyc.O/am=wGA/d=0/rs=AMjVe6iDXYbnNp7GJjKtCDbS3bXEPJSKmg/m=sy1m,vGOnYd,syi,syt,sys,IZT63,vfuNJf,MpJwZc,n73qwf,sya,ws9Tlc,sy5,sy6,sym,syl,syv,syc,syu,sy1f,sy1g,sy1d,sy1e,siKnQd,T8YtQb,sy4s,sy4v,sy8z,sy8y,sy4t,sy8w,OShpD,sy7g,sy91,sy93,sy95,sy92,sy94,sy8x,sy90,sy96,J8mJTc,sy12,sy10,sy11,sy15,sy1a,sy1b,sye,sy19,cEt90b,KUM7Z,yxTchf,syb,syd,xQtZb,qddgKe,syj,syn,sy4,syr,syz,sy13,wR5FRb,pXdRYb,iFQyKf,syw,syh,syx,YNjGDd,syy,sy14,PrPYRd,sy16,sy17,hc6Ubd,sy1j,SpsfSb,dIoSBb,sy1k,sy1l,zbML3c,zr1jrb,EmZ2Bf,sy1c,Uas9Hd,sy7a,sybf,WO9ee,b2l6fe,sy1,sy7p,sy9h,sy5v,sy9e,sy9g,sy9b,sy9c,sy9n,sy9o,sy9k,sya9,Sk9apb,szrus,sy1i,sy1h,sy1t,sy1u,sy1v,L1AAkb,QvB8bb,bCfhJc,aW3pY,sy1r,sy49,sy4h,sy4a,sy4g,sy4b,sy3u,sy3v,sy4i,sy4j,sy4o,sy1n,sy3w,sy3z,sy47,sy48,sy4c,sy4d,sy4e,sy4k,sy4l,sy4m,sy4n,fgj8Rb,sy53,sy50,sy84,sy9d,sy9t,sy82,syba,sy8p,sy9,syq,sy3q,sy9f,sy9m,syb7,syb9,sybc,sybb,sy8,syb2,p2tbsc,nV4ih,sybe,LxALBf,SM1lmd,Vnjw0c,QwQO1b,JCrucd,rK97wb,DhgO0d,oZECf,sy4x,akEJMc,sy4y,sy4z,zG2TEe,sy55,sy51,sy52,sy54,sy56,jjSbr,sy7z,syag,syaf,sy7i,sy7k,sy3s,sy9w,sy9l,sy7o,syai,syah,syb4,syb8,syb3,syb6,xKXrob,sy7j,sy81,sy9x,sy9r,syay,syb1,syb5,DPwS9e,lN6Aje"
                                Preview:"use strict";this.default_v=this.default_v||{};(function(_){var window=this;.try{._.Ar(_.Lx);.}catch(e){_._DumpException(e)}.try{._.v("vGOnYd");.var XOb=function(){this.type=1;this.view=null},MY=function(a){_.Q.call(this,a.Ca)};_.C(MY,_.Q);MY.ya=_.Q.ya;MY.prototype.j=function(){return _.es()};MY.prototype.start=function(){return new XOb};MY.prototype.cancel=function(){};MY.prototype.render=function(){return _.fs()};_.St(_.tAa,MY);._.x();.}catch(e){_._DumpException(e)}.try{._.qIa=function(a){if(a==null)return a;if(typeof a==="string"){if(!a)return;a=+a}if(typeof a==="number")return Number.isFinite(a)?a>>>0:void 0};_.rIa=function(a,b,c){if(a!=null)if(typeof a==="string")a=a?new _.Wb(a,_.Fg):_.Gg();else if(a.constructor!==_.Wb)if(_.Xa(a))a=a.length?new _.Wb(c?a:new Uint8Array(a),_.Fg):_.Gg();else{if(!b)throw Error();a=void 0}return a};._.Oz=function(a){for(var b=[],c=0;c<arguments.length;c++){var d=arguments[c];if(Array.isArray(d))for(var e=0;e<d.length;e+=8192)for(var f=_.Oz.apply(null,_

                                Chrome Cache Entry: 218

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:ASCII text
                                Category:downloaded
                                Size (bytes):1420
                                Entropy (8bit):5.437116384142019
                                Encrypted:false
                                SSDEEP:
                                MD5:B939B48641DD382769F5A921A51354D1
                                SHA1:3E649193F051D481FCA5EB499FCB451ED6DB14C2
                                SHA-256:87DE156E2BD6004CC029BDEC39839C051DC935899C041DD6CA96E98C2585C402
                                SHA-512:9230358837E8D98E2B584704D53AD00FF6F2AD03A59D02479D6D064906D87A3CD21A823DBCDBEE156359675D0A0AF018FD927A32BD4118D2864CC385EF2F28FC
                                Malicious:false
                                Reputation:unknown
                                URL:"https://fonts.googleapis.com/css?family=Product+Sans&subset=latin,vietnamese,latin-ext,cyrillic,greek,cyrillic-ext,greek-ext"
                                Preview:/*. * See: https://fonts.google.com/license/googlerestricted. */./* cyrillic */.@font-face {. font-family: 'Product Sans';. font-style: normal;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVE9eOcEg.woff2) format('woff2');. unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;.}./* greek */.@font-face {. font-family: 'Product Sans';. font-style: normal;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVFNeOcEg.woff2) format('woff2');. unicode-range: U+0370-0377, U+037A-037F, U+0384-038A, U+038C, U+038E-03A1, U+03A3-03FF;.}./* latin-ext */.@font-face {. font-family: 'Product Sans';. font-style: normal;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVGdeOcEg.woff2) format('woff2');. unicode-range: U+0100-02AF, U+0304, U+0308, U+0329, U+1E00-1E9F, U+1EF2-1EFF, U+2020, U+20A0-20AB, U+20AD-20C0, U+2113, U+2C60-2C7F,

