hxxps://tria[.]ge/reports/public?offset=2024-01-07T22%3a39%3a45[.]650212Z&limit=50

max time kernel
1542s
max time network
1544s
platform
windows11-21h2_x64
resource
win11-20231222-en
resource tags

arch:x64arch:x86image:win11-20231222-enlocale:en-usos:windows11-21h2-x64system
submitted
27/01/2024, 11:16

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

https://tria.ge/reports/public?offset=2024-01-07T22%3a39%3a45.650212Z&limit=50

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Modifies registry class 2 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1184116928-951304463-2249875399-1000\{22EECEBB-CF8A-425D-ACD9-494621B70BB5}	msedge.exe
Key created	\REGISTRY\USER\S-1-5-21-1184116928-951304463-2249875399-1000_Classes\Local Settings\MuiCache	MiniSearchHost.exe

Suspicious behavior: EnumeratesProcesses 14 IoCs

pid	Process
980	msedge.exe
980	msedge.exe
2352	msedge.exe
2352	msedge.exe
544	identity_helper.exe
544	identity_helper.exe
1132	msedge.exe
1132	msedge.exe
3796	msedge.exe
3796	msedge.exe
3796	msedge.exe
3796	msedge.exe
1588	msedge.exe
1588	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 20 IoCs

pid	Process
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe

Suspicious use of SendNotifyMessage 12 IoCs

pid	Process
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe
2352	msedge.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
4412	MiniSearchHost.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2352 wrote to memory of 4420	2352	msedge.exe	79
PID 2352 wrote to memory of 4420	2352	msedge.exe	79
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 3332	2352	msedge.exe	80
PID 2352 wrote to memory of 980	2352	msedge.exe	81
PID 2352 wrote to memory of 980	2352	msedge.exe	81
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82
PID 2352 wrote to memory of 3032	2352	msedge.exe	82

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://tria.ge/reports/public?offset=2024-01-07T22%3a39%3a45.650212Z&limit=50
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2352
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff9defe3cb8,0x7ff9defe3cc8,0x7ff9defe3cd8
  2⤵
  PID:4420
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1932 /prefetch:2
  2⤵
  PID:3332
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2392 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:980
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2620 /prefetch:8
  2⤵
  PID:3032
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3204 /prefetch:1
  2⤵
  PID:3028
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3196 /prefetch:1
  2⤵
  PID:2696
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4672 /prefetch:1
  2⤵
  PID:812
- C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5408 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:544
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4048 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1132
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5080 /prefetch:1
  2⤵
  PID:2004
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5040 /prefetch:1
  2⤵
  PID:2904
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3996 /prefetch:1
  2⤵
  PID:2244
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4656 /prefetch:1
  2⤵
  PID:4816
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=4552 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3796
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3296 /prefetch:1
  2⤵
  PID:3420
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3616 /prefetch:1
  2⤵
  PID:2248
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=2096 /prefetch:8
  2⤵
  - Modifies registry class
  - Suspicious behavior: EnumeratesProcesses
  PID:1588
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3296 /prefetch:8
  2⤵
  PID:4712
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4728 /prefetch:1
  2⤵
  PID:4752
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5164 /prefetch:1
  2⤵
  PID:1764
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6032 /prefetch:1
  2⤵
  PID:4296
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5948 /prefetch:1
  2⤵
  PID:2116
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5292 /prefetch:1
  2⤵
  PID:2696
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6472 /prefetch:1
  2⤵
  PID:5068
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6556 /prefetch:1
  2⤵
  PID:1240
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4744 /prefetch:1
  2⤵
  PID:1828
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=2860 /prefetch:8
  2⤵
  PID:3208
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4644 /prefetch:1
  2⤵
  PID:3392
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6668 /prefetch:1
  2⤵
  PID:3200
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1784,6477239172558528665,6036564836783886624,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6776 /prefetch:1
  2⤵
  PID:448

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3912

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:5044

C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe
"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca
1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:4412

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
6dbe72a1f5827efc08f70d06ef815d46

SHA1
6aacd61519fce53ecb92e5e61207a6c29c01f47b

SHA256
dd673404dd6deb2d2b331316370fd05e47c01b9dc489640f05b50898d536a6e3

SHA512
2e6115ca818df5f5b7985caf3ce2324e266b376f6180f84b44e9ae725e037a8456c2cd63e22b9750e2ba27f4c7460dfa429ce9910517a728b056e5f1e730e25a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000008

Filesize
69KB

MD5
c33c3755c9bc5c370e51bd72a524da35

SHA1
7b4d2ef2b5e0188562afcd4c87060a809a7d2919

SHA256
e30aeba2b555fe999989e290128024451d7b1bccd13060ce16990a39937a3113

SHA512
7c656b1f7e9806208c87b1f22d27f07f400c5bdd3fd258056a4046c7999d4f83f6c473800b09e36450eff9ff9dd86d045eedead515aeb4bdb55e9d9889e90de5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009

Filesize
26KB

MD5
3e0b6ca2a9c26aee04addb4e37017867

SHA1
11b12d8fef7194baabf0834f735cb1a6d191084c

SHA256
8ec21e2b87437b72a175f87cd246015a81fce8a77e3aece36cd98978ff0a9a9d

SHA512
ea35dd4c638e8549f6692cb615f34c053a04969c403bf682ef16b3d1bdb554dac4f47b17a66e8f7278e5fd52af51382d3dc92e34d17e36b63f4d24719a58a425

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a

Filesize
64KB

MD5
d6b36c7d4b06f140f860ddc91a4c659c

SHA1
ccf16571637b8d3e4c9423688c5bd06167bfb9e9

SHA256
34013d7f3f0186a612bef84f2984e2767b32c9e1940df54b01d5bd6789f59e92

SHA512
2a9dd9352298ec7d1b439033b57ee9a390c373eeb8502f7f36d6826e6dd3e447b8ffd4be4f275d51481ef9a6ac2c2d97ef98f3f9d36a5a971275bf6cee48e487

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000b

Filesize
19KB

MD5
2e86a72f4e82614cd4842950d2e0a716

SHA1
d7b4ee0c9af735d098bff474632fc2c0113e0b9c

SHA256
c1334e604dbbffdf38e9e2f359938569afe25f7150d1c39c293469c1ee4f7b6f

SHA512
7a5fd3e3e89c5f8afca33b2d02e5440934e5186b9fa6367436e8d20ad42b211579225e73e3a685e5e763fa3f907fc4632b9425e8bd6d6f07c5c986b6556d47b1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000c

