hxxps://mega[.]nz/file/qr5nSApR#QbHqZGH-9Gb9eX0c8f1CSQFAygVCM8Qjr_f50hi-APY

Resubmissions

22/02/2024, 13:44

240222-q121zsad4t 1

22/02/2024, 12:57

240222-p6w69ahf21 6

Analysis

max time kernel
1022s
max time network
1008s
platform
windows10-2004_x64
resource
win10v2004-20240221-en
resource tags

arch:x64arch:x86image:win10v2004-20240221-enlocale:en-usos:windows10-2004-x64system
submitted
22/02/2024, 12:57

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://mega.nz/file/qr5nSApR#QbHqZGH-9Gb9eX0c8f1CSQFAygVCM8Qjr_f50hi-APY

Score

6^/10

Malware Config

Signatures

Looks up external IP address via web service 3 IoCs

Uses a legitimate IP lookup service to find the infected system's external IP.

flow	ioc
165	whatismyipaddress.com
166	whatismyipaddress.com
167	whatismyipaddress.com

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-2828415587-3732861812-1919322417-1000\{230D3071-57E3-467C-88EE-477DDAAB0C38}	msedge.exe

Suspicious behavior: EnumeratesProcesses 18 IoCs

pid	Process
1872	msedge.exe
1872	msedge.exe
1092	msedge.exe
1092	msedge.exe
3228	identity_helper.exe
3228	identity_helper.exe
3596	msedge.exe
3596	msedge.exe
3128	msedge.exe
3128	msedge.exe
2160	identity_helper.exe
2160	identity_helper.exe
1032	msedge.exe
1032	msedge.exe
3704	msedge.exe
3704	msedge.exe
3704	msedge.exe
3704	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 55 IoCs

pid	Process
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	2792	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	2792	AUDIODG.EXE

Suspicious use of FindShellTrayWindow 53 IoCs

pid	Process
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe

Suspicious use of SendNotifyMessage 50 IoCs

pid	Process
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
1092	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe
3128	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1092 wrote to memory of 4336	1092	msedge.exe	71
PID 1092 wrote to memory of 4336	1092	msedge.exe	71
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 4492	1092	msedge.exe	87
PID 1092 wrote to memory of 1872	1092	msedge.exe	86
PID 1092 wrote to memory of 1872	1092	msedge.exe	86
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88
PID 1092 wrote to memory of 2980	1092	msedge.exe	88

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://mega.nz/file/qr5nSApR#QbHqZGH-9Gb9eX0c8f1CSQFAygVCM8Qjr_f50hi-APY
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1092
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffd819046f8,0x7ffd81904708,0x7ffd81904718
  2⤵
  PID:4336
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2288 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1872
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2260 /prefetch:2
  2⤵
  PID:4492
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2940 /prefetch:8
  2⤵
  PID:2980
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3416 /prefetch:1
  2⤵
  PID:3080
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3420 /prefetch:1
  2⤵
  PID:2816
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5440 /prefetch:8
  2⤵
  PID:3612
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5440 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3228
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4824 /prefetch:1
  2⤵
  PID:2260
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5624 /prefetch:1
  2⤵
  PID:1640
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3436 /prefetch:1
  2⤵
  PID:2480
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3516 /prefetch:1
  2⤵
  PID:3192
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3084 /prefetch:8
  2⤵
  PID:4216
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5816 /prefetch:1
  2⤵
  PID:2820
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3416 /prefetch:1
  2⤵
  PID:4536
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2248,16751335398724416787,11773866240295953654,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5768 /prefetch:1
  2⤵
  PID:2700

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4900

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2944

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x4c4 0x2c0
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:2792

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:3128
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffd819046f8,0x7ffd81904708,0x7ffd81904718
  2⤵
  PID:4536
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2204 /prefetch:2
  2⤵
  PID:1188
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2256 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3596
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3352 /prefetch:1
  2⤵
  PID:3196
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3360 /prefetch:1
  2⤵
  PID:2780
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2924 /prefetch:8
  2⤵
  PID:4320
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4200 /prefetch:1
  2⤵
  PID:1628
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4064 /prefetch:1
  2⤵
  PID:2580
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5320 /prefetch:8
  2⤵
  PID:428
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5320 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2160
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1312 /prefetch:1
  2⤵
  PID:3576
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1936 /prefetch:1
  2⤵
  PID:2716
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5064 /prefetch:1
  2⤵
  PID:3880
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1652 /prefetch:1
  2⤵
  PID:520
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2900 /prefetch:1
  2⤵
  PID:1992
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=4212 /prefetch:8
  2⤵
  - Modifies registry class
  - Suspicious behavior: EnumeratesProcesses
  PID:1032
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5516 /prefetch:8
  2⤵
  PID:1152
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5488 /prefetch:1
  2⤵
  PID:2712
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5500 /prefetch:1
  2⤵
  PID:2908
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5408 /prefetch:1
  2⤵
  PID:3544
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6132 /prefetch:1
  2⤵
  PID:4820
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6120 /prefetch:1
  2⤵
  PID:3776
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4944 /prefetch:1
  2⤵
  PID:1268
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6204 /prefetch:1
  2⤵
  PID:1408
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5512 /prefetch:1
  2⤵
  PID:3520
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6264 /prefetch:1
  2⤵
  PID:3652
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6640 /prefetch:1
  2⤵
  PID:4972
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6736 /prefetch:1
  2⤵
  PID:2756
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6924 /prefetch:1
  2⤵
  PID:3860
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7044 /prefetch:1
  2⤵
  PID:4776
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7476 /prefetch:1
  2⤵
  PID:5416
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7868 /prefetch:1
  2⤵
  PID:5444
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7736 /prefetch:1
  2⤵
  PID:5436
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7704 /prefetch:1
  2⤵
  PID:5428
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5928 /prefetch:1
  2⤵
  PID:5408
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7304 /prefetch:1
  2⤵
  PID:6084
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7484 /prefetch:1
  2⤵
  PID:5772
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8640 /prefetch:1
  2⤵
  PID:2892
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8340 /prefetch:1
  2⤵
  PID:6108
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=8692 /prefetch:8
  2⤵
  PID:5788
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8052 /prefetch:1
  2⤵
  PID:6052
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5700 /prefetch:1
  2⤵
  PID:4920
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5048 /prefetch:1
  2⤵
  PID:6028
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=8380 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3704
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8732 /prefetch:1
  2⤵
  PID:3336
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8664 /prefetch:1
  2⤵
  PID:3904
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3576 /prefetch:1
  2⤵
  PID:5364
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7288 /prefetch:1
  2⤵
  PID:5152
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8984 /prefetch:1
  2⤵
  PID:5844
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8496 /prefetch:1
  2⤵
  PID:4568
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3412 /prefetch:1
  2⤵
  PID:5892
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8652 /prefetch:1
  2⤵
  PID:1956
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8932 /prefetch:1
  2⤵
  PID:2448
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5560 /prefetch:1
  2⤵
  PID:2224
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8172 /prefetch:1
  2⤵
  PID:264
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2188,8280059144657780402,15382218739338530308,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8504 /prefetch:1
  2⤵
  PID:4508

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1648

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1200

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
65a51c92c2d26dd2285bfd6ed6d4d196

SHA1
8b795f63db5306246cc7ae3441c7058a86e4d211

SHA256
bb69ea4c761c6299b0abbc78f3728f19b37454a0b4eb607680ed202f29b4bb01

SHA512
6156dd7cec9fee04971c9a4c2a5826ba1bb3ef8b6511f1cdf17968c8e5a18bc0135510c2bd05cc26f3e7ae71f6e50400cf7bec536b78d9fa37ede6547cfa17e0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
8a7fedcc4e996732221c825148a2970e