                                Chrome Cache Entry: 219

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 129848, version 1.0
                                Category:downloaded
                                Size (bytes):129848
                                Entropy (8bit):7.998140890095368
                                Encrypted:true
                                SSDEEP:
                                MD5:07987CC4A39B31CF6AFFFDE675F1D849
                                SHA1:7ADA46987D0E1AAE2D3288272F8C97AABA4792E5
                                SHA-256:DAE2E505F61E23A088E4FB91523643D2E0B816F29DB2BD57AFB3F56F00D080F3
                                SHA-512:7AACFB569ADCA23716E0E3CA1D81073126DAFCAEFC33F4F43261A60F3F30BDF6FE0F1303BC8F038A2E55C574F6B59EBA85E7997F2A457B7E8D42D9ECA798FFEB
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/ebgaramond/v30/SlGFmQSNjdsmc35JDF1K5GRwUjcdlttVFm-rI7dbR49_.woff2
                                Preview:wOF2.......8.........................................8....`?STAT@.........|.....P..6.$..L. ..v...n..[S...Sd{.....n.i.ID.D4..C.w..(I....1.`...\O]G.Z....z..I@.m.....1...........[X..n..&..W....4A...w.+..0..N.>...d!..;..^v|S..z}..`(..h,.p.SN.(...1.q..5..sx8....X.r.C.!V.j......m..9.*...Q5&>..j#hZ.Z.1.i.I2.{..>....S'Q...h'..f:S./)....Onx.#b.....0g.....0.`(...X....x..%'........s.F...........pp.]/.PU!4..A|/.t7a,.|b..^b ?.]......J.x}.............)o........2...,o..0q.T...>q..y0..*f.f.0.`.m..dCC.6A.{.;...bI....5..q.....-&.4.....7.8.4..q....4..is..q.1.z}...[....&....*..L...'..EP......B.^...~:.d.....vw7k....J....U.).4*.F%\..0.......{..<.7.]..|....2.Ko.<.}.g...".^..{.=...y......U?.?.(c.wX ...J..J..%...(p..3g.e'.^.!d.\aU......C..t.}...T.o.......X..0..Q.....*..li*.R..E-.....f..e....:(...?@........>v.K. 7.]'.Z..5cV.k.#.<48......nXx.....w...bS">....../[.g..p.I..?UR5..k<.wc..G.2.......^..'3...E....fDU..;.f..-....S..?/...1.....T....kM4.......>g.L3..CT[.

                                Chrome Cache Entry: 220

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 47364, version 1.0
                                Category:downloaded
                                Size (bytes):47364
                                Entropy (8bit):7.9944232758512355
                                Encrypted:true
                                SSDEEP:
                                MD5:FCC676E93787A8D472AD00BF7F158D88
                                SHA1:A28C8050BAA6E17C6ADEC60BCA582715403D500B
                                SHA-256:1F6B8D8F7D462DC42D48B29E68062A707890AA2DD700C947806949F63D79694A
                                SHA-512:887F1B666623249B995BF78562F87410D295619967C5146DBB5EFA01D6FA7C135D51D68F6A4C0A80A5B1EE1C0734713F6CA03605D2104BBA3AB991BC202AD3E6
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/lora/v35/0QI6MX1D_JOuGQbT0gvTJPa787z5vCJD.woff2
                                Preview:wOF2...............$..................................f..l.`?STATD........D..K..t..6.$..d. ..P.....["...q.......d..s..?......<.Vv.j....S,a7..t..%j^.*.....M.....m7.D.)C.o..7..)4.yF..mW.&v..Y..#s...1j.!..TG.{&O....P....-......Fq...D.......SQ.:^.P..P@.}...L..B...1!BN.<.....0_K....).U....}6..i.....eU.\3...WQ(c...m.Z.&.h.a.%.R..*....E..E.T2.T.&|.uu..6m....R}t......]......x..8...*.}.....Kl..W]....<Y.....W&..]...w......^tU......s...S.g}......w.b........N11rQ.Q[cms.j..2u.....Jrf..%i......M.F.....S.*.....bD`......t.h.l.....Z....@....d....9s.u!#)..hSa.X.....DVl...|.....8.1N.fj...@........w.7.*M.g.....0*...7...T}.e.K..lod.y.e...*P.r.j..@.%T..@....r{W..]..z........E....z.6...Vd........R0.@%rX.D.2.@.......g .....K#...\.D5.Mh.....h...p..!...=....r..8.!pv..V..X6.Lm.....H..tJ"TJ$..{h.t..I...o...Z.4.x..(...E=.H4.C$T.].x..U.w..eW40...h.........K.._.jy."..K[...K...5?.S.=..yVs.P8j....y.......%..h~g~%..(.V..(/S6..9....2...fr?V..Z.j..X..z*Y~...*... i,. .O.

                                Chrome Cache Entry: 221

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 35060, version 1.0
                                Category:downloaded
                                Size (bytes):35060
                                Entropy (8bit):7.9934247518702914
                                Encrypted:true
                                SSDEEP:
                                MD5:0360DBC6E8C09DCE9183A1FD78F3BE2E
                                SHA1:6CD4B65A94707AE941D78B12F082C968CB05EC92
                                SHA-256:2DB6BC36808D43FA89029C652636E206FA3E889B35ECF71814AB85F8BA944AF3
                                SHA-512:93C9F1856142DA0709F807CA3E5836065E61BC8160F9281FEC9244F31ED8AE8DF500CD5C64048AC59B4DBC36EBD18BA8E7FBCEEF58134DD76441079FAE147AB9
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVF9eO.woff2
                                Preview:wOF2..............u$..............................T....`..P.l..a.....D..;.."......6.$..@. ..,..6...[.]q..}:P..(....W.(........(;h 8..r.o...........k..........>..eZT\K.....4l..Z]...1B.1.G.....|..p..._..S/...^I.e..l.=.I1...0..L./..D..Y{.w...*.(.....Q..J....v.........z......Q/.K..f._...-..T.f...[..U.).>.K35v...n.?-thr......w.?[D.u.Q.}..i_.cp..0E.R5m.>I.......x......H."C,....2...q...E..r.?...R../.J..m..X97...E.fJ...=.Q.>..`.QXuw..e."........\^.....~....>M.....h.Q.-.......SM,;W......#..#.B.....K.o...`...z...t....".$..s....o.v...w.I.mg.$n....../...N.....8H........^.~....X.Q.,YB.U...uX.e.o.l..o.2f..^_].~.3w*........J$2)_.c8...&^.>...r.29.D&.I....T".H....O.2.$..r.\...1.}.ES~5...t.X`.x.gQk..e.L.N......{.6...4..G.....2.z...V...Vy.'..../.....'...z..i.G.......`...$@.k......1.....{PH.....qf......_...A.e..7.....C.?.^.....,......NDa<b..*F...:.....+..|.._I+.2.^......l...3..^.)qJ...0.....X.....yj....J"...lo..._j...Z...0...m..2.$.EBa.....w...|..2&!.$..!S/^'..*...r.U-.