Filesize
63KB

MD5
710d7637cc7e21b62fd3efe6aba1fd27

SHA1
8645d6b137064c7b38e10c736724e17787db6cf3

SHA256
c0997474b99524325dfedb5c020436e7ea9f9c9a1a759ed6daf7bdd4890bdc2b

SHA512
19aa77bed3c441228789cf8f931ca6194cc8d4bc7bb85d892faf5eaeda67d22c8c3b066f8ceda8169177da95a1fe111bd3436ceeaf4c784bd2bf96617f4d0c44

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d

Filesize
84KB

MD5
74e33b4b54f4d1f3da06ab47c5936a13

SHA1
6e5976d593b6ee3dca3c4dbbb90071b76e1cd85c

SHA256
535fc48679c38decd459ad656bdd6914e539754265244d0cc7b1da6bddf3e287

SHA512
79218e8ee50484af968480ff9b211815c97c3f3035414e685aa5d15d9b4152682d87b66202339f212bf3b463a074bf7a4431107b50303f28e2eb4b17843991c2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000e

Filesize
1.1MB

MD5
fdc479da91ca92fb15ce23b847171962

SHA1
e096d0f96fd8806069af0a22110d44a4cd21421f

SHA256
7f790aacd2c2c295d6c7cf4177233bd90c07d951dba3f68e42c05c566209593c

SHA512
c50be621c38991a09a629f8a7c4a8c3a9c8947cf71b6dcd5a99fcbe16ed66b0d433d208120d0dd235d344bb4d70310576bbbdc012cfdac30f62c904e3418c230

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001b

Filesize
34KB

MD5
fb6b7a73ab11d7bfc518ad2b42559b3b

SHA1
99d27d784769f2435cb3000c698965f84c27f77a

SHA256
c2cead240b116a6b8c5b4b8c8b47d172deed8bb68759d8c8da1932e4748d68fa

SHA512
64e92cdce311310ea96ad1ff68f3c6eb4694b93eb48e98e9eee8c8a3f29c04642599af695068de2c02b1e59d6e2736301b7410a9bd977874a9c2800819ddade4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001f

Filesize
48KB

MD5
d656e5ffa57a74b20487b6a15998e5ca

SHA1
7a66ec76296c20794bdd9f5a8fc6e76c685e5324

SHA256
cc9ea51a70400d1c9153cb21030b71a16f245bf38316bccc4379929c2377c772

SHA512
ea55c9b3d40e04cafe9c6e07db9e89c131d0be5a1a64f8a349411000292af897ecde659176e0ebb5810a2786e0bb8069c171d6537d6153f1236b88012f99e327

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00004d

Filesize
112KB

MD5
1957078b3edb67ae466037df2796bf60

SHA1
1875c9015c9dcfeb41dcb4d323d9291500465656

SHA256
f8e521b035758b18db6df77567ef1f4c31202ee07487c2c7b30cc2d664ca7a6e

SHA512
fb82f9a5b903c09d9502799a81db31ce0cd0ca0c047fb10eb01f56998ab85e031dc71337d2bae1b45714d525562d7154b8e308cd34ef0041919dc4c251180538

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\0580a8e1646d7bcd_0

Filesize
14KB

MD5
1562ff95440ef16c23358be920f19b6c

SHA1
0ae1cb40629dda06caa1b6afcd600f8fb949d74c

SHA256
0d47f4afcbfdfe554f36f34bd9ca509237580bd04e65e76ec79c1f1173d6e91a

SHA512
37c89777feb712028854db3fe6e78539a04fc2f975524bbdf758a44bc3df032aebe2631f55117b77ee23445241e87cdfbf8d1ba555fd8c26a91f19a13d7bc31a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\06450eb6a7b09545_0

Filesize
2KB

MD5
cab024caa438b7895f793922215a1bd4

SHA1
c6a00bba10d18250233a1eddde633c56bb757b2d

SHA256
08411b5c7729c91da41f192a259764de7a152d45611d5e2b3a566556083107d8

SHA512
2a6fbaf5d0ead56e05354f969385388b26c31db5a411801db39a0b771647fd0fe2ccced8d19c9be17a4de13ca545801b857013387ae146a1c7738124f3ec89ff

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\0b29a005a3f64fe9_0

Filesize
2KB

MD5
49c77507c2092c2a3850f4e9b671f86c

SHA1
32cb7cc9a5216f452e1b55f2acca73063a2b6090

SHA256
243e8d1e1fc4c453e3d12267874c102c2fd69973e5fe2ed75c1f6b5d230039a1

SHA512
2cb0780657bb09d70b45a8d15409870d7d996760668ce3f8f654d029a92feb89263e73b78f3d32a3bd4fefe409dee13f3d71644c3bd81f1546ba3cdd000d070b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\303637a5e9e85661_0

Filesize
9KB

MD5
1303559e67ef6b459e4e8bf3c0c4e129

SHA1
5e97d203844b272a05246e2ce701c521fc0254c3

SHA256
0f4c00787671664740a1464d2715c35bb7612ee95bf11c7d038c581182e3646c

SHA512
3bf2988d65836b99e8bed11b19a681ecea0bdcb9d8d6f3ce661b4d4b32a07d983f20aa8fa2f9c3117213b2670af63ddeee9e01ba3ba9a28f01becdfb7dabee59

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3c6333332fcaf876_0

Filesize
3KB

MD5
2bddf38dc44fb1febcb4ff653f9ba7d5

SHA1
c3ba2cd7b5c1268030005b3512ade8b9afc6ad58

SHA256
0b4d7730ed486396c7f57c767e8cff034a530fae82f66bd3953b16f0015fe095

SHA512
d842cd50380b67fc9ba2d5edc8de04c8c4c3739865a707e0a02fd81a0273030dc92816ce71e1a6667e0da5d3f4c64a9225772cbaeac066beaa946b0e25d8feef

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\4319af450fc4dfda_0

Filesize
26KB

MD5
faba0519730f8be1c14aedc0127d4832

SHA1
a1eb9bed37a00d616153d9c8df30c31aea0483ff

SHA256
f9b3723c5614cefd7bffa688bc7bd0b66bb16ace0f6ef88bfa907c3a24b186a8

SHA512
be71eddb8188a1a1e34a5f4584166da8f3d1e9933c81d4b8f0045683b45051584acfe8fee7ad032731d69dff5dc022c82bddeba179a112b773f81d230a659468

