2af9fb4780b3532a62851b01ae501d31b2ef9c6b69adf8847d41356c7510f2d0

Analysis

max time kernel
148s
max time network
154s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
05/03/2024, 15:34

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

b50caff33adda01d4a82fb47fec1bea8.html
Size

17KB
MD5

b50caff33adda01d4a82fb47fec1bea8
SHA1

f766329a970cf774a058ba8108b4f955a6e9c005
SHA256

2af9fb4780b3532a62851b01ae501d31b2ef9c6b69adf8847d41356c7510f2d0
SHA512

9ad00f341e6e5164e7c9ae00d5e0b69f4839cb01221e0932c4a7a9a470cbbb4ed3be41e031084b1538c9c6f43844ef77de1fea54fbeaedb06fcc185eae2f4757
SSDEEP

384:Rtl57sHbGDYwWNQmKs/VwRgpHVzVCkVyEV3VzVfVy8V+oE2Vy76lISa0u4ZxU3cK:RjdAZK6z1hPrFhtlVfEsNlIB0TZo2I

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Suspicious behavior: EnumeratesProcesses 10 IoCs

pid	Process
4736	msedge.exe
4736	msedge.exe
2008	msedge.exe
2008	msedge.exe
3984	identity_helper.exe
3984	identity_helper.exe
6140	msedge.exe
6140	msedge.exe
6140	msedge.exe
6140	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 8 IoCs

pid	Process
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe

Suspicious use of FindShellTrayWindow 25 IoCs

pid	Process
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe
2008	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2008 wrote to memory of 2604	2008	msedge.exe	90
PID 2008 wrote to memory of 2604	2008	msedge.exe	90
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 880	2008	msedge.exe	91
PID 2008 wrote to memory of 4736	2008	msedge.exe	92
PID 2008 wrote to memory of 4736	2008	msedge.exe	92
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93
PID 2008 wrote to memory of 3340	2008	msedge.exe	93

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\b50caff33adda01d4a82fb47fec1bea8.html
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2008
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9125646f8,0x7ff912564708,0x7ff912564718
  2⤵
  PID:2604
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2156,8106078435946551956,447511673965065172,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2168 /prefetch:2
  2⤵
  PID:880
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2156,8106078435946551956,447511673965065172,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2212 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4736
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2156,8106078435946551956,447511673965065172,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2912 /prefetch:8
  2⤵
  PID:3340
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,8106078435946551956,447511673965065172,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3260 /prefetch:1
  2⤵
  PID:316
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,8106078435946551956,447511673965065172,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3276 /prefetch:1
  2⤵
  PID:640
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,8106078435946551956,447511673965065172,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5100 /prefetch:1
  2⤵
  PID:836
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,8106078435946551956,447511673965065172,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6072 /prefetch:1
  2⤵
  PID:4880
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,8106078435946551956,447511673965065172,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5092 /prefetch:1
  2⤵
  PID:3776
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,8106078435946551956,447511673965065172,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6116 /prefetch:1
  2⤵
  PID:1604
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2156,8106078435946551956,447511673965065172,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6432 /prefetch:8
  2⤵
  PID:4452
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2156,8106078435946551956,447511673965065172,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6432 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3984
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,8106078435946551956,447511673965065172,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4180 /prefetch:1
  2⤵
  PID:2276
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,8106078435946551956,447511673965065172,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=180 /prefetch:1
  2⤵
  PID:1856
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2156,8106078435946551956,447511673965065172,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2860 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:6140

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4620

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2448

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
73c8d54f775a1b870efd00cb75baf547

SHA1
33024c5b7573c9079a3b2beba9d85e3ba35e6b0e

SHA256
1ce86be0476a2a9e409fcb817126285bc4ad83efd03ee06a2f86910fe18d4d94

SHA512
191344f5830cfea68499bd49073ffa7215a42265a9629d203d07849b2417c0ffdbdbf288bf2c669e91009a0d7e8bd6a6b378c92fc283049141231ca7bf4da3b8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
4b206e54d55dcb61072236144d1f90f8

SHA1
c2600831112447369e5b557e249f86611b05287d

SHA256
87bf9a4c3564eb3d8bef70450da843ae6003271222734c4d28d9961c52782e0b

SHA512
c9e8d2452368873e0622b002a0c2f8a2714b5897a09475738a9f9740122d716a9f0d3841725230d58e039564c820d32a6f3a675a7bb04bd163bab53dcb4e22f2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000f

