hxxps://github[.]com/lerscebraph2f/VoiceMod-Pro-Crack

Analysis

max time kernel
317s
max time network
320s
platform
windows10-1703_x64
resource
win10-20231020-en
resource tags

arch:x64arch:x86image:win10-20231020-enlocale:en-usos:windows10-1703-x64system
submitted
12/11/2023, 19:03

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://github.com/lerscebraph2f/VoiceMod-Pro-Crack

Score

6^/10

Malware Config

Signatures

Legitimate hosting services abused for malware hosting/C2 1 TTPs

Web Service
T1102

Drops file in Windows directory 6 IoCs

description	ioc	Process
File created	C:\Windows\rescache\_merged\3720402701\2219095117.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\2219095117.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\2219095117.pri	MicrosoftEdge.exe
File opened for modification	C:\Windows\Debug\ESE.TXT	MicrosoftEdge.exe
File created	C:\Windows\rescache\_merged\3720402701\2219095117.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\2219095117.pri	MicrosoftEdgeCP.exe

Modifies Internet Explorer settings 1 TTPs 2 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000\Software\Microsoft\Internet Explorer\Main	browser_broker.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000\Software\Microsoft\Internet Explorer\Main	MicrosoftEdgeCP.exe

Modifies registry class 64 IoCs

description	ioc	Process
Set value (data)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = 35cb91209b15da01	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\AdapterInfo = "vendorId=\"0x1414\",deviceID=\"0x8c\",subSysID=\"0x0\",revision=\"0x0\",version=\"10.0.15063.0\"hypervisor=\"No Hypervisor (No SLAT)\""	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DummyPath	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Internet Settings\Cache\History\CachePrefix = "Visited:"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Internet Settings\Zones\3	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\SignaturePolicy = 06000000	MicrosoftEdgeCP.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-VersionLow = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\CVListXMLVersionHigh = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\CVListDOSTime = "0"	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\History\CachePrefix = "Visited:"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = 50cc72209b15da01	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\HistoryJournalCertificate	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Internet Settings\Cache\Content\CachePrefix	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\Active\{1ED8CC4B-82F4-481D-8053-02E94701DDC1} = "0"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Protected - It is a violation of Windows Policy to modify = "1"	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Content\CachePrefix	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\Internet Settings\Cache\Extensible Cache	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DomainSuggestion	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BingPageData	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Protected - It is a violation of Windows Policy to modify	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = a523971a9b15da01	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\Main	MicrosoftEdgeCP.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-Revision = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus\ACGPolicyState = "8"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\trust	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ServiceUI	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\PendingRecovery\ReadingStorePending = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\CIPolicyState = "0"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BingPageData\RulesFileNextUpdateDate = "405977964"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\IECompatVersionHigh = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\History\CacheLimit = "1"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\Disallowed\CRLs	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\Cookies\CacheLimit = "1"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Explorer	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DomainSuggestion\NextUpdateDate = "406599286"	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DataStore\LastCleanup = 0000000000000000	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\Root\CRLs	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\History\CachePrefix = "Visited:"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy\Extensions	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\CIStatus\CIPolicyState = "0"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\NextUpdateDate = "406608488"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\Active	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\CIStatus	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\ACGStatus\ACGPolicyState = "8"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\ACGStatus\ACGPolicyState = "8"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\trust\CRLs	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\IETld\LowMic	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Internet Settings	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Revision = "0"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\Main	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main\DisallowDefaultBrowserPrompt = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus\ACGPolicyState = "8"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\Meta\generator$blogger	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-SubSysId = "0"	MicrosoftEdge.exe

Suspicious behavior: MapViewOfSection 6 IoCs

pid	Process
1208	MicrosoftEdgeCP.exe
1208	MicrosoftEdgeCP.exe
1208	MicrosoftEdgeCP.exe
1208	MicrosoftEdgeCP.exe
1208	MicrosoftEdgeCP.exe
1208	MicrosoftEdgeCP.exe

Suspicious use of AdjustPrivilegeToken 6 IoCs

description	pid	Process
Token: SeDebugPrivilege	3144	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	3144	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	3144	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	3144	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	1704	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	1704	MicrosoftEdgeCP.exe