SHA1
45e75257895124110816f38228e18e45694cc605

SHA256
59544aee7b0abd044eb71d75680112dd1b8eeb1cc4dc7102f2dd125b5c94d2e0

SHA512
7c6d6edff9fd77e613ade57bfbac98dcdc236ba5bab06761fb409f664e522c029ba8d7d4bc99b03a340dcbb70317af1aab1b65dce124853845b26305bd6ed666

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
ce1273b7d5888e76f37ce0c65671804c

SHA1
e11b606e9109b3ec15b42cf5ac1a6b9345973818

SHA256
eb1ba494db2fa795a4c59a63441bd4306bdb362998f555cadfe6abec5fd18b8c

SHA512
899d6735ff5e29a3a9ee7af471a9167967174e022b8b76745ce39d2235f1b59f3aa277cc52af446c16144cce1f6c24f86b039e2ca678a9adac224e4232e23086

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
597ee0994608ff826e9fac994bbda4ad

SHA1
2931e264751710a92960e587d5b5669800c3813f

SHA256
7d0b06b82f55c55f8c95cdc4e85d0ad6c06a0e63e331ccb281ed95ae3706e54d

SHA512
d298607c70f45a0af663b8585317b8abe7b6d164e9c42314144fe353233c3b8907d89760942c6dd97b9305bd0a87909e94e6ee43bab26f18d75ece31a6cc5c3e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\7504d84e-e019-4e81-80d6-3fa18ad5e856.tmp

Filesize
6KB

MD5
9b6cbbbd2d2f93f256b6f6c94029b6f3

SHA1
515ca70e176e1ee13bcab362a436c10f21755b94

SHA256
3bd73937315f2b4e96562e7c803678be5e324285950872353e8b9c6de4da0d10

SHA512
cbc72d365704eb76b427c0a9f8ba09e3b844f31d1e6407efb751e2512b76bd6ca8db99750cbec3649ee15101a901b2e67ba2958b3d39c43e6064de40444b8d07

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_0

Filesize
44KB

MD5
c0d8e9b170f22b4e13b54e60d1fdaa2f

SHA1
03268efedf12cff409ed7786d4f3fda33fd3083d

SHA256
d4cb540a8f04eb19722e88c9026c0c61dd6dbf3b12617661b8cd23d2f7c48c13

SHA512
7b08d94cb772daa42bbb4edce048912bd4792899aba7e4296ca6414411f3eea5a7951bd9c3ffc0f2c1a62bb232ba2614bb1d67d46ca21792b0c05164771c3f5d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_1

Filesize
264KB

MD5
fbfb548b3755f8964d62aca0f743be27

SHA1
1dfa8721dd83863f4cd056fb313528ce755c6ffb

SHA256
5d39d343acdb58d9f5443e283a6a0c88f201f10fdec2099b779b03f5a0f593e7

SHA512
726d73b4757855291cc1346422855635feca73049db78a92d8195ba638527d7845737a211355449d866ceb8687d419126905e3050446a8266fb0a08a870094e8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_2

Filesize
1.0MB

MD5
17ea0d06b1c1c09d71267bf4cda6e354

SHA1
42aa80b19aa63f7911f2d73ce3420e23b43bfc13

SHA256
e1187221af18d99eb9ff4ed235d4f0dafa293ddcd32dedeb18cadf0969692e34

SHA512
a9569564121cbdd6a12edb5b99558b28f09b08ec19f9f94840a01dc89941033be1aa3426df6d61657c326fc6158349770ac3ca418dc9bd9e0b39d0641a7b0973

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_3

Filesize
4.0MB

MD5
b52ea29260393a79d2a41061346dc4f0

SHA1
05f47e4bf928bf7dabd6741751eb5b95d868f3f8

SHA256
44c4c48606c7adf647d2499be39fcc613b0ae3cfdb02091ff19ae612502a2811

SHA512
81137a8ec3a7e805d2819c9f2c4dd3c97fc1f03269844d674b0f725fb3b63fde184c7a8d52ac45086753dab56e30bc519ecdfd70f5b98a52a3d48068ac02cae0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000025

Filesize
37KB

MD5
17da64fa4c58f181ade8ed83a36b9311

SHA1
f6b6b6e543ce831ed6534ff725956841dd5c8d69

SHA256
96f35b994015bb949352ffd8ba75a0d555a9a7fb3d70afd09f93796218a924e1

SHA512
3cf2a86c54c15577d7258d9ae44d72b724c7b3eb600fd9bdbc21bcdaef5dfe0910999ad16e1bd4301e26eec72858b53b68373928baf891e48d1f9297a2b9c67b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000026

Filesize
64KB

MD5
d6b36c7d4b06f140f860ddc91a4c659c

SHA1
ccf16571637b8d3e4c9423688c5bd06167bfb9e9

SHA256
34013d7f3f0186a612bef84f2984e2767b32c9e1940df54b01d5bd6789f59e92

SHA512
2a9dd9352298ec7d1b439033b57ee9a390c373eeb8502f7f36d6826e6dd3e447b8ffd4be4f275d51481ef9a6ac2c2d97ef98f3f9d36a5a971275bf6cee48e487

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000027

Filesize
69KB

MD5
a127a49f49671771565e01d883a5e4fa

SHA1
09ec098e238b34c09406628c6bee1b81472fc003

SHA256
3f208f049ffaf4a7ed808bf0ff759ce7986c177f476b380d0076fd1f5482fca6

SHA512
61b54222e54e7ab8743a2d6ca3c36768a7b2cf22d5689a3309dee9974b1f804533720ea9de2d3beab44853d565a94f1bc0e60b9382997abcf03945219f98d734

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000028

Filesize
30KB

MD5
fd0505ef7f1dce8595cad19d114de2ea

SHA1
166764ca6ff6e4faf3e97bad14db957f17e2feac

SHA256
2ec56ed4dd859b047d079163f90cd27dc7e00d7b402839d96397b299ca6975ce

SHA512
9ca7e84d34ba043b12a131a3cdf39e24f268ed262b49162ad925c01ffa43d7a4c1fbbc9a1608bc76035ef0a69eb2b6d1fed51693abe1faad7e7b09d5b110f647

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000029

Filesize
19KB

MD5
2e86a72f4e82614cd4842950d2e0a716

SHA1
d7b4ee0c9af735d098bff474632fc2c0113e0b9c

SHA256
c1334e604dbbffdf38e9e2f359938569afe25f7150d1c39c293469c1ee4f7b6f

SHA512
7a5fd3e3e89c5f8afca33b2d02e5440934e5186b9fa6367436e8d20ad42b211579225e73e3a685e5e763fa3f907fc4632b9425e8bd6d6f07c5c986b6556d47b1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002a

Filesize
65KB

MD5
56d57bc655526551f217536f19195495

SHA1
28b430886d1220855a805d78dc5d6414aeee6995

SHA256
f12de7e272171cda36389813df4ba68eb2b8b23c58e515391614284e7b03c4d4

SHA512
7814c60dc377e400bbbcc2000e48b617e577a21045a0f5c79af163faa0087c6203d9f667e531bbb049c9bd8fb296678e6a5cdcad149498d7f22ffa11236b51cb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002b

Filesize
84KB

MD5
74e33b4b54f4d1f3da06ab47c5936a13

SHA1
6e5976d593b6ee3dca3c4dbbb90071b76e1cd85c

SHA256
535fc48679c38decd459ad656bdd6914e539754265244d0cc7b1da6bddf3e287

SHA512
79218e8ee50484af968480ff9b211815c97c3f3035414e685aa5d15d9b4152682d87b66202339f212bf3b463a074bf7a4431107b50303f28e2eb4b17843991c2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002c

Filesize
1.1MB

MD5
eeb2da3dfe4dbfa17c25b4eb9319f982

SHA1
30a738a3f477b3655645873a98838424fabc8e21

SHA256
fbfee0384218b2d1ec02a67a3406c0f02194d5ce42471945fbaed8d03eaf13f3

SHA512
d014c72b432231b5253947d78b280c50eac93ab89a616db2e25ead807cab79d4cb88ffe49a2337efb9624f98e0d63b4834ab96f0d940654fc000868a845084fe