Filesize
22KB

MD5
14734a8bb0bbf70e4c2baa3d73adc7ec

SHA1
b3a16d617c95fd8da1af3215867abdd80a23a708

SHA256
56ad32c2be9235dfe4a5653351f1121c4373fb48147d91bbb9397b65d5bf0bb5

SHA512
aaed10d4b91749bda93e69b4188c93d4fc89cc9e05b4ea5bdd8363cea53a3d1904f0080f23826edf35f18fe4bdd51a86c04a5a43b7e5f5aaf1568ed17e3a0d78

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
144B

MD5
d7072233c0688d7238387f6ef8390c9f

SHA1
b21d42921fa0b4ff78b1c8924be69fb36a4aaf21

SHA256
7bea31c56abf15a4a7b416235f286eda2605b195403e632699f79950484b2646

SHA512
d434d55b35d2bb28f3e8c1f74d39417d2f1a3d626cb2cc492f0a319d428d94a6a124115c12d2b2ed23fc0c612353856dbf2e2fdd0787c0e4b3ca3907bc96de8f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
168B

MD5
4c993d784fe452d749b7534865f7ab5b

SHA1
f57326b7d922fad14b73ff9c3421a28577397e51

SHA256
94c52b3796b8d6cc4bfaa4592ec28b2dba7a403a2533f3b51344338fbb8c4645

SHA512
c3ee5797bc04e6afc6b67e75546a4093038439a01ec1338a0dd2184b3105195831b7ec557252c3117b693d7666c9bcad1c2a59bd1eb3bc37cb0a0f10f336c8d6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
795154d57af4284f59d8c18a93b2af7f

SHA1
7cad7453b11bc5831da09df04febce9c50e17562

SHA256
dd3874d611c6e4370d77da92b789ceb7d4fdd5180c9addae86025f4f313f70fa

SHA512
82797b7edcd339d0c25db51b1a43bc7fbd56a581d6e162abe80721fe4abc3bba022e60b0f6d65792cdbb4c3782beb313a85181b908dc4a1aa63978dc9779c714

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
338c0ec5a551c9d0dc16cef67ae8d3da

SHA1
5958dd553c4400306a1f58477de50e724f061d3d

SHA256
5e6c64f0285c4f60bd014dc78dbf6546d735ba3e24b8a8a6a83ec41a343957a7

SHA512
73bded209c814e282881767853bb7b300ffcd9f6fdfe4d49cf328af64f6a9e1090b67a0d61c64411dcad837943fe527ce3f6a9fd7a29f85334a4976416f5daeb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
0fedb1002d987f892dfc58ddb4869f26

SHA1
cae888fa095d52d6e5bddd71e884bd2f93c9628d

SHA256
39121ddf51cc77a256914878e31e5538f634bf0d7b347963abf7a1912fa0c1a5

SHA512
18c56447c0fc3c8dba8019ca6f7145ff3da88c5ee477e5c630fe8cce03fd2e90e2cf77f91afed4408bd40912c6d49aa7a47d18fb77e8ffd7a32debed66170abb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
280db15c26182d64f4e2d470627c547c

SHA1
cee5bdbbb7f89ca0369248d3dcb6fa4b5e6dfdfc

SHA256
fa11cfa188689ba3238710bf7a3a2b171e505d5d51476a648d4e0cdf95c9448a

SHA512
00afb50ab7c350bf76859728627d731180bd5ef63b01a897e716e2c1d8d301d5dea7413e67f54da4ba6e7f4a225c9377cf376d309350ddf94b4ee44c6f1d0a63

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\f0c61f3e-d295-41cd-b328-c0094d9ad938.tmp

Filesize
11KB

MD5
088b97bdeb8a7c19d79b2a37c9972c59

SHA1
ea3ca8049728ac36d42a5e0f43b690d5d8d13007

SHA256
f621a7994f79a31cf3f9bd07be65ffb16b4096387e718112742bb86aa7fb5972

SHA512
81bd5e34be21a13df4225f83542918d4568f4e97edd97eb5f02d501066ce2c63a56087a62895bc227c3e17b70898e0d2cddac9ef706b69b918dff141dd37fdfa

Download Submit