hxxps://www[.]dropbox[.]com/scl/fi/jfi5mhxoiccn816lvw57t/The-Mortgage-Store[.]docx?rlkey=hszparz0l03w0adw3kgtgyk7f&dl=0

Analysis

max time kernel
383s
max time network
386s
platform
windows10-1703_x64
resource
win10-20231020-en
resource tags

arch:x64arch:x86image:win10-20231020-enlocale:en-usos:windows10-1703-x64system
submitted
27/11/2023, 15:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://www.dropbox.com/scl/fi/jfi5mhxoiccn816lvw57t/The-Mortgage-Store.docx?rlkey=hszparz0l03w0adw3kgtgyk7f&dl=0

Score

6^/10

Malware Config

Signatures

Legitimate hosting services abused for malware hosting/C2 1 TTPs

Web Service
T1102

Drops file in Windows directory 5 IoCs

description	ioc	Process
File opened for modification	C:\Windows\Debug\ESE.TXT	MicrosoftEdge.exe
File created	C:\Windows\rescache\_merged\3720402701\2219095117.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\2219095117.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\2219095117.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\2219095117.pri	MicrosoftEdge.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies Internet Explorer settings 1 TTPs 2 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000\Software\Microsoft\Internet Explorer\Main	browser_broker.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000\Software\Microsoft\Internet Explorer\Main	MicrosoftEdgeCP.exe

Modifies data under HKEY_USERS 2 IoCs

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133455721237512563"	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Modifies registry class 64 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Internet Settings	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\Total	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\Total	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\CIStatus	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\ACGStatus\ACGPolicyState = "8"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\Internet Settings\Cache\Cookies\CacheLimit = "1"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DomainSuggestion\FileNames	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Internet Settings\Cache\History\CachePrefix = "Visited:"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\SubSysId = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DomStorageState\EdpCleanupState = "0"	MicrosoftEdgeCP.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Settings\Cache\Content\CachePrefix	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\EdpDomStorage\bing.com\Total = "0"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\Disallowed\Certificates	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\trust\CRLs	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\Meta\generator$Telligent	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\Meta\generator$vBulletin 3	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\Root\CRLs	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus\ACGPolicyState = "8"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\CA\CRLs	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\PendingRecovery\Active = "1"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\PendingRecovery	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\CIStatus\SignaturePolicy = 06000000	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\ACGStatus	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\dropbox.com\NumberOfSubdom = "0"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\Internet Settings\Cache\Extensible Cache	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\EdpDomStorage\bing.com\NumberOfSubdomain = "0"	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\Meta\generator$MediaWiki	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ServiceUI	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = 40d30d614521da01	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\bing.com\Total = "0"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\www.bing.com\ = "604"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Internet Settings\Zones\3\{A8A88C49-5EB2-4990-A1A2-087602 = 1a3761592352350c7a5f20172f1e1a190e2b017313371312141a152a	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\ACGStatus\ACGPolicyState = "6"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\Total\ = "652"	MicrosoftEdgeCP.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Internet Settings\Cache\Content\CachePrefix	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\Content\CachePrefix	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\Internet Settings\Cache\Content	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\Internet Settings\Cache\Cookies	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\Active\{034BB425-D242-4837-A523-F2691277E42A} = "0"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.dropbox.com	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\CIPolicyState = "0"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\Disallowed	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\Root	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\History\CachePrefix = "Visited:"	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\CIStatus\SignaturePolicy = 06000000	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\dropbox.com	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\dropbox.com\ = "0"	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\CIStatus\SignaturePolicy = 06000000	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-DeviceId = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-VersionHigh = "0"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\History	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\Main	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-VersionLow = "0"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DomStorageState	MicrosoftEdgeCP.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\History\CachePrefix = "Visited:"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\www.bing.com\ = "543"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\Total\ = "54"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2508097367-364665605-1201309312-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\dropbox.com\Total = "54"	MicrosoftEdgeCP.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
3124	chrome.exe
3124	chrome.exe
2992	chrome.exe
2992	chrome.exe

Suspicious behavior: MapViewOfSection 8 IoCs

pid	Process
5076	MicrosoftEdgeCP.exe
5076	MicrosoftEdgeCP.exe
5076	MicrosoftEdgeCP.exe
5076	MicrosoftEdgeCP.exe
5076	MicrosoftEdgeCP.exe
5076	MicrosoftEdgeCP.exe
5076	MicrosoftEdgeCP.exe
5076	MicrosoftEdgeCP.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 12 IoCs

pid	Process
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeDebugPrivilege	4348	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	4348	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	4348	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	4348	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	3148	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	3148	MicrosoftEdgeCP.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe
Token: SeShutdownPrivilege	3124	chrome.exe
Token: SeCreatePagefilePrivilege	3124	chrome.exe

Suspicious use of FindShellTrayWindow 30 IoCs

pid	Process
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe

Suspicious use of SendNotifyMessage 28 IoCs

pid	Process
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe
3124	chrome.exe

Suspicious use of SetWindowsHookEx 7 IoCs

pid	Process
208	MicrosoftEdge.exe
5076	MicrosoftEdgeCP.exe
4348	MicrosoftEdgeCP.exe
5076	MicrosoftEdgeCP.exe
4828	MicrosoftEdgeCP.exe
208	MicrosoftEdge.exe
208	MicrosoftEdge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 5076 wrote to memory of 5068	5076	MicrosoftEdgeCP.exe	74
PID 5076 wrote to memory of 5068	5076	MicrosoftEdgeCP.exe	74
PID 5076 wrote to memory of 5068	5076	MicrosoftEdgeCP.exe	74
PID 5076 wrote to memory of 5068	5076	MicrosoftEdgeCP.exe	74
PID 5076 wrote to memory of 4616	5076	MicrosoftEdgeCP.exe	77
PID 5076 wrote to memory of 4616	5076	MicrosoftEdgeCP.exe	77
PID 5076 wrote to memory of 4616	5076	MicrosoftEdgeCP.exe	77
PID 5076 wrote to memory of 4616	5076	MicrosoftEdgeCP.exe	77
PID 3124 wrote to memory of 5100	3124	chrome.exe	84
PID 3124 wrote to memory of 5100	3124	chrome.exe	84
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5152	3124	chrome.exe	88
PID 3124 wrote to memory of 5164	3124	chrome.exe	86
PID 3124 wrote to memory of 5164	3124	chrome.exe	86
PID 3124 wrote to memory of 5172	3124	chrome.exe	87
PID 3124 wrote to memory of 5172	3124	chrome.exe	87
PID 3124 wrote to memory of 5172	3124	chrome.exe	87
PID 3124 wrote to memory of 5172	3124	chrome.exe	87
PID 3124 wrote to memory of 5172	3124	chrome.exe	87
PID 3124 wrote to memory of 5172	3124	chrome.exe	87
PID 3124 wrote to memory of 5172	3124	chrome.exe	87
PID 3124 wrote to memory of 5172	3124	chrome.exe	87
PID 3124 wrote to memory of 5172	3124	chrome.exe	87
PID 3124 wrote to memory of 5172	3124	chrome.exe	87
PID 3124 wrote to memory of 5172	3124	chrome.exe	87
PID 3124 wrote to memory of 5172	3124	chrome.exe	87
PID 3124 wrote to memory of 5172	3124	chrome.exe	87
PID 3124 wrote to memory of 5172	3124	chrome.exe	87

C:\Windows\system32\LaunchWinApp.exe
"C:\Windows\system32\LaunchWinApp.exe" "https://www.dropbox.com/scl/fi/jfi5mhxoiccn816lvw57t/The-Mortgage-Store.docx?rlkey=hszparz0l03w0adw3kgtgyk7f&dl=0"
1⤵
PID:5000

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:208

C:\Windows\system32\browser_broker.exe
C:\Windows\system32\browser_broker.exe -Embedding
1⤵
- Modifies Internet Explorer settings
PID:3680

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Modifies registry class
- Suspicious behavior: MapViewOfSection
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:5076

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies Internet Explorer settings
- Modifies registry class
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of SetWindowsHookEx
PID:4348

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:5068

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Modifies registry class
- Suspicious use of AdjustPrivilegeToken
PID:3148

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:4616

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:4828

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Modifies registry class
PID:4028