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002d

Filesize
33KB

MD5
3cd0f2f60ab620c7be0c2c3dbf2cda97

SHA1
47fad82bfa9a32d578c0c84aed2840c55bd27bfb

SHA256
29a3b99e23b07099e1d2a3c0b4cff458a2eba2519f4654c26cf22d03f149e36b

SHA512
ef6e3bbd7e03be8e514936bcb0b5a59b4cf4e677ad24d6d2dfca8c1ec95f134ae37f2042d8bf9a0e343b68bff98a0fd748503f35d5e9d42cdaa1dc283dec89fb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002e

Filesize
75KB

MD5
cf989be758e8dab43e0a5bc0798c71e0

SHA1
97537516ffd3621ffdd0219ede2a0771a9d1e01d

SHA256
beeca69af7bea038faf8f688bf2f10fda22dee6d9d9429306d379a7a4be0c615

SHA512
f8a88edb6bcd029ad02cba25cae57fdf9bbc7fa17c26e7d03f09040eb0559bc27bd4db11025706190ae548363a1d3b3f95519b9740e562bb9531c4d51e3ca2b7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002f

Filesize
105KB

MD5
24cab279a1b1479cd2848b4cf4db97d8

SHA1
c59c889167dfa25ea85e0ab5b93db29270cd9a3a

SHA256
2feef54f715ea3e6192ec7a9d30e910044968a41d8fe91fc9b1b469ad574df51

SHA512
d1ec7ed765e5ec1b5e095a917437ddcd783ad01a1d6025f1125906617afc24e1d3a9cd702616d18c4231e5ffe60e5326a8dee855db42bc417568283c310e5c10

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000030

Filesize
155KB

MD5
65b00bec774c969842aceb3199fbe254

SHA1
bd464411b9578497f081a5f8b6c04180b6ee0f0a

SHA256
d604e67e9d16b6b3d2f10687a36ec00597c48288fa60bfa957bd3ca78eadceda

SHA512
0c89ad2ca25ecd9058e42ed477bf6cd1512859c7ac63701206a82f2591b2878acc7f9354b6a23245fd186ca9b3c809cf7700c0e3e43f469c37580d8531d3beac

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000031

Filesize
109KB

MD5
bb3fc9718561b34e8ab4e7b60bf19da6

SHA1
61c958bedf93d543622351633d91ad9dda838723

SHA256
d6ea500b6752094a4c340d4f5ed01afdca1925006077560d9a3f56054cd8d141

SHA512
97da30e9a0d14e6f9151539b77b2216e0f6b6cc4742f075077f9ff92f46f8b97e82f020c562625261eaa01bcf810ce81c0b7b71340ac566aef1bef5a07dac63e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000033

Filesize
40KB

MD5
3051c1e179d84292d3f84a1a0a112c80

SHA1
c11a63236373abfe574f2935a0e7024688b71ccb

SHA256
992cbdc768319cbd64c1ec740134deccbb990d29d7dccd5ecd5c49672fa98ea3

SHA512
df64e0f8c59b50bcffb523b6eab8fabf5f0c5c3d1abbfc6aa4831b4f6ce008320c66121dcedd124533867a9d5de83c424c5e9390bf0a95c8e641af6de74dabff

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000034

Filesize
53KB

MD5
68f0a51fa86985999964ee43de12cdd5

SHA1
bbfc7666be00c560b7394fa0b82b864237a99d8c

SHA256
f230c691e1525fac0191e2f4a1db36046306eb7d19808b7bf8227b7ed75e5a0f

SHA512
3049b9bd4160bfa702f2e2b6c1714c960d2c422e3481d3b6dd7006e65aa5075eed1dc9b8a2337e0501e9a7780a38718d298b2415cf30ec9e115a9360df5fa2a7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000068

Filesize
61KB

MD5
fd0da247c572778b89b15413ad1956e4

SHA1
9009cd302b22b6edb98a97e9569fbb765640f382

SHA256
b6acc64fa2e8e311c90d54dbc05e76cbe0cce81e06ce95c900a62b32d1e0f53d

SHA512
97ecb491ca2365b2d0b6b25919c0d18b754a7d20dfc78bd427139349617a555fc4b8e47e1e7121a7ec8b604da6aebffa662bd87215aeeaaba37d2bd737edd175

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000076

Filesize
241KB

MD5
bb21f0142660167a7221733e1d8c52a7

SHA1
9601d6b174ddec3a2d9226e35c3667b5f2384cdc

SHA256
19ab2be029a03c15dfa56da1d466920d96d832ec989b447e0f44328496d2be22

SHA512
910be468b61fe5303303be94831cb58e10896a1c0e408eb367a4e8ca01c0e6183c491c77c20aadf5a4fc90808de90ad70511ccb78a8ab8fcd501e37ac970d432

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000077

Filesize
19KB

MD5
9a31b3d6658d584e8d16bbb25cef3ae8

SHA1
6015d2dd9ced18d00934ece35776d97f06cf7f8d

SHA256
46e709f66a851b8819579122320debc189a7242fe2f7c307fefc98f6e9e97e8b

SHA512
ff59f8eaacf725fae5c55a7be92125c73d573b51baadde86a1da28166738351ca9481a0d78edb32f6376f38e4dd421e450a1c8926e6a7ca7f168eb58e6104aba

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
4KB

MD5
b42740392f31e90bde006c4552156b25

SHA1
90245198232c6614fd17ba22f83b4504e7c916fe

SHA256
c8d4e53839c94b48fc7bad6334451d5d633b45d5ae6b4a36f010806e712f176f

SHA512
28450b78b99732df1c36f91e6d2ec36306eb43cf81bd15b89671f3c8027e2e26763a8fc3bcb1aae957db4c20f37fa5c24f3ef9d2b2f89f81d5e375f21f95a323

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
5KB

MD5
f92ec4c7b1512250b7f9792e291daccc

SHA1
a116a55d605f8ff437fc5a78640b898be7893939

SHA256
e28445bc107a098753d8aecaf2e102508f47409eb0995fe10abd760494c163c7

SHA512
563764c1b9fe5476315ba419adbd80f1f756a1198cf341026983586d18409fb9637200aedcde41c155ad0c36a0459ee8a0ade9889cdb1a441e3b58e709dc1765

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
72B

MD5
29fccbf776da412c432714c8e3b74aa5

SHA1
931594c1b1e048cc6a59500a64f6ae02e9904360

SHA256
71ee31680a86052002fcd3ec82dd07561467e37569d72caad1933cc95e7c82eb

SHA512
c9d21956c7146781d399d58e0c4d91bc3a0b7757e93d4077dba3e6c8a09458be1d7b3169e10461e8f9abe2438e10f4dc1cd26c1a31539940b4a9e405ee75b270

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
5KB

MD5
ad246d48ca2c7d716fb51bbbc6910130

SHA1
f6158f2eab81ee045735bf735cefcc8afa1b24dc

SHA256
42c3a7b9e5a6979e5c85297f12ea70ad7baff271f859fdaca01ce851000d3eca

SHA512
b3c3c395b63b1cc02f9a62dfa39a1a877379c6a513924801a930a361a837c58b464dd3cb0eacf6c5e7dee0ea869eb44dfc529c6bedd103e6462b1b2263f45fa1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
d9aeb2a9f836dcba7dba63043e55c745

SHA1
1e8ce28e69db7bbad46ae4bf551d4766dcd12701

SHA256
0e1db24616532889d7865dff3cb8655ea4c9a730e54e79fb0cab2b391615ceab

SHA512
913e9b5cd2b1780858a3ab0fff389e24b2d69dae554cb4a15168b8eb6cbed53b40de2dffc3314a2b0b70fc31cbd8f6db21010a90982612c1cb48876182e8ed28

