hxxp://google[.]com

Analysis

max time kernel
368s
max time network
372s
platform
windows10-2004_x64
resource
win10v2004-20231025-en
resource tags

arch:x64arch:x86image:win10v2004-20231025-enlocale:en-usos:windows10-2004-x64system
submitted
30/10/2023, 14:09

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

http://google.com

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Suspicious behavior: EnumeratesProcesses 10 IoCs

pid	Process
328	msedge.exe
328	msedge.exe
4196	msedge.exe
4196	msedge.exe
4140	identity_helper.exe
4140	identity_helper.exe
4440	msedge.exe
4440	msedge.exe
4440	msedge.exe
4440	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 15 IoCs

pid	Process
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	4372	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	4372	AUDIODG.EXE

Suspicious use of FindShellTrayWindow 27 IoCs

pid	Process
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe
4196	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4196 wrote to memory of 4880	4196	msedge.exe	29
PID 4196 wrote to memory of 4880	4196	msedge.exe	29
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 3052	4196	msedge.exe	88
PID 4196 wrote to memory of 328	4196	msedge.exe	87
PID 4196 wrote to memory of 328	4196	msedge.exe	87
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89
PID 4196 wrote to memory of 796	4196	msedge.exe	89

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.com
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4196
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff8f19e46f8,0x7ff8f19e4708,0x7ff8f19e4718
  2⤵
  PID:4880
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2248 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:328
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2180 /prefetch:2
  2⤵
  PID:3052
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2864 /prefetch:8
  2⤵
  PID:796
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3348 /prefetch:1
  2⤵
  PID:3384
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3204 /prefetch:1
  2⤵
  PID:2244
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4872 /prefetch:1
  2⤵
  PID:764
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5040 /prefetch:8
  2⤵
  PID:4492
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5040 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4140
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5124 /prefetch:1
  2⤵
  PID:3360
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5288 /prefetch:1
  2⤵
  PID:3516
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5520 /prefetch:1
  2⤵
  PID:1904
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5672 /prefetch:1
  2⤵
  PID:4932
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5700 /prefetch:1
  2⤵
  PID:3680
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5892 /prefetch:1
  2⤵
  PID:4700
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4652 /prefetch:1
  2⤵
  PID:1412
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5408 /prefetch:1
  2⤵
  PID:2484
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5568 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4440
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6028 /prefetch:1
  2⤵
  PID:3788
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2892 /prefetch:1
  2⤵
  PID:1320
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5920 /prefetch:1
  2⤵
  PID:1404
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3216 /prefetch:8
  2⤵
  PID:4128
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,145738030627014091,12952569154107336413,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2892 /prefetch:1
  2⤵
  PID:748

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:656

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3516

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x478 0x3c4
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:4372

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
aed593b08b94f34dd8f68fd369652ac2

SHA1
3ce2a17e426e09c2fd9a8d2ab191fe29248f2d95

SHA256
5c0cdd5dc1bccf7e3ffa8568fdd2fe35f3edc85832f3d11331aced965aaeeba7

SHA512
16b34c29d8ea3793f7d4491847d2fecae2c6c9d7b7b1ec16d1367828d0a4da4cdbf912c2040bc0ca98ac32cd701355ddd16b4865629d51bae2527e1a05411137

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\4080ace9-337e-4d96-92fd-f40b6b1d7d41.tmp

Filesize
1KB

MD5
a072151e2c0d568dbe717d1e878ded06

SHA1
5ebedf003fa130c279c338a042bced4beb91e507

SHA256
469ca58f68653e77446d0ff3606146587ea768b6a98f6dc4cd71197197d8042c

SHA512
a79f85b5075f6b59c993d734f720e1619c07693ead983b710f76657750f1e870871f7903f98fa64a18fb8957a48e5b1c012bb0e96a0cc9400dc026f8cd1c1191

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a

Filesize
20KB

MD5
a28de5d3680d57165bbb8ee86244ceea

SHA1
62df3585cbac57f66ea929485a60d3a54cb56838

SHA256
db48abda522127ac7785730536074914f315b60a14ed49a51b8f8fb034f35493

SHA512
420cfb717935c97087ec7f69c5c4d9b5e355c201094038c571de5a75a2ba7cd1c4ba64fc627b19480b52ade481597f3e10e5ffce90d0ae33f20532985d7d0321