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3124
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xcc,0xd0,0xd4,0xa8,0xd8,0x7ffb9f419758,0x7ffb9f419768,0x7ffb9f419778
  2⤵
  PID:5100
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1820 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:8
  2⤵
  PID:5164
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2072 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:8
  2⤵
  PID:5172
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1524 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:2
  2⤵
  PID:5152
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3100 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:1
  2⤵
  PID:5260
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2960 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:1
  2⤵
  PID:5252
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=3564 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:1
  2⤵
  PID:5608
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3584 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:8
  2⤵
  PID:5640
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4724 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:8
  2⤵
  PID:5656
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4640 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:8
  2⤵
  PID:5848
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4952 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:8
  2⤵
  PID:5924
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4996 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:1
  2⤵
  PID:6012
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1480 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:8
  2⤵
  PID:5560
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4396 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:8
  2⤵
  PID:5244
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=3736 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:1
  2⤵
  PID:5924
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1512 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:8
  2⤵
  PID:5580
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=5260 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:1
  2⤵
  PID:4816
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5248 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:1
  2⤵
  PID:4472
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.15063.0 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5700 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2992
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5800 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:1
  2⤵
  PID:5592
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5748 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:1
  2⤵
  PID:632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4760 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:8
  2⤵
  PID:4396
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5940 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:8
  2⤵
  PID:1076
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=5924 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:1
  2⤵
  PID:5836
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=2060 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:1
  2⤵
  PID:4012
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=5628 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:1
  2⤵
  PID:4120
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5716 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:8
  2⤵
  PID:372
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5432 --field-trial-handle=1836,i,9961096914341824863,2193635115474282964,131072 /prefetch:8
  2⤵
  PID:2748

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:5488

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\03b55737-818e-449f-98fe-cb6722d80ed7.tmp

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
8KB

MD5
51cb83405f3ad5bfd7b2616299b0a543

SHA1
7a5335f185d047886f3a7286f1d70cb86b0c48e6

SHA256
2aee10d1b537c62d6c2a75ac6d50686ecfeeb7ae63865433276f6f102b040b79

SHA512
d2f3a60160c01867d46207749e95447831d6a7c849cc97a23a6667d95301d078c4fde34fa47c25d1c242228aa5721619c8738f0c1c429e590ea0de01557c3397

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
8KB

MD5
4b0b4509c6765b599f2d2429297c5cf4

SHA1
fdc6fb21814007ee5183015054fb8fad47e72508

SHA256
885070d76cfa052d1f7d76de10067ad99936057562a31d017e8fbbf8a360efb0

SHA512
f5349075b4fbcfb6460f576291aaa26035af0a48ed22c6e8f30f66b95d346464aa7167906b8c29b0783967f90c9ea73c7c3525a69ce3ce422ff478de576f12e6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\MANIFEST-000001

Filesize
23B

MD5
3fd11ff447c1ee23538dc4d9724427a3

SHA1
1335e6f71cc4e3cf7025233523b4760f8893e9c9

SHA256
720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed

SHA512
10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
9688d3545b0dd70a795af7d51189d710

SHA1
47c85d0cc80ac3b2053bd5d3ce2bf57507863e1e

SHA256
26946d23e5ae2594ac3e368d3c69fcdd34cf3a210fd6689ac1b41c41018fdb08

SHA512
7fcdb26265e5805878df098e55ba54e2d84e23f7592f5ac09032a936cb182b59eec09f1d263f9f414d24a67bb804c099da9a201a6ea95cdc31eda6c3c5a0ff5c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
3KB

MD5
f5931cc4a01a3b05d7597934adb37a2f

SHA1
8f4663d02b70043d7ce131394332e15d2c1711fa

SHA256
14e4971a714731497ff879508678303b9e055bfeebf538adc6ff8bcdfbaf37d5

SHA512
fa4ed790f9e87393af9d8edb4a7bb19c8987fc84688132756bcdc71c44a35c9f6bb438d947015b9d11655f6dc838e09cc304801737bc4175de36dcc465bc6c3d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
3KB

MD5
0c36f6a94060d25f8fb5f230c8ebf0d8

SHA1
da71d354a54f7000f3850bedf663e8c6ae0100bf

SHA256
a236f87d1289bea2ec0dad9c7ee5003756f30779bbb95dd42a061be2356fe880

SHA512
ff1b54d7054a5a10e87ee2411a640efd659669a6d5b8670148c5ea9948e720e0c79fce2ca64fda1f6f1ff9384596aaefb1dc792eae54ade0ad11db39713a9f42

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
e9a12defb22fc0174df22cf97857167e

SHA1
55b0160682a836f88571b658af8213d02d26514f

SHA256
20e6d061feb511a42d00c1a9b5b879c781111efc58ba5fa7067233c4f4dd17f4

SHA512
85dd8bc9f51fc0365643122099085fcee42ebc496f619826229e70d42475ae7a77fabc91e059e9268937c296684d8bbce7a859b50d35a7b8e1d453958facaa9b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
14c97e88cbca456096a0d7a5af33f0ab

SHA1
8d5c84ff7fec2e47eaaeeb858703f505f4c85e3c

SHA256
02c6e695169e4d7588e03f492796b8da2d728cd49e0dcc8a7fb924b7ca94fe0e

SHA512
bfe2d6b7095ace5a77b9588006a1a540ac334a1edb06c48c7beb8f8232644c9ec82218f1af8ffcd4af68423562d5fdf06ee87a88d750af2320c9680c38ac8fc1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
873B

MD5
41bb4e954168937deb850ef6d4e61875

SHA1
2998349aa1fd3af72b8e9bb6508d185b96abee39

SHA256
f967d619c537a79914e2c7151caafadce9168809503195aa75357c4a1332f3db

SHA512
bd214302e6e68f6cec5c0ebd7d17332ce77cab4e49373059e2861f72be6f046b592a1b18d4420be5362bb723d96b18114c9b0be40913acf8f8e4c0ce0dbe9ad9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
d9144c370f12a9556d79933f1b84c96f

SHA1
6d2b6fa0ff8f8a01df109983e71b2f30bff55e4b

SHA256
d020d06053df187c4da2bd1ca04cfb28d818efce8469db9568c5154dc176bc25

SHA512
a05951e998613b8e10d3a4a299c8b93114e60346206616ad00056e4dba57fabaeed339b3b4cf8400eede65cefbafc82ba294e19fbf5b916c61dc76f37d3a181b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
c6840d42e63bec897f5d2b3e42199ce8

SHA1
7bf9134a35425a65afb7b2f8e26b753c596d0c47

SHA256
0e6ead625f0c73af0149456ec9436d8ac094c6b99d04fd2f17761c7af6b04f66

SHA512
24f55c6bbfbd156db75651521756dfa80b9f06fb37bac1b32798d824a1da7706790fb8cfa3709dadb48a6477f2f9fdd192373d7217e22318ce5231000d7a38b6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
945d24399ef18527bf714083a3a14bda

SHA1
e33d7426b776ca028fca5fa7abbf68496cef240e

SHA256
dfa48819e99a527768843b5cdb25e0d73c1854154c478822d47ae976615ccf2e

SHA512
06d0035298cf983cc756e50662f00066ccdc9de7d1f233e693d106540ff95fcbf1a34a79b7b2f6434a46edf52496376bc54505d443bf1eb56d7558e134f05a98

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
526886996eba77c373f0dabde03a3d58

SHA1
3b77352f663e205642fa4a5b63fe6f3409ce82ea

SHA256
bb821e7969197b887b15d9195d0b4652d520ca9611bb1979334f6404e9c669f4

SHA512
4f4bde2cdb696e5aaf236f176e1852ad16d5924e9410f0e2730c390536cfdb44414906d27bc847fedcd43a233debf016a50ba7d3fd471522fe3627422531de0c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
334ccaab6a229b746391baab84e32bd6

SHA1
e4b82b169256137564fc639364febd173fa14035

SHA256
389b2d8621c52766bc7988abc4d0612b05ae335305c2074529375c76b409726b

SHA512
ceca87c3a84bc04ef7691e8b10e522918f2d3316f7963adaccb6a609cbb1e19afc5d6dc0bf194e89b6f3f6855089bf42155a9e210ea49b2d0962f788a064f1d3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
19baa80a079b75892d6518268a1b015e

SHA1
f0e3150ebda9bf6276b0fab6c309ffcd922b5505

SHA256
2fe34751e465aa41ba91e4538a7076a7f7a1dbc7a443a0c9eec4dc751f621de7

SHA512
f3c181fa4c1f57698b2d1594e8970f61bcfb984fe9c972e528356232175d66c5cff80d54996f41075f4b943c9368a3148c163916e9809f7a6355ef0ee6ff37bb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
45ed1047e317e3fd5ab625404b2c0df6

SHA1
a27f5270e8d385862aedcbde5241a0ba060073b9

SHA256
e067cb22bc1b0a23a3b07c0333beeeabd4e6e60a6be4bc4f8894dffbd3e4c06b

SHA512
25cc2bfc64ec7dc99679585e7063192258169c81e3544f127990c8045e2607e89961940841129332cee0d16a11f9ebc396a610a42b0e0214f7f2df2d6f3ed3fc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
c32fc6eb244904cac8492f756893074d