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cookies

Filesize
20KB

MD5
bfc7a84ef80ee4d5badba3a1421cb6da

SHA1
ae6e136fb2f932ada523612911c5eacf67995fad

SHA256
db27918ec10d612740a2c6afe5cfa5707a4c301dacb0d1823a67d871fd3b52f3

SHA512
b7060c81b08a831a20ec9aff9cf98f6a364dafffc96b18fc1e84435c9fbbe26e4a416fde2f0fe0064597745582b2f6c5b0b36a9cbcc367a32598c5d7f8135204

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extension State\LOG

Filesize
322B

MD5
e2f93fe9d010611be29769311ffc6d15

SHA1
c03053eb7e08f1b252770b8fa95dabce09e34316

SHA256
601bc024457bbf803275348f37d5efa6b492686a2b3fa38776c42748de75fe96

SHA512
1ead4fcea6f92e3155c2b0d969ea32e55f641e24918fedab846b6f18a14acc5c6adb240c0c5c36f5632f417a7fe08516956b00d427ed9e04f96f63b6085329fa

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Favicons

Filesize
20KB

MD5
4f06063c9d56a650903dabde4b89d8e9

SHA1
6a580a5e7e3a2c621ea65049acb192e6a84f01a5

SHA256
c773cdd35da3598623837c254691d1ab84cd42e1a6301f2706dd8516b52e24f5

SHA512
8bb86be6635d28fdf6a0009619281e61ccb57f2dc4dff6507bb66da0d82794bb8f72cb7b7cfc3c47759fe35497c3f30e080eb83c3dd6a29c664af608517df73f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
1850f928698a9c343cb3bf3cd8f92fd9

SHA1
f512b0cc0d4e96c0ff7325b90b65acd6b5c37a65

SHA256
6aed2d2523d1664d61c9510b50f753375bc18f27b9c30ba42b8eb8d9dd2dd8c6

SHA512
71360228bd62ab518a594e4e22c6c4e365424edc52b3c95bcf152865f7f39b927b7a9ce52a3bf2aabc9bba5e30a69a509a1f277b60a87afc641e02d08b35415f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History

Filesize
124KB

MD5
87749c58f4f1d271ccf4e4708a6797d0

SHA1
8a324452c9646b221308ee1f3fa52a9876f965d3

SHA256
d6eb808cdcd9f54ffcb5031db3f294ed45074b2526a3e2e0e90471e1b6fe3ebf

SHA512
5b0a03608b8ff003d7bda8436710668c03443102bf07ca6092f0b157c346482339aa6536df5cc853a1cd7df5f23b059fe4c8871f679dc8eedc570d34145f7291

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History Provider Cache

Filesize
798B

MD5
83e84a76155f1a64748ec5d014e198b5

SHA1
bbe46556a77029f25b726c42a9696f1187e36cfb

SHA256
5976d80d0d53c412c896a25032c97e382f3bb9026ede3972cb8a1e49de50d7e3

SHA512
7501365f526187022918dd5456ff9cf29a3e630ecad610bfc641b6a6600d7aadfb1460f8e2a4935724ebc8e4ae8b2e70ad031944a0c9ebad2ca471a7a323c758

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\LOG.old

Filesize
375B

MD5
74058528c91f7615b810be7837954ade

SHA1
27f025374c36128ad6471b59d38974b21e1b2777

SHA256
16c86a018e81bd6ab2d4c58b08015ae2bddd94a90199e541861b7ffba1009977

SHA512
b46c28ffa733c16b252a9c8bbec94f44449370dd54c14e01d00bd12a36336d39ed6b16ab5160684ae31d8a608896e9488509bde31a44b7bade6d7a3e5c4eb248

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\LOG.old

Filesize
378B

MD5
08440f6d96432ea623422c96b0ad9cf7

SHA1
919177e64adbcc4bdcc5a9e32a7ce9d198ff306d

SHA256
666ef796eff45fe1101560fc88eaff1d4927cec6e3501770bd864f271cb22754

SHA512
35df85ff9f5de681906da410913ce66087794657815790eafc48a986b3ba52d8241dd658968c03cb884cc2045ae834db80fa931a41155afb12079504c4960746

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\LOG.old~RFe5893ee.TMP

Filesize
335B

MD5
c0b834d4a841fe4d4ab3e93bf2c85108

SHA1
6425fabb38936e830150024a6df811d64b37f6e7

SHA256
dca10e15a11645abb36a555ac426fba92ee8011fe0d5205d893e537212db7e5a

SHA512
0960ce977337f53f0a53669cb1b6e48c78c323b3506954faf35cce14617576f44732cffb4483431e6e027feeb5ef00de2b4c1716b3ea75e4652887c78604b566

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\MANIFEST-000001

Filesize
23B

MD5
3fd11ff447c1ee23538dc4d9724427a3

SHA1
1335e6f71cc4e3cf7025233523b4760f8893e9c9

SHA256
720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed

SHA512
10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\000003.log

Filesize
811B

MD5
80592610d7e95b09e6412235980797bf

SHA1
f3f19362bdd1123faba0d03192dbc2e14038556c

SHA256
3328ce68285fc78c2e956738829aa124e4bb13b5e762e39192731117cdc0df99

SHA512
408fb9b72bcb3a5ff0d15a85658d0b922e2272ac9f7b046fc31ea636719bb49fec6fd99573eafa9e3096e150761cd6eaa97bfa8a9aa48176282265ac6e9c29ab

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\LOG

Filesize
334B

MD5
f629fdcb99e2e664de74b5542e98869b

SHA1
120a98a2310b446c6ef4762d006a953deb87429a

SHA256
7e617cf158b867ce05d99019fa2dccc4782e91f954524c8738064fab6c31c65f

SHA512
4c6071c11786a16134099a2e2164764bbd662114c7bc532631e0e147677116a926875412bc43245f126f934aa1c217d34353371854696d772d20323063841f4e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
188B

MD5
008114e1a1a614b35e8a7515da0f3783

SHA1
3c390d38126c7328a8d7e4a72d5848ac9f96549b

SHA256
7301b76033c2970e61bab5eaddaff5aa652c39db5c0ea5632814f989716a1d18

SHA512
a202fc891eace003c346bad7e5d2c73dadf9591d5ce950395ff4b63cc2866b17e02bd3f0ad92749df033a936685851455bcdbfad30f26e765c3c89d3309cb82b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
6KB

MD5
a43949e942b654be2381656844c55de3

SHA1
e3bd23215d314413f41ce8b1fc8878cbb76af4ca

SHA256
75ef28d10480e468315ddd7d51a66a2c79da494650d3afe8a4ddf7ca3913fdbe

SHA512
efb2821b7ee42ed7fa5df3e6c8427c0813aeb83aa975582c25879e3f7b0c9401220e7a96626b3979605c68d004c64702b68899f8beb4b4ccccde7eef295186ab

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
20KB

MD5
978fc93311ff740d3052230fd32921ec

SHA1
0f80d72bbe8ce7de1697c4a9ccd9e0706f6239b2

SHA256
d4eb9cd90f6c41aac576b2ddb02511f91cbde78d72c468f02608d3e758710eb3

SHA512
f62d9e8440e205933fb06576f7433653f21254c073a946a57e59f4b1d570c38ac896c1c92c7c61d408f7e86741c480d413f83c7aa092d909c36546b0238affd9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
258B

MD5
2af45267beec0d905b81baba591e58e5

SHA1
d7ebfa1fb16ecc563901f0fae767b6ef7f0976fa

SHA256
7e8a74a7009899f8042b98847e1c8d967987bd2f323267b881dc8b0c0fd559ff

SHA512
614f0f2e87ee3a9b05c22d6c420daf601e9a908a7724f4325df401cc01021d1106c71867c0fc5ebe9829c48c046e681ff446e7bb94aa4b04d246cdec1ede4c7e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
19KB

