hxxps://steamcommunijty[.]com/go/pay/gift/50

Analysis

max time kernel
117s
max time network
125s
platform
windows10-1703_x64
resource
win10-20240221-en
resource tags

arch:x64arch:x86image:win10-20240221-enlocale:en-usos:windows10-1703-x64system
submitted
28-02-2024 17:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://steamcommunijty.com/go/pay/gift/50

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 5 IoCs

Processes:

MicrosoftEdge.exeMicrosoftEdgeCP.exeMicrosoftEdgeCP.exeMicrosoftEdgeCP.exe

description	ioc	process
File created	C:\Windows\rescache\_merged\3720402701\2219095117.pri	MicrosoftEdge.exe
File opened for modification	C:\Windows\Debug\ESE.TXT	MicrosoftEdge.exe
File created	C:\Windows\rescache\_merged\3720402701\2219095117.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\2219095117.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\2219095117.pri	MicrosoftEdgeCP.exe

Modifies Internet Explorer settings 1 TTPs 2 IoCs

adware spyware

Modify Registry

T1112

Processes:

browser_broker.exeMicrosoftEdgeCP.exe

description	ioc	process
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000\Software\Microsoft\Internet Explorer\Main	browser_broker.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000\Software\Microsoft\Internet Explorer\Main	MicrosoftEdgeCP.exe

Modifies registry class 64 IoCs

Processes:

MicrosoftEdge.exeMicrosoftEdgeCP.exeMicrosoftEdgeCP.exeMicrosoftEdgeCP.exeMicrosoftEdgeCP.exe

description	ioc	process
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-Revision = "0"	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\History\CachePrefix = "Visited:"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\History\CacheLimit = "1"	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = 53c076f7676ada01	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\CA\Certificates	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\Active	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\SignaturePolicy = 06000000	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\HistoryJournalCertificate\CRLs	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\Disallowed	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus\DynamicCodePolicy = 05000000	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\VersionLow = "0"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\Internet Settings\Cache\History	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\Meta	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Internet Explorer\Main	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\CIStatus\SignaturePolicy = 06000000	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Explorer\Main\OperationalData = "1"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\History\CachePrefix = "Visited:"	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\SignaturePolicy = 06000000	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\FileVersion = "2016061511"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Zoom\ZoomFactor = "100000"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-DXFeatureLevel = "0"	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = db2e08f8676ada01	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Zoom	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\OnlineHistory	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\CA	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\PendingRecovery	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\TabbedBrowsing\NewTabPage	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\Internet Settings\Cache\Content\CachePrefix	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\Meta\generator$vBulletin 3	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\CVListXMLVersionHigh = "268435456"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\HistoryJournalCertificate\NextUpdateDate = "415921295"	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = ec57d90b686ada01	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\Internet Settings\Cache\History\CacheLimit = "1"	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\OnlineHistory\NextBrowserDataLogTime = a06190419a6ada01	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\Meta\generator$Discuz!	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\History\CachePrefix = "Visited:"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Internet Settings\PrivacyAdvanced = "0"	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = e6f35ddc676ada01	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DomainSuggestion\FileNames	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Internet Settings\Zones\3\{A8A88C49-5EB2-4990-A1A2-087602 = 1a3761592352350c7a5f20172f1e1a190e2b017313371312141a152a	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\AdapterInfo = "vendorId=\"0x10de\",deviceID=\"0x8c\",subSysID=\"0x0\",revision=\"0x0\",version=\"10.0.15063.0\"hypervisor=\"No Hypervisor (No SLAT)\""	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\Content\CacheLimit = "256000"	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = 865f9ef0676ada01	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\TrustedPeople	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\Meta\generator$vBulletin 4	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus\ACGPolicyState = "8"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\trust	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\EnablementState = "1"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\CIPolicyState = "0"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU	MicrosoftEdgeCP.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Content\CachePrefix	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DomainSuggestion\FileNames\	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Internet Settings\Zones\3\{AEBA21FA-782A-4A90-978D-B72164 = 1a3761592352350c7a5f20172f1e1a190e2b017313371312141a152a	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus	MicrosoftEdgeCP.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\Root	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\Content\CachePrefix	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\HistoryJournalCertificate\CTLs	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-313240725-3527728709-4038673254-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BingPageData\RulesFileNextUpdateDate = "415301836"	MicrosoftEdge.exe

Suspicious behavior: MapViewOfSection 6 IoCs

Processes:

MicrosoftEdgeCP.exe

pid process

1776 MicrosoftEdgeCP.exe
1776 MicrosoftEdgeCP.exe
1776 MicrosoftEdgeCP.exe
1776 MicrosoftEdgeCP.exe
1776 MicrosoftEdgeCP.exe
1776 MicrosoftEdgeCP.exe

pid	process
1776	MicrosoftEdgeCP.exe
1776	MicrosoftEdgeCP.exe
1776	MicrosoftEdgeCP.exe
1776	MicrosoftEdgeCP.exe
1776	MicrosoftEdgeCP.exe
1776	MicrosoftEdgeCP.exe

Suspicious use of AdjustPrivilegeToken 4 IoCs

Processes:

MicrosoftEdgeCP.exe

description	pid	process
Token: SeDebugPrivilege	3032	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	3032	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	3032	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	3032	MicrosoftEdgeCP.exe

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

MicrosoftEdge.exeMicrosoftEdgeCP.exeMicrosoftEdgeCP.exe

pid process

4988 MicrosoftEdge.exe
1776 MicrosoftEdgeCP.exe
3032 MicrosoftEdgeCP.exe
1776 MicrosoftEdgeCP.exe

pid	process
4988	MicrosoftEdge.exe
1776	MicrosoftEdgeCP.exe
3032	MicrosoftEdgeCP.exe
1776	MicrosoftEdgeCP.exe

Suspicious use of WriteProcessMemory 64 IoCs

Processes:

MicrosoftEdgeCP.exe

description	pid	process	target process
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 4592	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 1776 wrote to memory of 2536	1776	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe

C:\Windows\system32\LaunchWinApp.exe
"C:\Windows\system32\LaunchWinApp.exe" "https://steamcommunijty.com/go/pay/gift/50"
1⤵
PID:1340

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:4988

C:\Windows\system32\browser_broker.exe
C:\Windows\system32\browser_broker.exe -Embedding
1⤵
- Modifies Internet Explorer settings
PID:4608