SHA1
e2eb1a2a8e1a85795832c4e3fb54d1984048ed54

SHA256
94bcd949df9ba0e428b99da21f700d55d0b41fa5d9229ba565b1959953e6a229

SHA512
e6fe471ac488ddcb01a770991d8a892ff0e1b550aef100fa050807728082345d877d737c09d9e07460364cf74293fe3a0fe76d40580dee0227ceaf3fd7fe6847

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
3f5ec102af029ca62f0a3a890cf2e5b4

SHA1
ba788fb16273e7f829fd15e4ac7c6e4a83d49477

SHA256
87aeda4bd8d0492533af0bc8ffc4254f26ca8e276b4dddca37b12192446d3e85

SHA512
0360ef7f088ac1f84e08da235aa3c81d8dbb6e339470afe7798317678c33737ff024848b1529a28a61291c55dba29068599435976ec683ba3ab1ae52304b2e0a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
f477d72485933d350e63db51f350a281

SHA1
5bc67ba268140754c200cfe18ada6be74dead8e6

SHA256
4cd997a1d53b8f1cba221145aadd0917985ba0fa0eeb69368af7dd2118099038

SHA512
0725bf6d328b6a75d134ee19518bdac82ef6d3287ef72136b4a7bbe822b95dbdce649253ed54144cda3b6dc0f170029abdc6d9b7174678fc0aeec654664e8dda

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
d79538c50ac844ebc604b8bfe18319b3

SHA1
a9ac35615e4e3bc0407f6a2f32dfec4186a98970

SHA256
cf2aef068ff1de4a0f94bb0e430e89b7695139c739a4e7a3b7793920db26db72

SHA512
74515c4c8c00a7645bcc602a2da76b37a06afd1b8bf9a404cb351f1a94031ddc2edf241ae2b965ae0c023f3f3edb5ce80a7bb208e9d1c4f218dca77d50b5d2d1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
1KB

MD5
9bc1fc4a25e0b888859f6abc6081ed46

SHA1
1d2df8ea1092a340bf25f33c75291e35f3085c24

SHA256
ca9f3f8220abe6867ccb6d125949249b482970721cef08291ad2bad64e87cfe5

SHA512
94e7e8241c44441e6162cc6626c964b1a82e5cc436f5512a81ea52632e728bff7ceb56693fa60eb5b7adf465da73942ad8432a5ba65b79bf1097bcfbe72ae0ad

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\c0949486-bdc5-42ca-9793-bb22b29e87b3.tmp

Filesize
1KB

MD5
d2a1098e2bccfaba43486efb66df4263

SHA1
e823bcbc5fdba58791f1ff9a16b87049b9eea04d

SHA256
5eb21b86d244a539ece7822b8977c8fd63b347ac9373531459c66c03907387e3

SHA512
33059795d41dfd3d6df5fc1438823d9918eb5b2037b77f14323c912409054a977f5b1de3169bdffcb0bb5218adca0a77203e813e8482978f8480a01468ec5318

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
fc94b5131c018abac1cd2d66c06b2473

SHA1
e45558de6fca2549c6c74e88039892825da4e1be

SHA256
91d56a6de9187d93e12d6827054e0ae884d9067cb09f7b141b7ea4c42e130ad2

SHA512
5e74bc9aca664520fd29250dc89dabc9b0260e4176b09fffd389f8765c2e66f9b8595e071e966dbecc53259efdee4a598ca101f7e3f6549e0f2b5f137f51f077

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
d7bd7dd4f709fd65dd653bf7617fe5ae

SHA1
a6d33921248c45dfbf93a6b583bd5e3cbdaa6902

SHA256
2ce17ae1e7e35f817361f60f6f420a7d0490d6f34ef1149619bcf6cfba020ae7

SHA512
8f8afbf215adac62c81e820c975eccf5b65adbe34f858b6d1aaa2c488f0ad31d88f0351b77c34672139a43b384dd0c401a8a5c33a33b92f86e3af79025a86312

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
3c24a3b4dcb8a20b82f963ea2e484966

SHA1
418c190a303c530610acf7e992c0c4c7ac7478ab

SHA256
878b5a675845a74c81f50fd31271f4398ebdf9456d1647a9357a815fd8cb6c0f

SHA512
fe4a0e9da68d574f124f5a9da4d5d204ded4b1f2d48f007564455ecf10ab4756be6ccaad58feeb81b0247dfa34e1be4357122706ac50405d532b22b7290101cf

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
7005d60de8c6fc867bf08321ef078e0a

SHA1
34717fd8ef3f82fb5ad6ae80639a4d5515de60b4

SHA256
ae9c3c87a746d8c5742fd94c52b6216703fd21220253ee72153b97b45a8d39a1

SHA512
d66f8971b840802c4f657c4ab6172319287aaaa05f921c5fe82ddc3401ed4fc057b1e6974f49bc360488fe7b0a661888de41c460c73f3b09a355da8ccde7a2f3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
10KB

MD5
635f3eac746bb30256c7e80e69875bbe

SHA1
3b4b0d615fecaa68901e16555edc772019c068e6

SHA256
1f552c89b6a7a61f9fa135fb6466b6718125a378129a95ac9496b26c31150c27

SHA512
0049c687dcf775b2a10acdd74660ee6a65c9057be9745006bf7f37fa04a32387469fbb3c5044f147f3f34ddbf5c3e6a0a6870bae0c099266fbcd7598454e8cbc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
34ac199f9961fc1dd7c34b5ebcaab911

SHA1
5520a0983145b992c39705657e21fdc25252d0a9

SHA256
cca213d60ac0297d05a9ca09cae7b8fddb43cb7b7b4f31bc3f72c6be142f3a83

SHA512
7eb31a9ac2de1e51604fbe1d485e038ce758165e1a28dcd4de0c15e7e4ea2bd7764e9cd9f57447ec70fd2d408ebafdb267598275efbcc41521aaf9704415ee79

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
ff2f8447dd8d92dae6c29b6c0ec17b99

SHA1
a89ac5021b2653b6f269438b4d62c6b2ec562575

SHA256
020d76ab7f7cf43897e93c675e9218302eced2a73a71c04eea6275a9e2942596

SHA512
42647051432d116e69c5189098521c2d46eab8359a0261a0d4477993dbf56e9abde7ef742b1beeb29ff601351ab26e6a6c795aba37a24cbc7f24f4f9fc2e379d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
9KB

MD5
96ab960e8fa25acd7659547b8bd65ae9

SHA1
2b4120a2ab54f963dfbfc1e8f065e5bc16adf300

SHA256
8149e86a5d16c1ffd8c68e90e18241751cf92210baf87258af4091b34602b80d

SHA512
b28059ceccc84a3b1615c745861c76bdc01266cc1dd8eb2089ec5912b2c989849c7e5da1cc9bc1777515ae5ed7fc6d1e7e55ae36dde1c3dbb4cd77dc512889e3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
56B

MD5
94275bde03760c160b707ba8806ef545

SHA1
aad8d87b0796de7baca00ab000b2b12a26427859

SHA256
c58cb79fa4a9ade48ed821dd9f98957b0adfda7c2d267e3d07951c2d371aa968

SHA512
2aabd49bc9f0ed3a5c690773f48a92dbbbd60264090a0db2fe0f166f8c20c767a74d1e1d7cc6a46c34cfbd1587ddb565e791d494cd0d2ca375ab8cc11cd8f930

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe5adce4.TMP

Filesize
120B

MD5
4a8c5948e0ae7f9772a1b587c242cbde

SHA1
1ff21e58891c76fed9d23c087faa3de9a7122384

SHA256
046f06c0ed6b4cc5d993367a0eb5ae3709c1d0015b3dc7bc2b8222a562aa6987

SHA512
b4c9b55247b4b4b3dc79371a988741e513f4c1a56fb14c3898802e65572184fedadff6ac5020281829f6b0fd7f80dfad1ffe8f6d0e557f6c66530b699456120d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
218KB

MD5
9689d4890430d0a17f939f8ee58c5629

SHA1
9924826040e3ffc5aa5be4fcacc9e6264cdd6076

SHA256
a1ff3658e750ddba7fa6897cd865861c0b0853ad0f365edac03cdc237c1b9178

SHA512
18e0d8008e5b3028927a2e7a7137f9a2928065a0d6f3cebafb57f688dbed5db883da6b33427a6303de8a4e044fe75d8dd39783b52b8c33971e09d481e12de820

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
218KB

MD5
7db5293a82397ad7d8ec0e36ce3f80c1

SHA1
cc7ac38e284e00752a39e816886a8a9d2e6eb622

SHA256
eccd3f1dd20360ef86a633c2b67cc2883c553cf36f8bbe3916dbdfe778e42b59

SHA512
fd210c63be06b98689f380b8262a4bd17a2b5fff0773e524854da3e72b9d9a19b8f5278f1259aa40e3059e65ec2cb2071dc6b45887f6428ccf8042a0d2c8f4ab