MD5
bd12ab53c6ecf14dcf419e6827d5019e

SHA1
3467f6bf77c22c47bdd02ae479f7bab9a6e040c2

SHA256
851947b07c194976c09ed5c05ce4d060e180283ec8ea0552123c36f2a8d5f55e

SHA512
45879990b525976bc0191cd2c50ead7f59ed65042942956441c5081972ab479ce93cd7b50ac6ae7a8f2ad84232eb4e470a3851c36df8caf97c08c3a353b690a9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
406335f3b36c8dbeca407a23fb57726e

SHA1
37b839c89288cb30bc72b0a8cbd9915e810ea790

SHA256
5940e62dbb955b465f44413550b7ce5fab5a072121a3bf0c6bb799a06b9559e6

SHA512
f0aac2f9b861e5c5ce97e2c6b549afbc0b9719f942e154753271fddf0c7143ae26d30ca01f9bc826c863a87708463f6820854d1dae64710be014c617a5d836a4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
6512287ffdfafa27d67eb6aecd21ddbe

SHA1
caa5a42c73d00f0adf0d714ba9514315f464ede6

SHA256
b612a4f43f07d9137e090788e77724e936c3fc2fbbe8fbadcdb67de9cc908360

SHA512
d5b28724f4e76d223fa7fa6385cc605639bcae80bd7f5b065e02bea6a0df744479771b60058dda29e7e874db4d61e2cbdb133cc954cabeee1395e9ca57aee69e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
13KB

MD5
0e46e215f967c7fa643f3c11873e3980

SHA1
12acd97d467029a5a5d58d6bd9d649e73b1abbab

SHA256
adfdbfc5b335e942080f13470dd5bb869c2cf795b1be54d1e228737caf003820

SHA512
ad9ebde5faa561278b792a9453e0c18f9e4b712fd8428c300cc030fe016bb6d3caec1b9d02264329c9cf0f0ea862fd217718d802149d57fb4bdf1470259ac0e3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
18KB

MD5
dca11a100e0a12a833b3dfe811b12cd0

SHA1
2008b02503630ee72a91722fe884a398d19aee78

SHA256
47e766da79ca462c4f7a19e61258dfa4faa0a857cfc6dbdaba66a0510e4b4d46

SHA512
52a74075ab1126e028c6b602cfca459b753eb2c08980b8c20b23d41dfc44b80256cbdb181dc31d86b4ba6de09d204923e7dda313099184234f4d767f0bdbb7d0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
18KB

MD5
56ed1091b83c1a4e4264e4498d144c1b

SHA1
e08c3c0a21876cebb411ad1900413de02bc4526f

SHA256
99a665e3a218065d2450bf537309241185d77e06871d2a815614ea5ed9d8c365

SHA512
ed1255df1f3ee43527c09ff874a78dac715744633ed9b0bc45523326aa12a5628f9db24ee029a70022d084c0b8f6457d54fe0413eb984e924f87791e4a6f0b20

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
409e837808622e2d6c56da757726fdf1

SHA1
630382417c669603d02be5cc79fab86078ede334

SHA256
93e6b5a5dd6f6aae8804201052464394d9f272cb9b910d4644b0674a968d0f15

SHA512
658a1d1f07e6b41d12dd7194d6eb35e906cde1bc076d17d33e804495b0d1119f24d4ecbc3e570f1f25f7186aeb510e3b53755607a0737553c31ec2f65c55b7bd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
fec25e2faaf03994259e690057b6936c

SHA1
bd638edb27d2f9923a7ed1caa2eb1963e53fed4d

SHA256
5b02440e2ca101273bc7d947124a074d1e9db0f983e52417ffc588e929d04dd4

SHA512
ead5f3c25580a9bf832281789da49424e158a5305754223024796e7af292f966c0379cfa30bea8fd937c0ab3b45c0e5fd2c7cd6cca0798e9dae0b8b53ebd99b3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
17KB

MD5
7d9aabda8fe2bf2e70ad04bfafd6d108

SHA1
fb8e57ef2e4630c155352d00b1088265f6c7102b

SHA256
57c89d363f6f97baedbd32f0b42ac8719898a1a207268fd6187d1c63e56d23dc

SHA512
7e69e7a741c580aa5451994828225e21f16ddeaa7e6ce1b96e1134411e0f6e7dbcfe194a6459d07fa839f3205a5e25f8d374cc93df518e999d215576dba077ed

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
18KB

MD5
3bb4d3bdcce26d09686b58fd818d78b6

SHA1
85779ad19dd9c5e158d05fcd41688b3aa0ea4c92

SHA256
8bf8aa7fb02c36ec85ad15eaa2d59dea761ef2c62274e9a3d0226f8d5e971dc9

SHA512
b15a15ad74366dacf9f9c3e1fc6d3e9999e19ae823701384723dc5469b66e1c5a4bc03ef6a9671b7d526580ccc52939aaa58eb288c738fc7ecbe4c429cd0a76d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
fe60aa5214654e8b22666abc8bcdbb06

SHA1
b37bb165f7ac00b2e55ffd24f4f56433ac9b7b19

SHA256
9b45c8d94eae9a50646cae8a43204d6b755af1abe489742f219e8ca9297593ec

SHA512
e00efe0858bc5d43caaa0f16b5b2a3b7b188399d8b45248d8128574f381e91b5484756139053d6e06dc41f4518e05b4af3678f003b039e30ed5be11fdfd1f095

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
18KB

MD5
994e65119516be18dea4ba19c9497570

SHA1
1673750710ec75b53c994976d48e95e893797267

SHA256
5357bba9e91fa241178d4f8719587040498f61fc58bc2280cd0f91acc89955df

SHA512
24d9e09c5bd550a884b09a1007c06fef256fb02852ba0fb8d90ad178fc8273ed187d381763a1e6b1d17e4fcb65250edcd07b66b6275628068c8da9304a9b6f62

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
18KB

MD5
daa8a493c9bf3b03c488da5c22ea1b3c

SHA1
f027a5b0f856b6175620e997dec9628ad22aec9c

SHA256
75f263769890c65a32fd3cf4765155b3d5710c519afd197a5b5ecfe7d7ae970c

SHA512
9d4593dc7a0f37be57ac728756573c56176827de58e6511623606612f4316f51bfa0475f1407f237217dc763ad6612a02eb9130cc006caba25b28797a620c9ac

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
1f02efe3297d276cfe3690fddb997b96

SHA1
fd87b3ca002eb2f1d464ef7fada167bcadd8effd

SHA256
5ad4d91cc8a75f2a91def99e57b76bbf8e322f0050c8bd4715d1d044b7128bf8

SHA512
24286fc759fb6eecfd9c3818f2cee5668b24a24853314fc9a97d576257c93e7be5dcb60b7948b787b29b4f837ba58a0ce12785662243752cbccc657d7063a378

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
1d5a6e3c204b7f19a884d0560ca7bda2

SHA1
224a2e5713aca05acc1a31eddaf08ef13cd5f030

SHA256
8752d0a0d5799905845a9526628cca7e85b26966b9b653c1f87ec9423c7ca546

SHA512
37692e8e7e7dcdc82f2f42141704f150cec12aa5b039762f3842298ab79e8bb60db41f02ccc3c792ab7eb5b4be936230da5e48739e98a3f963c5ecb8961f8236

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
18KB

MD5
b4c633d5ba8e32f458741a60ed9cd7d1

SHA1
323573b3ff1bb5c168c1b3c2be55d9fb9e47e7f2

SHA256
99f7c84532402611f87d0e58847d8f59d701f6c0bbde731952fe23a02efb57f5

SHA512
1462598a874c1e542530d34f9013c86973a2db0d00642eca09a76f2a99ae292553797f24c664b33c7a4e26778e0a99c4bd80f3efe4ca91090786fd616e9ad309