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Suspicious behavior: MapViewOfSection
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:1776

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies Internet Explorer settings
- Modifies registry class
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of SetWindowsHookEx
PID:3032

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:2536

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Modifies registry class
PID:4172

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:4592

C:\Windows\System32\DataExchangeHost.exe
C:\Windows\System32\DataExchangeHost.exe -Embedding
1⤵
PID:1420

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
Filesize
4KB

MD5
1bfe591a4fe3d91b03cdf26eaacd8f89

SHA1
719c37c320f518ac168c86723724891950911cea

SHA256
9cf94355051bf0f4a45724ca20d1cc02f76371b963ab7d1e38bd8997737b13d8

SHA512
02f88da4b610678c31664609bcfa9d61db8d0b0617649981af948f670f41a6207b4ec19fecce7385a24e0c609cbbf3f2b79a8acaf09a03c2c432cc4dce75e9db

Download Submit
C:\Users\Admin\AppData\Local\MicrosoftEdge\SharedCacheContainers\MicrosoftEdge_iecompat\IECompatData.xml
Filesize
74KB

MD5
d4fc49dc14f63895d997fa4940f24378

SHA1
3efb1437a7c5e46034147cbbc8db017c69d02c31

SHA256
853d2f4eb81c9fdcea2ee079f6faf98214b111b77cdf68709b38989d123890f1

SHA512
cc60d79b4afe5007634ac21dc4bc92081880be4c0d798a1735b63b27e936c02f399964f744dc73711987f01e8a1064b02a4867dd6cac27538e5fbe275cc61e0a

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\1SFBG7A9\shared_global[2].js
Filesize
149KB

MD5
cbbae8ccbeeeb8dc083963d809d6d609

SHA1
7a9cbbfa2bbfe4915416db812025ee468771c1f3

SHA256
ac1f32883d1db9ec6b66ef92c6f35602991d866824c7e347d3fd5d52c36e5fad

SHA512
bfcc1f50105636fb1b654a6f602f8b728e72788f7b216091c41b5e3d5aaeff59c3d8d659c92a526028988a449e9036495d91b24bf2ae49bade962a2e97ee6139

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\shared_responsive[1].css
Filesize
18KB

MD5
72e18d3f57737adba0956936bf438916

SHA1
efac889dc41d671ae12a6e0a6c77f803f7ec68ae

SHA256
ea56da3ab70fe84a679dc523b2ec93bb3a01ad55e41a4da0ef79e39c5d9f47ac

SHA512
d90e4dd1732c27edbd0bca44a00ec7352512cd80eaf0c8b044fadf6b2764c1bbad74dcaf91a0d4f00769b314d6fca01445b5161d34c7f147b656fc1dde957533

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OF1EQ1FL\buttons[1].css
Filesize
32KB

MD5
0abae40ee6cfa8b72abfb79829d53400

SHA1
e87d3aa5ebfeac3d486fb3d9913a81be19af3762

SHA256
c54f7e964fabefc31c2df4864777db262e62c3236a293fbd075deaf1d538c2ed

SHA512
a347d51254a5ba555f5cfcffaaeb40f687c549b8e2c76eaf98f4e4522a8f5ae5a358f10119608c2657e30176d4675fd11c2670dd3f923bd788f8d30ca45a5575

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OF1EQ1FL\main[2].js
Filesize
85KB

MD5
0f4e868a436186d91cb264fe76d8fc4a

SHA1
cdcd8c3d78147dc90bd43dcc14dd8ceffbc0824d

SHA256
a63af36f69afc592dedf33529b7072fa2a1689f6fa862ce0779795c60d5ba352

SHA512
aeb79c9be6f66e35f1e0fc09da13d1e1beb53e5b8f4f0776cb6d7fa55ba953a12bb19e4d47963d519f0979afb38b0bf2259f9aa4bb1b825050be34d72cd96e06

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\9W858EAU\favicon[1].ico
Filesize
37KB

MD5
231913fdebabcbe65f4b0052372bde56

SHA1
553909d080e4f210b64dc73292f3a111d5a0781f

SHA256
9f890a9debcdfccc339149a7943be9aff9e4c9203c2fa37d5671a5b2c88503ad

SHA512
7b11b709968c5a52b9b60189fb534f5df56912417243820e9d1c00c97f4bd6d0835f2cdf574d0c36ecb32dbbf5fc397324df54f7fdf9e1b062b5dbda2c02e919

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\P7R6OC2E\suggestions[1].en-US
Filesize
17KB

MD5
5a34cb996293fde2cb7a4ac89587393a

SHA1
3c96c993500690d1a77873cd62bc639b3a10653f

SHA256
c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

SHA512
e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\ImageStore\0cscu6h\imagestore.dat
Filesize
46KB

MD5
cd39cca8a7e4ae1d1f907cfeda2fb72f

SHA1
2226283c0295ef8bf89b93b62c7e31e5f0d6f3ed

SHA256
889153d043d40950cdfaff2f3ce1ed84ec792e0447801d209a84218559deb3d0

SHA512
d867fd382a3bf461101b6751d61049799f2dd773af4c3903028ba48637219e91c2914210b87a9d67d242b96f830d389e8517fed5ce81e8216121722f61604c82

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Temp\~DFC422BE1298903A11.TMP
Filesize
16KB

MD5
d921c513745740265383fb1bc095f887

SHA1
73541f41f75fad98c0749745b7e62b3f06611595

SHA256
39d25932a2a8114fc69f363a1f09822da3fbca8d6d9b08554ebce563c008a7d0

SHA512
774e70f454c4efe9579c3fdd7b28d0374c24d20a5ec7b82efaadb7a6b071eefd72c31ce7ea1b226f754fde24b0d57f0e2f963a7b10cb16b819405b9fa7190fe2

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\1SFBG7A9\0f03dc12f2480e229ed1609f01c540a671a04e049968[1].css
Filesize
10KB

MD5
2113b6560d12d0fbaafcb9b964364591

SHA1
781afbd9b39e0ccfd8f6a5d906a48639b62105e0

SHA256
02ed5fedd4d231fd7599d828707a1af9728f3dd33876047b5b045c1cec3f5d02

SHA512
78c3d3d5056ca06dfb66cfad0820de44b947859b4f886e21ecc6700ba31ee9b7f51faf45d100e6ae591147382cbf18c79c8b9d42ab2dcd93e4318227bd404a8e