                                Chrome Cache Entry: 222

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:ASCII text
                                Category:downloaded
                                Size (bytes):616
                                Entropy (8bit):5.009629159026319
                                Encrypted:false
                                SSDEEP:
                                MD5:1868068BDC2622CF2C4C607102970B6A
                                SHA1:B254679B639C5D7F26BA8662A70E5D7587333ECD
                                SHA-256:354AA87B02FCDDFAFEE3DB7BA65775E92D271256B7CE8DF3C0BB43467EBA7B3F
                                SHA-512:A6C2CB698F7CA900EB1132C876CA70A5933EA4F201F4C6621C8F357A3DD916C8F9A834631C38436BAF83137903704D349917D9EA25B179AEE90262769F44A85F
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.googleapis.com/icon?family=Material+Icons+Extended
                                Preview:/* fallback */.@font-face {. font-family: 'Material Icons Extended';. font-style: normal;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/materialiconsextended/v151/kJEjBvgX7BgnkSrUwT8UnLVc38YydejYY-oE_LvJ.woff2) format('woff2');.}...material-icons-extended {. font-family: 'Material Icons Extended';. font-weight: normal;. font-style: normal;. font-size: 24px;. line-height: 1;. letter-spacing: normal;. text-transform: none;. display: inline-block;. white-space: nowrap;. word-wrap: normal;. direction: ltr;. -webkit-font-feature-settings: 'liga';. -webkit-font-smoothing: antialiased;.}.

                                Chrome Cache Entry: 223

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:ASCII text, with very long lines (844)
                                Category:downloaded
                                Size (bytes):505731
                                Entropy (8bit):5.747179588300177
                                Encrypted:false
                                SSDEEP:
                                MD5:9C5DEA41D115C2127B80E75369BC0F1D
                                SHA1:727BF756758AEF9F4AC9E829571C835DDEB97561
                                SHA-256:DE2049AE572795964455D986B6AD9707CA9416A7672C17E4B84C6723EBCA3D49
                                SHA-512:FBCA74B0B15BD5D9BFC52F814C5721A03381375AA6C7B8B4AC57BD53CD68062EEE5784ECD8B310DD680089C4F734DC097576271E7D489DF51CCB974EA6DC914F
                                Malicious:false
                                Reputation:unknown
                                URL:"https://www.gstatic.com/_/freebird/_/js/k=freebird.v.en.zIS2MaIzuyc.O/am=wGA/d=0/rs=AMjVe6iDXYbnNp7GJjKtCDbS3bXEPJSKmg/m=sy4d,ENNBBf,L1AAkb,QvB8bb,bCfhJc,u9ZRK,pItcJd,yZuGp,sy3q,sy3r,sy36,nAFL3,sy33,sy3p,sye6,sye7,sye9,gJzDyc,aW3pY,mvo1oc,sy8u,I6YDgd,sy4h,sy4g,sy4i,sy4j,sy4o,sy1n,sy4c,sy4e,sy4k,sy4l,sy4m,sy4n,fgj8Rb,sy4f,N5Lqpc,IvDHfc,sy53,sy50,sy84,sy9d,sy9t,sy82,syba,sy8p,sy9,syq,sy9f,sy9m,syb7,syb9,sybc,sybb,syb2,p2tbsc,nV4ih,sybe,LxALBf,sy23,sy27,sy3x,sy22,sy2e,sy2t,i5H9N,sy5d,i5dxUd,syc7,sy2i,sy5f,syc8,sy72,PHUIyb,qNG0Fc,syc9,syca,sycc,sy7r,sy25,syc5,ywOR5c,syce,syci,EcW08c,wg1P6b,sycb,sycd,sycf,sycg,sych,t8tqF,SM1lmd,sycl,sycm,sybg,sybj,syck,sycn,vofJp,Vnjw0c,QwQO1b,sy7z,syag,syaf,sy7o,sy9l,syai,syah,syb4,syb8,syb3,sy9j,syb1,QMSdQb,X16vkb,WdhPgc,JCrucd,sy4q,sy4p,sy4r,Ibqgte,ok0nye,Hzqecd,Vp87Bf,DhgO0d,sy6e,syeb,sy6r,syec,sy2f,sy2g,syee,sy7b,sycr,sbHRWb,syed,cNHZjb,oZECf,syav,KFVhZe,sy4x,akEJMc,sy4y,sy4z,zG2TEe,sydc,fvFQfe,CNqcN,sydi,TOfxwf,sydn,sy2s,sy6c,sy6n,syaw,syaz,sydo,sydm,syds,sydw,syef,syeg,A2m8uc,sy55,sy51,sy52,sy54,sy56,jjSbr,sydj,yUS4Lc,KOZzeb,sy7i,sy7k,sy9w,syb6,xKXrob,sy7j,sy81,sy9x,sy9r,syay,syb5,DPwS9e,sydy,sydx,sye3,sye0,syau,sydz,sya6,riEgMd,sye4,lSvzH,sydu,oCiKKc,syda,sydd,sydk,sydp,sydr,sydt,sydq,RGrRJf,OkF2xb,sy9s,xmYr4,ID6c7,syeh,rmdjlf"
                                Preview:"use strict";this.default_v=this.default_v||{};(function(_){var window=this;.try{._.OVa=_.R("vbKBWe");_.nH=_.R("LNlWBf");_.oH=_.R("m2qNHd");_.PVa=_.R("vuIKwd");_.pH=_.R("LhiQec");_.qH=_.R("Vws5Ae");_.QVa=_.R("eAkbGb");_.RVa=_.R("Rv46b");_.SVa=_.R("Guejf");.}catch(e){_._DumpException(e)}.try{._.v("ENNBBf");.var e1b=_.R("fFCkY");_.A1=function(a){_.S.call(this,a.Ca);this.H=a.service.V0;this.O=this.getData("actionButton").string();this.o=this.getData("actionButtonProgress").string();this.j=a.model.d1};_.C(_.A1,_.S);_.A1.ya=function(){return{model:{d1:_.kYb},service:{V0:_.$F}}};var f1b=function(a,b){a.trigger(_.OVa,b);a.trigger(_.QVa,{IbE0S:{enabled:b},EBS5u:{enabled:b,text:b?a.O:a.o}});b||a.H.j(a.o,"assertive");a=a.j;b=!b;a.j!==b&&(a.j=b,a.notify(_.jYb,b))};._.A1.prototype.N=function(a){a.data!=="EBS5u"?!this.j.j&&this.trigger(_.nH,{button:a.data}):(f1b(this,!1),_.Se(this.W().el(),e1b))};_.A1.prototype.reset=function(){f1b(this,!0)};_.T(_.A1.prototype,"S9gUrf",function(){return this.reset}