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\000003.log

Filesize
602B

MD5
bd6abdcb09f4385ae27f2d0c4ab284fc

SHA1
0d9ca4f886a5f3c05243b1abd9f4f504d958bb06

SHA256
9262a81d73065eba66aa54b9eddde3c133dff590e5f0faeb994b73a31b39d11e

SHA512
a88356cca6fa9627044fc2b180bc7711281e3cf5017e351a15e15065cde69ad42c0b9a6fbdda9468b964ef29e7c06a49bf6f2727b541014ce970b20fb475fded

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\LOG

Filesize
297B

MD5
c2b9c884f605082b1a606d2f796d8446

SHA1
99c6280b515f2544dc45edbf2d45f6dd5e358187

SHA256
3e2c0a44138411936759978c1481009ecb34940f255a01cc9f8ff0ccd5730ff0

SHA512
f22f08def4cb0072663d0bf00436c215798bb394e7d5c62658b969ed08de01d4ad542144d17c78dac2315ab93a2be5155e539a75f6191944adb0961abeb08a26

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\MANIFEST-000001

Filesize
41B

MD5
5af87dfd673ba2115e2fcf5cfdb727ab

SHA1
d5b5bbf396dc291274584ef71f444f420b6056f1

SHA256
f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4

SHA512
de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
72B

MD5
78a55adcecb6b9c142fefee263dd0f8e

SHA1
eab35731d634f10c00413cf3891af20681be2484

SHA256
ebfed92b5e68b4350727035f94103733301416c640aaeb84fb98c1ddf89a73fc

SHA512
3daef171733e5666ae488e1d4671698e43dc5acb5b6b0963fc31de9768b40879930c1f666637dc1bb9d8138b1fdc48a1b4778284d08a1951a6e599d2bc058f4b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe57b882.TMP

Filesize
48B

MD5
e2e948bf3e4e5f1908e4917fc27c2f7c

SHA1
c66e2db232d1b2db1f7b3564805e7ec5de85faf0

SHA256
600088c623c780f508b8afb538940597271f878ebe8a72b12e43767511d6b177

SHA512
fcb1e09b3fe4041c0cb2c18985ea133d8db43ecf51b5b0bae15d0710465a66d253663c1635889189c879178fbfef6ad56ade9d17ad17294a5e30e0376e58421b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\000003.log

Filesize
641B

MD5
cb139e5ded1dc53dafbdb0164da2a91a

SHA1
ef21341dad130676e5da56878112443071561ac1

SHA256
fb784ceab23b8be0642ee0e5f611e682922c4143cabd7fd06dc7c5b0d30efd9c

SHA512
4aca50003130bb02e709c0c541bec5fcec3cc68bbc55245e0fe6528d9ed7c74084bcd925fe6b0fef73d2c85b403486ce82353439937849ceaff25b57348a9b23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\LOG

Filesize
322B

MD5
69a1c47e8cc6a5329ef9448e9904450b

SHA1
01a44acf84fa34eaec78daebcf7f15495de0e66d

SHA256
583fd0262f7c4212563a9fc4f8e0e8adcc8cf88e9c7e24292bbc73839fd79d37

SHA512
139d2d44d8a5e3e5c62c51afddbf463d6e927b3880dbfb8e6f2d63712f9685c8c914886eb3e5282254313cd0cb347f7302bc42c1d09cfba770e0f063fd97962e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Tabs_13353080242601490

Filesize
26KB

MD5
bfc1c7f95bfa98304126f1a66ef54718

SHA1
eff53a52b7e8753c75dcfd05c527ff90919d554d

SHA256
db64466d43c435907b8b0b283d3c95da425d6fb8f6efd2e645bd934467d27c70

SHA512
5bc4794f9ea27f4da2b0b90e7ac095db176b8bac5b1c5c2d7187a793b1e3f4dfb54159e1ec6f306e27867a8d471cae78024f07b993aba80cb5babc57dbe4e089

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\000003.log

Filesize
112B

MD5
29d2b44263bad309949cce82a0d344ff

SHA1
5b409d5db6d1fbd691db009336296883980fad98

SHA256
a3c2c69e29a2f759ee2ce3bad5535a5404b2db669494cd3e785bc3799c180f9c

SHA512
edcbca48c0aee254cbad52eb13a971dd9365bf3eb50148c4e812f0b88bb70d748c7c657d094303ca1eba4571725be6dbbdbc722727ba1e557ce3d38fc7c9e649

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG

Filesize
347B

MD5
779d32c6f7c75b439aedfa212a8c92c3

SHA1
a6244bc776a78a0ef13ce0fc9918ee6632699492

SHA256
c43a06d9e9cf15aa034d6af63c6d90348a25fb97149025a30a5f14fd442ae728

SHA512
56afe26fc52898d61b6d53d39d59beb2ba518a8c7d601f6416df87c7edddc1fc2e7477d5c0a525b45496f645dad0649082bcbd0552cc9a32347ae193038ff01a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG

Filesize
326B

MD5
c6d7271af97b3d575d412261a33bc1f6

SHA1
6809954aff80a622771c0c3c122c7b4228dbe1e9

SHA256
9906fd7524f13d59e9eaa57b5d2a7389b080268b018517616b8a1bb6301ebaa0

SHA512
119f50c4466e9b9ddcfe1dc5f61a191e4497a9f3fccf72d66b7b8fb921fd248387c1b161f9e70767fec81d6fd08458d78f1549acb149cf184613ee4ff937dae2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
705B

MD5
40dc9d8e32411e28bbe7d500ed83a0d4

SHA1
9e573a702605b54ef94c05409486da73e1fbfa48

SHA256
9cb0ff10fde8131569172b1f97ec0d4f466500aeaee160b2ec4a43cf2d362be5

SHA512
1f464f79bf513c37ee03e97c8e66b469fd5f8f48bdd41673187d601d660ef44289aac24ddf9fa80b2c5175175bfd159165fc9ebbaa5c02e944222bd2925db65b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
b05b552d47d16e2c7cea6d07a87cfe11

SHA1
78bb75c6a977d23440257cb33369895c8afb266e

SHA256
83df68cdee9738196cddec5fc61eb18a4d038fcbfcae7a2be63379236015944d

SHA512
d67c6a9ef9eaba9c4206e3f321d62c1b55ed16d70c549fc70072d8f9c107ed7e8244fcb240dbfa3933de2ddfc03f0a214addd5e4e8e9e41f08be97a9b51d5f5b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
10bc4e0f679c22c9051d7d5d946c460a

SHA1
f6210432371d00069f1384e733ce27f1d346e9cc

SHA256
986e52e8f3100e77515358c5563d69c22f2c6f0a294c1b450d8cf06a0cfb1022

SHA512
9fa214d6c9e7c818ab510a1bec67e60c28eb9674865065c7d675c94ecea7be68c13b306e50b151d1df12f34e3b21270249d8ae3d19252c59278151a1f73ba10a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
ec22149d1ce3035fbcb075e4dbe75006

SHA1
d417e9a17874c31c22c9c71a31840d892564776a

SHA256
7d68896468954debd926ff0192c63cf4009bcd7a8d3181d71fa67dcd73889b35

SHA512
6a4597ca3330ebcaec6cf36848d8f95e2b6c20918780156dd339b780c0d7547f2db2e2b29e961af4016729b875e746e24b0109e0c45c5f82d3e4c07032d47f01

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
4f519a319f534a299a6bbb57a028098a

SHA1
8f7d14af3deaef60abec063a29f9f98f58c7a7e2

SHA256
57847daf2f1167ef44c7b830fd4e9c5ba46f9b714c82d06075d4ac07bf5e3a32

SHA512
13a8ac44ec6f0d87df9a519bb73e6ee5bdb25f378421ca9745b24fac7c0b096987425fe56cb551c20c050c59a339c940701b0ca9e4fabed01cc790216d75e99a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
203B