Suspicious use of SetWindowsHookEx 4 IoCs

pid	Process
5036	MicrosoftEdge.exe
1208	MicrosoftEdgeCP.exe
3144	MicrosoftEdgeCP.exe
1208	MicrosoftEdgeCP.exe

Suspicious use of WriteProcessMemory 6 IoCs

description	pid	Process	procid_target
PID 1208 wrote to memory of 680	1208	MicrosoftEdgeCP.exe	80
PID 1208 wrote to memory of 680	1208	MicrosoftEdgeCP.exe	80
PID 1208 wrote to memory of 680	1208	MicrosoftEdgeCP.exe	80
PID 1208 wrote to memory of 680	1208	MicrosoftEdgeCP.exe	80
PID 1208 wrote to memory of 680	1208	MicrosoftEdgeCP.exe	80
PID 1208 wrote to memory of 680	1208	MicrosoftEdgeCP.exe	80

C:\Windows\system32\LaunchWinApp.exe
"C:\Windows\system32\LaunchWinApp.exe" "https://github.com/lerscebraph2f/VoiceMod-Pro-Crack"
1⤵
PID:4848

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:5036

C:\Windows\system32\browser_broker.exe
C:\Windows\system32\browser_broker.exe -Embedding
1⤵
- Modifies Internet Explorer settings
PID:2716

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Modifies registry class
- Suspicious behavior: MapViewOfSection
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:1208

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies Internet Explorer settings
- Modifies registry class
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of SetWindowsHookEx
PID:3144

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:3020

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:2608

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:680

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Modifies registry class
- Suspicious use of AdjustPrivilegeToken
PID:1704

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\SU6W8964\edgecompatviewlist[1].xml

Filesize
74KB

MD5
d4fc49dc14f63895d997fa4940f24378

SHA1
3efb1437a7c5e46034147cbbc8db017c69d02c31

SHA256
853d2f4eb81c9fdcea2ee079f6faf98214b111b77cdf68709b38989d123890f1

SHA512
cc60d79b4afe5007634ac21dc4bc92081880be4c0d798a1735b63b27e936c02f399964f744dc73711987f01e8a1064b02a4867dd6cac27538e5fbe275cc61e0a

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\U2VA3AJX\suggestions[1].en-US

Filesize
17KB

MD5
5a34cb996293fde2cb7a4ac89587393a

SHA1
3c96c993500690d1a77873cd62bc639b3a10653f

SHA256
c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

SHA512
e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\GH4AOP5D\VoiceMod-Pro-Crack[1].htm

Filesize
208KB

MD5
a81513432f7033033631b1b85fa09a8b

SHA1
818293ea5e98e68063984b18ca2e7fb926ee9e4e

SHA256
e8425cdc1924401c8036854a900f47a001a041e69479e867348b0521912a25f4

SHA512
57ed0f6a02e981a694db7be145aedb16ac9801f5c5abe72da579a461127ddccf5f6b1b378a90fc56e01150f4649b0b472ad6c5b6fbe7357c1e1c1f5304617e1d

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\GH4AOP5D\app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-2e2258-178d980b559e[1].js

Filesize
13KB

MD5
7bb9a738718e88c86cfc987ee40ed22d

SHA1
a31ba82d367545800144b3703bf1906dd2ca2db4

SHA256
9a769eaf34a44cce05b10de5328a30bbd6527af8c93aa080c4c3551f8c7b8410

SHA512
178d980b559e2ba6001ad1df5045df2a476677691cc1f45683d3af9a27ede8ecda3ae6fc89d03e93c03951cad0ef62e6c10668f6c9fd0482e5763ec3a1405a06

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\GH4AOP5D\app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-b85e9f4f1304[1].js

Filesize
11KB

MD5
3157330f2d5f31bf5d7d44b943134464

SHA1
1f723a8771a6b7fdfbae3dd733c0a856d6d10a7c

SHA256
038b900ecf4d59a5fa117152d0a8a50e834dad260216571364ec780abf5e2b42

SHA512
b85e9f4f1304a758db9ddbe7aa994f44fad51842317e368fb08aa4b24adef36e57bbc4c22822ea472434f4f09e7ecd9de1977a9cb7c0ef98b0c3a23864728ca5

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\GH4AOP5D\behaviors-d984747343bb[1].js