                                Chrome Cache Entry: 224

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 53884, version 1.0
                                Category:downloaded
                                Size (bytes):53884
                                Entropy (8bit):7.995657719654049
                                Encrypted:true
                                SSDEEP:
                                MD5:11E65682C5D363ECD17CDD1CE3615418
                                SHA1:89CC3F37B6EBE724BC22045AEA74EF2BC6932DA1
                                SHA-256:41A98AC11A50E26C91A33CD44D8FF75B7F5963B33CB63AF48099EA48D0BF5E9A
                                SHA-512:6E6FDA35E1356D13C0B936C815B9ECEDE941DAF4B853ABDD721C2737B80A6155DB47BF908615374C0FBDBDB8E75DE69D18776BB4C051774DB06BDF2F5A5DF29D
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu52xK.woff2
                                Preview:wOF2.......|.......D..............................j...j..j.`....R..<.....d.....Z...x.6.$..0. .... ..D[..q...WF2n.....e..T.6.e...n......m:B..p[........,.P.....4"J..,M.u....!Z..(...1gh..E.N...*[.-$.R..a..g]b.|Lw.bp...(....r.:K4..w.*L!.c..$.m..#.E~...2w...^n....{.A.*^]..B......j.e....u..._(6)T.h....i7t7q`.).=....:K.bA.r..T.T{g.U...:!a.2..B\........*Re..a.y...TC3.....3..2?.o.._B.._E..6yE.+>...$.[..!I.....E...0W9e.$...$.l.:.n...P:b/.<C.....ynr..D..,..Q(PU;U...n..U.........o%.....ZP.6j....&..a...O.....0...0.H3.P....m.3...J..8...."..H.Z..u.......P.Tl.[K....k..$..?'..ok.I...w...@#...[.>o.wWCu.#.7o>.....p?.e.K........I.?....jD{..r......X.Sg..L.....Q ..Q.S1.0z...9.>sk.}.y.^.S=.=.T.q.Z.YE.O... $.... Z[....>L!(X..N...,..@c...&s..S5.[....Fm.b.S.6....@...dRm.N.s!..}.b.f.=.OI....rJo.....DMu..l.M..YU.L..5.:....f.q.c..Y{.TV.ez.HeX<....Y.....]."F.M..h......MV...u.?.&.....IJ+.....;.v......CF|.6.Z...L(.3~....&. .G....Y.!......'..L...]9u..s.F........!.qC......{Q/cw.

                                Chrome Cache Entry: 225

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 4280, version 1.0
                                Category:downloaded
                                Size (bytes):4280
                                Entropy (8bit):7.938204175548688
                                Encrypted:false
                                SSDEEP:
                                MD5:35F2221688A86314A271F11BBF8E76BD
                                SHA1:2E56E5FCCE211EEA8CA3709E0A8B33DD89CEDA92
                                SHA-256:3C1D1B09AF9EA0E4A497CF8F1BAAF915BB032ECA2AE369869566282D156CB25D
                                SHA-512:188B20E8E1D6C3759B5427A6EA56AB9AD509DDC7A8F6480B6C8E55CD742E26E15D5804B0B518D62226361DDA70AB02C5B2D302D7259F7D521617DC245F2D52FB
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/caveat/v18/WnznHAc5bAfYB2QRah7pcpNvOx-pjfJ9eIOpYQ.woff2
                                Preview:wOF2.............. h...Y.........................2..f..j.`?STAT..l....x.d.0..6.$.Z. ..~..G.....#......>...L..Y=.......h..mv..t..z........}...If....?7.I........2.....C....fR."O....~.{.-..R...E.n.&c0d.]S...m.4.f..\.Z*.]....5....KA?.&(8...:r...........z&..|...mk.&.H..H.T.x9./.'50........0..(\...1;.4o.v....W.$$.0..TY.B..V.Y.j...!....r....V...e...~.1..,.....J1..`K}......`. ....P 6Cj...e.f......U..... ..P.;...5W.....2PS@X.+.1k&..88>9..H.H.o./.W.a..F...~.._..t.{../.(...7.......5...5Z.\.T$.:...'.!.=.=.DJ.........F..1....@6.?>..;;.....L..s..A.wq..B..:2....+9...KT..Dt.a.+/...v..P......v[h.j$.rA.d@TB..B.&.)!.I.n.w.._t.w!...[.&.N..a....HL.z.Y.....t.F<0..`....2i..L"....+*<.h$....... p...).i..+!..5...+=j..=h..mm.,....o~.u6.Iy.5SQ.....e<..aI....n..&..[..s@.Z.......-.l..J6...=.'>.9..8.&............;n..#.1..8....L.......A.3.....z8L.A.>...c,....z....k.*&.$;.;.QSkA..m...!4. .@V Q...eX..... hh..b..H....?...k.Yf.......;(..(.`/@....9.I@.2.....Q......i^.[I.wa...D..