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\1SFBG7A9\58f334a8a29f5ad81af0b81a8f3e765d20c98c4d09e9[1].css
Filesize
20KB

MD5
76b1bdbafa76a16eb077711e0852240f

SHA1
4eeaffc1d6645d958efdf93b127bd345134bdee0

SHA256
e72bfd5b2451298de330b65ffbf950c8f830c5d373435f26fce733e1264bef5d

SHA512
fa7e4606b736edfc15d42e00dc83e8e4ee20b8b79cd7c10b393d29ad220afb75fcad5b959b51fb37c74ee9970ebf80cd7a75d7e4e8be1bfa8ec3e79d2aca4cd1

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\1SFBG7A9\footerLogo_valve_new[1].png
Filesize
2KB

MD5
86a9ccc0b872f22006a48bc6c2500f4e

SHA1
0edccf2cbc869816135c6ff4c3eee0c49d0f41c1

SHA256
d8bbe461137d50211568449468a1981ef189248200eadd48c3141a9df0b8f7fc

SHA512
43ebd681fe137718e45153b9ce062ce9426ac57d6ce907bd3b1c7709bf6f6d2ab4b49e22f2dc4f203dedf860a895a4b58f4a01095e97722ce5f27935038f0b56

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\1SFBG7A9\header_logo[1].png
Filesize
10KB

MD5
a4e79c73ee13cb25b60fc4b0ba1f690c

SHA1
b690c31b2eb1b0eb085e91aaae7e79f03debe7c1

SHA256
6cb869df089146c12efb5e9c968e911c314842624ba6f052a11346ac734cadc8

SHA512
aad423119f410a655f0aa475d2fe692087d7262c3986ce71347981c5b60f6a10031d7050bf9b9aee4e7d84d814f0b8883c964028fcbe14ed3464602f3ba6cec3

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\1SFBG7A9\ico_facebook[1].gif
Filesize
1KB

MD5
ed803f2a1aca596a1dce7fdddb969105

SHA1
c8e5e747a05d5c0b0c8ce61eb4cc8c22a936535f

SHA256
5f97cfe4186b827737324c19df2fa7f98bb465e6e0893092c683c4ad76d9495b

SHA512
aec0e2fe0227530a4f041c5f667b7fa8237157517312a742b6239a6a0816bc4c944f16b4769cc7f94cd34597c255a2e8f85d71474d42eaf0fc48a4e560f3b01b

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\1SFBG7A9\jquery-1.8.3.min[1].js
Filesize
91KB

MD5
e1288116312e4728f98923c79b034b67

SHA1
8b6babff47b8a9793f37036fd1b1a3ad41d38423

SHA256
ba6eda7945ab8d7e57b34cc5a3dd292fa2e4c60a5ced79236ecf1a9e0f0c2d32

SHA512
bf28a9a446e50639a9592d7651f89511fc4e583e213f20a0dff3a44e1a7d73ceefdb6597db121c7742bde92410a27d83d92e2e86466858a19803e72a168e5656

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\1SFBG7A9\prototype-1.7[1].js
Filesize
165KB

MD5
6a39e0b509fecb928d47b8a2643fed2a

SHA1
f67fa6cb1d09963d10ba117d6553c8e7d5bc7863

SHA256
d8bdea7fff893dbdbeaf6c2affec091a77483b9ec10e7958486bc3b6cc170c96

SHA512
b9b8c6d9ac4928686c5ea254ac8f765c4f3690f79e5b1ccaaffc48d4bd47872b9cc5475c038f70d804740c81915fdfce315ebe553b628d12f7ca1cc4467075d0

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\1SFBG7A9\redeemwalletcode[1].js
Filesize
14KB

MD5
5ec80e0ea50e955c3d7193fa098ab013

SHA1
c4d1182f4933dda515896b1f71c010617b3c509f

SHA256
0fbb541d7d9cb3d5428cf496bda26b8d9cdb012e184933fe0589be3795f1ae6c

SHA512
6b01ddf2f0ffad9c0f52027d1aceccc5d5d53669c0e7a1dd8fd3e0a351919cca859bde1afca5f1ff0c48597f17910316316fb2a269120d38d409a5716bc2cdea

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\1SFBG7A9\shared_global[1].js
Filesize
150KB

MD5
439b6df9df2bd182ee3354ceb7728f2a

SHA1
d54d45014d7282cb0e45a69c0c15430444095f86

SHA256
66e344142d1a04f10a33e847a59939a9e71d558897ecafab050d5caf72bd1cb2

SHA512
094ff0791d454eeea65ac399906ebbe5d44a8d1b8d94501baa0d55dc662841e9af340e1b852031982e0d4634068b3e4261c617108b142b91250c5c010ee411ea

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\1SFBG7A9\shared_responsive[1].css
Filesize
18KB

MD5
b730c2b64c5e23e7b97343a43be0eae9

SHA1
1451a3bee6b72fb0bd049cb8b84cc5faf20ae598

SHA256
4ec40ebe11519d62a8c62ff92266ffa860a7c38259dc113d819ce91e083bee49

SHA512
d2e451fc4ca0f0faed06e9b05281fd07be2c3d2641160f5662d3adaab0026eb6cd70e7e6f093178a70c656e368e958fa6f93deeae59c7f7e142437b27bf99584

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\1SFBG7A9\wallet_icon[1].png
Filesize
3KB

MD5
59722f8b05d32484fbd8853cbf7859f2

SHA1
8c9a1b988324bb779bf273dcfb62e993103757ca

SHA256
fcbb90319848b9823c6829ed4abba0720f06674ae7e7ff762abe3b905dd3e24e

SHA512
a995853c47f43e3fc1291d6e2e1846b34a629d07d6189f33f79df84a9e381db87536a7b7ad183f123b30af9fc19bddb5367b987741d0ca3f1df86b849ff1a7ac

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\3cdad215a43d21ea4fc87f4af5d02529b551fdd4cec8[1].css
Filesize
11KB

MD5
dacb80dabfaebd8b5c696ca29bddd59e

SHA1
d10bdeb6162bb0591b13799eac711d320958d1c5

SHA256
6a13129c52b4af929efe3e1fddeceb315a4f8038ad01c469f8d45d5c19483ac9

SHA512
dc812155362dd80a49c903dd65953594c0c75b665425616f203ff77e78499174eb400d9ebbec5b670a46b81c316f166eeed202e6b965f0f02587a49f2ada61f7