Filesize
223KB

MD5
439e476fe87ee3febf800e442ba517c2

SHA1
644c62df51e1f01e141d7553db974268289d65d7

SHA256
358ac0ac76b6010c962b6d33f9a81e0c7051bad2b0078e1e49a6f04069debcc8

SHA512
d984747343bb0b394f929d8c52c6306f2fe74d78099bc3290e861da180702b4dea13553e1622eb3837856bb34d79bec4d7d4d6bd3ea47b705ab6050baa56c12e

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\GH4AOP5D\ui_packages_soft-nav_soft-nav_ts-6a5fadd2ef71[1].js

Filesize
9KB

MD5
1bd793f88383f7a7a6b61e7c40e03b20

SHA1
047dbd55bead7f9e54f89fc001c911491cc81714

SHA256
5fec3f12b15856bfbb6fb6f332ebcde132b1d9786fc35b2f85073c0f6f2e575e

SHA512
6a5fadd2ef71e24ede85dac7bc456583f4ab0c9ffbb4fbf1b5217cb797656f5c886be0113a94eab13545d2cc5e05166fbf1bd5c63f8da5edb5e164255ccb63ec

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\GH4AOP5D\vendors-node_modules_dompurify_dist_purify_js-6890e890956f[1].js

Filesize
22KB

MD5
80fa30c00e347b5bbc8b7ff9dc2c9f44

SHA1
d085fe485ada77814949e92fa9e1b1eb05ba5eda

SHA256
be77c75cf182f1830d0f90b8d7aee460f0108c6e7f5a143a524f709b9023c80d

SHA512
6890e890956fafa8187511df1ac3c80a5b8d56be5ca989da251741f59c8d1186c0efa3d374f113b0ebeda124b78dedd106ea97f487ec04cf2a012e7bdd1048b3

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\GH4AOP5D\vendors-node_modules_stacktrace-parser_dist_stack-trace-parser_esm_js-node_modules_github_bro-a4c183-79f9611c275b[1].js

Filesize
13KB

MD5
0ebf88b18838ca3926ece77027c1a096

SHA1
0f2edc27f5a23e5c2f699443c0d6572904b7bfd2

SHA256
452a443efadf60da1b19b9bf50d6cbbb25ab9441a3e9fe73b678d9cd486d80b6

SHA512
79f9611c275bf2087d6b063e2f4bf13feddab30c494b7bc968169fddf15a451aa26fe231ffe9e2eb4b9923477528ce638f5688cf4930953d372df69e822ffb44

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\GH4AOP5D\wp-runtime-bdb2eec8712c[1].js

Filesize
34KB

MD5
581531a6f8bb8695e3a12650de956305

SHA1
d31fcef046071edf3fea0f918b69e84a6f873c43

SHA256
f5369907a4c749aba0734da1e49855cbecd71e898bd8faf67ae0985186ea4713

SHA512
bdb2eec8712c97219f86b8aa722854376f608c4c69e4921721e04adc6fe998d4336df650c23a86ee29b0ca920a4957659d960b388a817ab42208f6e2bc3febe2

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\K0UPSO2Q\code-71ecd5638fbf[1].css

Filesize
28KB

MD5
e1b0bb5887b6935fc4dcdcb94293e347

SHA1
ba8fdef5f150b6be384c2821faf85283fbc22842

SHA256
08f9d2c85840a20fb183082d13f764f668f92f7da935b6700a04c578ba58982e

SHA512
71ecd5638fbf80cec4faf5b07405274a913c7b41f58fe169cce79d3a66ce45e65f1e3549e995b15d0bbb5eaadad2bd590fc3759ed55ade0dfafd7321e7dc534a

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\K0UPSO2Q\dark-5d486a4ede8e[1].css

Filesize
55KB

MD5
19436877f89e60010b7bdc2997dd75f1

SHA1
50a61fdcd0286e9ab8f5359fd9db28682a3d6e4f

SHA256
5a51afc15dead8f58e22d8172aa679b06cb8dd022a9605cb3c1e34cb287c516d

SHA512
5d486a4ede8eb3ebb07d0a20c0fad1fed8e119117c4320687aab92b608098fe3d2bd949155344c83621812a68c516b80222acf21ba942fe68c466b938370d85a

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\K0UPSO2Q\github-elements-ba6b32e5a9a8[1].js