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000b

Filesize
62KB

MD5
1e0a9c24492e9b80220dd1f94173b6e8

SHA1
a27fe852bef1ab93c78bd8c2df3ea15391ffdc45

SHA256
59b7099c41193f2cc7ce76d1195339337d8c7daa2134c9d13ca9ea4a02ec217d

SHA512
e3a494f1123eb4dc13e8e5b1451afeb5d1ea132ef26e6568232292260428a86098f984c76aa8d5ad80788c061c135877d24713a2de2becf73f0278067cb5fe1f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000c

Filesize
68KB

MD5
0687b016486942703056acabd147bf53

SHA1
eeecf98ba2339c5356f3fbd211a38034d9586100

SHA256
5b753dbcb53c6e741bfab28e622890623854ee06605c65e3dea10ed065005a6b

SHA512
01933d5d53f235725fa5e2b854216ed8352a499a5b1d0ca13781559a7fdfb7cebbcf18a52712741749de9753993e5f8ae06d0d85e7d95587e2d1bae7c9fe8c92

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000010

Filesize
20KB

MD5
87e8230a9ca3f0c5ccfa56f70276e2f2

SHA1
eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7

SHA256
e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9

SHA512
37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000012

Filesize
86KB

MD5
282c50b6185c46eb8d69a6f7696a22e6

SHA1
a7cd0188591a02439d95ac3a3f95455d6820c419

SHA256
9fc6a4f4eb091cfac7cb8ec05aae85f04e2f6783619afd10b08b8a0d1cbfd071

SHA512
8639c640312426807b727614c88c8e766f6be3f73445485190b974b5eb8b935cc7e9f149f3031e0931e497267aae47182609552599817570a5557b980b474340

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000022

Filesize
18KB

MD5
12740dca4c66f17f7ae12368314704a6

SHA1
b66d680b8ed38792398556af8e52cc7ba3d06ac9

SHA256
a410b1cbd850171743df5e02be909bfad4173ec267a427ef19d0b6e2e6a288d2

SHA512
60003dd178795a32b4be8633d21c110ec6a9553bca154e4d1f2d1b6e5513b119a8c5f5842237c1dac56ad415f369dc949a69e4dfb93052bae3a0ec368c9ff284

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000023

Filesize
16KB

MD5
48c80c7c28b5b00a8b4ff94a22b72fe3

SHA1
d57303c2ad2fd5cedc5cb20f264a6965a7819cee

SHA256
6e9be773031b3234fb9c2d6cf3d9740db1208f4351beca325ec34f76fd38f356

SHA512
c7381e462c72900fdbb82b5c365080efa009287273eb5109ef25c8d0a5df33dd07664fd1aed6eb0d132fa6a3cb6a3ff6b784bffeeca9a2313b1e6eb6e32ab658

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000025

Filesize
29KB

MD5
f85e85276ba5f87111add53684ec3fcb

SHA1
ecaf9aa3c5dd50eca0b83f1fb9effad801336441

SHA256
4b0beec41cb9785652a4a3172a4badbdaa200b5e0b17a7bcc81af25afd9b2432

SHA512
1915a2d4218ee2dbb73c490b1acac722a35f7864b7d488a791c96a16889cd86eee965174b59498295b3491a9783facce5660d719133e9c5fb3b96df47dde7a53

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000026

Filesize
60KB

MD5
5d061b791a1d025de117a04d1a88f391

SHA1
22bf0eac711cb8a1748a6f68b30e0b9e50ea3d69

SHA256
4b285731dab9dd9e7e3b0c694653a6a74bccc16fe34c96d0516bf8960b5689bc

SHA512
1ff46597d3f01cd28aa8539f2bc2871746485de11f5d7995c90014e0b0ad647fb402a54f835db9a90f29c3446171a6870c24f44fb8bbb1f85b88e3ade9e0360e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002d

Filesize
17KB

MD5
62a707260fc6c8d9cee535fbd161fe05

SHA1
2d21e1d7800ae2ab8b0bc00ee538383c799fb16d

SHA256
10522ea2b9e5d5a60b3e0a210ef64580d5e8b3d5e4a19376d01698d5cf214f41

SHA512
acfb5de939bbab077c78c43bf5ff64f1ad5cf9d06eb30838f7d606c97b10253c82de3dbc6bccfdc91823e1a6b4b82ef84b8827135715553d4c6e95500c48f2c3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00004e