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\50[1].htm
Filesize
56KB

MD5
46d778ea6b60750fdbda4556a5fa8c76

SHA1
cd5baca63edd08a504f535b8548458c53910989a

SHA256
8f219b8672047dec11a3019fd5c10887cfa9093cb227b84f15d7fb3be096880f

SHA512
8aece243f0cc7eee5fe072f4eb08eff1ac2b0dbc7a750e15408f053c33293b21cefc19014c6c4b0053b007a1c744b0b09cd81a80f0b4698ebcecd06066c68fea

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\MotivaSans-Bold[1].ttf
Filesize
120KB

MD5
6168553bef8c73ba623d6fe16b25e3e9

SHA1
4a31273b6f37f1f39b855edd0b764ec1b7b051e0

SHA256
d5692b785e18340807d75f1a969595bc8b1c408fb6fd63947775705e6d6baa66

SHA512
0246cee85a88068ca348694d38e63d46c753b03afadf8be76eca18d21e3de77b495215ed2384d62658a391104f9e00df8605edb77339366df332c75691928efb

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\MotivaSans-Light[1].ttf
Filesize
119KB

MD5
d45f521dba72b19a4096691a165b1990

SHA1
2a08728fbb9229acccbf907efdf4091f9b9a232f

SHA256
6b7a3177485c193a2e80be6269b6b12880e695a8b4349f49fccf87f9205badcc

SHA512
9262847972a50f0cf8fc4225c6e9a72dbf2c55ccbcc2a098b7f1a5bd9ea87502f3c495a0431373a3c20961439d2dae4af1b1da5b9fade670d7fcaed486831d8c

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\MotivaSans-Medium[1].ttf
Filesize
121KB

MD5
2d64caa5ecbf5e42cbb766ca4d85e90e

SHA1
147420abceb4a7fd7e486dddcfe68cda7ebb3a18

SHA256
045b433f94502cfa873a39e72d616c73ec1b4c567b7ee0f847f442651683791f

SHA512
c96556ec57dac504919e806c7df536c4f86892b8525739289b2f2dbbf475de883a4824069dbdd4bb1770dd484f321563a00892e6c79d48818a4b95406bf1af96

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\MotivaSans-Regular[1].ttf
Filesize
119KB

MD5
57613e143ff3dae10f282e84a066de28

SHA1
88756cc8c6db645b5f20aa17b14feefb4411c25f

SHA256
19b8db163bcc51732457efa40911b4a422f297ff3cd566467d87eab93cef0c14

SHA512
94f045e71b9276944609ca69fc4b8704e4447f9b0fc2b80789cc012235895c50ef9ecb781a3ed901a0c989bed26caa37d4d4a9baffcce2cb19606dbb16a17176

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\MotivaSans-Thin[1].ttf
Filesize
115KB

MD5
ce6bda6643b662a41b9fb570bdf72f83

SHA1
87bcf1d2820b476aaeaea91dc7f6dbedd73c1cb8

SHA256
0adf4d5edbc82d28879fdfaaf7274ba05162ff8cbbda816d69ed52f1dae547f6

SHA512
8023da9f9619d34d4e5f7c819a96356485f73fddcb8adb452f3ceefa8c969c16ca78a8c8d02d8e7a213eb9c5bbe5c50745ba7602e0ee2fe36d2742fb3e979c86

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\account[1].css
Filesize
22KB

MD5
33876994e521460f96fd50298ee3858c

SHA1
a9de35914cd1b73b523b81d90b5e4ccb62f63c9e

SHA256
3e8403d6ebbd8ab98b8029579ee72d19e360110ca6990e838b9de982afa1e145

SHA512
1d9615168da3ec8c44aaf106e29d39f5f4181dd86c9cfb4d186ff4c0309a4ba948c38d06e66a3ca5986dd35dcd8248787e2fe414c6af05a3623c41166bf0af90

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\blank[1].gif
Filesize
807B

MD5
39bc952559e5a8f4e84ba035fb2f7390

SHA1
4f415467396b4a50149373ca75bcb4c04c2f60b6

SHA256
8f73ef54efc672061f69ca881fe318dccc6dd67d993cbb8e76e53e52c84ee493

SHA512
c7e107e803941a965a173ec8dc7ddfb052c042ab0070e92e5ff47d0e02ecb38446bdc13bbf201d68b2f5696afbeea1af494a65eed4b086ef368cf147892e4409

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\buttons[1].css
Filesize
32KB

MD5
e8f16a7b1e543e9adb78f6e12945515f

SHA1
47263a98b74a253ea0bf72bfb6525edc0bacb034

SHA256
3d0874ab563803918741edfd0204aa756df378544bf81e1874a538b17839500d

SHA512
305f068227a7b62bd472b797f6ab7c9c8b9199f7d038013c69f0101425ed364f960a03e3f931bf0a2b5f3bcf21da174eb02732367aaae4d9b4d75a9112439eee

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\header_menu_hamburger[1].png
Filesize
3KB

MD5
eabc76eb57feae44add7faead028521e

SHA1
4e3e53938fad15661d2d046a868338841a95db19

SHA256
fc9e6260a2706ae146282d77e67bc1b74688435f8912ab4c1932641eec28bffa

SHA512
5c6da6eeefddf321c2bc7e39a134e0a3140a9f93ad1560b2e102ef60ec218c29aae14ed344c79e25cc5493cd15551040d8c909de28dcab02034d787563104e07

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\jquery-ui[1].js
Filesize
458KB

MD5
c811575fd210af968e09caa681917b9b

SHA1
0bf0ff43044448711b33453388c3a24d99e6cc9c

SHA256
d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e

SHA512
d2234d9e8dcc96bca55fafb83bb327f87c29ae8433fc296c48be3ef8c9a21a0a4305e14823e75416951eecd6221f56fbbb8c89d44b244a27be7b6bea310f2fd1

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\motiva_sans[1].css
Filesize
2KB