Filesize
39KB

MD5
2e1073e9b18db4daf971e50bc3fc7967

SHA1
3f17f51ce948a20d59ade53c80b990fed6b648ca

SHA256
5f1c186e96cb51bd9113e87c1b330f31ef023830a1875ec0ab9ace9e736c8ebc

SHA512
ba6b32e5a9a835c1158b689e0e37a583b3715d767c52adc3c7430b480da5af410ea52470447968f0aad77b38a2c8c67a61db1f2fe237368a739ac650d4c506ef

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\K0UPSO2Q\github-f2eafb2a55aa[1].css

Filesize
167KB

MD5
5144ce6db6e1a577854aabfd73a96ebf

SHA1
e80615df18646cdd95490ff0d481eaa994ee451c

SHA256
1fe4d30ee8e6f81ca03f8b6414604f925e6aca96aabf84519461061cc0f0e1fc

SHA512
f2eafb2a55aa48381945599ca89dde3d105aa4592694b3d4013879e8a54c3cda0b35f1506f3fd534d9c805a32b129f95dbe4c765977be8782a89eaa4d23cc6c8

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\K0UPSO2Q\global-b2298340fd5b[1].css

Filesize
277KB

MD5
e5f42359e1ce6f0996070df4d74bf279

SHA1
c0274ffe5a4dc09094598072e0aecb2580aa4a46

SHA256
8f2f64e2d9ece2924e17596a15cd0c920c66c91eebe647793a3f08f08c63cc5d

SHA512
b2298340fd5b5db1c43d65be7068b9fe6c74ea29f63ed5a029454600f1bfd611a75c8df542ec414f1ff31855c6599924570541c636689530520004237415b767

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\K0UPSO2Q\light-b92e9647318f[1].css

Filesize
73KB

MD5
83db2201dbe88660b6997830e7a61482

SHA1
36f38b7ea226831902a49e664264c50694cb68d2

SHA256
8f34f8c29f319a8d8ae2f087be8954dfc22710ef7e8f3d99e872fd9bae9e0eca

SHA512
b92e9647318fda495830f93b5631e0cf6c2f813584fc23ce6a4c8f56ee1aef21430c53cdcbc159377534ec9e8fa7fd5e65906b14c3056e6684845e63cf201927

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\K0UPSO2Q\primer-0cdc607a5517[1].css

Filesize
348KB

MD5
a70c66e8b6af1d6a876ac024d260b870

SHA1
7801862ed4abe7e577f0ebf327f87744c2e75059

SHA256
9da3ddd845683b7e88e5433fdcf4d97e300e58a8e633521aa70aa5ce432bbd4f

SHA512
0cdc607a5517ca1ed7d5d296a768a2b821a552ed8c4269baf829758c5e5099cf968a4597ceac42d148fe0d299a5a0613f7d3653f799e279ab4bd710756c5174e

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\K0UPSO2Q\primer-primitives-363ec1831c26[1].css

Filesize
7KB

MD5
16198770f3ba5c2e7e146e7d34d411bd

SHA1
2f8b1a02d3adf8f0f2cec0df630b7e77d316b5d1

SHA256
8e195f041948942ad5659b150dbf7555431588de232cf1723d9f816c1ffda833

SHA512
363ec1831c26fbc98ea8f2087c4bbe2e519c5871d133986c801fe0a5678280291af571800b8444625d86dc48a3a0053d8044548bf8858a14fb7681ad7ffb6868

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\K0UPSO2Q\vendors-node_modules_fzy_js_index_js-node_modules_github_combobox-nav_dist_index_js-node_modu-344bff-421f7a8c1008[1].js

Filesize
19KB

MD5
82203abcc348e10c64f70534dbb01f7d

SHA1
96d498f2250530845bd56a6ffa9d923b6b235df6

SHA256
0705df43d9ea676ac182a83095900bbe6a028671cf4e4e0295d8669fd33a754e

SHA512
421f7a8c1008f1d2f8712d7abc1ef127344e6b0124898068ca25565d7146b7b1fcf8bbadead4651bb5aa600b6545f1b8fd2c76ec26c2de16b75775a9b71f90b1

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\K0UPSO2Q\vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hydro-analytics-client_-978abc0-15861e0630b6[1].js