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\43604d2a195c1916_0

Filesize
2KB

MD5
00933cfaa9ea269150c61fc33dd27939

SHA1
d45bc96d1ce24f535e05de356c7ee06a7ea8c804

SHA256
b8a72b251d7862fb89ad70817cca35139ff45a12c2cacec78a2f63d4fd70700e

SHA512
e5d9fd1c1f1071951614059f3202c8756a4ed927f8bef5deedff26725650c13e31cbad3ae0ae1eda94b67185f3489eb628eadf9790cc43fc5f9c6c4623761462

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\45a16ff6d0d9ab5f_0

Filesize
1KB

MD5
dcd8494491fe879605e06f8f0249e848

SHA1
259a544da5d7c0a013a86f388b2a040606dc59ee

SHA256
28e4abfe95ce28f9fbf4ec065ca9d9ccd36eb2fc257b229b41a31e0e3797b130

SHA512
876e90e27aaf0955e4dab4253716cfeedf7421449811c0442ee904566ac9cad3607345423638e338cd128d9aa91964f74b47f521499ac9b07bf88610f465fe72

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\49da9a423c2b9ff0_0

Filesize
2KB

MD5
3674382af6cd7a09d958b03186b88c3a

SHA1
f40b50e5b62414c818d0616fa6164bfc448f366a

SHA256
5e9adfbf28352f774b4168fcb3a86f6f2ed41eb1584f78e3b955e6c6024f39e4

SHA512
55e7e6d9cc7ba550579ab2a4f33d4004003d8cc5e03fbcf50506bad67ed0a0e6be0b5b3ffeecfc6f1cb4f6f06dec0eccc9bc8b5665472727d7ba35e7539655e3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\4ba235c604b81924_0

Filesize
4KB

MD5
7a6665c39967afb6b12e02d1e6a50f15

SHA1
9964f8f87c6f733c24d4357eed09e6fcad3ab90c

SHA256
9094a5c0cf2949a00f2b9f72491d9ed3f99f2d70d5a33b8504fcef0381469d97

SHA512
1159a07ae563cc199875171422736f1780bd001552eeb50d7bfb1968043e9bec97cc5a846c676a0c35e01aaccd65c7b73368977840f6b2314a46be79215f127c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\4c693273baa0190b_0

Filesize
5KB

MD5
197172dc0f076641a7302b63459123bd

SHA1
aa7e52d8e68482a0417c95716d7c5d4ec5d927e5

SHA256
56e4dc73f8a93270bc15639adfaa0109e679807be8edd2d5d5be5ca64be8652b

SHA512
edacfff9cb400d8ecd3493b3734816aaf049372c334058d12b9fd44c87249127d908e054e12df94adf1f1d8ace40581c7fbf2fb88eaadbc3cb4b265bd1a4243c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\53ac5abc87e80789_0

Filesize
2KB

MD5
0c7d94f3cb17cf15689db87b7663f60d

SHA1
c4546f3025571595bc4430f612cbe6f75342c338

SHA256
0a3d771861df3537bf34dcb035bd7f33f247d480b8ad1ee3cee03ae3b3a43a24

SHA512
c0a77061e76aff5213ae207531c5089f404b4a7fcfd01798cb347bb8987458ed6d23c1d2939499e84f5adc2daad4767a83c5c40be75b5e6deefbff15144714ae

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5472a74b544006f8_0

Filesize
6KB

MD5
3e6f4049a2d13810a743b570d273659c

SHA1
cbfcef9d00a9fa5129ec4760b1b7ebc12b674b49

SHA256
fbfdddbf2e38d1806f35cb8f560d20108d07cf35a5d734ede704dba273359d94

SHA512
a5f77a1b72b853cb2cb529d916e7355506c74c18f55085c2fe0293aae0709ee10a0083e54688b4a817715e71b9c2a16bc58cba6fd6dd301c8888bec87417f967

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6304fd6f9e3c8050_0

Filesize
3KB

MD5
0ed5e6f7bc41d579af9fd9cf7e1bbd68

SHA1
6f30235acb554e1772b0d613e80e16d3449344c0

SHA256
e5629bffffbb294556bab135bb2db1f685f9a4cab321a749e5c67157514178c8

SHA512
10336c56d79974e5e80d95337bbdd1c60dbb856fa0b38a7a267595164f9f9d1970981f38342835ae837804be46ee5436b7cb344f0d7adf1c15703cdf643c3584

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\695c42f61090a800_0

Filesize
6KB

MD5
b63083d2d888d4383e99e581b8c965db

SHA1
5bdbb3d4d9ce447cb936920a8e1d53f4236a911c

SHA256
414f4cfd905f8cae9b3352b09a2d1476a656b190c8635c136b266cc50f334494

SHA512
4c62bbec651124aeec126188f8548b7409f20f16ac7b94768cc404fefd9fefdcbd504a02290be11d6f181ab0989f6325015573e6ae8228af8f94ff58ca06664f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6a0703df20b370af_0

Filesize
1KB

MD5
58de1c4b1bcf31e6d86fb11e80446327

SHA1
24d3618e720e07290498ec109c53222920653a03

SHA256
0db848bbb5262f58bf1085cba97079148c90e88cb470d774395c1ea736df0c2c

SHA512
f8dcdada2d2536200a9102f9cee7efe84d90f59357f9bc84c3652a405217006f8dbf243e21fbe1c9d23b4868957b7625e47b4c755809fb35972c207e92b56473

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\71da22abe269277d_0

Filesize
4KB

MD5
c8713401a4cfd970fff3fe0546d269ca

SHA1
cc6760abb97af1107cdb7a37f5905f0a24227467

SHA256
5d09b8ffaa51ba9fbbdd792c2b62b48140a64d4167d7b787e1ea21d7b51d9b6c

SHA512
10f44b2e1fda591a9de1680dab5a51096c377640d20918afe863e1fcc6c441a634e31aeecfc2bc8160e8bff78c880d232e873202fd05a9669d5116553ce4050b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\74b88724f60b0383_0

Filesize
1KB

MD5
baabf35678dd0845f5bf2dc42361be4b

SHA1
234e5587bf7d69400c6ade3a0ff1b899e110cb3e

SHA256
fc6af7cd62fc0a92edc1b836554bbf496a83073530665a938b0ac7b363e7fb78

SHA512
2705f7d2ed75f3ec9b6888cd088849ccf1b764a84250ccfa9a54e44ced5835777a59340a1d66c1adf45e660022d1d083123832399ae59a036e7a993ece909347