Filesize
31KB

MD5
7f8a4f124f314e0f1a6d26a2ad2606f9

SHA1
b10bfb19db2d40eb4ac17735c385493e7dd04c48

SHA256
7bb5dd5ba2a9a34556880c1a064625644803bc44e86914e0185ba6004e917676

SHA512
217479bdba2eff0c329faba1f3c90cb287a716d50c1270617231efd40fc554ff9867875582222dbe0120d0f0325730fa4e43ba76683faea1cb8868e10e0f13f5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00004f

Filesize
27KB

MD5
039b19457dfca382dd5d71bc623b4ea4

SHA1
227b6f237bb5895569db844de4718a4d8f4ba793

SHA256
c6c356b4b493b76f6f872befd5412ac52a13dc69aaf4cc34ab18f186507baacb

SHA512
77b7d87202947dce58545db8aab1c6139c3e76daf67f33a578e9e6b8c91d520db1b5218b65aa56e9d199a0b1c982d390ea025cc33f714bb84bcba11a74295832

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000059

Filesize
23KB

MD5
8215f089d94fb700c3f77d69fb51a78c

SHA1
a563c90dba852e1e4cb1060c88bc8db76c62b7f5

SHA256
8802c9e11fb2c9f54acf0d88b3f2892ba753e787bfae61f3426241de95504554

SHA512
fe6bec7e39bf685d59deeeb1ca04a18795fdbd03982c56a25cdff434fe2ce2d4f6665cad9e033eae6c00a6528093ca121463814962498affdfee2c36064b6386

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005a

Filesize
25KB

MD5
f87fa7cbbb0303cc86e1180aa86fb945

SHA1
79f50f6b2c06b40f9d44bd2907756f1415c89f13

SHA256
0180f404ab204b4081c568f2c014da52cced91065737ead1391727c9439f943b

SHA512
5794ee8de7f67216d671aff3ac73f0ff621a25a21e0522af7daea163a1a6e1d412460d5d534844a217fc6b655b6ace731c2c636291e6984fb39287d16e028e5d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005c

Filesize
29KB

MD5
cf776b128a74f76a26e70ddd68b46b61

SHA1
24c15fb603cd4028483a5efb1aecb5a78b004a97

SHA256
346cbe6774bf3bf9f3a5aacf287f859103045b0dcd4a32839b00be9f391259fc

SHA512
20751f34d1a3a63e580581d36902928c7780dde70fafa75b87e406965f2dde501b9821cd45c824584d1ece21566eb5fa501d1effdfafff0b2e27ec806bce8f32

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000ac

Filesize
16KB

MD5
58f71c674137e8bf3a6bb235543f9a25

SHA1
25bb35856195547563a346dc786a5ab8778d451c

SHA256
860b9234e2b53eec4228be7c877bff6086be3f2cdf69b950b77a249f13139afa

SHA512
773865307ab4c93fd55b12f064fea7ac29524dcbd5a2401946e19800bedea2dd4a88c2c982f799f770b910e336491252df7ab582e383d2f5c5862d71901e40ae

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
8371070b832a01256c37dd534b34469a

SHA1
e001071378faf80e03c2451340d8e069da380df2

SHA256
81294091d08740251623fafb4f4b038931e00960dff65d44a6b1a48cffe3709e

SHA512
e42ef44556bee9167ac3521bf786b2be048b2313ceb46496ca996a9806069ed1c2b7ba8dfbfc0b8a2475597fdaecc526d9b029a21bdfa2846f595acb1045fdd5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
4659fdeb35249d248dbde4c5915ba4bf

SHA1
d1bd73fc14a10c19ed4bfe929ef0abeafefe549a

SHA256
d597a7d080c96124ba8c5c98e77809bbfd53081c3089f259db36a0e6d48a6012

SHA512
db1b6ff052e23593d76ab7042b9d103d366a90883c3ce15a47ce46a0cf54a486bcff0015df5d14739131ac5b6b58b6b3ac784b92d1dc147b68967519d11e0619

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
722311852f9a5df7f09732073fd677f6

SHA1
974ecd8257b1c28ee186a969ff05b86779d82b14

SHA256
65efe1ef9c78a8852b470af806724c82d672aafaeb7f63f289c7177089fd5943

SHA512
be7a660a9d16585c7bba621d4d2e4682620e5d0e9f74f56fbd929360aeaf5dc84a71f475a25ee7053c749b6385498c6edd6d8fe9e521b1fcd0b5f44f9adb0e57

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
e76afe5027e1958be297c0310e4ae35a