Filesize
8KB

MD5
bb0e7b5daaad560076f1959626fe8623

SHA1
d54551de50a0af1d7a1d68eb83ed73dbf8330b33

SHA256
c12b2709c4790c9c065cdc183bd4d877cc5d15cfbf1cfacb1244263ea81074ca

SHA512
15861e0630b65ab8c41dc4ae2f8d9ce53aabafb12d066f8ce9e3532e6ef5fa5a0380c8caa6ee470b15fa1a5614a2f756a3a202ebcbb9e5a4457f0755b7d34f14

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\K0UPSO2Q\vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-2c6968-3cbb53b1c985[1].js

Filesize
102KB

MD5
2a5ef5d6555da5b935a0fc94896603ea

SHA1
eb61886ab473e3ecabc7c10c688505bdb02719fb

SHA256
6d40bc0dcdb5495f8444067107a8ce2a60f7b548dd0d43fa1c601c930dfd46af

SHA512
3cbb53b1c9856fe97c79e96f20b2a143d63ac031f37516f7f4c929c0eda7dbddac0379f2487888b2e6a0e02455802a0bafe1358017e77171e4a5f70695e15c0f

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\K0UPSO2Q\vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-59c459-e74bf552c5b7[1].js

Filesize
24KB

MD5
7cb46ee05df894b90697f271942474b9

SHA1
3ce3724f00b57d23e155c2fa86e1a2c48792891b

SHA256
31305e1b2cf8ae7089b2c0a3fdfcd733778ddcb11b704b3680289ea52563c584

SHA512
e74bf552c5b7caf5e67584d891090ea79085942c984d84c128c35e4dde1c3655175f1fd49f71f86ef080789ef0e21e5dceed39503d44847d847d3028d9e35e1c

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\MMRJMPSI\app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_onfocus_ts-app_ass-079b43-84f860f8b7d6[1].js

Filesize
11KB

MD5
3ca630d107da9af686c4180db2e105e9

SHA1
b70289f6f396b6081c334be90550dd97e91ca654

SHA256
8691c9f056c6c51a5f9df2fcc5c8c67bc9ae3487e13c74a38e6e979263cddc8c

SHA512
84f860f8b7d6e0043299842f32336c71bf3800a86557c8886d1ab8782d67a0c006e003793d9f608bd444e2103240c2a229ede1fc757eec308415febaccc28463

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\MMRJMPSI\app_assets_modules_github_sticky-scroll-into-view_ts-f982282c5c39[1].js

Filesize
9KB

MD5
211eeee0158f67cf8d502406905e3e5c

SHA1
069f2fbfd8832f9413caf32dded7a47cbc963f38

SHA256
b7fa94a872c5648e8a37c0aef37c2f6ba6fdc094e73556f79121cdeae4b6861d

SHA512
f982282c5c39697a462cc040a740bae35ffddce49507f8fa316960de034574a0b6e18d6f28613bf8905a8a9b352c9e77e8cc5b8ea1c1d9bcfa34c03c2042b8cf

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\MMRJMPSI\app_assets_modules_github_updatable-content_ts-ui_packages_hydro-analytics_hydro-analytics_ts-6ab1a34074c8[1].js

Filesize
9KB

MD5
3b5abe544c71e60c1b0d666282c0b9b2

SHA1
c62da7f4e55715b26ff2a2d854077ee9c015f4e2

SHA256
ac38f876be7290df923bb0224ebec9ca14cb23547692393bafb9c7c2a33642cf

SHA512
6ab1a34074c85628e7375de6a1608dc6b2673e31838e25c7ef68e447996b773b88dca62986b61734373a37d427bc761076f004a4503bf2bfff33d3e3be411208

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\element-registry-1cabc2253887[1].js

Filesize
49KB

MD5
841f6a3076d85f72ed889246a117c12d

SHA1
1186455eea76aa60a1beb86ce0af9c366685b9bb

SHA256
58099fcbbb1d8a9e53280b008d7f6141116b2701676e9808e9c9155e8d241117

SHA512
1cabc2253887e0977e486565bfcefd7ee181777dafa0ebeb01b8dcaa8977d840b8da9d7b122944ffaae735d1b956a0ff1546fb471670171119f89226f3d82e81

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\environment-569829d98e9a[1].js