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7d11df596af7121d_0

Filesize
3KB

MD5
2b02332aae29b3e1c567899ea8ff7f5b

SHA1
89a30997747f6a9df9861cfec16f00661d113bc9

SHA256
60338803ac58cf75c5129f5347f2b9df082521d07a8d89d830558ce66b376f3f

SHA512
70665f635cdf06d22227911f3bc5f559e2a0cfa3eacac99586c7ac9feb80db7ef3590e55c68544a886bb9d69de3ff5dc57590b91b5e8e088fba8789b902e9ffe

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\868a4e6c5ec26129_0

Filesize
15KB

MD5
809efce8ecb62e484458dc53e04addad

SHA1
c0d575a537d10d608c0c876335fab2d0f4799e3f

SHA256
43688e16aa916256195c2646688ea245952617cf33e0e4b209cb7a024510c10e

SHA512
90f8db5b72035234d5783fe5c30245713f9fac5ffea371ba592a6926936bc3685e79198342679993ed0fcb5c6ed7a5f610cf8acfb5a9394937e8ab25c8d7dd40

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\92e90cc5ecc4196a_0

Filesize
17KB

MD5
7d413dffbf47d9a66cedf8dad1af1dac

SHA1
c75b4391a6623b41e6ee568ea08dca7ea2499d41

SHA256
11d164f875dfdc6e85c987360e5d2a8d5f9bffd94a7e272d6b256ff36dce8328

SHA512
90c216b140c8746d9d087cb957b80d4c0c5b21ec92dc37648e9f57d0ff9bff2cc20a3bb78dc7f42bf81a67c652d1a5fe2d8b35118059e6dc992647f085c7ab33

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9412c8b664751f90_0

Filesize
1KB

MD5
e900060755664f461f7daf10bb4a4974

SHA1
7eda830ac90a9e8cb9babaca0a59f1dc1af3f5c3

SHA256
abf46f462c6f61b882ab89bed399aeaaeb68fd40caf6a55cc209d7d2812cfa9d

SHA512
bcf226520eb30a29a850a2dba615d1cfce40c8d841c62636940ba3434320ed857dc0e9f0cf699cbaf5b05f879a9a6aae98158ed76dc5b21e5e59c5bcbc0448e2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\94ebe1630900d094_0

Filesize
7KB

MD5
3dfe99ffdcb574709cf7e760cac30801

SHA1
6a1812b0b8dc8b44bef623b9d840c901a058f7be

SHA256
4d5c798eb3cf2a6194f5b8f9c318f1ce3db4ea8a679341ab0c9c790dfb41c34a

SHA512
d96b1968f8bb1e11e15833c8229354df2ff3ecb0deea9850d82941ea28c6853471c3854756842b6753c09ae4eb0cacff0728762931729dea64d75fe0ba0af957

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\99355e6d825b2751_0

Filesize
3KB

MD5
bb7e66f94cecf37d1c29a57cb3450abe

SHA1
1c7435d3596a88a740390fc0f38efb3b4748d823

SHA256
eefd41bbaf7f353604552b725cc5af2412314ac6a2d36b3e4943c1699fcb4235

SHA512
52d25dc87ac5d7f47a2706f9588343ce4aef7eabcb2e1aca77f7abe47f705ed7127e9451289c26e68b087766d0f47d899cffa08ff5f6fde82435da42d4f8e049

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a028a5872e884629_0

Filesize
5KB

MD5
7cfee18505b0706156de943e3b4a5529

SHA1
3a6ee5aaae57e83aad270992b0c45b5b335818d3

SHA256
bad5b38e5329fad35f2a910439cbd0e33fc3abe87c1b3279fe353584990e91bf

SHA512
3a85b6f03627565bf95d768edc66c925e3d256b74a39d47791deda9fd722b2e4c20ba134ae2e42dece71a555836aa001ab578c1ba1efa209b353270e4e72339c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\afdc28b58bf8c2c2_0

Filesize
4KB

MD5
99424cd54bab1ae3e8798b4b8becfae6

SHA1
f4bc8fa602d600920dc1a7d339fcb8c2b5c19576

SHA256
1f4f88c60dbe996355c40843bedecd71e40bf0058ca9e3eb2b8618fe733f7622

SHA512
e18ed653b3cfc79542f1f63ed2c50a778355ce154d261b61751698a528be7381a1392d0f86307a737e7d747ed6ce08d54296e24fb649edbebe443370ec40ace5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d7a29efad91a1117_0

Filesize
262B

MD5
d5b6800858cdf7695c1242b09256f376

SHA1
9553fc4f0673fd16368981d4c62d4fd0208fad3b

SHA256
f93a691c0b4b6ac93c9a54e4cb8128b975059d7290ccd78945b8c09cb31f99b8

SHA512
cd871071d54f6ea9ed0a57854f949ded0776c367ec65fdd63e0e9a63edf12989a1c96143cb37593286ecd396ae19e24c8ab0e1abbaa23320181be212fd8002c2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e3c673e63fc243a1_0

Filesize
1KB

MD5
5a7c46f0b7ef849f95d3e8905f7bbe78

SHA1
189171af09ac4ec8bb41f31160743a84524dffaf

SHA256
dd50b73c6a1b0d76d273fb98bde44b3ee894f94bb75ba70fee7b8ceb9fc0b897

SHA512
78ef5006c7cf1833b5122e65c0c60ada9ee0c96dfe747afdeaf24fb9cc4e819825dd8c7707f1a448b864d95c477ff39ac597420959c03e94b9a817154718944f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e56cc012a4d4acc4_0

Filesize
291KB

MD5
5da5ef0ea85db31fd06566173cee7810

SHA1
2091790e381b204f4c80e152afd9c3c04d08fc9c

SHA256
16ef485951b162e9a0c5ff0946f1d7642f1cd8a2c208f9c22e4ce418cdd1bdc5

SHA512
6b45199f54560b1a02d8a6ead18da7f0fe894a7c005c2f50576b8ac783f456ccbdbe343ef27a201f043056b958d06f6276079ca190dae0ba75a1e91ed21dc768

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\eeb7e26e8065b088_0

Filesize
29KB

MD5
263d2845d287528fd5947e05e44c3476

SHA1
6398ddcc131590014dc20b7a0bda2275fbdaa8fc

SHA256
6825c6ca2b5cb50c19f16eb5aef19318fd93e82731e2cdfbdc8def0ae0670779

SHA512
ea05e507928ce7ef0fa8dca16ea733f9d338c1e536c1f7ea2c4df35406b0ef6608341bb10c6bdd62c11f7cec588ee8febe0a6da00bb566fc80f443240ff6ea6d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ef189c55bb899fd8_0