SHA1
5b65d18c986543fd1c8440bc881c9b1e0eec2733

SHA256
1639f7aca472378d95738c373a2a7cbee1d5530a3508243e0a947f6fa88ea19a

SHA512
4b83d1d55840c64b03faaf20c151f7e5999c64e09cf22cfd830408137edeca839e3e6afad47f54bd697b24733fcdf932d2371530df0cd1977905e19939da6f08

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
111B

MD5
285252a2f6327d41eab203dc2f402c67

SHA1
acedb7ba5fbc3ce914a8bf386a6f72ca7baa33c6

SHA256
5dfc321417fc31359f23320ea68014ebfd793c5bbed55f77dab4180bbd4a2026

SHA512
11ce7cb484fee66894e63c31db0d6b7ef66ad0327d4e7e2eb85f3bcc2e836a3a522c68d681e84542e471e54f765e091efe1ee4065641b0299b15613eb32dcc0d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
49f9d767c2ca471998b51ea7d2a6cfe5

SHA1
c90b01c29381a6e8b0d26d739bd21b6f6da4e115

SHA256
511a646af0bf2e89a195f2d7d8a5f38bd751778ad3b5318b5692382c5f4ca901

SHA512
550321e6671b06339de19c84f322de877185aad7b7df1d4c68b96836cbf1f052fad0e40e7607f5a672da408d54300d5dbc2fbaf16f3e583a4a90fe94dc1c9cff

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
4KB

MD5
7853bfc2d0d4902cfd798ae29a050927

SHA1
3b257870aead22bdb583465a7072fa1fc01e1b58

SHA256
d5a381446213090885bea658383542e9fe355c10d80562b88cb25e2587ca7a3a

SHA512
76a4d44db6cfb6160eb0488d67a3b6a2ea4d74377a28f12a49213dec639a3ef5d4ba2452595cf09e38d7651171b4910fa52605b45ab5b92d1fafcef15252aa16

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
ae6d3af6923ed955624236ffd10b6500

SHA1
53db6124f7af18bed436a191ecacc28f244efce4

SHA256
20ef04529d5630f15b8fefd5d1f155f8e9e4208502638d2fefe79c449a3f94a9

SHA512
868c273e6c8aa955daceb4052102cad31b8594fc4bf98848bbc9d1468d6af706baf1297ee8b89229cda84364944b881a23975d466b10770cc662359627667053

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
83d52a5c019bfedf6e6839a7f29fa53a

SHA1
fb3131c9aaa80d3078b5b55167b6d64966be6b2d

SHA256
71e795a392f0888665095ccff2fd9185108e0135e6632ffc0a2d108b956798bb

SHA512
1db6d8fb476b26c034c9bea76b8b1a76ea3936e16a824641bf8e5a5ddcafe3d6fccc2f31b7b94b0adb75137888e43dc8c12745655ca91916e31005de51e979c8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
771ccfc291203ada1e91a74f85ed722e

SHA1
53035c14eb34ba481f240813168a726a326d60d4

SHA256
93e6eafc69c4f2859481298c5b2087177b2c2b94d22dce2c520f60e4f5e72edd

SHA512
f39117996b95ed3cf78cd990dd7389ef24676d06487d5198020b1e0743fc0a1d42eb4a0eada8418e1b106169d9eb1ac88c3e06568e117f570b97dc3479cffc8b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
06838e28a6aeec2b45df95db98f737b5

SHA1
c2841983efab5adaeb332a39dc2afc962d610b33

SHA256
8ed468426e26d6b3843a082ffdfbdb8df1a0662b9464a803900a733356e5171a

SHA512
9185b999269709370fbbc0439a3afb1a01d71368e2bdabe9327bf9b26b6ed10371ae0e636e041ecb51e71cea0a3c39abb4b54f291f594f2bd0588d2bbe8172ef

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
0b64a330a5d42f038de13749fff9ed8d

SHA1
ae58cd17c68309ab709846c8c7045855a32ec9d6

SHA256
b0388d220c09e0b902db7293731c143d03c2a3b18846316c95ea98b596fd8b1b

SHA512
e4c9db0f1c57ebd35d088d997932312121c01c110ca8fb9ccbf89808c28065e79bf3f3d1d20b366fd9a43ad72ac1d66e42910165e36eb1c960bdec6d5258ade8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
dee74b597d46eeeaf711aac3dfade819

SHA1
02d7b916ef94ae202b891df12cd6de255bdbf8c1

SHA256
fe3a4db9481ab30efaf31829de717431224781d7bdfedf4c153bc544312ab7fa

SHA512
8d5f4188803282c40c955bf17c28a76e6cb517147e2fd5c1500ab837a40123a9bd5c4e61457eef9fb90708f6838e903a08ac6dba1f902071253451c90fe83d4b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences

Filesize
24KB

MD5
e2565e589c9c038c551766400aefc665

SHA1
77893bb0d295c2737e31a3f539572367c946ab27

SHA256
172017da29bce2bfe0c8b4577a9b8e7a97a0585fd85697f51261f39b28877e80

SHA512
5a33ce3d048f2443c5d1aee3922693decc19c4d172aff0b059b31af3b56aa5e413902f9a9634e5ee874b046ae63a0531985b0361467b62e977dcff7fc9913c4d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_0

Filesize
4KB

MD5
e09fbf46be788270afc21dab3a8e188c

SHA1
bc7152ae9e20ec662f287b42fb04d9601873bfb1

SHA256
bf781ed6a5eeeffe8b2034f7ed18a3098e64669317435abb84bb737f13ab78d7

SHA512
e712e30b2586abeaacb505978af59379a158d801fe59e5a7683d68f585e18ee19c433628c9e22e5e924c45198e16390d5f4409b27480c4252f68c53b45558e23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_0

Filesize
2KB

MD5
3a7870bfa07ac34b1879bec0f726839f

SHA1
5fa16f9eca5ab4154a791c852ed2245b5469d994

SHA256
153c49b6c1c7e946dd3eded719b52859bf93b87ba90aa8e1a3a65a3106bbcf98

SHA512
ed08896888d99c04cd870eaaf4f3fdbf29eeae80e6c6313735e4e987f27d4d739fe480f14fa026a5169019f7b4edbd3e6db3ce7c55732c19ac210b81c5767dee

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_1

Filesize
3KB

MD5
b931b40ac3f795ea597383f5576cab06

SHA1
073adaa7c47298284c6c49d41eee70edc5484de1

SHA256
34cd4e1d1664d7ca72bd8828264aaf59faf664896a057e55086850533a195aeb

SHA512
d0ef493cd8f269c0ccdb50e02d5c61e9453a4ff5752c13f5e59d8140bbbce9e03c50955be2313efdbcd7f9359e51550801268458a6271657dda5d19071b70a77

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
96B

MD5
ff0578d06d214000ff01de3942f512b3

SHA1
93219c94c3b887dcb98fdf506eb2fbb013f02375

SHA256
76607ca9a7057817c2e32fa0e767d0fe8748aa6580d145816a0bd3aa01a6af0a

SHA512
166ac1b2ce1f19fd0b83cb9227b77fe73c99e93584971e0da36cedd3986d70c6a2b002909c478a24f3f630eb6371a62e0b4dcd0eef885ecc17aa33fa72c1bf1a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5818b3.TMP

Filesize
48B

MD5
1a91f18548d00a453b132df5a8353850

SHA1
c1d60335a7975eb6bf36d094ced90b6b8f3a9c37

SHA256
f88bf359f8872cf82d4bbc9ca5b44ce89aa74470be6b35fd50e975fc676a6489

SHA512
f8805102f22f5765bd8feb875dc89e870c3eba26c2de8278eadd997ba92c74622140ad66f2d928115107692e1637dc87c486af7b326c6f893124c70b0f015684

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
e94d1b0f2a9176952ad0ed7cfdaf5478

SHA1
40c549907703bf01de5a93f58f835cef32136678

SHA256
7f6abde9f3cddb0ba4e9f8c983e524fc49084ef475681d81c0ff1809b71cba93

SHA512
f85f605041f65f82bf7d5dc82daa904063fb8f97e0350bb698f828cb0b93d9c0b5b4ebf23151c71f047bb0b8e8a3d682607d79788983bd16787551ebf8a31d4a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
9c8580b7ec0026f9bbd60e7b05d4551f

SHA1
0ec4262a0f7d32716189abad3ed7dc72ecc34f49

SHA256
ed5dd5f1f2a1da617336493cda53cdce830524fbd8f5e33b2af131a707e9f803

SHA512
47507da0df0685d3a4c122443316bfca49c9cbd43341cb3e965231824bce5c20079ce5fac41a2d29f222bc86535cda28379a317ce1ba5d21766756e90784c065

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
86e28ec56fd035917c6289aa0b12d327

SHA1
b387ac579c63f94f85668d3f22db7a7541ea44a2

SHA256
c7f1d8e9fd87265db11552f5454966961b267db0cc1e58ec57303bfeb4a6f58a

SHA512
16f2d84ca3f8b692f4804de3dee25f56197e87572bcd9eeb8a638da76c7c6915692538af4893e138738e686e6737a25ef351cf32a08a2666671c8b987c9afa18