Filesize
13KB

MD5
ec56cd534174e2ec2ca8be504c0ca5f1

SHA1
fd544c58a8138b76dd9356f79ba99657b535e30e

SHA256
9cbfb85c6329c1528a8994f1c47761c40364a67400090957340fe0d46f4fe57b

SHA512
569829d98e9abdf0fc6a627ba6797a3e4840cd00ec272381aa48c213a9b0923607b0585a83ca5789b79684a21c406163c692d54db9d55358b6e1428bf32e399f

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\ui_packages_details-dialog_details-dialog_ts-ui_packages_fetch-utils_fetch-utils_ts-78f25ba16cd9[1].js

Filesize
8KB

MD5
5ba7d53824fc138e9b0dd53fb23e1edd

SHA1
b140d4e39e095142485da4f3f42e14404c3dd939

SHA256
afdd794d804d382d623dd5f8edc1bedddda3e0b6a7e7ac7f385d01ec72f19118

SHA512
78f25ba16cd960dc1fde63c1d82b97b95b0be0fd16b959599cd7193a5ffe2af5cea5175150743844b7e3966daedab7377b08f87a6a0efddecba771b2fd7c884d

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\vendors-node_modules_color-convert_index_js-72c9fbde5ad4[1].js

Filesize
13KB

MD5
c706ad84a4eb261b75d1f77ce7f9bdc8

SHA1
497a9725442e7305adc54d19b828b2e38c5c56cd

SHA256
80b561c1746ef1533744e7bf7ea3f6c721a88a104d665bb97ffa8df96e69b682

SHA512
72c9fbde5ad471c76b76034459d0d75db00cceaf3904a14c01dd9dd9167da7f783086b79c446b24ed2630c9cebca1996b3ff8ea52dec6c865f173c8158962be6

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\vendors-node_modules_delegated-events_dist_index_js-node_modules_github_details-dialog-elemen-29dc30-a2a71f11a507[1].js

Filesize
15KB

MD5
b6a276c5c85ffb793d0a9ed82a24cb6e

SHA1
e3f235f3b5f96894214f8c038632262b460441fb

SHA256
f065392ebd02bfe54dfa902c51348eaeb4b7a00c0463ad23a1f9e671150c11f0

SHA512
a2a71f11a507482b9c26beabf60b83d3bb9d5fadba55b79ae456d41cc748b6e624932b9bac8308fe1d16c9422b20c98440c273ad9b00c724615cc07c5c158c5f

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_alive-client_dist-bf5aa2-1b562c29ab8e[1].js

Filesize
13KB

MD5
f3fc91d783e4aca512744ca779f5563e

SHA1
888fcb2874e8dc5e2311007833c3da05475d29ab

SHA256
62b68187e1a4b7d9fd029df4a125a6f5c6a9cb95f4e49b087b56bfe8276a07bf

SHA512
1b562c29ab8e339e7785365933f64f26d14f8800c00a08c667623d4bc5bd244bc80b567519ce781f8082ad736275506b4ea58c3bb1dbd5d260eb8e7c42f60e19

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\vendors-node_modules_github_paste-markdown_dist_index_esm_js-node_modules_github_quote-select-854ff4-201063b8cc44[1].js

Filesize
32KB

MD5
2b16c9238a48b0e0968a9ff347e4d2b9

SHA1
5f479a10673d420197408f29ca9f29353d4eda10

SHA256
e88044a72b02beb877246b7f33809bc9aefa2bd9cbc13deead2414386b50649f

SHA512
201063b8cc44663438e14b8623d4798b22c3c659f93c3cdc2211b41186a9a933c8cce7919db6b5c72644790e4ad967d81d49765814af974a1c5595082745906b

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\vendors-node_modules_github_relative-time-element_dist_index_js-c6fd49e3fd28[1].js

Filesize
14KB

MD5
dfdcdcfdaffdf861f7faeca7cf5b05ca

SHA1
49b1a6176fc93452a12fcc0ce67307914cf5ffe7

SHA256
895bb87f9e343bc67e1a0c87565e92e4ce6c75273349ba3573336c7a48228316

SHA512
c6fd49e3fd28d6aa9735873bf69f05114b005fbc10cc4ce1dda7b250d0471b883f569f2f654074ba436c4115a04aeb3b1fc5db0189cfe57a5e11e6aca9f6facc