Filesize
6KB

MD5
f8c6707c2799ebeb31de03830d412a83

SHA1
677875803700764f7708d13095a8c4a6554e49f6

SHA256
ef1dde189f4b52085f7df1cfd0614ca82654595d1d40d90313c777ea03e3e69d

SHA512
b753403fb6e4adcec58a3981c05f3c0771efdaa748b8835dcb38e4d01149fab216989f3b5fdb668e3529749a494c11eeece4d7c5f0e79edfe1b517f0ad285456

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f7dd968ace5a467f_0

Filesize
3KB

MD5
a098f25736389f92e407ddc758191d91

SHA1
c7017939fca23697b602800e22a13aa591763be4

SHA256
b27a502fb9383ef11fbbd393c6188c3a3ca5044822bddf1730042142219d18d5

SHA512
1386a9f0f201a631b2b9ed78862b88ec6f175136e4e33f37336472ff7de90cf033c675e7cf2aa9bd012972900842f5ed6ee3b0ff0d2f54b4352fe212f0c37992

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f89251fac2b69325_0

Filesize
3KB

MD5
8e16ff5cb0ef1c2588b46ae1ddb14501

SHA1
d21031a39842ff39eca3a7bb92bb5620991f939c

SHA256
13b5dbef5945672720ea7a1c1ad0efdac7d9e222698a3282a1dc4eb5c5171365

SHA512
52d873bae365a43e406a556d6fe62ae90a72b441cb704f596012fc3de94e48acfeb79916465c4361cf664e56515e966826cac4fab567480a8f7a7e072df65502

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
e6240709b98c682c5eec4fe5f89fd946

SHA1
e5fc094ddf58c75aca8706360f54349a3d00879d

SHA256
c345cb7035219ec0072213576bc10073d7bfeaa7159d7b174fa33faea27a1aa9

SHA512
a53b7e747fd639cd8374c6dd7ac99c282bcf1a2d0558752bedf3ec3d780983244009abdd18ab27c0e9d006fd276b0f685005dc12a3731a82ef42d71f3250a0a0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
b67c5702b995337979eafdc935458504

SHA1
b562d9538b3f42666701715e8aabb9a7757feb3b

SHA256
77b9cc4a6316ff9f5c56d63bf23d7fe4c2e6fb5607657d8b3acbbbb0faea338d

SHA512
f277c212b915c7828c43d7a79cc5aa8167a3ca173d194b9061081c96ba43647ba2e9490936d3bd452c7fff08ef9214dd925870fb99a9f28aafe9f4b32f9f0bb1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
272b703c93c1ec2a920d49a595206716

SHA1
c1ff35d90abd549b0953c1b0f4f84c1372bfeeae

SHA256
36755165c9e9a249d748d4772e3499340a68b0aee4b2046408aae682b9352e60

SHA512
dab59bf4079c3051b2675f22e5b18ae26c1f823ff6b2a0f996e565f43fc1189348fbf6a95b7aff348e3b600189307bd213894e42a0d54ac41d9999eab6560223

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
907baf8826a69d4fec10842fadafa0cf

SHA1
9ac162e5912d3f2ac0b23214c071a8306957e1da

SHA256
155434443cdaad42420a99b8b444ff23029f45130ef814f3d71b1889434bf7cc

SHA512
9045f0e803db0adaa95192556223072956f5ee340cf8d5040d6a25b149f29d950e847b9265454a876d8a8d3de6f855b4a480e5b5b07087e14ccbb5794023aa30

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
20adcb6b02a3c353ddee771f933de93c

SHA1
741ee604826fc117c7c385a932d1ba182ed7e596

SHA256
7679a57eb122553d7e35a0f9f4ec5a1a946c25a11d44f3e41c12859515ac8487

SHA512
325ff4f04d1454f00a3e2ba202417b560f034ec6aaa1395c7dc4bf885028bd823cd262d74a4a40d99c196928aa23ecf0c793fdd4ecf2197cbd791d423466a2a3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
5c211859fbe1ff4745339c633e96418c

SHA1
d49ae0d3beaeb3f2302fa915cc805b8fd85b3ea7

SHA256
c032fca8ea979b77baef395c03335b8e23903b5663a6e34d90b4ba1accf9443c

SHA512
f1c16e87a5e3d1e23a193e7b9f93b81e0c240692a754d70f9bf13c14daa3637eac8f8cdf40128e60bc03218be2bf15bd03cf7de4ea67eca8ec52c515702921fb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
a8137532d8b854e205137efbd66adb71

SHA1
a16f7d1afb6bacc78486c40a69865aa1d1709d59

SHA256
e33c0067c8117f18b8637b728386790dca938ecb42ceef3262c53a86c0cea1e4

SHA512
ab7b63dde2daca4a92b1b94616eb935ca5fff58192703a6f409130c7429667f405d93115cd2ec083a977c8ba906938af0af530e7316dc77586453d81d883ac75

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
192B

MD5
c139fad4cf3da346bdf044f1de7157d3

SHA1
cb90791d97d29110089a86fc8624746a05c75861

SHA256
a30b2751a7b894a9d1de0c7ddaccd90e5d0e83ef90837abd6961b1b92a5e67ae

SHA512
0c769d71f1b9825d1b8654ccee0517707f0106affa2e4c24d81b901dbb9a691728ee9737374aded3b171a898578a93167cfc6e885d7fb7eceeb1a951b193a08b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
54e6b8c76dcb5051b23f337fb15dc840

SHA1
56d11d5265b2ee7bc4d6a0434057df3d5f73cb4e

SHA256
2f1d28aef5304a7d6df2dcb96847a573166d2a186d1b76f33d791074093d7b5b

SHA512
bdcd9bce8e0749fa555c2a7be06a472ef7726b3c4ffe377d6a0c5421f5ac664b9938043bd258b3bbb2d1febfa5b55453c39885121175af11485418aa99766674

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
7c56bc858b213ee4e4e6fa8b40305bbb

SHA1
59767c443626a15d54e577a586a4f5010dd0b962

SHA256
bf3368ddd33372a4959555ca97f1f488a075c1eb81f3aecc87312e4746ee6cc6

SHA512
b58186ffb0b79b1bf18928ff0a233a53d9629f7b25c04351c6dfa777a55b229d4785fdc28395ed36d4832d06d7dac3831e8fed442913e90f85801093b5feee25

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
9a5b4872c568bee9a2f69e8a8fa368cf