MD5
45cda1a73836131dd3614c2c3854ca4d

SHA1
8c5f6023535cb883463e83170430b31ee72b5176

SHA256
218bedd2a2817dfde5f3a900b6204c7e378e1b747ff98ae89aedff2391e4429c

SHA512
efa13e0d107cb9915bb8ab250b417880f08e255ff2d6457306fef6a6ff0dee0fc2f0fca15738b71ce1aaccd3b2556b677881bef4a6cb182d696b583f10e78559

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\shared_responsive_adapter[1].js
Filesize
24KB

MD5
a52bc800ab6e9df5a05a5153eea29ffb

SHA1
8661643fcbc7498dd7317d100ec62d1c1c6886ff

SHA256
57cfaf9b92c98541f769090cd0229a30013cea7cfafc18519ca654bfae29e14e

SHA512
1bcacd0ec7c3d633d6296fff3325802d6352805f0d2cf1eea39237424229ecffad6cb2aee4248e28b1eca02ff0646b58240851a246bbcf0aa1083830d5d9081e

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\8OPXJPXW\x9x9[1].gif
Filesize
58B

MD5
c85b970b4c832e361445c1b446cc2343

SHA1
57e60c2f1f1f919a871b7c171c6d59d42e3adbe5

SHA256
5ce28d7cf05f0e6eeaa3788a393d9980e9b51130963c6b9672d3447b6b11de6d

SHA512
060b2ba825cd60ea3fad5fcace496a77b528210aeab0092a24b4c438eb2acac4166e0c3b704cd3a4d8fa8fb034b0c7a4b5f45e242a7bdad26580f3236382620e

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OF1EQ1FL\04949b75724ed62efaceafe9dcace9b82321ab24b087[1].css
Filesize
5KB

MD5
8e61ebf5e7099224faae3ee61be0e439

SHA1
433ff93ebd0872fdb8750569824684eaee0dace1

SHA256
f653dbf761adb689f70bdfbc792ae65192e95b544d7e66dce483a4931b4c58e3

SHA512
f3a2c5b1471952950aebb30f6da4fdac54eafa8b5fdd66ca3d44171b0eec17a309460f15b22af8cec00da1703b89367db2348b12f0501c0f3ae3d3599040a741

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OF1EQ1FL\82bcfc827562ecb3abc5f806658b862a4416b03adcf0[1].css
Filesize
19KB

MD5
2727c215f1b26015043511e9735a46f7

SHA1
7d1dc9acca9b896d0e880973e33e339188fab602

SHA256
dbdcded3c4261a3c9d79cb3cf9e641744ad1f2db504690f3a1a06f6b3893dda4

SHA512
dc048227b3c80caf9ba2193d2f58af19745e1c4efb893ed742a8b54c25509072186c9141aa963e0454bbb91dcb3945ff3862ac09cc12471d5e9a357246104708

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OF1EQ1FL\MotivaSans-RegularItalic[1].ttf
Filesize
132KB

MD5
7bc1837717cdc49c511ebdd0e75122a2

SHA1
d31e0df252328b946984c6bde94f7b2f7c72d964

SHA256
97c39175b9c8c46a5f2be987c00be2ef556421fcdada1ed3b327c50cc36cc78b

SHA512
53b31bdecde75e8f50f82db69728f6f831d6a3452062ac6e419f9369ffe88f0ea6ace3a501d89501ff86fe47e05900ed5b482221d215898e28a0a4bb1f1b6a85

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OF1EQ1FL\_combined[1].js
Filesize
87KB

MD5
31ed48071ce4b62c24520c95bcde6026

SHA1
c073152e6835fba2ded4cc215f3985266be23f2b

SHA256
08b39451eabaca10cd735816cdc5af4a35b05fbb197e2082235b6e16be62dedb

SHA512
1cb651ec52d7eb67a961436a48340d0b783bc944cd54008d00e8b26d933d0668380126c6acae89ef10906fd96e8da9ed4ef773dfd9c761f608ff7ebda5554ae7

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OF1EQ1FL\btn_arrow_down_padded[1].png
Filesize
161B

MD5
f2dae37acac6b9d5a91caf1885c2f7d0

SHA1
5f80fdde9f702a1d7589bc5faf88c14066e26c32

SHA256
93b1fbe4f6245b62bfd4c8c3347abe0fe67ed711315e59bfadaebc9873d8d9b5

SHA512
8d7ff7133ab97d81985c50fa8fd93916b42b1ce812af21bc732dcae45d59b9154fcc965857235d925c471db191dfb79c0753c70c7a4d5b0285b908e396216805

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OF1EQ1FL\btn_header_installsteam_download[1].png
Filesize
291B

MD5
a2796187c58c7e948159e37d6990ecc2

SHA1
4209cd85add507247f9ce5a87a8c9095b54ee417

SHA256
23341256db7f44b1f3811880fa2bae6b7748bbf6b62c544a162e38cf0d5c5082

SHA512
5ef103b8398507495c2708df8fcd82bdb763b1d580aaaa6cacfb805614764277c19e8ece5d890a8aafc004fc8c25e3ab2e67d6fbf373c432a9a0d7c36fa0890f

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OF1EQ1FL\dselect[1].js
Filesize
9KB

MD5
b23a2ea37fb7dc6a317180acb9640bba

SHA1
559826c6b73a59bccf54f9034d7e8c43d03c091a

SHA256
23d2a8fbaa5a5f1f551b5d70440adee80fd519b52b3d6559cbbea35296679e2f

SHA512
e946116847558894e42e26e6702b600531e85cd0da91076e8af2fb3fece913f5ff4e8aa8744d2d43afa58ab2a0289954726434946e158fc840c150f2a079f109

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OF1EQ1FL\enterprise[1].js
Filesize
941B

MD5
c0c58eb442caab505949c67dc9c423fd

SHA1
7286bd5b1e00d2775399578451664b14f486dbc8

SHA256
bd45c86155dd4dd3a11f613d0b382af303188b846daaa19e90523cb985182331

SHA512
88dc008b475df75855e4321dd243ef6f0f24f619c572df5ae17befd62f21c9a836350021f874b53efd1b8468069d277bb414e82d07066061bd7a79c06e777a14

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OF1EQ1FL\ico_twitter[1].gif
Filesize
1KB