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\vendors-node_modules_github_selector-observer_dist_index_esm_js-9f960d9b217c[1].js

Filesize
9KB

MD5
683a7fe431bded8fbbf7b5189a1b8209

SHA1
2fb527473877ea06ec6b023690ce933c216c5d07

SHA256
f87c5b59b8f353c8762f2e44e1f82feafab882a96a0fad135dc6fc1555872ab3

SHA512
9f960d9b217c457d467a9510dd9797c4ec9df9a892c0a3e1746b2b87dca8ec191dc901e983bc509bc282004967b6fd588dbff5bf70bc7e20a5ca32bc7f1d772a

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\vendors-node_modules_github_session-resume_dist_index_js-node_modules_primer_behaviors_dist_e-ac74c6-637fd908cfc1[1].js

Filesize
9KB

MD5
7ac9b082406bcd99ba412851fd65021f

SHA1
90683cacd2fb7ddfe370fb3621562e2671339476

SHA256
beb945d817f1c62abdcbf5d765343ead20ae87700d26f85aa69d74767c109926

SHA512
637fd908cfc154cc0f42f8e5692e9c6b72cb9f257aead2679a6c887f080341011a7bad5779fa766d4562b9f5d31b35ac27790ffce004fd0e98ae7b766f78fd8c

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-ec51a0f6e881[1].js

Filesize
75KB

MD5
114debe9c516944277447b5d461f548e

SHA1
24a5ef89e846e20cc4e643fe31ba67f40af56581

SHA256
77e9af1f360fe0af8688b2b3c9603d07e14691149bf8aa077ef4516791c503c3

SHA512
ec51a0f6e8819b3e77a1823cf723a953244421a1819dc96a265866e6deb9d933e4afbadfdd5fbb9c3c59b2771fd66b3b19e503b90a6d61cec30a1cad6e791ce0

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\vendors-node_modules_lit-html_lit-html_js-5b376145beff[1].js

Filesize
15KB

MD5
81628c9093236d8e3cf835f708c30608

SHA1
846b10531dfca6510051fc43abb8f9b5647a0433

SHA256
daf381c316a5988c9116aa65c5816cbc8a958211b4c0b7d989ad6c9645757902

SHA512
5b376145beffca1bfc6b0352c08819609a974b6170848699421208752a63f057869e0e4ddd23797b3a0c281c276d7fae580cf41bb5465c632aee58524b21e7ba

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\vendors-node_modules_morphdom_dist_morphdom-esm_js-5bff297a06de[1].js

Filesize
4KB

MD5
11a69b0651264a2235a7059e9e677227

SHA1
a467270f0455de4ab13fd33856a5341e38aaa6ea

SHA256
3316d32e073b0f756d7e247b00b1a016f421973c50f1e3a9ce9f5b86e975cf9d

SHA512
5bff297a06dec294d6d6eb1f52edf99e69871f6325e470c4792283524e0f65fdc701c1dd9c962f49cb42276cd108e7e4a71573ff575c971add30616c24101450

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\vendors-node_modules_primer_behaviors_dist_esm_dimensions_js-node_modules_github_hotkey_dist_-8755d2-0ac4a16a6cca[1].js

Filesize
12KB

MD5
821494660002b727583a89030832614d

SHA1
65dd8d9c0ee80cfa61455c45b18dd064d7ede064

SHA256
01f0a1b8d66c86d10f80229e8456adb2979af10b79c1e6122a722dd78cf92774

SHA512
0ac4a16a6cca4fd0416e71e4b8ef2f212a469f99bdedd995a358752061321cfb5e98a3ad76cc2b7322e1b2667b9e48af8adef27de9526f753dd1ff1f73977da0

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\SWT9RA15\vendors-node_modules_primer_behaviors_dist_esm_focus-zone_js-d9ce45da2851[1].js

Filesize
8KB

MD5
ed75c61f523715d0481f214d40c828ea

SHA1
60b6794bcc17dd770ff467cca29a84b02c59b078

SHA256
2f3c7d6061c0b810e475e40352768dc165423606efd2e9797dab3308212a1888

SHA512
d9ce45da2851efca071707c01002dc55fb1061cb0718d91489dadfc07caf274f99fbde77868f9b5899fdcdf7bdd15857a55307a9cfca4891353870181124216a