                                Chrome Cache Entry: 226

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 105776, version 1.0
                                Category:downloaded
                                Size (bytes):105776
                                Entropy (8bit):7.997698577634301
                                Encrypted:true
                                SSDEEP:
                                MD5:DF1878BEEF6F76B3B8B9C3A479BFA5CB
                                SHA1:5724CF8D410C6BD487A002A14386231C29C933C6
                                SHA-256:C7B73DC2A43D6620B4AE7B1E05EEA2342CF309352B4DCAADEB4491C5B72468E5
                                SHA-512:C5B1B9312EF7111D95C07C863E19EF731155109AA5FDB451ECE9B509884146CEEBDA3B314F42A917230F81823FF8ABC89A70BF9719DCBA34BF327C2678A1C544
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/caveat/v18/WnznHAc5bAfYB2QRah7pcpNvOx-pjRV6SIc.woff2
                                Preview:wOF2.......0.......T..............................<...X..2.`?STAT*..P........Q.....6.$.... ..f.....[..r.fW.qt'..Z...E.Ds.~.........[..k.G.VR.I.......$...-<........*...9.{..........EY.J.[MhHo=jkJuS..'...#...Q..-.dQ#,.aN...`E>},.N..n.%ShTI.T..SP...6.7SI.....K.E..6..J3.Bp.I..|.c....&<.eM.......z..W/.V..%.GJ..%lOQD...Cq..e...p`C....z.~..n6%......|/N(..,_....J.F.C.#C~..._e........3...[`(..@....2-[.q..|........./...:....#Z.(..P..P.F...0jVnb..;...t...m.....`.....$F..@D...#...2..H.....%HJ..6"_.D.0Ds.m.5.5..Z]....F.....,"..H..#.1.....!.qO?3{d.....*..Jw%P.>..........s.o3.f.*x.t...4.+fyLB...p.|.]..++..gv ..t`...&s.C@=ID.Vcm..^..... .,Aw`.4.N....]..*.p...#.1.ak.R[H....{e...|?'.........!.D....Be?...zEEA1...$:......?..ni.\.6..6qFg..Y..}>a0.~.F.PK...j....%.W.>.R...W.?.e.VrE#..[ ...H.U.l9.l).....Q........['....r.......w.n#.,sR.*!Tbi......_..l.J...7....Hc..........@;..t.T.Zu.Z...b..^.?T.T.....4...#@&....L.n.A....=x.........}..]....3.0I.L...=..)......*Z..j,...."...

                                Chrome Cache Entry: 227

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 42296, version 1.0
                                Category:downloaded
                                Size (bytes):42296
                                Entropy (8bit):7.993503490899671
                                Encrypted:true
                                SSDEEP:
                                MD5:20A5ED564FE91199A53645DD2A8F8BCE
                                SHA1:878AB8E8E2A0BBDE4F47359D625DB2B81F7AC0A1
                                SHA-256:3109801208D4C4B75FF98BB721D0AEE286293C2F0D2F47F778DCFAD779E9F5EE
                                SHA-512:A4195F0BAE426F2886058FC84630D3D6DAA855D8AE86FDD558858D19A2F2EBD0BA4515826827BAB85225D36CA53DCBBB8AFAE88F100B5793F70F1CE4B3E3C6A5
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/playfairdisplay/v37/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvUDV.woff2
                                Preview:wOF2.......8.......(..............................X......,.`?STATH..t.....`.....j..6.$..P. ..x..U..[..AU...W....`@......h...7~......:.&.v.[a......R.............d...;...].!...A...Z...BdnQ.$E.E.$.T.&..0...{.......L.km..1...1^MK........Q.$So....9.^_M.Ky......V-..N.tN;D..Qy.D.h.&......Ew........N7.2.K...p.:{..O.F.#...1d5...9..4...2.0Gt"l...^=.=x.RY...t=......8.u&...T...ePT>..3..k..Y-B....:.M..C..p..t._..Q......^.L.......*.{9..n...WW...._.C.vm.X.;z.....,.:Q.`....q......O.+ .5dp"<.y..,.:..rp.@.r.z({.Y.R..*d.......[.....w?.Q":(..@.........;..m......A..r{.rQU...<...,.'.j.S.}..s.n6U..Kt..S{i.yVI^d..(...Gi.M..R.N......sQ.J.Vh....]...B.%.......3 ...B|.......#......}*]..M..G...#.I>....s.s...6..c..'*...%-,..;>..P.haDMP.+"....b...rT.h.8...yg%....<c..}.xrm...IT...T.d..yH...Oco.........4...I%.6.HSK.-5."C.@1.b2lc...e.:&l.........=Tl........F!&[..*.bm.M........@E.,.<+.....X!*$WV2....L..B.u"....dc.>.Z).@..YJdp..+7R.@....Q.P..P....@..SW.9M..i.......~......yC.*$.

                                Chrome Cache Entry: 228

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 1420, version 1.0
                                Category:downloaded
                                Size (bytes):1420
                                Entropy (8bit):7.723110473429003
                                Encrypted:false
                                SSDEEP:
                                MD5:F8FB2BDE26ED2B7A60BA773D42DD2150
                                SHA1:70871B9E74126289901A00F44B8271849A125DBD
                                SHA-256:9DAA921A21820750F7FE6223AC35072394F99209C374409981F6EFD1B2E3DCD5
                                SHA-512:B397932A81E81F76E31E85731A92CF468EE523E89313DA0D78A1513F7CD48C8D5BAAC83C3E02BACBEE45C9CBFDDE8D69BE0D1B6DC584C67624DAC1F027942CE1
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/lora/v35/0QI6MX1D_JOuGQbT0gvTJPa787weuxJHkq0.woff2
                                Preview:wOF2...............`...1............................F...`?STATH.d....D.m....6.$.$. ..h.H..._.(.....5.$a..3.|...7......B.7.BT.4...5..:D.k6......4.G....D...8.3.W..+..e",f!.(.RL..K4.$..B.TB{.2b!1d.I...[.9...;*..j..F8!...... .......H419...O.....0....@...].. \V..1...$..)&..0<.....x.......L*s.|.......$.1...%`@..."..i6...;.\...]...$.!.. -..Q..T.?.....h.'?.........l$.<0...{........(.4....-..R...A.$.oK...@.0.(!d4.#.@.0...B..\...~=N&.nj{.5......MjBq.......S2..@..7....e......J.....<..Rj.......J......u.5.)...mr.K6-.iQ\[8y2...{......ft....e...O.2.QZ.N..f`.....D...g..+K.]"..S..l?..^$...]J".sw./<l6a.t......s.....:.y.Z..;.x....R.1...d`......y..:..oi...Iv.|[..../.G..4.i..J'..v..?.-.M^..\i...n.".d.I.L..9xt....R.%K........>}}^..";.C.'|.n.j..L......[...b..m..j}U.'...w..XI..,...G....{X...!3o...j.R..q.w.bO99...Zm..c.J.'Q9.....i......mJ..aG.....'Jd.:.J..S.mXaN)jV..7gk..q..s....T.....5.B....{c...9q...............Q.5.. /..!.........h...$..'..>.......X..0.cbm..f.'......8..R