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
218KB

MD5
99e9ded824724cb5bda4375016ec8cc3

SHA1
60b42b8d86581cb2237bc7972483ddba2166153a

SHA256
15f567cf5203102afd119d06447ee0725812d2cb94e1ef48c39c9805833db8cc

SHA512
edf6e3e0ff3f865855bc88eef9fc97b938df6d366e9ed222fce5d18277617cd28cfe11784e08f55923596ceb850c65c8b89a119edc5a8f3603bf9d251355d607

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
218KB

MD5
7cb837f961a0bd7c5d5f70a5b4e1baa3

SHA1
c2a2bfd9e4e399dcde10593dc0ee6e3b98f857e6

SHA256
1a74877604c5159bb2b3862f969e4b986fada7d918c7c8ccdcbef0bea36fe53f

SHA512
6d4ee8b78cf644ab1b945590454d74041e63bc2505f81913841e349fdc742a26306cb046eff203c13ce1dbdecb18d27e82cc27408859e3118d1d64cb6eb776ec

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
101KB

MD5
7714022efa985160edad5337dbb9c673

SHA1
be06e3c835eb2fb2a663e14107ca8e92e5064227

SHA256
914a313f8e8b56f737fc3f734de45cf19dd12295647687452447c4d131bd2988

SHA512
76745d657353a18e2d7e7bedc2172d49901adf7c335bf6d9ff4d3158964a81d2ad12dcee18ab5be91516ac770d57660f2333e1cbf9388e133a924fbc50f299b0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
103KB

MD5
f15ef659c5d890f2e3f0af20ee9a6eca

SHA1
99727f00c543333e3dcd89b449cebfd8cc68b6c8

SHA256
b57ca2d0d7b8306d774c0ec7aaecd21777a74860a2a900d48c8be99c2d8ff292

SHA512
f4994f085c20e07096b89cbf09d10903935b4f551d9bad1d66e98b370e6d2983e4785efb0eaa8b2e09a8b9d3f5c010ec87e5834b1ccb9e276de8c31eea0dfd01

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe59868b.TMP

Filesize
100KB

MD5
eeb2fb84e6b2c8d26243d91fd762063b

SHA1
b3fea69d7dd3c305f602664624c27e6b2ff0d06c

SHA256
e22b94af2b040aeb2265efdac95944cf16ca3ae23cf7fc323ca9e441fa766f51

SHA512
dbbeea6c65a28ba5b2876781e02e5d28a9d50387fdfb0ffc6ef3e4d3141c777c021798499fdce9b13be68cf280efa210333ca27977b20253a12766e93e2627e1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\9O18J2ON\edgecompatviewlist[1].xml

Filesize
74KB

MD5
d4fc49dc14f63895d997fa4940f24378

SHA1
3efb1437a7c5e46034147cbbc8db017c69d02c31

SHA256
853d2f4eb81c9fdcea2ee079f6faf98214b111b77cdf68709b38989d123890f1

SHA512
cc60d79b4afe5007634ac21dc4bc92081880be4c0d798a1735b63b27e936c02f399964f744dc73711987f01e8a1064b02a4867dd6cac27538e5fbe275cc61e0a

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\privacy_consent_service[1].js

Filesize
12KB

MD5
ed637fb868029e891e092f44e8deb5fa

SHA1
9f038085952c0b1ceef9931127485ba519956736

SHA256
7800098f3afde739394c72a36dc713ab524edfede177f662c2b13772ef13c8f3

SHA512
cb2ef572417cad18e57b90c0e93fa58570bb6ddd295e1ddaff1537b677d8846149801829208362b68e27ed575d48fa54388deba61ae223de31194c0ab0c4735d

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\AIEZ0ZE7\favicon-vfl8lUR9B[1].ico

Filesize
4KB

MD5
f25511f4158c2dfab6aa11a07d026e4a

SHA1
99f63cf1694fa5e52f43eb967462ea0d9eef7513

SHA256
c0906d540d89dbe1f09b24f17b7f35b81350e8d381c1558b075c28ea913c450d

SHA512
0bfb19aec453a1c4d4b8f39602bf8bbf0a98182a98e29e1e1708eabfd99e3168855994a56061ed462c29b099137c226e25ddd274b46ed2f443c2c515a530b731

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\I44RLR4H\suggestions[1].en-US

Filesize
17KB

MD5
5a34cb996293fde2cb7a4ac89587393a

SHA1
3c96c993500690d1a77873cd62bc639b3a10653f

SHA256
c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

SHA512
e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\57C8EDB95DF3F0AD4EE2DC2B8CFD4157

Filesize
4KB

MD5
1bfe591a4fe3d91b03cdf26eaacd8f89

SHA1
719c37c320f518ac168c86723724891950911cea

SHA256
9cf94355051bf0f4a45724ca20d1cc02f76371b963ab7d1e38bd8997737b13d8

SHA512
02f88da4b610678c31664609bcfa9d61db8d0b0617649981af948f670f41a6207b4ec19fecce7385a24e0c609cbbf3f2b79a8acaf09a03c2c432cc4dce75e9db

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Temp\~DFE58992C10620B4E4.TMP

Filesize
16KB

MD5
bf77ea485951e98d5f0baee914eeeb5d

SHA1
a31dbf09f8c7c9d112ff916e34bc61666bfa0229

SHA256
47c2cd20a7c262608b615144c7a7d1f6f0971c6684f1376d909e0331213f6b8f

SHA512
350dbbb5eb0ce54e2cfebd26431686311b9c1336ec0bed0ef8a0d2e0bceeee2023b2176dbee0ad54e048d1c31a829b62135da639b61b531b341fe65977163960

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\alameda_bundle_ie_en-vflqgRIpK[1].js

Filesize
498KB

MD5
aa0448a4aa5b36269c2c2332ac38af81

SHA1
043d5aace69531380bc9339422779910950cb111

SHA256
ae18e537f0c060be50f49bca7987e111fc96f074420ec2cc5c1759336af2e483

SHA512
b50db7452353d8163f2c8346e95008d1434247e6b487b5646915e1686058370a2b6a66e061c000b84d55f83282702d3cf6b11b87dca559ddb5bcf14f04b2654f

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\index.web-vflWl48KT[1].css

Filesize
384KB

MD5
5a5e3c29354ba8491e6c0240217bcdcc

SHA1
b11718f2caeae8fe23c344ebdca78abb173d0b66

SHA256
583f885403e435e02a3d49fe29d5003241763d5e81299db67cc7d57adcfed16b

SHA512
7e21e89c939ed2a2f228b6e3461c58500960f5ed3af6f13bf3715eed500046cc48f1e345f8196ce7a1810206f0d2956197228880d928d0e07180f841aa15f821

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\interaction_observers.min-vflvUzIT1[1].js

Filesize
511B

MD5
bd4cc84f5b4b9381ae75d717f51f54dc

SHA1
cc5c003bc2731e49128dd1676241013343529116

SHA256
efd70c927426409576268a0b3c6c5268619ecc2b97fbcd323f8104e331a3cdcb

SHA512
9a8737c990c07ed4c97adb989dd1840af46a1106b332a9d0458f15c1531d3d5b9ac748a61a57257a8ddd0655b5343f7ca068a8897ef4daac77b98db65256e06f

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\internal_utils.min-vflwoC8CC[1].js

Filesize
544B

MD5
c280bc08254c18cff71f0e1e7aef49f3

SHA1
84766235f8545e848b3b0b4014b0b4eb6bcd0274

SHA256
a1cd33bcc484a22087d66476419dfc5deb930032150199e3c4bf0258c4eb78f4

SHA512
8940ddb6a2515ed6d3f3001be0a38fac030404dd03ba2b1e2ac9831f9f2023499e9b594eb6c127f68508bba2207cd96700c4e6dcb22706747772b5e8a7633377

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\intersection_observer.min-vflZvagR_[1].js

Filesize
2KB

MD5
66f6a047fdcab066ea70ed8ee1031417

SHA1
cd86689a69226a05b0aecc2ca7bcbb5fad4dbace

SHA256
b0ffefee74ef21c76a903990fe14cff784c73d193cc9778b6ade57b445a4c9b2

SHA512
7413b64d39b30f2f88f206260be6c8f96f5fd0a43fb9f26e92c3b07b6a9c54615b3f5cccd7677fcd78d31d0b909d070d963f8f9041170943a479bb3852dd7bcc

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\main-vfljpg9jm[1].css

Filesize
110KB

MD5
8e983d8e65c69134e5bc8b08d382c73b

SHA1
d3886da9537f18f074fa96fd499b1655242d4f77

SHA256
c5130f51b7f5e8319359d194b8c3b4b026a30a879d88bad1f9212a9b2bbe68d9

SHA512
12edddca681aba344d7ef1bff78db03d6085fb7db74c5a5a03a42486d203b33a72b4f300dd4b8d7bd81a479a2f87e664d8de28a94edfc46f05b2e165649e4511