MD5
3d1b1bd2039e20ae67cbfe27d7da1151

SHA1
e87d089b1c4f1170bb41e7bc903aa73bc9749a02

SHA256
3dfbda507ea5fb1ed6c358bcc2e595c170ed4293ccb135545f05be3e30f7a0c0

SHA512
7a493be01bd05cf338d4bb3e3799fef2e4195e6ec739def7b2ee04c6313c4cfd87c3ee0e75a2bcbf01b4478bec667c7f37c9024ccd3b62dc2a0939daed68f496

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OF1EQ1FL\logo_steam[1].svg
Filesize
3KB

MD5
b7a7e43284e2ffe806ac1bc27c1f6a87

SHA1
e8196489e2ae99ec6eb33995b5a3e108d6e44de0

SHA256
c3a7c646a1305017f22423030cb5a12acc9f96b64013dcef7aeb80567b542cbb

SHA512
757e4f382a864cac9f975220c28586f5ea415b2e2215375c1a47e011a9190fcd15313d399007539f150a6df0378b8f2022ac88e995693ab03a9f5656bfe40832

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OF1EQ1FL\main[1].js
Filesize
83KB

MD5
f74cd0ae23533449cc8af7f8f151a9bc

SHA1
c48a1d9f24875c273b77618ef941bcc7c3e0188e

SHA256
911383c10abc27cacb7badc757ea3366cce08643aa808b6281a7312fdab63f59

SHA512
747da2df9f7fd391953bddc96868bd2bf6e0042f602a15a661c72dd6345745b07a11db2b56b769d4d4449f568a44920d066bd99d6eca07c4e40dfc4cbb1b5ee4

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OF1EQ1FL\redeem_wallet_complete_popup[1].png
Filesize
21KB

MD5
4dddfe80ce9184f5fcb77a8735791e69

SHA1
475c4b22242ad7dcabf0e7f43e09b066d75b13af

SHA256
87682460ef234c5cdd98375eea1f03cc165947b3aea57deec37d552b32ba29ec

SHA512
ae6c464bda07b5fbb341a8adbf4353adba197186becdca15ae4821592b0f35176b4869b38c43084bee17547374a1834929ff760d8173721228df7027da39a464

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TP72QIOI\9c0435910e043a2e10cb9b0061943b74e2d6494fa172[1].css
Filesize
75KB

MD5
d75bc33f0e1f113e13918a1574bed89e

SHA1
ce9524469a86d2cf429390d9a2b09151906f16f5

SHA256
c2815908a70bff8204d9c9dc034dd649f3f560a90112b11ddd5e0e53583bd39c

SHA512
151a8dfee28aaf232ed27150be0fd259b3c31f176187caf59ba231d067db9a6886bdf62e9bc73632cedd001847d7168fa2ad598e71b315385f547f899ec7361f

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TP72QIOI\MotivaSans-Black[1].ttf
Filesize
117KB

MD5
4f7c668ae0988bf759b831769bfd0335

SHA1
280a11e29d10bb78d6a5b4a1f512bf3c05836e34

SHA256
32d4c8dc451e11db315d047306feea0376fbdc3a77c0ab8f5a8ab154164734d1

SHA512
af959fe2a7d5f186bd79a6b1d02c69f058ecd52e60ebd0effa7f23b665a41500732ffa50a6e468a5253bb58644251586ae38ec53e21eab9140f1cf5fd291f6a5

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TP72QIOI\MotivaSans-BoldItalic[1].ttf
Filesize
131KB

MD5
e77ef961fe37dd8e6de30d4f7fa9a4de

SHA1
567327935ae2bb3de45e7f612f2d05273a999584

SHA256
6f93f21bc1ecc2d1c24fa2268aafad7f9e76836bb95aa76adda9307caad51c64

SHA512
2b432cf2d448026ff12634d605d9eb52ab6d285ea3cb437031b0427bb933b0aba40c416c0f102a39ec4a267ae2396b4da414048adc360780508281fc454462de

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TP72QIOI\MotivaSans-LightItalic[1].ttf
Filesize
130KB

MD5
07247cbd12d4e4160efd413823d0def8

SHA1
517a80968aa295d0a700a338c22ba41e3a8b78a7

SHA256
41464efd9a32a5967b30addc21fe16cd0a35870fda56658b531a9a2434b4d829

SHA512
27e0e7505d41891e70bd06733f96e82e45061d621a1d20bbc524fc89c5406a799cf53d98c0fa256cb4ebfc19750c9a05531a8d273cebc260d48948edffdf6244

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TP72QIOI\cart[1].css
Filesize
55KB

MD5
bb61486a27ad5fa68555bbe8a3ada655

SHA1
8bfa2068a12fa536b8f230d25aa690963aa38cee

SHA256
2772850b98923d3dcde7942c03c76f088cba2f9f50d0ac69a83a45bd1d6be430

SHA512
85a144b5df73db1b4c311c3b376b464b915aa7866c0550d7cdd4ba94c7934d40d0ce2267b49f4460e375892448caa89d9c31d056025ad4d567badabe09664d62

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TP72QIOI\cluster_bg_2[1].png
Filesize
141KB

MD5
5f16125351b708ee3d1141eb5553cd3d

SHA1
ef8994f541dec79086cb998c180d260e1c7dd704

SHA256
7bdc6f79db78360ec0e758b748d745c8f11ee6c93c1f0c5e7d128e1ddcaf35ef

SHA512
415b0c586e6b5f5e27ff7d134d01b26a92bc8f9f7f22d0ea8ef77e72a4042b5a66538068e85a00072b87b3c0a8c1da30205ffac3808b05de04582a4e1d017961

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TP72QIOI\dynamicstore[1].js
Filesize
87KB

MD5
b2e1d832e9a40d7469ace7b710e138cd

SHA1
ba52b1b42f4b6139eb571da7795fc3501a748da8

SHA256
68bd0a72eabb055e969805aff7360cfdd81fbaa2f0a10d3c9c18608d1179ad79

SHA512
4d3a923403edfd9af724c1112bdbee60579ed8e42735a24f9abf3e3045335164ef8e0479a9405236924f2f60429613177ddebd83f12a3ca0ec7fdcbc33ab44c7

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TP72QIOI\jquery.min[1].js
Filesize
86KB

MD5
220afd743d9e9643852e31a135a9f3ae

SHA1
88523924351bac0b5d560fe0c5781e2556e7693d

SHA256
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

SHA512
6e722fce1e8553be592b1a741972c7f5b7b0cdafce230e9d2d587d20283482881c96660682e4095a5f14df45a96ec193a9b222030c53b1b7bbe8312b2eae440d