                                Chrome Cache Entry: 229

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 49980, version 1.0
                                Category:downloaded
                                Size (bytes):49980
                                Entropy (8bit):7.996799215294005
                                Encrypted:true
                                SSDEEP:
                                MD5:7B69C53249D749F80F5AC911A9F6A416
                                SHA1:D6283C043883942BFB577D0F7F2477DB7C7B10B2
                                SHA-256:AF6B37D5CEC7927D3BDFBCD8C75D7BF80C29C583D71B75ADE321EF706A10BE32
                                SHA-512:F191626E8DF898011470510827C91750C64463BB7A739243A4AF205E0AE76F8EEB98C9BBD4C2B46484864F35BBF318E748EF6D1DBEBD71A3D9E5EA8C585787CA
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlvBg.woff2
                                Preview:wOF2.......<......................................j...L..j.`....H..<........4..Z...x.6.$..0. ..~. ..)[....d.z..WP.!@.g..L~.jds...nCj3.I...........)....oH&qX..I..`][mO..A...D...#.9.Y..."BxD0.*.u."..$w.}.B......=.O$....<.p_cBd...xn.9h/.d.*.a....3:d....S}......M1.*...... ...03PP'W7.$%...,K.<.l]OAT...H.T.Y.m...V.&......>...|`|.f..._G.?._. .#p......L.N.fg.C&...;..s.1D.5....<:...9../F..#..x.o..v.F...l.....)Ie.~...w.+..1..QY.?.x..BT.L-..c..z'|`.;D-H.E..h..K.b..}j.....<.8......C.$U.7..j.XX"....D.P.Y..........F...%#t..rD....@...FR....%T...`.~Q..H.J.E1.z..r6Q:.... ^.......}.5...6y[...0ID.&..5DB.R..m.h...u........m.Z..VP..BW....Ku.*].(.........B....N.`.....gr.=.\..E..$.S.>.xmP........... .....9......p!.GtC;..a.zF\.....;.^i\T..7k...[.M)..........X.p..k.}.CT.T.*.....=h..7@..].....{..aa&2.g..pO..p3..Y.AV8X1....T....L..<.....@..9..1..k...k.....h...b^...^.0=..b"z.c.bi6.T.....L5:...s:n.)...Q.IG..'...#..yM..ey....V.......@zk............h.].7......^d.Q.X...n..`

                                Chrome Cache Entry: 231

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 44980, version 1.0
                                Category:downloaded
                                Size (bytes):44980
                                Entropy (8bit):7.994798586860677
                                Encrypted:true
                                SSDEEP:
                                MD5:A32CAE41AA72AD6CA75FF8B5A7A11606
                                SHA1:FC29CA3935D5F85C169448D7CC6410C2560D92BC
                                SHA-256:33EA7445E374A6AAB69F4E13DDBC9FC0E356C731E2D1F093619B93D4281BBE2E
                                SHA-512:CC5EA4383668E7E20CCC76EF91551C967371781BB7A09947B7B2C55916A9282219A15AB11D747D9774D91C51DC2E379E7CC8D25C8CFDAEFFB1E4B4224F486228
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/nunito/v26/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNirXA3jw.woff2
                                Preview:wOF2...................N..........................$...x..4.`?STATD..*.....P..V..6..6.$..^. ........[......./...H.!..VK..m.`n*-..6.l/ ...N.v..../_...........](.IZ.....S....=.&..MH.NsP[.-H|.c.y.....6.N....U...*..Y|n......~Tz..S.uK..vG"....F.........F)^.7S.;=d.....c<.s....b...m.4X.T.l.....Uf..{......;......O,....~...x#a.=..f...4...s.3.R$.)sg..2;m.I......G@.@PP...3.!u..de@.La}.....nJ.H....F.N...3j..S...~...z`..JtS...+..:....h.......^LR.0.^R..o..ODI,..$G....M...G.!.n?o.Y,..B....u$.q%$_X$..$.t..._....h..ulK*..q.>w...^w..&\..NU..CR.gI$.E'6F .?`w.N.l..o..|....{.{.r..F."V`,.....u........7]..E...|......J.4.&m#"m..MSOR7Z....>...cl01L..6&.l...@@B.I....[.uz.....vM.ejY.es...4.l...n....,.....2.*..@..UZy.p..i?..o.-.n......s.?..t.............D>P1jS.....q9Tu..zD......:....f.8. ...d..,X.E^.%....}......L.x.L.I$.b........'l.(L...)..I.c.p=.....+61&l.}qEe...p.....x.c...a[..j1../`...N.!..O!....7E;P.~..-x(...D%^+h.xH4J.y..wO/u..`.2Y2..%.so.Y.y+x.w..d...qkk.De..`.$..7...

                                Chrome Cache Entry: 232

                                Download File
                                Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                File Type:Web Open Font Format (Version 2), TrueType, length 54212, version 1.0
                                Category:downloaded
                                Size (bytes):54212
                                Entropy (8bit):7.996118207813738
                                Encrypted:true
                                SSDEEP:
                                MD5:DFA374BE8A198433A11856E9967E96F9
                                SHA1:9E8D11BA6270CCB1254686C0F24A05F21D33A661
                                SHA-256:0BC130FEA6C21498BF358680BE297533AF347EBCDBC18576629FF1D89F8638F7
                                SHA-512:C18730EE5A9E1BC97E441726D74FEA87222F9AC0CDA4B02C7EAAA97A4F1319BBBBB7B5257037AB3687AB8345FD1E73F933005875A538087A84EE447F2F103E8B
                                Malicious:false
                                Reputation:unknown
                                URL:https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBhc4.woff2
                                Preview:wOF2...................^..........................j...L..j.`....J..<.....@..Y..Z...x.6.$..0. ..&. ...[..q....iX.e.....ySkC...........1....I..(....~R..r.v......U.\"9<..(CT.Y..2R.>%<U..a...w..1.K.B..w....}....dJ..n..OI.)..9"2.i0w.N.w~....&...A.U<$(.%.I..#HX"....;>7s-.v^0.1 ..."......#./...K\7.s..dJ.d..q.p..tq.|....E........'.3.n.2.lw..&....^8.)3.B.q_...HUV.h]v.....~. ..2..[.F..+O.$...~un.......+n........s.{......"...Ed..C.0.R.....`Tl.Fm......?.....#Z....'.#G.........0..F...........`...].'^................2~.~...........=r..=......O.........,..RZPB@T.(.6(..X.........{_.C&$.e,..$.e1.....8..xg.....|,/.].......`)....4....w+..h...?..........5.F?.....V.b...../...?.r...w..J....LZ..!..Y$.a^~s.B.^..Hi&..&....6...D.{;UY'..(5I..,U. .`.n..."..F..d.+.....o.`vX.y../........w.6..%..B.1....Z~...g.{zb....M.1 ;+QW.B...O.....;.e...3.j......ts*..AjA...r..1.,..G. s.t.95{w<..}.........=3.4..f..>.8.I..$..g.9..>...r..B...% ....4...%x.h].2......!.m[......