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\observer_constants.min-vfl6MJ8xy[1].js

Filesize
667B

MD5
e8c27cc72a944d004c4404b1b0fe0141

SHA1
46bb14c225786a3c4f5c57450db241be53f7e75d

SHA256
f2ef244ec44c422c6152c8daac1b2f850ed0d9a41aefc1057368c33a8a4b90f9

SHA512
40a6220b05020aacea825e9b635f51716dd8633290ffaa779b4ccde303364f687a329867bb1b5896b3717916aa2e4551d010486060cf98cb83e322eae24aa9e4

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\pkg-browse-view.min-vfl9rsngl[1].js

Filesize
19KB

MD5
f6bb27825533651d7970875bf9c45e61

SHA1
4c014352b3cb179421f3aa16010a353980ec6a56

SHA256
a056b6b574cf96c895c02b04cdcac3835ab017ae00df4b3f60ced30002a903eb

SHA512
5745859c4b72573989f02121c2d22f4ae477bbd218c179711aa02041244768bc11a31814358a1b9bfebccfbc0162ebef769a611020135e3e292168cf9010dd68

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\pkg-content_manager_modern.min-vflLxdlv9[1].js

Filesize
359KB

MD5
2f1765bfd0961c482022e54ba4492006

SHA1
bd0426b6d01f835827e0953d8b9b6e66e8908db4

SHA256
929e29dfc27e1f28606d26ce48d70f12655de9fc2f99912d54376e4e51520c89

SHA512
858e9973d7bc2a797918f98385e6b39b0d42337115279043ed6f963f0d7d29a41acdd4f727f2491d82f5c62185ad44698663fd982b59ac544bb6f9d2964cff12

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\pkg-dig-controls.min-vflsQzNVB[1].js

Filesize
7KB

MD5
b10ccd541dbf0e7128f4acf70028bb9d

SHA1
c1605d94542f88e8de3100f1cf26b4c8a2f62ebe

SHA256
3c135e7455a1f7b7c0ceed700dd9b00a2ff87244708d45e755be84d8dec02b2f

SHA512
c140344f527b6c89cc9736a55e6ef6b4ca29d0d41732195d778197df28328bb98078b4f49247e6a73151f43ddb3404ae71f6391cb18f2a525ae01886bd458d13

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\pkg-dig-d.min-vflfSt8li[1].js

Filesize
1KB

MD5
7d2b7c962e654d433b2d36ba606e3fc9

SHA1
b64061f308a2d471f8dda08d6bad81911c32a2f8

SHA256
d03a2f30262be1a7d715718b5690c12dbae71f385b45cd2a0125b361e4da0294

SHA512
59ec868eccfb1a16002b0a0d1ebdd0bb2f06ec0c1a5c96614385ba4a004dc317c84ec15cc7085e065f037465806307da7ead7e78f2b4c9bd224ade94b0093733

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\pkg-dig-typeahead.min-vfl3ye95J[1].js

Filesize
10KB

MD5
df27bde49ba3993aa8aa4094cae12a6a

SHA1
fe109b0ace14a1df4f648985a5c4a637a7c74fcc

SHA256
b1052dfa7fe24aad7358b50b6ebf0dce80917cfcfc28562831fa948f4731765c

SHA512
37de78271054afe02472778957203f9c249fc38d3b9b27aafad0984f404ef27ec4abdaf0d3eb713d0b7ef90a83238d985fabaef58e353e66595e2f81d15b9133

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\pkg-file-upload.min-vflir0tZw[1].js

Filesize
34KB

MD5
8abd2d6705f790441da34c731535c4cb

SHA1
3a3929092644844a575722b799b1c34befcb33d8

SHA256
9bb1ef45b60f0b691466757aa2a15bee528e13e9cb59eca7bf378f40880570cf

SHA512
1b151fd4b3a240e7613444464dadfd988effe81c58534be41a82a866232e2497b312b0b688384f1b4e281d4d04fb1847edf5358c02c994a8653f7f38c681f7f4

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\pkg-logos.min-vflaBYn30[1].js

Filesize
1KB

MD5
681627df49501290a37aa57842883733

SHA1
d99a91982916588a552ead0724f68e9b9ee51b0d

SHA256
1760d278e3d29e9560d18333dfe427a1051abbad7b7a710a194779fdb91f2b08

SHA512
95cf0ec827b0a4c9ae766ddacdb0d9684599b24b6b1c9dc93c449257eccca0160d005718d1436e6c78c74278037dd01d1994ada2a202bd90e24bb7b7d48966e4

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\EFXS8EZR\pkg-pdf-editor-components.min-vflPcEGIE[1].js

Filesize
882KB

MD5
3dc106204ab2e26f41af51783ae63ae2

SHA1
d52a30ba6fdb9c43ee4286f1990f2c0f2aaad308

SHA256
9297b5117b08f018748b894dfa6f6fa5d744959053383811d3e6ca604c615dcb

SHA512
90f7c11a5407a80861c4751a84aef637003a56b8d19df0d08508d4000061e8ef72c2ed00be684ecbc4fe79459d66287c64088934e6143c5bbebb5e4dcb0e5c3a

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\google_one_tap-vfl3Swj9K[1].css

Filesize
7KB

MD5
dd2c23f4a7eb74346db5700045c2cea4

SHA1
4d75e31c25c16b831efd05942a669d985454df07

SHA256
c303780738d1e80ca829b0171b59ef0b371cc89d6cb2119bdb109c42230ef413

SHA512
c645d12c58691db989c66e38dc26c9d93cd45ebc3816c032e18bd5de23e56277211a3ed1bbc3ddae0589f43cd2b737f632942660c80dcb1ac0a37d047201700f

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\maestro_layout-vflLLGPSY[1].css

Filesize
14KB

MD5
2cb18f498ff5463435d95bade0c9d406

SHA1
dc9280dbe08174cc2009f7ca3acc508cd1e02e5a

SHA256
56de25445b8fd07ccdf468dd9e054fcc1ad1a3dc42c3676d2f5666377b279ef8

SHA512
d4e01fcf35a7c399ca4faf734c658254531d3d6800d9df0feed3270950c2712c69658b7663963eb214c6275bb238a1aa6c9d06bb10aaaecb6be585077b19e1e1

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\modal-vfl2ug2Ll[1].css

Filesize
19KB

MD5
dae8362e5d14a7240396c057d9fa0bab

SHA1
f4f09bd0a30c48a61be222b47201bd779def9adc

SHA256
bc56fb2d17980f5ff4cb6089cc97cf170a71402630234c2635eb587d33d87686

SHA512
64eca8e2060b5a05be5c5e1c4fb50926c828aba422f6489abf28e925e1721da4b4ca8f24da2bbc8b3f12d6d5bad527a71f5ac8c326a49cb1e637bb2dd35c1290

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\mutation_observer.min-vflsQw5VY[1].js

Filesize
1KB

MD5
b10c39558bcf0aec40fb9363934030d2

SHA1
8bab79c9e893d7c1047e4451e9770dc72402d264

SHA256
00b10d983a3e139892678c485b8442dd7009fab0ae9f727cd553bcc35bc7e771

SHA512
3df8f0d685110f1184d5d45aaf4b1896a78cf048915a81ec062c76d5d360a85468958cc6d7c274721aeb27f5faafcfd4514de2e68d57821d213d33edbbf6f254

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\notify-vfl4oJv2S[1].css

Filesize
685B

MD5
e2826fd92d6dcaf79021355095ec49d9

SHA1
1572da7f97839408214f18af79c69611040e2084

SHA256
2c456c7236ee6f3541118c38ae364cf303f38926ba99c7fd65794802b172acbd

SHA512
aae0ee51ef9775a745e1b4a4607829609a54c211ed1c96303875fe6465770cbb54e267833e48c43bb7723891ff3d774f33200d6d8f5368817b085f946315ef85

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\pkg-coreui.min-vflfnyK4o[1].js

Filesize
7KB

MD5
7e7c8ae28686d62c95eeb7cab668e405

SHA1
df3917128c03498877b5a5dbdaa509e5ff2bfa3b

SHA256
f8bf4024a38076c5e4b74ebe0fc3fabe3a304212354099f49cd9c65609506ead

SHA512
272bb68f127557350c9743081aa9311bdbe3222027ab6b8e29cf0a6f9c010f795305b26faedc1ccc75b34db2bf276f33619bbf71ff180fd7bd6f32e5e21e0867

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\pkg-dig-banner.min-vfl4cO_0Z[1].js

Filesize
75KB

MD5
e1c3bfd1905f561ae42e03b98c7eec6b

SHA1
94112a326371efdc482f501c0ed6924936f9ed36

SHA256
4fd649b9203d4a87945361e0981311b9bb605fe798a33af02b89e708bcb3a4ba

SHA512
c279bfeecc0283491289b6c7c5218f9cd437d32fec4dcfccea1b9a26afedf05402cf99132332d719e4bb9e32400c1fd5e5fc78d0447ce80a498f9899dbdee716