SHA1
dd12c1c6aa86571b29980efaca007260fe352a66

SHA256
9e6fda48f246cfe3937c38d4954339490279d19cc5afe3f7e742edfa2a750820

SHA512
2ec5209f92ce536ff873343122b6bebade7dde863eacc74c1212ad9291785e0ce23d05c6061e6912d1827ee132e092e74020a5b2bccaff255f27097b373fc726

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
62bc271f791ec2a60795eafef71a75df

SHA1
b4cb1724227548a503aa28265545ed3d430d53b6

SHA256
61f3a019dc7d1e89a3e5a2a08cb2672ad2765319eba7d77eb145e8e181e749fd

SHA512
e0f0563d245542a91c4577be947c63e4806657c2779419ff6c83fcdfbc4bcc99c78622089fb47fdf45c109a572d86fd5a9c84a4dfb08c98d053f474ea269182a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
64b22a7e7a7fd39aee56df083c88cc38

SHA1
e0f541ec23a52f904b5bed3e2c58e77091a3a05c

SHA256
51c7ad7a680de6e4a5e75936ac13447350cfbfbfbb51dbbe0cc5a4a697c93cce

SHA512
25ae1039fba5f1383db69a139f15c3e977616c1df96b3e7904f3a24bdf1ff41a527d4b6c6f2fcec8c239d76aeb739fbc75f8322ba0d7b3fcb9fcff0d7d505533

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
175B

MD5
646fa6d91f6fa69c50080121706cb3b4

SHA1
49ffde5a81ae00bbe09766787257ee2bfc571c1b

SHA256
aa13cb680226025fca10d26fd98041cfb49371d19a96f9bf04ed94fd301864f9

SHA512
d4d6dfb81cdd500f02d0a2569f5679be5c66f23fcf42c61ae16215697523f0a8eed26af58d4135c964f3ea1dcdb83b42ad391ea2b99693eb23bf4195007859e6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
615B

MD5
bd9487a88150bf9135aa8d2a7b5cf38a

SHA1
a1e504c1a9785f95466e28e4d76de6d2485bf72a

SHA256
1122ea3cef71884fc53eadae8413f57a7f67b603a2732c11657a4d164be7743a

SHA512
698233324a1d1f01712a46612a47219012b43a1e7345e029bf3567f254ffaef768dd3d846b9b6a16e4189f9516046a241408877a16f25ee82c5f543d22afe922

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
2KB

MD5
6b352177d2f87d46ab310c48fc1fd613

SHA1
89df408aff0d8c6030402785069ec55b5cf2f109

SHA256
0b8682c2f92cc67428f82efd4b139da41d0a30484ded58a2dedac3efaeb9bfc1

SHA512
2e616ac5eeb6506b5f6cead68175a79c04d7c21f7a6b2a11a98d762239e862a229cb2017fe8db39d16cd0ad2f5fe2ea9c5c06f7e3c6ba746a31b10700165f6f9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
1f4f4afbc703d8cf845d040e68ecbc01

SHA1
8ed21ee4ef72f87843dc298a55e8ea1e7bce85e2

SHA256
65ba90a4d73205eaae2cd6597793282c37a935a016a1434177a38d2235be00ed

SHA512
52fc90c5e5c3731a4c17c85aa78842e1df85613ed49ec2e7b5f1b322f1e40653801767fe6017ff2a352782b0ca6993c0faeb5077c891e4348f850bb1095c14bd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
4059600c4ee7d160b69be779abb84052

SHA1
feb291925195bd89a325b689024f783f504220e6

SHA256
0bd8e174da64ead545af497a1893bf0bf70e9d201773a249fbbf1623fe43f962

SHA512
dad3e8736564514685f4c0a26ed2a9ab7015772acfe45ca65f003a515f7ffe004f505f8d47b6f5831f397772c1bca6a112bf3730232a080c0587dc9460a59120

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
4KB

MD5
23b1dccb6dbe42a18f0096658e787be5

SHA1
a2f67f2f1bbac433952468f6875b005f5474a1e2

SHA256
bbec63bbf09b45a84fd066b9b6435c0099a8d1e641012750fcb7e96d44d2d422

SHA512
2cf99def96a0c0e5e6d0d002ebcf0c4fcfec001e952ddfac95abd379b79833b8cee5ce0c25c12c586c99dc8431e53036a1ca27310481a4881cfa1f3ae05eab10

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
fbcfdc2cfd94c8c45bb3c5246113ac47

SHA1
cdb52013b504a8b575a84669037d5c543a8fd480

SHA256
6bee58e32fb004ded9d201ba7f85883a89c59ea71ebc6618ee3bf58a9bc25dbc

SHA512
57fc17a93963ee8209371ac3c1c1a3ae3db37e6ad5302725337623126008c76fac8c1be9e2151fe1b3bf16bb5c0981b627b8a52dc57e7540fbd846818e2f7543

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
ebaec1d876acc7257124dfe9a55974ea

SHA1
54f14629146dcf77e9f94c89509f1096f63a8e20

SHA256
2a815ebb5aaee42680e98be6a31eddc0fbfd9b127cf34feb95e56defe2e1e9b3

SHA512
cd3779565da13691d00280fca0e0daedc56e989db473b3c0e26d1dde78135d3921df83078063b534c135c9356260e3bfea98fe5824fd6223df6df643270f9a82

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
4cf2e4b5976a4303eb722632208d78bb

SHA1
6fe8bca049adabe8ab47461d39b8466e343d6f52

SHA256
e3569ffad21927d88ff2fca093caf04ebe6bf7f616611a9a300a1e228d70a311

SHA512
a8869a7d0007e6444b8c4f476c467a7ab7c6f68f30a99d1fff1a577de7e6dbfd9bf6c14fe33f974ade1510705cfdc062b28ab51751589d6778d43b5c06176d44

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
be66581171e8ad909508cc1840abca84

SHA1
a28bd8ef62d4649a5d6d1d52e331ff2f7350bd02

SHA256
55ee5f2e63bfa025a632979e19396f7d274c41ffee2cb3a966bcc05e4e22b8f1

SHA512
62dbf844a212efeef2dd34aad25ee8545a571734ef7de19eb09201e780b2e6797ddfd27dc61042c4602450edc941829f8d230329a44daacfa58920ad8bdb6bc0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
2a26b0f1e3611f001e2b9b46ae246549

SHA1
b8e2e020532d42e24eee19bf7ae4ba4cea78bc74

SHA256
dfd3f40f827c7089faab2fad528a1672a801b0254b40caac7cf4f32b17f9342c

SHA512
5ce151f279833607f2f2359c5c94b14fd4effcfa042f4d55ef8e80946a9a6a0be29e0f1346591df59abf95b03fcc90b1d0d14cd16edbedd715afde28cb032ac7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
e4711df17edc996d52ac504e7e539a8a