                                Static File Info

                                General

                                File type:CDFV2 Microsoft Outlook Message
                                Entropy (8bit):5.865270608635305
                                TrID:
                                • Outlook Message (71009/1) 58.92%
                                • Outlook Form Template (41509/1) 34.44%
                                • Generic OLE2 / Multistream Compound File (8008/1) 6.64%
                                File name:Fw Fw EMAIL VALIDATION.msg
                                File size:135'680 bytes
                                MD5:a8590bdf52211068a0f6433599bb4fab
                                SHA1:b4daffeee0d0294ec3a41fdd90b83bf3cb4d7032
                                SHA256:8a034d0dd267a660f5903e2361fb92c29b8ccade6851eca7e05777fa62bb4dbc
                                SHA512:3e104c5731b4202664077a118aea5878b78f7d237ff9ffc3ae0359f7b9029d70512db62f23a29418c0da5df1c3ea26caacd33c756a2e84433e2f8eb94488ba70
                                SSDEEP:1536:Wo8JehSTdcwGCl/WzWvW8WQCoWVWdHNTL/VIJgW8u997RS9gIHeA0cgEZSBpev3E:WBewTdFa+Hogfu99NS9jHnZSBIvm1
                                TLSH:C1D3D61539E94616F27BDF324EE384979536BC92AD10CA8F7195334E0A72A40AC61F3F
                                File Content Preview:........................>..................................."..................................................................................................................................................................................................

                                Static Mail

                                General

                                Subject:Fw: Fw: EMAIL VALIDATION
                                From:Luis Huizar <lhuizar@mydatapath.com>
                                To:Gabriel Espinoza <GEspinoza@mydatapath.com>
                                Cc:
                                BCC:
                                Date:Mon, 14 Oct 2024 19:29:20 +0200
                                Communications:
                                • Luis Huizar Lead Technician e: lhuizar@mydatapath.com d: 2095210055 | o: 800.838.1488 <https://instagram.com/datapathinc> <http://www.mydatapath.com/> ________________________________
                                • From: Deborah Raingruber <draingruber@bvcs.org> Sent: Monday, October 14, 2024 9:56 AM To: Luis Huizar <lhuizar@mydatapath.com> Subject: Fwd: Fw: EMAIL VALIDATION External Sender: ________________________________ ---------- Forwarded message --------- From: Hrayr Santourian <HrayrS@bvg.org <mailto:HrayrS@bvg.org> > Date: Mon, Oct 14, 2024 at 9:09AM Subject: Fw: EMAIL VALIDATION To: Deborah Raingruber <draingruber@bvcs.org <mailto:draingruber@bvcs.org> > Do we need to take a look at Proofpoint again? ________________________________ From: Linda Swartz <lindas@bvcs.org <mailto:lindas@bvcs.org> > Sent: Monday, October 14, 2024 8:50 AM Subject: EMAIL VALIDATION This email is to notify all staff that we will be carrying out email validation exercises. We will need you to confirm that your email is still in use, please CLICK HERE <https://url.us.m.mimecastprotect.com/s/10qwCpYW4xTYjMDfPf1FGmAEO?domain=urldefense.proofpoint.com> now to keep your account active.BVCS Linda K. Swartz, BVCS United States History, CP - AP Government * Economics Lindas@bvcs.org <mailto:Lindas@bvcs.org> -- <https://ci3.googleusercontent.com/mail-sig/AIorK4zl4fIh187cwBcR2Pp7HpC-FGBjDAKYtjgQcwLGUh6ieEqSi5PG77H1m4lN9_JUXyWAPnyxh3RsFCz2> Deborah Raingruber Big Valley Christian School Director of Technology draingruber@bvcs.org <mailto:draingruber@bvcs.org>
                                Attachments:
                                • Outlook-3fwjzuza.jpg
                                • C2_signature_datapath-logo_email-signature_235e6d49-1466-4411-ad60-77a2f2e22808.png