MD5
4e20934fc790f02da1dddcad44f1569f

SHA1
5757309e2f5acdd89571ec0b14e80afb30a973a9

SHA256
6cafed77ec285629f04160e0188ab372dc9dec37223adfbd35c94800f9fd3658

SHA512
643a23d940c0f385cb56a277d65f69335fe9115015b4189d1ae87f89dd521e6acbefffa80af7d88db54a55a82d4e50b85e4f77bdd25c41eb74705f288f8b3c95

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
4KB

MD5
76f74f9b29acd857b8aef7aa84730164

SHA1
8290ffc9ff31a96c10352312ec73a212dc9caf16

SHA256
565e9653bb9e5dedcd04700497d1c941c67e5ce7387cd98efcacbf6ff3cc1207

SHA512
2bc97785b6488df6e9fc9108f58306a1031377a834b7c28f22c51631ae08dd95b5d38ed048c5c6e3dafdae529c2d26ea0d67e23ec29510cdacdfcfbd00732988

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
df6e224f4deb5ce9502e20806e1673da

SHA1
8f864f0a3dc3ae4cb97a8db9830635f553820604

SHA256
cab717d2777dcc681606057970adbc89d6bafc41ad9a7a659168e98c5d233a16

SHA512
a616341db1dccc631caa819de356437db7577f7bfa8d9f73b8a9a3cb94e71b5a60d8caae29839083aec6367caed0b0bdca6894c642df13d314cfa5570a79cd8c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
ff7ca5196e5be12ad06706730b09cb45

SHA1
09abaddbcd526da40cf73762a5709c8991b867fc

SHA256
59d984e2cb2fdfac7754952d734d248317434d6767df6728bd81c0bec402c064

SHA512
52c2f909e9edf541c771e9526cd1435cd14b20d17c21cb508525b98be7b30c2a518df60641de04eb902a1baed194f477a92a07d0ef69b41e75c3ccbe5dc128c7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
18adc6d581b78d4d415d8d6bd33713b4

SHA1
1abe68ea09d1225fe2e96f97f10922e2fa3ecac3

SHA256
8c0d73455f335bdbb9cf68f0b403cbca09ac42a8a75085040553beeb9d47280b

SHA512
ce501bef096e562cfcb9a16a6d665385b03570331407d648a32b83fedf44ff9fa7671a2774bd343a4e93b4172a0dd0e69ec588bcfc5430557f6f866ab0c3805e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
991fdedb6df5729ac16f23b3cbde7c0a

SHA1
43938d50d9eea14b63b877ba82adb40a6194848a

SHA256
4286cd460d2334999a135a5889edeffedcc1d0c04aab5f3c123c03cddb84e5b5

SHA512
90325b96b03cd6dc189d86b35b82ca57484e6e07c0b0f5497c364203668222729fe701f4c7aa861bbac0645f1309e98ec89039db9c7fda0e2061b796bce828b9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
e00294e35583519450dfa2b2ef6003d5

SHA1
338956645a2736807cc1eac7983a5c14d5c6b290

SHA256
6096877fda45d4b38b587cde15a7819a53cab65be687b3d07d95a075bb45c6f9

SHA512
68a02dac3960c65dd1314055412d3ba4a11b4c306427367c6b9cc66f0b3862c15f1ddf140d795131c4c7a41ad5a1ac656bde9ef4136690456af2147b3eec7af9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
0f22e14e393839dd96df2c261159dcf1

SHA1
172c4e070994a75101e5fb5e67b96a73922a3cb1

SHA256
70ac934450083ff4dd7c5c48cb83ac47fbc969183db1ffb888e31bf459f05927

SHA512
c07708f1a790af967772020a17b0579242662d9650ef84a1fe142a62c7bc45d7c73f98ecfec5c6ed88feb95e8bf455f8d521f4d5629cf39f2b4936823fba52d1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
98a71118c8d442b2a6798ce028b110c1

SHA1
ea3973ba8614ac6a6dfb224cadda09b79271f6dc

SHA256
8062b16e81398fbf2d20605080e3138bf685e0600f7bad09b298950f397fff08

SHA512
c59b25c7e6685b98d59fb21d8c0d56e650dc52fe3cc0ffb80840cfd8b8af8c5c6d63a37c1dd7f835ba42a9d99ddb4752e844d7faf78308e4260d09bfde89c5a7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Visited Links

Filesize
128KB

MD5
2416a68f7d969718b3a320b86043e923

SHA1
22a3c8d4c09aecc9379203a0e44e615960212025

SHA256
2969918bccd446ea0e27984c24e87da00e1083c9ab0cc3bf7162b9f6ead0f6fb

SHA512
cc1504e370687679f15c0dd805126049a759326a08ab7464b98484e00ddc41d8c1c8437b95748ebb9c4a01bbf519a44525e7e2fc3682126eccd1fa247f036558

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
aefd77f47fb84fae5ea194496b44c67a

SHA1
dcfbb6a5b8d05662c4858664f81693bb7f803b82

SHA256
4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611

SHA512
b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db

Filesize
72KB

MD5
0180619c599ad36460bc332c5adc24d4

SHA1
6a8f3a517c1873c4e37d9011e5d4a1c814d3cc23

SHA256
4d4bcb806d8aa1a5dff5f89f5523e547b2b02f524bd389eae253b154f63d15ea

SHA512
18762b119f0e61808ca847509542257b1046cc2e13a436d60e80cf7061e01c3f69c024a2858b9802bf344d4bdd46e518a6a73a38f60e688e6195c7ab60cd5f16

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\000003.log

Filesize
206B

MD5
72f0d2063ea1c3d12bf601f2f9a378b1

SHA1
15aabf5b193c003c5cbbaaf7c55bbdde8452de78

SHA256
9366f4000263b9f246e1a20f04660405445fd321347940bcc2d76a0ae3905bf6

SHA512
6a8dff31366cdcc9eaa180b36af60d02e60365711482bf5366dc3020a35dbe68107410f6f262791ce98b9653d8763ee4d705b8aaf828951f59d2ed5bfacdd18a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\LOG

Filesize
319B

MD5
ff274ce6e3bd6e01529ba36534a5117b

SHA1
29575ce5cdacb57863b063d6000b1267df3ff886

SHA256
c0fe9ab6db6d3ed9c74a3078c534809163a52762a38469aba6719a23fd3292bd

SHA512
364805293cd2f1c42e2adcf918690045905794c66448f5bc1baee3fa6692b10cfd29943f2eed8e02e6b9e7b08eb962e64b76f7eb64e2d3cc611331d3ee1bb14b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\000003.log

Filesize
594B

MD5
70e009d0a48ff3bc34a3b82592cf8579

SHA1
6b2664a182110c8e3f2f93f30e2c3c62c18788d0

SHA256
642f55b3e8e4d528eb1af1ce4951af444f1cd378192281fd61228def00b4abf7

SHA512
352568c01b2354348f7337e9bb7108d305d62d3250782e44490d5cce82ed7a098bbbd5178303265a739978c0848fca57c6f1e7a64cb972a61e8aacda309fd1b7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOG

Filesize
337B

MD5
eceadb92757a236bd82c6ee30c6215f8

SHA1
ee7a7c5e264b08b60615621738c6b5d9cb41c2f6

SHA256
72a407904a1b9975e2154481a8360c086fc03639091d36a90b8042e7ed925019

SHA512
cfc05bf88e4fed443f6bd76c3aa17478a2ea6fa5c5b5ad32ab3bc14e3b53e1f8301d453f5a2fbcdcfc1be379860601997ce6c1afa8fa46dc929b4de162bfd0fe