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\XNZ95ZBA.cookie

Filesize
167B

MD5
528687dc420304a81280af8cbd403a2d

SHA1
bce9c0dd6fee9dfcf084c201abd299c47d7b3c41

SHA256
a7ae8a13aee982222d98cf1d93bd03a2a70b0417c8880f94590be19dab737229

SHA512
41a846911c222800f0789972e3f70094e9c9bac4cf066d1e833bfc546f14e85a226feafd554abc717a9fec28a86a06a4beb9f66d18f17794ea358f141561e631

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\50CD3D75D026C82E2E718570BD6F44D0_D222662A57BAA60D2F5EA0D2CC7B2F1C

Filesize
313B

MD5
4cbdd66e95427b1ed8f60fb723963728

SHA1
1dbeb7f673e129e155eb9591597d0e4626b98d57

SHA256
d308c0daa00db7c3b5964d0140ef518ead384e72ffc2e5cdd2403649c74093d9

SHA512
a3b0808db9958bc2719e6c44125579f7742855a0893d60867a143ca39bd817298efa8cab828c2790d3e7246eb3393e6087d08c939aef93d422d1f4d71f0ba4ff

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\B398B80134F72209547439DB21AB308D_ADE4E4D3A3BCBCA5C39C54D362D88565

Filesize
471B

MD5
02256e50eb67df4336c35de742564367

SHA1
9526467f75f3abc814ff1ad2dd0f8985a046e06a

SHA256
086f08938d220ea256bc60425c834fd00f74776851cedd8a8ede3b30b906e1eb

SHA512
332f0c40a9f47090c7a0fc63a8229ff5bd94dbb1690109c05bcfb47a4fc3c196a60aa1484d815004c2817fbc813e7ad24f218a4aedc57b6b5ba1964524360eb1

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\50CD3D75D026C82E2E718570BD6F44D0_D222662A57BAA60D2F5EA0D2CC7B2F1C

Filesize
408B

MD5
441a0664bab848195e955cb92d8b47b9

SHA1
aeaa2dcf82355dd142cc3da6eeaace956b489aa4

SHA256
2f2c15abb5d199b3d5167299a530c83c90b88d46727b290b544b3e916299bc58

SHA512
c111f2506a0b15adc90d67c7c89e59e64be64a732e142b0fd887bda10ea19df3fba45c76ec4adfc138afb763c26f826fcbbb2e1d9935e2a24715fa49bbed911d

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_ADE4E4D3A3BCBCA5C39C54D362D88565

Filesize
404B

MD5
7f01fc188c2383bafea282e94d744d9a

SHA1
a552042f462a220816bc30799d2df83a207e471f

SHA256
143d92b3462be5cace497cdc4234624b98d964cfaaebb045b19928643b164c5b

SHA512
8ac8289b8af0777a69462166b17995ccccc209e7147112d6be5a4041c656da594665b0a5f2b2e72a561df137c4dc624357d3c90ac25ec6e0982be1e90e821618

Download Submit
memory/680-199-0x0000029318880000-0x0000029318882000-memory.dmp

Filesize
8KB

Download
memory/680-193-0x0000029318810000-0x0000029318812000-memory.dmp

Filesize
8KB

Download
memory/680-203-0x00000293188C0000-0x00000293188C2000-memory.dmp

Filesize
8KB

Download
memory/680-201-0x00000293188A0000-0x00000293188A2000-memory.dmp

Filesize
8KB

Download
memory/680-197-0x0000029318860000-0x0000029318862000-memory.dmp

Filesize
8KB

Download
memory/680-195-0x0000029318840000-0x0000029318842000-memory.dmp

Filesize
8KB

Download
memory/5036-0-0x000001DFDFA20000-0x000001DFDFA30000-memory.dmp

Filesize
64KB

Download
memory/5036-35-0x000001DFE01A0000-0x000001DFE01A2000-memory.dmp

Filesize
8KB

Download
memory/5036-16-0x000001DFDFF00000-0x000001DFDFF10000-memory.dmp

Filesize
64KB

Download
memory/5036-219-0x000001DFE8120000-0x000001DFE8121000-memory.dmp

Filesize
4KB

Download
memory/5036-220-0x000001DFE8130000-0x000001DFE8131000-memory.dmp

Filesize
4KB

Download