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\pkg-dig-chipz.min-vfl25cftR[1].js

Filesize
6KB

MD5
db971fb51f357d927704858b7d24b73a

SHA1
f6ce0abad6bb7cf9ffd68eece1760b507cd07f63

SHA256
d9858db776cb23e2dd14131fcc687b66f68fef0f8c8e356df9e9beb133c6d1a9

SHA512
317a62bbc702d5de80e1bf4b045563d0a22e1330cd996a897064e45e6d3a46da2cb0b4530f5b72903e846a81f71c199a70fc4810cc81aa85bd5df113a53943ce

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\pkg-dig-k.min-vfl3Y0pKq[1].js

Filesize
3KB

MD5
dd8d292aa89f22352c8e04f9fa1ca83f

SHA1
1ca9239fd336f1226795275e83fbb93d66964a69

SHA256
76fab7831942818c391ad6b192031d8fa8e2b209996a87f40b9cec8ffc797648

SHA512
fb550ea3243fdbb334ead1eaf6a8dcf1f5045c5847c8e11f55cced0d19fa8fee3a8ea2c5f8b57538dea09eeeb89ea7dfd5ac14e51ae706a9823634ca4f8271e8

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\pkg-dig-l.min-vflOT2YhS[1].js

Filesize
9KB

MD5
393d988528d375529e4e862712235051

SHA1
7f8f28bc375990f58fb8ea3290788e4f60e5a716

SHA256
1c280a195c71960ad0dadd5db2505d8d1237a8b4548e671b139e2561331bc3fc

SHA512
dd9d72ff4db377edfdf096df3710d7f296f0b05f93658fe6bf31a246cd0365977f531d869c1d6402e4f2dec95282fb09fb37b044336af12951bff73ee213b83b

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\pkg-dig-text-fields.min-vflrx3oE5[1].js

Filesize
1KB

MD5
af1de813915f854008a2dd93612e7ca5

SHA1
1d9648d986b0c6f6e73ce3b81e286088f0423912

SHA256
9524514ad85727662cf4fdf7444a56144b4b8c77ef9896a11545f7f5490fefb3

SHA512
13eabd034e7bd38be4fb77ae9aadc6099d9ac17a02c3824d858fe9fa52a152786bd1fa19f4f005b60356d4cfe78c34d135782e4ca91f496525f62cda13f6f901

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\pkg-edison.min-vflwHKm6x[1].js

Filesize
50KB

MD5
c072a6eb1256c61d757a409ddb95f718

SHA1
503abc560dcfba19b8014a3b2a424ae4088dfbd8

SHA256
99b1e96dd602eaac1c92b2e22c8e51e61d097def2b5ef26f961767fc3a0c5d78

SHA512
1c615e1c482c6bd153ce7038db1e215afcc5441cbab78a3e19430f22d7083ebae89abb2e7fa35c7716c25106ba46e7552e2b88e1697a29939857921e2858977c

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\pkg-externals-unneeded-for-home.min-vflBTeeB9[1].js

Filesize
56KB

MD5
05379e07dd781a0e03137abd0ba42226

SHA1
bcf5c70a21cba3f2485465f551bee07ee5e19941

SHA256
a5c76d35719c0804d55b5c1b0d0828abe41257fdd22342cd1b7eca2879d17d8f

SHA512
38c16133923802393230aad710f692e003d3dd25d40b9b683a296b02f7a728fd3dbaceeb4ec0905250400dc266ca001af310e9c9e5715fba4f59c9d915d39085

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\pkg-modules-unneeded-for-home.min-vfl4vpqJv[1].js

Filesize
36KB

MD5
e2fa6a26f13eec5ae1d1b0bcb7569790

SHA1
56d007468c24a514466578b61c19556633671f02

SHA256
bc3c7a80bfbac5c0412e2f46bdda548765c79605cf42ba82e4a29105d49e5f46

SHA512
c58301e1507ef99ba820c5aea99f410f1268320b010f908b4fbef11349967d1ce033fae1e6c9dd1067368220fda70d21912420316d8ac2c2a6ecba0ad20bcabf

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FSO0GVNS\web_sprites-vflwRzO2P[1].css

Filesize
149KB

MD5
c11cced8f4585d6887d82ef1bc8880ec

SHA1
fc93d38e2e428d2ef6089b4f2bb8b9193666e029

SHA256
09347e91e95145505fbd5e5b1daa2a3b3d659c1c7ee28bde2fccde299d63021e

SHA512
10a17943d49643f634cea0830815bb0e4d21967edef54e6be968b123d21c756c5e28712ceae5bf08b0c3dfc029028d80dbca7b8f97a47a9f8738df7ea66857f8

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\analytics_id.min-vflVw6gTf[1].js

Filesize
1KB

MD5
570ea04df321c4fcedd4a07aa6b42b55

SHA1
34e6340c095ceb502095ecf5de0ac73133c05f3a

SHA256
6888afab26d0e47956fc9a4b6e8ea3ed3f768e6a40fc7340204e2117305af5db

SHA512
a8cb7bcabb89f832de06cd441455be1ef4836681350b90c2f554e281f891f85251f4a22f866136192ead99df929fa391707439a021c38e0cd7959e75a3d4beb4

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\campaigns_toolkit_client_loader.min-vfllVPCnP[1].js

Filesize
589B

MD5
9553c29cf747485cc65e6ab20041ba3d

SHA1
3cb4d33b69484695a97b8c1f964ab0c55685e918

SHA256
6d6f6b4b619bffb1c69a674b51e24709fd0c203d5bb8343dfaf85c5ae9d64112

SHA512
78b7f7a5bf4d1733f14c3c62c878832c951063c18f9f35f584c58e93f2cbcc86e12c9be0ad2e6292808a669428e9e78efbbd2664a7ee2e967b4f6020e67b87b2

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4uaVI[1].woff2

Filesize
24KB

MD5
76d72b5ef3a8eedd08eaed86de488e41

SHA1
4d8374d24030fff036f2bd1df0ab8bcb27e19b21

SHA256
19ff52995517c6fc4e03bf060f83b6c033c88885b6c4b0d2a5ea1e47583c8ee6

SHA512
68240fa4bdcafc45fe2c8b6f21b16a11f5df3ee09c764ce92cad36ece59d07e92ff78cb7f8999b310d577c654a6b693cb3a398ac14d53301bc36a88ce72aa5a9

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\pkg-branding_extra.min-vflpFVKMG[1].js

Filesize
28KB

MD5
a4554a306d185a5106f9a9f3a307c3c7

SHA1
18a9e8e05009a9d6bb11061d8506f4297f5e6755

SHA256
0059400e07f22768ab2eb24d59823eb256618b8efd3b21c3ba0902aaa365dfe5

SHA512
d835acd5fe1581bea34025104136de39c0fb73ae03ac6daabb73c66f95dba4b570905725092da8db91b2e621f047583334e4d68c36a521f465d146d2385a4707

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\pkg-campaigns_toolkit_client.min-vflFYVI9D[1].js

Filesize
8KB

MD5
158548f435c57303a953243eba8201f4

SHA1
49c43e98d7697ca00a7e4233ad04e8d68adf9cb7

SHA256
586bf51b68abe98f1429143936c09a63ef8d23eb7588e67d4bcaea6e2bd9c60e

SHA512
c2faaf17d31eeace22106cfccd7a163284155fe1c4998c9fb5a0a5a5abe1e483f6e2c1224d62a59dd9ecd65f87daa601a8c54f072f7637734427ea9b34826f71

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\pkg-chat.min-vflyzSkQu[1].js

Filesize
70KB

MD5
cb34a442e3b783dedb3ee402b87996c6

SHA1
d78939f45381fae9266470ed8a41aaedfa42712c

SHA256
a82656d92f229da59836ab5b5ab109a0bacfb7e3bc97f8f9458c95eeae956287

SHA512
3f93e8c63e7bb31085152770d083e5e69c8855ac63134ebd078ac4c438afa1b53b4022a5db7b3ed4dca3028363b66e4c0093ebcceba62bb4e3dea79790066ae3

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\pkg-collections-saver.min-vflTpqhHs[1].js

Filesize
56KB

MD5
4e9aa11ecdd40e1671d935a3b48b5fb6

SHA1
f6bcb10db79782352816ef401f86e92902e857ba

SHA256
2c27b3733a8f51b0e720673250ac54894d807917bc7698d7e2ae662bb03fec6c

SHA512
2b6a1835bd8d63a363d04e7118a3c97819810141727eba07c85c8c0a53e238d302838e13d653b5d9d895fa5be7c3b61c3a67e685c5cb027c1c23e61e154152a0