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_0

Filesize
44KB

MD5
25887d6916b15e0f2b26056b58104ea0

SHA1
cc6d415e7515e6aeb95eb93cbd387caa4715a7e4

SHA256
ef2d8e16eed513419cb44ec8eade7be088ea83c9f938777faf7544552a9d10a6

SHA512
3c8f32da64ae32e1a4cc26a3554ae3b850bb37da0e77ecb9c2ce0b69cfec0b69652b9bf2a82c5e14d1f8d580da2dfd556181ba56df35e76a5131d48a6edf6db6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_1

Filesize
264KB

MD5
3a3c167de61b83e6ab8540a12a2b625f

SHA1
9ce94be767ad77201f8d15d8199a5a855ae3ff74

SHA256
6a2f6206ed20b864e8520c09fc519cafc63d007af5baf818181b0e352af0ab5c

SHA512
7ce4ab449b68ab59fa68e17bbf3f6157b406442539d88c0db5d0d7825c5365349689347918457ac863376fdbf93b04f85633212f94dfb3c0eb05729db582c987

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_3

Filesize
4.0MB

MD5
bd74cf7f5d0d52cec940b536435d73d1

SHA1
ecf133734fa9d8545840082640dc4340d7c98f46

SHA256
80fcea4495c3da462f890f3214667c2b7e744794f630b93d213450748d062c11

SHA512
002045ef23eed0ba6dede5b8142a2d9d7403e6d7522e3cba7f798b4a208d13dda80ae59f80b1083ffa22901e8c4b23c0c42e1551dccf246d301dfb6c0e647502

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\f_000001

Filesize
19KB

MD5
0baa1e177d67eb34e504ea95a8954c62

SHA1
806d970044988739179583a992d9faebc5d96abd

SHA256
2d06f610c22647a412b7fa7c23b65da8334ce2b61e7883f91cb8f4009d8399cd

SHA512
f577fca639eba51d1803fe43eee336619864562f63a08ba67b2869e6c08fb02a5fbc44ef51fde8b948e93ce50d0ea1581d9c0ef3dfe41fb5b5c9bc54656cddbc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\f_000002

Filesize
19KB

MD5
e3ce979e426e4a349a51baa9515ef750

SHA1
f01511e40be6a2d1f2a912cd82fd47023b3c2961

SHA256
577f842824da7be899ab4cca5906ed3466c6b6f5dff14c3e078fd9d70a6f7ddd

SHA512
4e1aab4f264f022765242a9bcc1e2c7b063d8bad5b343230ccb706c59f0bb553da41dea739330515271fefe80da41d5c29ae5ef4e88c552554c2ee8489be7c08

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\f_000003

Filesize
17KB

MD5
6bc4851424575eaf03ebe2efee6073ab

SHA1
2d014fe2feb929d03a46322645a94556ca5c9e96

SHA256
abaded8e235fdf329521806af30a1cc7701eaca3fe2efccb9da760ec6d8e5e4e

SHA512
af3b7d93fa2243475d74d4bd7f918ce2706bf6eca28029b9e49869f5f793e483efaafdfab1fed6306d5fc77a5ed3b27097b27448cd04560bed4df6fa3268ccf9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\f_000004

Filesize
17KB

MD5
fc97b88a7ce0b008366cd0260b0321dc

SHA1
4eae02aecb04fa15f0bb62036151fa016e64f7a9

SHA256
6388415a307a208b0a43b817ccd9e5fcdda9b6939ecd20ef4c0eda1aa3a0e49e

SHA512
889a0db0eb5ad4de4279b620783964bfda8edc6b137059d1ec1da9282716fe930f8c4ebfadea7cd5247a997f8d4d2990f7b972a17106de491365e3c2d2138175

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\f_000005

Filesize
17KB

MD5
913728da90cf90d8e78af59c60b47c3d

SHA1
f42f2a545d4fcaf4f76d0f060f52e33a47df7f1e

SHA256
b0b478f9aa6aaf8d5811e296047ae1f8ee07f4c4998fe9d7b960755ea1fafb82

SHA512
3af86e053dd56aef03e6f967a49b1a0d492616a71e2e49090e0c8e5cbe58ff37ccc55e91f06bf34096059a49f3de84b0bca587f3f17c366f97c0f7a0fd17c974

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\f_000006

Filesize
22KB

MD5
1ac9e744574f723e217fb139ef1e86a9

SHA1
4194dce485bd10f2a030d2499da5c796dd12630f

SHA256
4564be03e04002c5f6eaeaea0aff16c5d0bbdad45359aef64f4c199cda8b195e

SHA512
b8515fb4b9470a7ce678331bbd59f44da47b627f87ea5a30d92ec1c6d583f1607539cd9318a5bccf0a0c6c2bd2637992e0519bd37acdf876f7a11ed184fb5109

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Version

Filesize
11B

MD5
838a7b32aefb618130392bc7d006aa2e

SHA1
5159e0f18c9e68f0e75e2239875aa994847b8290

SHA256
ac3dd2221d90b09b795f1f72e72e4860342a4508fe336c4b822476eb25a55eaa

SHA512
9e350f0565cc726f66146838f9cebaaa38dd01892ffab9a45fe4f72e5be5459c0442e99107293a7c6f2412c71f668242c5e5a502124bc57cbf3b6ad8940cb3e9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
0cf0aa1f5aa11783c0ff0ccb950b9c78

SHA1
7e4d0bb7c1a0c11b7b9576d357ee8569ca690e19

SHA256
737ec11a7b4ef247b32a9ce33f4e4680793e7d11e8fcd65d455b1bbdda4ae5d0

SHA512
51835dbe9e7212b9acdd0f54c843638dc1d4bd6d364fcf3ee51b7ce543a4c5d14fa6726515cab410bc0d441ba1f8bf74d84986616f5df5c8ad311c7468ea7b04

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
4de0d7b9edd54de469e3b169fc4974e6

SHA1
dfe51ff844edc0cd9b720345138f20fe7b58f1a1

SHA256
30e06bbf8e569647cea48fe973877f8e5c0ad9f3eea494b0c9b0f1cb45376d35

SHA512
e7e39256f2e0409e2e16681101da4a4ef0845cf2c1611b366b7a033e2cf74d03ce84c927eb62e608e561b7e5dadb694f8e36a35fa0c2c7a858e9753c59d948e6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
cb8b653d33cd64e98e1e2e7786b39179

SHA1
b8f5ab79eec2dd0b8b1714ef562385b026435ee7

SHA256
c2c2ebc612fd61cc6538add7bb9b032eda3c2cda74d62cafb15c5b8e3e57ad9f

SHA512
c2ac74ccf8a38a30cd1c92f050dfc7403f4eb20971afa57f78f9883ab7210baf4c87d5c41c9a1f89a797980456385e255b226b9d625d362f784f7d6965f7f17f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1

Filesize
264KB

MD5
613a17028c2464d73c6c6b354e2b1281

SHA1
729638fd9b413a2a1ad61c45ff74b6a06bd102ae

SHA256
b47a9cccd5db38442cc880616ecbd8db001345d0427945585f37391e28e00997

SHA512
932fdc2a52b8b16ac46186b8cd8f2887bfac4c22dea700f2616aa90729311fae28dee47bbe33f4cd5d00fcdf474a32859cf99f240fcdcc8dffb76b694d7690be

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\TokenBroker\Cache\9cd93bc6dcf544bae69531052e64647ec02f2bb4.tbres

Filesize
4KB

MD5
01d0cd2861c186c7fa2d290c6603896f

SHA1
ba396f641a0e47c7028e04dcde29fb16abc84286

SHA256
c949be691c620656f3a676edbcb3c615d3f7affe340509ce8af186e9d09e1669

SHA512
76b48864d10d288aaac6f0a982c480044dc2c4cad19558e66fe5a9554d1be166114d34954ff0a33b753e78f1d12f366280df08bebf9f361a829cb3a5ebfb5e83

Download Submit