SHA1
3aed84c02d4f0b9e7663a456d6bbe50ea41bd8ee

SHA256
c1f6eb10a9d9918df1153ef26c51ccf8cb37945c8b7343ea3d08a55ccd986cd7

SHA512
366cb990260981bea5270cc161662d0b08e0508704b2c8c1fa2febd2229d3776b2ff1d89654ba15fca0a0862fc02f992b0f3395b274798f71068c0b51e646d3b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
ccf16c608c2371766a4083470efd2488

SHA1
8a27bd4b0b5fb4f5eada289b4a30af4aca814eec

SHA256
a79ce71da07e5f946b8e09d165e40a20da3568d7bff006ae02f6d423dc2df0b8

SHA512
89ae1d5102b2a0d95822f575405b9e41c11d504cf4a480989372771b943079f28dcfc1fcb151078570657a6808f93aa9e5adf6cf8247d110b31cd9ab48804488

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
fc124e08d0f6f697df40aea2c3b98e15

SHA1
bd8ed2f9288718e3d0df73541469dfecb3c8316f

SHA256
1e42d18099b916a1959e9c9e31b834921cd7a2ffa9e2c580347cb85be5e4dd11

SHA512
0e2fd190c233e8aeefee19d2fa44bc78afdcb48ed2ffa5d0a2286dd1222be9e316c69e4f22874166ba690a3cd62a7136413ed91da06bb7f76af22325894bd339

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
0671289fb892628dc41b94777e033968

SHA1
a388c871925a9640a0d8f046671fbedf126edec9

SHA256
8e1ca7bf6548dffd2a542e1bd037e85db7afd15a6a6ed6ff77b56eb47b8c676a

SHA512
a0b330f3afa0082593e0c5590f9ea278c5f4eb34a27fb383330c958359bac1abf08b6bf0191c6467e1b45de3f9eef61bfb88bdfa88f0294534b11facff4a06e0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
d2ca4d5c0cbe10f4b1681f6193297a7d

SHA1
7e42d1f00b1955d9b9f343a5f378c54f35912f06

SHA256
749820042759978affc0a2bae18fae3b093d341af10398255ea3ddc0743d641f

SHA512
d6534944eed87f240518294028f006bd26a2fb7a78b939edb244ed72627c432cd79402cc3c549cfd885f1a6dbfa257113d18731e2f97a17684154819144f34cf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
e48a45874be5b39168d697bbd831c46b

SHA1
8d42f46afe2f88f6a19a41cb7c1ea72e12a319ab

SHA256
6d63f675d819e64c7f85bc8593e6dece3887db611311046bc60fd48d737dd112

SHA512
a2675d9c2d5bc8227e2f7a722b1181b8373bf1e58b52059a397ebbb8093e78007604fff27c8e0e82483284ce869de31ccd2044e0893938e2a79f0f98e8598f84

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
d0deb45e6d7e87179d9254c7189ede1a

SHA1
97022e84f02027ad2127a4b79da0fe82f37b1770

SHA256
a199d96fbabeebac22032c3c151dbc9ad708d2858fac9e3baa590ee7335080e3

SHA512
eeaf6cac659118ed946cfb886f793ba11be73207079c8d33cac1c97deb099e20f2185700a64ee36a530da37042564ce80914bce553327ec115f4fd98e58eaf82

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences

Filesize
25KB

MD5
e5477be1e6c4cc9f570c69a84dd4f681

SHA1
fdcbdc83ccfef1c270b927c6815e641f6d96a132

SHA256
f06ab204d1d24ecd2d13e473bf807a8fc65ed09114a227966b4a308bd7eaa531

SHA512
24eb3338f0a7be6df183c5d5f22831bed07ce0779dcc124e805364a128a08f571160a6809556cd1de323c9d3cc64299855978967c8693b8324cd9bb22f5ffe14

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
663c45c5cd191622043494b9d6d41f8e

SHA1
51d63bd4ce62d92b23003c9154580705129282bf

SHA256
0b0bc1e8c3c7049246d2ce343f27cc2047563f702124fed359ac5e67d3d72877

SHA512
054aba0dfe7382006616dae6f0c09c275c6cd949e403ba08c9607fed55e67a99778e1565cb829931aed12704a42c2e77340df7224d04eb05c5a081ec104923ec

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
44d2c6f0cf64e3c7e88a0eb17cf843cd

SHA1
f07d05f4f218c025fb454bd943271921e1687534

SHA256
281ab739c44675d1203e083528cb8680ae9c937a62cfcb79148da0ab6d10180f

SHA512
ce4c2540c4f49dabd0a79b690f04a8abf20839ff15a3bc48766ee6505ee1b7e3419b79cec93303eaee30b9ddf736c2c6739b4e7a0a185e3a465590787d2250f8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
3768737558fe6ed2db517b4cbdbc8c54

SHA1
01dde300ad22555255bdf40436248d8c8a93cee0

SHA256
ba0050f52646e8562d018702258f31f4fed3893fbbbcc68f0bbfcd5756b53207

SHA512
f9f0945912ace9f53346304d898db34f8112b8410aa75b95e47e037e854a605a3245b65eba069ab3933ca8fef1a5905919de20e6127f2f94a9118c4dbbb0fe14

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
706B

MD5
ee7d2fc409d1149907a1e5ff94639363

SHA1
55d7fc4768001ea89e629118cc8994894fc6c19d

SHA256
266b809f6f85e5c6b0280c0ce949673167c4777f019838a829b8676fcdd584cd

SHA512
76f4e6337a2c12ab1e8caafc0d70d1fbc0fd02ed28f557fcc9338a37d6b3a5407ede81c19e277b6c652083cdc74494efa34a7b0d5c363bd1a21f552dd43a5ca0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
c7bd1e01cebeebad8025c9d03eae194b

SHA1
339660568a2e9b2c540fd34e48b3f63805d91835

SHA256
017546bdc4d0956c76839396b74fb22c1a53067b6ac3c2dd1daea3309eb63f9b

SHA512
ff59d61dfb991f8565b8995290acc2b5c81ba08c71ff87d6d86fe844690b5a59099edb1ac11887f8c253623698cd05781b73e01fc280557e30e331724fbe17d8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
1712f00bf5819d55bffc9fcbb043be52