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\pkg-comments.min-vflWgmsh3[1].js

Filesize
747KB

MD5
5a09ac8778c89cebc95eb30554aa3899

SHA1
3f32a085eae3c5d9822dd4789012cafebaa43a52

SHA256
935c74cf02a5d63b8ff748ed88703c91f9c79d9cae2140905650004b56d59b80

SHA512
e67a042343b2be5a42d100d200fc9ee066d3892fb06b4bc3ccf4aadac148a8c4791bcc39fe9b6cd1096e881c1f2586b6098a503a37ce7f8cc012d413fb1d25b7

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\pkg-core-analytics.min-vflU5j_iQ[1].js

Filesize
60KB

MD5
5398ff890411cfcf7814cd172e2dd28e

SHA1
22e2acfd731717c39b16369d896ec4d150f1f26a

SHA256
333b4b80c0ac223cbcd0b2297039b7d02c9b4420274dd1ff9378c01d1f5ae2c7

SHA512
c7e8d01fa4eb6d45b044be504e3da96c7d4a6c993f2dd21cb4e5c940bfa800abaca7ab4fba8171505ebfc07cce42bea95ab30ae58ce76de019b56c0f1940dd3d

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\pkg-deleted_files.min-vfl4PRDkb[1].js

Filesize
163KB

MD5
e0f44391b3b53fe2ebf783ac6a9560f4

SHA1
8beed60334b9b9bc0ec84fdba3ae1df75cacb5b5

SHA256
3b11968614835105b653affde214fc15f41477d8abbc212e09346c5066716c9f

SHA512
5a8e31fb44ca59366cea0355a3cb41d60ca63e6b26e54e54311fc812526b94a91d57f173c592baf70b4a6596258e19dac40e13731a7f3440bde6afe11bb04791

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\pkg-exception-reporting.min-vflySFVNN[1].js

Filesize
17KB

MD5
c9215534d4886d87ff3a3283762c289c

SHA1
308d1f607c176d84706de08ed182f083e837aa3a

SHA256
a378908e7dcb0d226fe0293163f7802b2314b29a598b4b3759ef541faa915059

SHA512
6c752dae63f6053cefc4769dd8a713b6eed9232a96f2ebf190b58eee8db01a6e82005f06e58f0d63fda69dbbe7fff8ec1b81a485333aee32959dcbc5f01a8d38

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\pkg-file-viewer-container.min-vflU4g2ck[1].js

Filesize
37KB

MD5
538836724ce2d29fdf6603607590a751

SHA1
b47e05ae4723bd9c802eda47ac9eac61d6d3791e

SHA256
562ad23494c8ce59a4f7eb84cd3a2fca3b84b309a3431dc9c31112700d3f974b

SHA512
7a5e772c82ae2b9cb75535e2f7b7859cdf1adeae7cabbfdd86cef9a053bf24ded6bb8b5f0d4c296d9c998c6525104700dfb6324d682cc5d29f220db2ed6c037e

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\pkg-react-common.min-vflX3obaZ[1].js

Filesize
879B

MD5
5f7a1b699e41f2a4c362d2f50bbda46d

SHA1
ec9823d6e7c81b007338c389bea85dfafd29b157

SHA256
b8bbf032f929ff1938c240437d5985ae9fe40330efa950791b6f242140706a1e

SHA512
9047d1024bf5ebec7435f51517d6a5bedb94dd965e2071efb04ce1b4322c72d663b007192c5d843233c19e364db286490b14453297d989b4479c1d4616ca698d

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\pkg-redux-toolkit.min-vfl4Qrfg3[1].js

Filesize
39KB

MD5
e10adf837e9dd451d7e5f910566894d2

SHA1
0bf55facefc163c788ddc4422927969a5dcbfd1e

SHA256
6edc91adec422405f7473918cadc77824159c18b405c2297cd3b5dd1c0535303

SHA512
3b97794b7e37f0dd01734600297bbc3be12b011dfaea921ac06843581a39fad739bf00a09c02a3a2b42661f0ae3d8b4e1aacfdd8c827f6590971243af7ab09e6

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\pkg-right-rail-blades.min-vflKaOVZy[1].js

Filesize
16KB

MD5
29a395672662e8fda12881e7b9c2916f

SHA1
2f82362c7c026fc08c832ee9db753d1293bbbe26

SHA256
7428237754724eccc61ded072c663916352ef7236ab85093cbf3306bde893375

SHA512
34c8291cb7761e572b51caeed03cfeecfda16b87c8e94da22aeed747bbf379b6b906a2d7fc4948d7c33cbf2ee1c5076a9b8fb4a2d50ed3d2660aa7cd294f4136

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XNUG11RR\pkg-spectrum-content-icons-compatibility.min-vflJkUCQv[1].js

Filesize
221KB

MD5
26450242f0425e144b0bee15d2008f53

SHA1
7ec71e920ec5e9c3907b2eb3b26cf1cd0aaddd29

SHA256
d1a5c502a4d9758c7d1e7c6df020ae6e0bc888bce147ef7046f3cd6ffca671a7

SHA512
cfaa67d8f1a30643d1b2c46c85548230ec8a6c9476ffd4d9abaae54415b255e139875378230089e3de98d952a1107fe0f1cb130b5b91d4c081184f8d7ad63a7e

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\css[1].css

Filesize
980B

MD5
64d119c9cc6152aae6dfc6ce6b3925b4

SHA1
f3edadf9f483434e9d65c5fc26c06466886e67d4

SHA256
6e10c7019c7fa21a864025c7dce51dafabefcb0ad722db622a4662282cb99dc7

SHA512
7d8615172da6a8b85377f31d31e90d644a31fcb443f5cc5ddfc9e2c692be80e3bee55918c0974cca493b261ac0208f273b61825cb9fe569f39a7e3790fbc043b

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI[1].woff2

Filesize
24KB

MD5
6426d7c7cf628698f2693c345e78f3ed

SHA1
ba5c3dc9e202a5a6fa582ec90e94449e88c65d60

SHA256
607eb42162512af73de673e5529e0f752efc846afd3cd75ca794af1ddc2f3d00

SHA512
2749886f2472ce5694dddc4e4b2ec4bac3aab49bed05977494ba755998f4d8cd026e53f31c92aa2f1ce4f79d5a86d1a3cc5c616a54f3ed1b4c54761e3ae57fa8

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVI[1].woff2

Filesize
24KB

MD5
da1fad84831e19559a0119dca38b30af

SHA1
5ce6faee2df441f18e2e1a6491da609d6bdad9bd

SHA256
320fb7e771568759087a963cc5d33a8d88897f498ee0b67ad1adb2ef320d2a16

SHA512
487ea885207b1d406c92525eb7f809b6a97b35bbcc9733d51ef91fa133243ad09afa7df7e2404af977fce21a4327bbf30ce167adbd18447eb23e9697d213a9f8

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI[1].woff2

Filesize
24KB

MD5
4065d61a7ba7eb2602d2cbb54723e3de

SHA1
7c6f159e263b1c1e88de91d6b745853fc7e46683

SHA256
ce4714944663ab66446464e544e69808450bee9d0332659795eacea5751fc4f2

SHA512
8e9bcedc5a047420bfa81f1aea0fa503441c79fa1f8cd366aa221e3c1fb137a2ebb9eb80f824de92c4f81dd971852cf67860ccbf905334429bd5ad00f16311f9

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\pkg-api_v2-flux.min-vfligbFa0[1].js

Filesize
4KB

MD5
8a06c56b45d76766c8da5faa08f838c5

SHA1
b4c8917ee7207d18e58d4bc95695201c0bce5b4b

SHA256
0cc08947e3ea21e30dcfc1473499a577e360ab64c08a981e657b5a2f23b878d0

SHA512
fb1cd38e4be5fe8fcb65ef89245ac0c162d4e1716670ce6bae9ea81c1e79b4286f2f1e73dc92babd90e6a1e053ab821f15c50d263775a36c77d992ec57fd7bbf

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\pkg-core.min-vflDwyxmg[1].js

Filesize
45KB

MD5
0f0cb19a076f89535bcf82cae968e09e

SHA1
0bf5a38a62290b1cc6df4fe8dd5177b6b1d223fc

SHA256
efb9a968c30d7e361e070600b0c25357011dacd0bb42497fa5843ba28aecbc11

SHA512
70821972c4e7390ae4e7c751e310bc63706e28067c0768c7c4bfe3a62d37e8c8299e0884125d0eead16be68b5cc606f53e1b0251e5ca7ac8dfca1220c1d56ec3

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\pkg-dig-avatar.min-vfldOh90L[1].js