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TP72QIOI\logo_steam_footer[1].png
Filesize
2KB

MD5
41e851f8e42b6bf3414278871e93e8a2

SHA1
a3811c7e1157f77950ec1f0558293bc90e432e82

SHA256
399f74c4e69eac8b59b149293f9a573955fef0a62b242cfa70346070013e0966

SHA512
f3c3549f1390b52791196e6f19584cbd4c4db2b51fef78c9c607c944079fed69b75e8f88594c3d647f2ddc29f282bf41be455be328ab27c091b4a37c41b00965

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TP72QIOI\logo_valve_footer[1].png
Filesize
1KB

MD5
574c350c7b23ae794d5276f8580e0838

SHA1
235c7b35c3468f8915eca01f7abdb43d34079609

SHA256
8b97ba0dac22fe6704c1f6d95fe79613f33017804f256abb9006df0442491787

SHA512
f1f2d7b6fa49e9241f2b88560127eb2871f66123c2f9de45b257750cf13e6ebb32a9d85d87aada6a99838a2f3c5412540065cbab398760a50f15aae3a759f9f7

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TP72QIOI\modal[1].js
Filesize
2KB

MD5
405088f8d3fed7506e915118063be2c2

SHA1
1e8b4fbd31497dc0c6656791c2f90828e318140c

SHA256
bfcfd556cd300a21962bc18721c79d670bffd653d058ac8fd1adfd50d2d00c82

SHA512
fadf951a97addf12662f3d0272e39bdb60544c40ffd93e33c643769d7175a7265ca693f2b55c4be8c0e7b872098912696d92cabc5a5b4319ab0201c553b477a0

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TP72QIOI\shared_global[1].css
Filesize
84KB

MD5
c32d30609c4196dfb6c28b664f4a1713

SHA1
c2f88ca5c29f16cb479c68dbe9e219654817d2ca

SHA256
b9ef7d6794b9d8f7558d60b47ca6f9f4a71c372251b27ad97496521e786da937

SHA512
e88cad19ff6d20f2a7b2dbf49eaa916998c73107e1edd5b3990d1c6f38e7a3a7856ea20e8acd17e143227eeb2f09b3a14e008b018eac5fe0994af786800fe517

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TP72QIOI\store[1].css
Filesize
132KB

MD5
ee9855c647756a4b8377a5f755a468a2

SHA1
59352c76aa273d9c49c7d48541bc45f82bd6cc87

SHA256
ff548512b3096ae8062b4ecb74691941b0689ae162f94ee086eb0ed9727e1f55

SHA512
aca0c683979ce67311997ca2d40d6af9fc44e75c7a263698dd75c4b30405ca9f000775bea9964b099a3a0c9856ecc56e859af9cd793f9cb5e31ea4f6d88d2c6b

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TP72QIOI\tooltip[1].js
Filesize
15KB

MD5
72938851e7c2ef7b63299eba0c6752cb

SHA1
b75196bd3a6f9f4dfc1bbf5e43e96874bcd9ce4e

SHA256
e2d4e0e1d3e162fdc815f16dfff9ae9b0a967949f0f3ae371f947d730a3f0661

SHA512
2bb6c03a1335ef9514d0d172a4284d82a29d1783a72306bdcb8af3185d5cd2ff16303355aa4b05086d2fa0b5b7c7159cfa67de4a6175095ff0e68adec2a56ac1

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\103621DE9CD5414CC2538780B4B75751
Filesize
717B

MD5
822467b728b7a66b081c91795373789a

SHA1
d8f2f02e1eef62485a9feffd59ce837511749865

SHA256
af2343382b88335eea72251ad84949e244ff54b6995063e24459a7216e9576b9

SHA512
bacea07d92c32078ca6a0161549b4e18edab745dd44947e5f181d28cc24468e07769d6835816cdfb944fd3d0099bde5e21b48f4966824c5c16c1801712303eb6

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
Filesize
1KB

MD5
92fa13f0be1d391dc18a3ecd2b231cf7

SHA1
7c9f728e2af8c4c8c6b2d0fc1e863afe6060beaa

SHA256
209a3398464e1fce0c98fc6e2d384af9101c6187c3997c798dafbc4c18163a99

SHA512
4a41b3785d22baedcb3b6d6a5122e3d3dce87dbae447d274278ecdb57bc8a1130c0f682db7e40f83eb81b07304c0ab89ed1f54401ea6d294351fcbe66ab395c2

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
Filesize
724B

MD5
ac89a852c2aaa3d389b2d2dd312ad367

SHA1
8f421dd6493c61dbda6b839e2debb7b50a20c930

SHA256
0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

SHA512
c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464
Filesize
724B

MD5
8202a1cd02e7d69597995cabbe881a12

SHA1
8858d9d934b7aa9330ee73de6c476acf19929ff6

SHA256
58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

SHA512
97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\EDC238BFF48A31D55A97E1E93892934B_C31B2498754E340573F1336DE607D619
Filesize
471B

MD5
46f0d50ba8a360a10732ba695dbe1abb

SHA1
eca99cedcc2016e230073fe04aa7b38a23a6fb89

SHA256
936d5607167870989e4977e924c4c8a3a3fac101072c59b21b191b9c3a625e23

SHA512
fc5ed3cdb10a8899a1d47a1dafb1461a15dc0ef1a0911ac079fc6639f90edc8fd6135c022a4d37e7a5f4c6290060ffc9b1f782e036715db9dd0c8b6de802d406

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\F2DDCD2B5F37625B82E81F4976CEE400_91363364208F5CFFAABFD122AF4FD6BD
Filesize
472B

MD5
69b56f9d28100b0c4995b7a65fd1edab

SHA1
79215d6a97b43aad79bbe33e90bf509d278304a3

SHA256
7591a883dd912b733cf715b1e09d4eecc00f5ba70cab3559b9905220417275e8

SHA512
316f70b59ecbf0a207cda83146ad31cad42f761611714580ffeb03f08d729d3617afe0417206648cb1f783d5094dbcd3d50b15e4c57b07b9debc9a0b926d4471

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\103621DE9CD5414CC2538780B4B75751
Filesize
192B