                                Headers

                                Key Value
                                Receivedfrom MWHPR1301MB1936.namprd13.prod.outlook.com
                                1729:20 +0000
                                Authentication-Resultsdkim=none (message not signed)
                                (260310b6:208:4aa::10) with Microsoft SMTP Server (version=TLS1_2,
                                2024 1729:20 +0000
                                ([fe80:3566:c8fe:823d:88c%7]) with mapi id 15.20.8048.020; Mon, 14 Oct 2024
                                Content-Typeapplication/ms-tnef; name="winmail.dat"
                                Content-Transfer-Encodingbinary
                                FromLuis Huizar <lhuizar@mydatapath.com>
                                ToGabriel Espinoza <GEspinoza@mydatapath.com>
                                SubjectFw: Fw: EMAIL VALIDATION
                                Thread-TopicFw: EMAIL VALIDATION
                                Thread-IndexAQHbHlob7ER7ORbTYE+vxgsB9HtXlrKGgG2i
                                DateMon, 14 Oct 2024 17:29:20 +0000
                                Message-ID<MWHPR1301MB1936BB5A6B43C89B7B5F8219CD442@MWHPR1301MB1936.namprd13.prod.outlook.com>
                                References<CAAQQROPC5-X4kGGJdQowUOZLnoQaPfkn3mfX9sDC5enSjgcnRQ@mail.gmail.com>
                                In-Reply-To<CAJryWOKPYjO+nJE==SFCym9aoSm0vMGnOnxhiO14Cviu4akgcw@mail.gmail.com>
                                Accept-Languageen-US
                                Content-Languageen-US
                                X-MS-Exchange-Organization-ModifySensitivityLabel00000000-0000-0000-0000-000000000000;e3926ae2-a5f5-4eb8-b7a9-2a972f12d6fe
                                X-MS-Has-Attachyes
                                X-MS-Exchange-Organization-SCL1
                                X-MS-TNEF-Correlator<MWHPR1301MB1936BB5A6B43C89B7B5F8219CD442@MWHPR1301MB1936.namprd13.prod.outlook.com>
                                msip_labelsMSIP_Label_e3926ae2-a5f5-4eb8-b7a9-2a972f12d6fe_Enabled=True;MSIP_Label_e3926ae2-a5f5-4eb8-b7a9-2a972f12d6fe_SiteId=9ef5d077-23c6-453f-94f9-7809c35a837f;MSIP_Label_e3926ae2-a5f5-4eb8-b7a9-2a972f12d6fe_SetDate=2024-10-14T17:29:27.123Z;MSIP_Label_e3926ae2-a5f5-4eb8-b7a9-2a972f12d6fe_Name=General;MSIP_Label_e3926ae2-a5f5-4eb8-b7a9-2a972f12d6fe_ContentBits=0;MSIP_Label_e3926ae2-a5f5-4eb8-b7a9-2a972f12d6fe_Method=Standard;
                                x-codetwoprocessedtrue
                                x-codetwo-clientsignature-insertedtrue
                                MIME-Version1.0
                                X-MS-Exchange-Organization-MessageDirectionalityOriginating
                                X-MS-Exchange-Organization-AuthSourceMWHPR1301MB1936.namprd13.prod.outlook.com
                                X-MS-Exchange-Organization-AuthAsInternal
                                X-MS-Exchange-Organization-AuthMechanism04
                                X-MS-Exchange-Organization-Network-Message-Id6ba381a4-6cbb-4608-ed2b-08dcec75bcc4
                                X-MS-PublicTrafficTypeEmail
                                X-MS-TrafficTypeDiagnosticMWHPR1301MB1936:EE_|IA2PR13MB6786:EE_|BYAPR13MB2712:EE_
                                Return-Pathlhuizar@mydatapath.com
                                X-MS-Exchange-Organization-ExpirationStartTime14 Oct 2024 17:29:21.0834
                                X-MS-Exchange-Organization-ExpirationStartTimeReasonOriginalSubmit
                                X-MS-Exchange-Organization-ExpirationInterval1:00:00:00.0000000
                                X-MS-Exchange-Organization-ExpirationIntervalReasonOriginalSubmit
                                X-MS-Office365-Filtering-Correlation-Id6ba381a4-6cbb-4608-ed2b-08dcec75bcc4
                                X-Microsoft-AntispamBCL:0;ARA:13230040|366016|69100299015|41050700001;
                                X-Forefront-Antispam-ReportCIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:MWHPR1301MB1936.namprd13.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(366016)(69100299015)(41050700001);DIR:INT;
                                X-MS-Exchange-CrossTenant-OriginalArrivalTime14 Oct 2024 17:29:20.1762
                                X-MS-Exchange-CrossTenant-FromEntityHeaderHosted
                                X-MS-Exchange-CrossTenant-Id9ef5d077-23c6-453f-94f9-7809c35a837f
                                X-MS-Exchange-CrossTenant-AuthSourceMWHPR1301MB1936.namprd13.prod.outlook.com
                                X-MS-Exchange-CrossTenant-AuthAsInternal
                                X-MS-Exchange-CrossTenant-Network-Message-Id6ba381a4-6cbb-4608-ed2b-08dcec75bcc4
                                X-MS-Exchange-CrossTenant-MailboxTypeHOSTED
                                X-MS-Exchange-CrossTenant-UserPrincipalNameA1gE6LzpfN47nkgFS1BRZwDIsgV/fGqthXdW5/Po3fqb+942AVZnCtr/Q2T7jp4xE375rNYGbZ78f7qjlhYdDg==
                                X-MS-Exchange-Transport-CrossTenantHeadersStampedIA2PR13MB6786
                                X-MS-Exchange-Transport-EndToEndLatency00:00:05.2775713
                                X-MS-Exchange-Processed-By-BccFoldering15.20.8048.020
                                X-Microsoft-Antispam-Mailbox-Deliveryucf:1;jmr:0;auth:0;dest:C;OFR:CustomRules;ENG:(910001)(944506478)(944626604)(920097)(425001)(930097)(140003);
                                X-Microsoft-Antispam-Message-InfoxgumBT/F2qmXwAANYYG7VmZ7SHV5chuVav4LFuH40nn3XelLR6RL9+12jM07og2DDJQXjWf5qs69QM8i5dGOESALE1+ndyPjryfdxlVcZXycBasGA2qwuvQn6KdSuolDekzBD7pV546304a1Z76sZT1S7l8hSlA8pFbLkld3qGeQzEh1g1iFftlCyplj6ebAnfnxKli7lfQmxN4j1r6tD+Lz9Eh6VPG1GUx52ZMrjeK4LEAT/Huxd3ghb2AGumIoKfw+u5XW4Ap27X2oYqCAcuczHelKpRZfEw08Eq2quQDufBtiQcqepjaGBXxRGv8TavJWuFCmFWPQ+wc7o1yBAThCIWb5kDbCwXYV0/69JQx4VUWzSwPVS6Wzdr4hjjcFMmxXI1H4sVJfDLxRwNn2nrlYf8f7OUSI/g1hFTkOniwOiU1d7zgAdLgCBRHb1p5ALRQtS5lYAOlsMnQdUJ07xBsF3+7REhiv2BOuE3w4mfDfvw9N7st9Y+yB0+vrDBGlbjPUAZZRaG5kkNzd4eh8JeV7VPJ8NGZukcZhMb5e8iCrpzd45PPkXX0yr8Kl7CEt51epA6ZONBZ57E6kfPcgYchdwzWGcAYRRz4SlSLxdzy/t+eblNyGnL9hm1p9uINtNMISKdOmKhsOP+YGcVfi6Lu8rRnzwCLsiM4MCA7z4qjYE/qJTUFUpSazksw+2+62nJJMEFqaEyBCCMWKTvAH6hbW7IRFT+a02YqP+BHas00B04XXmeM7rQdMzz59iLH2prR6357UShln/UWjFkZRHVPhy3JNWZek0x3wtwkcXeml+GMpzXWsJ9FjRW6lbp4XxYWI6NQAI6+d4vaPyB83vvCxD3bKiCYEPY2z855FHpKaYU7wlm8udmbg4z0sjX8h
                                dateMon, 14 Oct 2024 19:29:20 +0200

                                File Icon

                                Icon Hash:c4e1928eacb280a2