Filesize
1KB

MD5
74e87dd0ba257c9a6020f1701fe0b25b

SHA1
d24b5c6ae2d8c7c56df0a00fd0ce0903ddb2e2a8

SHA256
36bd5e1731af048171eff6649d1c2118014a5a2e1080f4c356d6e8c2abc40c45

SHA512
1af5313243395c056299b6940b293cc9cf37c7cce3fa0f588d1bc0876da751774a92319835683873c0ec8ce9595318af580ed9dc8af70ba580704262dabc4cb1

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\pkg-dig-badges.min-vfl1vPql-[1].js

Filesize
2KB

MD5
d6f3ea97ef9258c23ad8af837670f973

SHA1
5efb0e006daf80903ad422f114fe695772a88225

SHA256
fe3d021cf9eb290e7322fd535c845aff4ba6e3f3d531874aec6ed0c00b552e5a

SHA512
f3318bccfe0478b65645679de43cdf6c860cbfecf32b178863539ce71e567a6fa3d844e5586c78625d8f0f210c7c2aab6725b9450938a4717067a844998b96f5

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\pkg-file-activity.min-vfllxC1p8[1].js

Filesize
1.0MB

MD5
9710b5a7cd935ce9fe881582198562d5

SHA1
8c2c2a23833a725673877110b97b34abd748d566

SHA256
ec6350a2a711b0c6371c02646ee9135602ba1d67d03d6859fad178b2c64dccc9

SHA512
adff475008b1d6e93067440f063058446e51afa08d4baaf4d4c72b1df1639977ad3602170779d8d058a060f8d9df5d69280ddb3bdbf935b2090dcf7db3b3b89e

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\pkg-files-nav.min-vflJ2gDtd[1].js

Filesize
453KB

MD5
276803b5de4fc56b73e4748f229edaf7

SHA1
bd5b04272fef1c7f7a926c98d9a7440737be784d

SHA256
e91dfac23abe569606bbdd1f76398827aae43a6154c871018e8d35dce152fb12

SHA512
a57148fb0c6e665cce58b01682778cff72caad689fa5aff5618e6c42ea5c8efa5bddd51edc27c539db54976343db3777d96ea78c3519bcb194f033cc17924fb3

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\pkg-fvsdk.min-vfl2K1gfP[1].js

Filesize
178KB

MD5
d8ad607cf54918609025bd41eb6607cd

SHA1
129ab6f2232f9dfb746a26a02275e7b79cc17af7

SHA256
1dac8066df52a461967edd20956dcb890e1593437c40204eebfceb9d703461c2

SHA512
d7b91dcaa84ce9838820027d0d872a506e9bf25851bfe741535caee503e19cc650668fabb5d611eedaa363909f819b0a71d4693dbd1a06a2bdc93b0238d0c7d0

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\pkg-misc.min-vflFYwyBs[1].js

Filesize
17KB

MD5
158c3206cc71e72df931165ab04556fa

SHA1
5161fee055b75d4725f9a86dd022c821572a3332

SHA256
18254a91be96565b467eaa39987a4916c4b83c16d89dc342ce77e4f7483f19fc

SHA512
f861ed3b6c5f5200908b5b3484e480df98e7f8ce8aaf7e24c4dc627b31a88bdb2c00a8d5633b6bb512ae0fe004907b5c2883ac81c8909f9e61319cc5548b9aa5

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\ux_storage.min-vflXzQ7PL[1].js

Filesize
1KB

MD5
5f343b3cb07a04234262c052e6902b72

SHA1
c36ecb0db9043be39226f5ff7d81e32cb03cd338

SHA256
8bf82df1f636bb5adae61b347d304e115fb10b1f743fc613277c5a4a91cc07d8

SHA512
28b73f7c057cd9f9f29563afbe1327bc00f4c90632aa076ff65fc1983472c2f0d9314013493eeda880e5f8cfa38a4706af058f7175f4b27c32a8ca450dbd1762

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\XQ9LCYGU\window_history_listeners.min-vflu1q8V7[1].js

Filesize
1KB

MD5
bb5abc57bf3ee90c3a1bb897a84b7e17

SHA1
7e41ad0c702e10205970537d91f4f5331b8cd247

SHA256
b98f2271706787471b6c2621a0b13bf222d655a86284604037ceae4a10a3eedc

SHA512
9e4f96ea5bc11cbd4315dd27f68234bd1f58a85746bee5b693b85b5f6189a8b4df9bc22648ecf23488b9f09fb017f1a89d6640bc9275153d59dfd6c6c0039ff9

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\B398B80134F72209547439DB21AB308D_A4CF52CCA82D7458083F7280801A3A04

Filesize
471B

MD5
cbb2fc008104d9543b0a5f9f51f5cc9a

SHA1
25891c89700d71061d7be65ada535e56efb6d258

SHA256
ae3826d73351c24b0ed37bc9d55a0abdecd30014631860394ac936598459559a

SHA512
5e08297df85eb0413400359c8c09ebfa53c0049070338a5e18f0cd5d69d04c25f63660e7e662551828ef3616b7a8b99f7346065f11baeb08a59a29470543f0d3

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\E573CDF4C6D731D56A665145182FD759_1D978D5EA8275AA72D1BFCD66AF4A751

Filesize
471B

MD5
86e961c6ada8a6a2795b99aa119f1a34

SHA1
f37c7722a61780959ac98863b98a0e72394a659b

SHA256
aa92b166ba790983bc29403c63f2183f466c31f21efc17a0ecfb1bcbfe678d75

SHA512
db6d5ee954e09ad01b70f65cbc8eaf795f09cd6ee759d691a0c12c9cda50c1d5598a7d2d830e866a1af9be9e5bc968952a4fc8bfa35225aa992b9f40ca18b766

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_A4CF52CCA82D7458083F7280801A3A04

Filesize
400B

MD5
57efe462194207316ed100609bae6621

SHA1
39d8c3cbc76d5019d819b0ead1b26a68fd414675

SHA256
3ef3acd1e901fbef929aef01f101952381a38d730c3e7f6a4d66cc978459e3c1

SHA512
d0f1662ca3fd094a8b2d14932f830c8ae14ed7dc92fd02ca773a13af68510f8bf0efb2384ae6465d36731345b59698b2a1d6c6b5eb01e2d76b3532dab121d209

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\E573CDF4C6D731D56A665145182FD759_1D978D5EA8275AA72D1BFCD66AF4A751

Filesize
396B

MD5
d8e59d8bef3231154f63d9eaaca936f8

SHA1
a0b3f2cca2b66fe557fb02954a29dc327f746f5a

SHA256
2125b0aca279db6ae129de95b5332c137db9fee13bbde311a365641b657492d2

SHA512
4e4efe656d22d2ce616ac1a35f189a665327ba589128cbcf91e0ee6f69a51d44e8d507eae9e90c8ec3ede711bc8464f68bb4e6bbeb9659eb8e5f403fbbd9a143

Download Submit
memory/208-0-0x000002A715020000-0x000002A715030000-memory.dmp

Filesize
64KB

Download
memory/208-16-0x000002A715500000-0x000002A715510000-memory.dmp

Filesize
64KB

Download
memory/208-35-0x000002A7141F0000-0x000002A7141F2000-memory.dmp

Filesize
8KB

Download
memory/208-122-0x000002A71B750000-0x000002A71B751000-memory.dmp

Filesize
4KB

Download
memory/208-123-0x000002A71B760000-0x000002A71B761000-memory.dmp

Filesize
4KB

Download
memory/5068-1130-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1056-0x000001AD55890000-0x000001AD55990000-memory.dmp

Filesize
1024KB

Download
memory/5068-1132-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1131-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1134-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1129-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1128-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1127-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1126-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1125-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1124-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1123-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1121-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1122-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1120-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1133-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-872-0x000001AD54000000-0x000001AD54100000-memory.dmp

Filesize
1024KB

Download
memory/5068-638-0x000001AD50DC0000-0x000001AD50DE0000-memory.dmp

Filesize
128KB

Download
memory/5068-572-0x000001AD500D0000-0x000001AD500F0000-memory.dmp

Filesize
128KB

Download
memory/5068-536-0x000001AD4FD80000-0x000001AD4FDA0000-memory.dmp

Filesize
128KB

Download
memory/5068-352-0x000001AD4CB20000-0x000001AD4CB22000-memory.dmp

Filesize
8KB

Download
memory/5068-349-0x000001AD4CB00000-0x000001AD4CB02000-memory.dmp

Filesize
8KB

Download
memory/5068-346-0x000001AD4C840000-0x000001AD4C842000-memory.dmp

Filesize
8KB

Download
memory/5068-342-0x000001AD4C820000-0x000001AD4C822000-memory.dmp

Filesize
8KB

Download
memory/5068-127-0x000001AD4D400000-0x000001AD4D500000-memory.dmp

Filesize
1024KB

Download
memory/5068-1135-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1136-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1137-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download
memory/5068-1138-0x000001AD3A0F0000-0x000001AD3A100000-memory.dmp

Filesize
64KB

Download