MD5
24cb52c4a39b48c934926f03407df7a2

SHA1
d03d71dc5c304bda6fb61a764bd0ba956c95c33a

SHA256
342c12692acd7be2dcabda56b1abf8730b60c53f8e00248c2b4300bc13f9a646

SHA512
ba9ee08b6f3acde2c00bae6fb9f9fc9ac4147c6ff3d27fb23aa3f5c43a47ada75939d448d0e3fdc79286f2b12d20149a8ad3cd36c2fe3a5fa2be469518081e95

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
Filesize
410B

MD5
e93aad6432c5ab987683a8ed9e0c2dca

SHA1
c91a46003d6ad6b804bbac0f08f302d7a0e89a02

SHA256
c8d002d7ef1281e2f3f195b528b265d9d19086ce250129e6d5dc5a5f51bca9fa

SHA512
26f16608a3f3654e47387c670e569155f1e84f87f73bec2ed51a169a599ad61df2ae73edc969f71d9f9f628e26d2249c3d5920adca80595fb9e48a4211cbb70c

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
Filesize
392B

MD5
523f441bd912ad40d93f0b640d5fec46

SHA1
e412972052e5a64bb391a0e3998692af6673a9c0

SHA256
490aa85cb5c8ba23bcf61f81083e2ae26c003dd6d0716a10927116ddc729e422

SHA512
22bd330f793b5b6039b07368d587971cddcd7a145728718f549e5e5fb5c3ddf5d46419ea3568f43dcfb0f32fcd4a2f00492b0d735eb361c9c26fd884c9b817af

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464
Filesize
392B

MD5
cdcfd45c1ed15385be5551a8de00baf2

SHA1
ab11c03cef96f0893a74c4acbc3bb51095c13762

SHA256
a777ffdd19a8f7d7042e43787c8c843057eb2e85e4ef0b3a24e48bf5fed6cfcd

SHA512
f0b41503a2059a776834ea07d26c18d77e04d216659bf5da01547437dd6459ad5aefaa417ca80b2363da9ee7d72bf16e3ba848bf48646a32114eafc46bf3bafe

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\EDC238BFF48A31D55A97E1E93892934B_C31B2498754E340573F1336DE607D619
Filesize
400B

MD5
8bc0a62538e366141f1e69651b031026

SHA1
cb64d6c07ba422cbc4e57cedce688d4ab5134bc8

SHA256
f5ac20f3d9211c77cffe8ab85f7260fd33f2629c68f6fc7409536ffc3c5577d9

SHA512
8826d3b846248f1703755005c915a4f8dd1cacf743eaa08801138e08190e3113532989b496eef6e5bcd752d5f0d5580f228264d2d8c8a96ac1f21ee819a37b77

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\F2DDCD2B5F37625B82E81F4976CEE400_91363364208F5CFFAABFD122AF4FD6BD
Filesize
410B

MD5
78c7ffc49a23dc3ecba667bc2feb5bab

SHA1
a8571d78ff8aece2124dec98a6ef592d8fd5cb01

SHA256
ae859bfcd36e8221790628ba759dc43453943bd6fae53712afca651e56154ad5

SHA512
56866499b7fbf6fce60e1a2a9ec4bb205fc436926374061929eb8fa73cad6cf199180d70cf75b20e1d9d1dda98b46f697129c27d816c26ea5ed8c7274395c93f

Download Submit
memory/2536-238-0x000001F8586D0000-0x000001F8586D2000-memory.dmp

Filesize
8KB

Download
memory/2536-251-0x000001F858650000-0x000001F858652000-memory.dmp

Filesize
8KB

Download
memory/2536-338-0x000001F845570000-0x000001F845572000-memory.dmp

Filesize
8KB

Download
memory/2536-333-0x000001F857330000-0x000001F857332000-memory.dmp

Filesize
8KB

Download
memory/2536-331-0x000001F8571E0000-0x000001F8571E2000-memory.dmp

Filesize
8KB

Download
memory/2536-172-0x000001F856CC0000-0x000001F856CE0000-memory.dmp

Filesize
128KB

Download
memory/2536-329-0x000001F856F30000-0x000001F856F32000-memory.dmp

Filesize
8KB

Download
memory/2536-327-0x000001F8569F0000-0x000001F8569F2000-memory.dmp

Filesize
8KB

Download
memory/2536-317-0x000001F8450C0000-0x000001F8450C2000-memory.dmp

Filesize
8KB

Download
memory/2536-314-0x000001F845070000-0x000001F845072000-memory.dmp

Filesize
8KB

Download
memory/2536-183-0x000001F857060000-0x000001F857062000-memory.dmp

Filesize
8KB

Download
memory/2536-181-0x000001F856FA0000-0x000001F856FA2000-memory.dmp

Filesize
8KB

Download
memory/2536-256-0x000001F858CD0000-0x000001F858CD2000-memory.dmp

Filesize
8KB

Download
memory/2536-340-0x000001F856FC0000-0x000001F856FC2000-memory.dmp

Filesize
8KB

Download
memory/2536-246-0x000001F857DE0000-0x000001F857DE2000-memory.dmp

Filesize
8KB

Download
memory/2536-243-0x000001F8580F0000-0x000001F8580F2000-memory.dmp

Filesize
8KB

Download
memory/2536-342-0x000001F856FD0000-0x000001F856FD2000-memory.dmp

Filesize
8KB

Download
memory/2536-241-0x000001F857DA0000-0x000001F857DA2000-memory.dmp

Filesize
8KB

Download
memory/2536-179-0x000001F856F80000-0x000001F856F82000-memory.dmp

Filesize
8KB

Download
memory/2536-227-0x000001F8582F0000-0x000001F8582F2000-memory.dmp

Filesize
8KB

Download
memory/4592-408-0x00000282AB820000-0x00000282AB840000-memory.dmp

Filesize
128KB

Download
memory/4988-0-0x0000029144920000-0x0000029144930000-memory.dmp

Filesize
64KB

Download
memory/4988-275-0x000002914B4E0000-0x000002914B4E1000-memory.dmp

Filesize
4KB

Download
memory/4988-276-0x000002914B4F0000-0x000002914B4F1000-memory.dmp

Filesize
4KB

Download
memory/4988-35-0x00000291458F0000-0x00000291458F2000-memory.dmp

Filesize
8KB

Download
memory/4988-16-0x0000029145140000-0x0000029145150000-memory.dmp

Filesize
64KB

Download