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
29d738d3de83b9e2496c953ec8b0ec08

SHA1
c6c5c2134cf2a2c6877742343c77a69c8b258140

SHA256
d2b8e50785d4a4045f2a8462f7f538c5568a1dcfac3a2ea50d752d9f837dfedf

SHA512
10cf6a455464e925147fb071f5e45a562b3bcd5bbe188277b22a356dfc90bb2952cbe2feda0b8db0ea7b73a3456dbcec35aea56202526fbbc4f0894ef5d52632

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
b603e503afb1626adaf18b31b5d011e0

SHA1
0919727b2822d41f84e6ba1b3c10013f686d6b05

SHA256
18302cc6c75781c8ae63f046043386efb49640bc6fe4c890477dc7266115eb60

SHA512
852dac14b0ec19217df395de5c3aa79c6c356e8ab27a92e8a607d574bbd9a55e3b06f57e614389bd34eceb2aba75003843d0a3c0dcbe0bf864e6768271240645

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
f8f3f8be1423984a185ee2611384e3b5

SHA1
1eabb5d9688a1a549a28f58b75aeb5fd57beca89

SHA256
87854ec97857e69eb1ad94468bd2307a0922ddb79afd90bd4688a4077552cea1

SHA512
83d9ce21eb2ce9021ed0fd541b8f0695bafa236b4cf96c3ff27814ed108d437276c7a8c914665be072ab3d6aa2a5f2dc25ba5d9e601d378d5bd30c5affc5d662

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
66c2eb003ed53ec012d168a1a92004e9

SHA1
b21cc2d808412aa7540c878978e85e1418991d4b

SHA256
02584b53007cbb70e6a1652c4a03053ac06291080646800ce1fc56f26de3d792

SHA512
c9e4ee8737b8b67ba95cfdef6e3dc997901750d33c4ffd021668cd44bc4355b244ffdfaf3e4b21c3c9b09ce753ce75ea2c9854b4f8581c87299703b54645fb43

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
b8e364d2f5e702fdef7d020263a29669

SHA1
ec17b969bb21b47fa11bbc43b8f883f182fc481b

SHA256
c7a384a43d03f0810ae40dc25fcbc93710d15956b9de83b4fb1cdb555a3be0a1

SHA512
94480cdb785424dedf9931378cdeb9ca825d547a98dde8c04036358624c845ac69d971b0ec91fcf9abc3926267e42c1f328a774566812e87e29225246e7c49e3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe57e213.TMP

Filesize
372B

MD5
458a3f7a24abf284d6447a9ed7b8f9c2

SHA1
925a0e7127bf77299276ccf13d51c39b2dd0f8a4

SHA256
fa5f3c41ef9cc3a95eee051d79f36b5a9d7e31c7b9698f0b95067f751d6e94c1

SHA512
1fd07d145f013d0b8421683fb62e6721b508805abe3d57df9fa03fc2744be9a0d87c1133207126bafaaecd60726a2573670649f253709ec84b4292b61f83ebe8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\d0f73e67-2cdf-41af-a02f-51579d64e959.tmp

Filesize
2KB

MD5
38a2a4c06c035488ff33dee984745d3d

SHA1
a09cbe04d58d151288345aba3618c5d335d259b8

SHA256
b433b964818f3a16d30ca34a69eb7332b9dc9dbd53cf8e9326f2b785067b64d1

SHA512
11fb5d509182c7ebecfd355b6b1b30e55f31057b15aaa9c27aaa97fd337743602df3f713299b4ce5b580fe889e8561199768c046ca5d0acb3827c0e878a5e703

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
9415632a06bfe565fc13afcd0648f2e4

SHA1
a0e6e1b0e17f15db301a9d2735bd709357c4d95b

SHA256
f54e56a34c08d2fc678a598cc27d490d59950900f1ec6fb2e58b3d13538ccc84

SHA512
58040e03bc1a00a83675bb2b4c464e541e769ce63c4d51dba0dc50bb476ea5223e0b0d52664150130efdd2c79a1946c2a08f4d1a4cb4abb876de92dd1a0bb30a

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

Filesize
2B

MD5
f3b25701fe362ec84616a93a45ce9998

SHA1
d62636d8caec13f04e28442a0a6fa1afeb024bbb

SHA256
b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209

SHA512
98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

Download Submit