SHA1
a0606c9f103f847bdac1ae72e549682325b4b703

SHA256
99762098d5939f793d955aca51f720a8fba4b950dd9cd99d4317b1ceef6d2907

SHA512
339945815fb8e5ebcc31dad59e1ae8a309361fa6809cee51c12ea6626281350640c98b3fc73734b5a92f726c34ff4d756ad1cdb030290321270766df5007ca7f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
8d36a8dcdb7666fd994a6d2309aa1152

SHA1
f965c95583f9612b3de0152c9f2848bf9a2b7032

SHA256
bc0c4f495e0699fa130cbc37d130fd1eddf79f36a63023b5673dfe7609915822

SHA512
7793745be25fa3e5849b42399b05a6d4a7d2bbc18d08b94b2b9c95470a03f352a993d9dec2b290a7c31572667951be82cb9dd0d5d5fcfdbdb902f965d617b154

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
0ae847fdd9249ae356141ebcc6fd828e

SHA1
d1d2a01f6e6483572530df94dccac39cdf21d9e5

SHA256
193b1d9c1dc9e47ac993aaf7baab9d54d4a6eee53e24040cba3bb6ed3b7369c5

SHA512
63830bd6d30e855d74f4e3f9c87510bae0db4570798af41915ae5da64f788e0fa7088cb8619c5e0c1544a1d1410bc2b7f340e70a09bebfa157c2aba32d645efd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5add42.TMP

Filesize
204B

MD5
114f10c4bf0fd0ce2432e1f323de7fba

SHA1
f7f714894c64dc427fb2597e522b5795d9577920

SHA256
5ba7445be9f1576828c5d73ff9eb730583e95c624d37e1daeffad5b8ff13ec01

SHA512
33299c061decd030baf357781b265366634c265cda7987db1ab55b28f0063fa1a69c2857e4f61be47fc15ee9e09b0cd5bcab7890e4a22e5cbddd73da029dc245

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
d9e959ac9a5522ef249734de1f8f83d0

SHA1
9f775429995613fdc295b7cd45e2acb06a14afbb

SHA256
d48e7396634e85c650b89f5eaf91cd7d81d3dc72b3285d76a1442c06b5c38beb

SHA512
5380db87e02523081aac94960c1f656e80bba5fd7297332efecb73b4449a0ebcbc5677ac0b24710365a1553b81a88b0ed45186121d8ae6f38a260d1ed3da0670

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
0fb6671c0a17a6d2b64c16b53398b14a

SHA1
1a5079421678c3e02f9007a0f80365ec6a9592f0

SHA256
1abbe6f3c5f93dc8addeb2707f5bcc3154b05309a29d8f5289acec4ee1e3de21

SHA512
b09c75ce0230952ee06e75cedd245ae066597e009869e97f0e7fb5a91ec8b55b5b1c78eafe429ac0147377d97d58c9260663ffe7e7bc7064452aa598e5e07b1e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
afb6ff11c4d989b891322a3aa74a27e4

SHA1
5eaf791328adecfb4f44078be97cf9b7ea00b0d3

SHA256
1aa5e7954eede932e3609308d608743af6e7153a385b4039599f8ba3d06429a0

SHA512
fb01d7f69cf5d3449f264ed0659d7a610a6240fa4347b8337361f58e2f96100ef727757210a6ff7acc935ea33212dd2d07aa64507c5bb770bb2f6209a6c41dd2

Download Submit
C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat

Filesize
10KB

MD5
fa451c524df3ae5f9d7d764f83ebe74d

SHA1
4d23431ff3f3536e2a9169aec97bc4af5967d30d

SHA256
bf12169b34fa5240ba8a63ef13a3844140fc254ff6d8147cf82493f5f7d2fbef

SHA512
2bdb629194cbd6337e12050000ea8690ed627cc30d8528d15adbc5a59a1f48d1a39e9b0b27a5ee82ffb95286386bf895c7bf601d00ae6ea96a06db7a56c30461

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

Filesize
10KB

MD5
77a2fbc4071f38e93daca613d1b75065

SHA1
6a747aca784326d9711a0ec4751bb2d0d8bb1b26

SHA256
802c1cde6be3b3a5190200251e8cb4047b2de9ce7bc04ef942d9ab3fb27869c4

SHA512
fa8dbb7cff4cefd5d5526acd79a17b79b30f8aa7ec39c839bdb87309a009113717de7fd35632c9c06a41f9f8105269e71f0be75f43ae0020c79e0d639c0215a1

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

Filesize
11KB

MD5
01a967ac6b72647d8b4ddef4ce0a2c24

SHA1
33107358f43f84c3ed7754898c8c599c1f7b20b9

SHA256
0b253cb47677270444e99a0e81fa4612ddef95227d58bfb85b48c05d7974ebf0

SHA512
27047b0f8ec727db127c42ca80dd5a54d99cef27ac230b93b4a2fb0afb66cb0d72ba0300e99ed56263cd048b1cc49647f046a0c9aab9ddda616fbb4f14b48051

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

Filesize
10KB

MD5
0b5e24a6dd2e6b7db9500333c161df12

SHA1
810247da801b120a215b453d1e680673867a0312

SHA256
aad33b63a1dd25e5c7924621c46663e3237445bc4717778b7f836c07b7b60272

SHA512
b797b2ce77d7805da9f9d6006422ea35dc211aa3edebbc98707ceff7c408d17f57904c7144e142184e26b12c09c28de1cbe0038d5f475bb4df32fc033c49264c

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

Filesize
10KB

MD5
eeeb0ddde15aeea41f8e46a58d4e3b62

SHA1
ad75013d877785e5341740ccb664d01c70db87a0

SHA256
b88d8ebb23878610dde5315f9af48799904e6527cf26077c841ad9f1b07c5ed8

SHA512
1335af63ba1ed7bcad4849e28c3666e5bd21aaec4890008d2c3fda2e4c2c017c8d73069d0651bff00b43f7bf05df3183f374375edc7c7bd0c60256c209a870a1

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

Filesize
10KB

MD5
8f31fa2fd83cfdd8cd40b42252ab5e22

SHA1
1f3a1616de7d05e1ab27d4d4ec7564cdd9d3bfed

SHA256
acf28df7571fe321514c5134bd65cdf9077acc52fb6d098845a9bb6c5eaa8312

SHA512
ea17b9288e24553518a8c880bdcf38411290845ae0d29f09538ca0dc242ff552fd5502fee8a115f68bfa2ce8578f840d0bc13ea4dd759570fcca8e8030e8682b

Download Submit