hxxps://youtu[.]be/rmbjj6sOZwo?si=bn8Qk7HvHCdmnxoD

Resubmissions

18/03/2024, 18:39

240318-xax3nsfc93 8

18/03/2024, 18:31

240318-w6e2asfb85 8

Analysis

max time kernel
149s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
18/03/2024, 18:31

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

https://youtu.be/rmbjj6sOZwo?si=bn8Qk7HvHCdmnxoD

Score

8^/10

Malware Config

Signatures

Downloads MZ/PE file

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Suspicious behavior: EnumeratesProcesses 10 IoCs

pid	Process
5040	msedge.exe
5040	msedge.exe
1896	msedge.exe
1896	msedge.exe
1164	identity_helper.exe
1164	identity_helper.exe
6108	msedge.exe
6108	msedge.exe
6108	msedge.exe
6108	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 11 IoCs

pid	Process
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	4240	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	4240	AUDIODG.EXE

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe

Suspicious use of SendNotifyMessage 56 IoCs

pid	Process
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe
1896	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1896 wrote to memory of 3720	1896	msedge.exe	87
PID 1896 wrote to memory of 3720	1896	msedge.exe	87
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 1360	1896	msedge.exe	88
PID 1896 wrote to memory of 5040	1896	msedge.exe	89
PID 1896 wrote to memory of 5040	1896	msedge.exe	89
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90
PID 1896 wrote to memory of 3456	1896	msedge.exe	90

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://youtu.be/rmbjj6sOZwo?si=bn8Qk7HvHCdmnxoD
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1896
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7fffbb0846f8,0x7fffbb084708,0x7fffbb084718
  2⤵
  PID:3720
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2280 /prefetch:2
  2⤵
  PID:1360
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2356 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:5040
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2888 /prefetch:8
  2⤵
  PID:3456
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3320 /prefetch:1
  2⤵
  PID:4492
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3332 /prefetch:1
  2⤵
  PID:400
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4692 /prefetch:1
  2⤵
  PID:2940
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4168 /prefetch:1
  2⤵
  PID:376
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3328 /prefetch:8
  2⤵
  PID:2216
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4740 /prefetch:1
  2⤵
  PID:4288
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6544 /prefetch:8
  2⤵
  PID:4300
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6544 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1164
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5792 /prefetch:1
  2⤵
  PID:3348
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5640 /prefetch:1
  2⤵
  PID:4156
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5520 /prefetch:1
  2⤵
  PID:5260
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5560 /prefetch:1
  2⤵
  PID:5268
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6156 /prefetch:1
  2⤵
  PID:5992
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=5368 /prefetch:8
  2⤵
  PID:6024
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4824 /prefetch:1
  2⤵
  PID:4680
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5740 /prefetch:8
  2⤵
  PID:668
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2272,13238438368548219504,17599805270901210122,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=6760 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:6108

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2780

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2100

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1904

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x314 0x4c8
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:4240

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
4d6e17218d9a99976d1a14c6f6944c96

SHA1
9e54a19d6c61d99ac8759c5f07b2f0d5faab447f

SHA256
32e343d2794af8bc6f2f7c905b5df11d53db4ad8922b92ad5e7cc9c856509d93

SHA512
3fa166b3e2d1236298d8dda7071a6fcf2bde283f181b8b0a07c0bb8ba756d6f55fa8a847ca5286d4dbabc6dace67e842a118866320ac01bd5f93cccd3a032e47

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003

Filesize
215KB

MD5
450fc63b968935b5108d6d92e560526c

SHA1
8f5134e6a2bf5d04486d61af5a002a2e67aa8377

SHA256
b161d42c405531732c92cb8b9279ccf3b3b0f0dd7256c9d6954724a8e1edfcea

SHA512
c73b7354552872b2b90c4df883fafc9f8545ed23b71c45f1afd71c3b8320551f2dd9ba1bc2b1e3564befcbd86eb89416dfed232962682db61856b6c194523b73

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005

Filesize
31KB

MD5
83e058a33b4a28834c45e2a4b18791b5

SHA1
960daa3278d4e070167881e1c78a78056eea06c7

SHA256
3710293c82233f3b2fc78bd85be8fa1baa66c7cd31603116bcdc0d9c58b1518e

SHA512
40b3b4f8f42fb66ee99ea3961213554ec808dc2650709e11431523c4608ff9f845e4f315f7bc79d630c9d696b7f8d2444781124713d365161393e713692e76c1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006

Filesize
32KB

MD5
f0b445ff22cf79dd33e7f55e1f80d506

SHA1
431475cb21c25a95b9213563972da8d9c1c4c4ce

SHA256
ff42bae9ae1cb9debe689689034540a40055f6b5088c83552109ec09b2c5d8a3

SHA512
d990f34cceefd6dc62158fe0df634f5a6925faa95cac43f224f7a7cced022317ed968b3d96dab639220990d498ba496d34c14c64d51bb8347970ccd7221cdc89

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000e

Filesize
20KB

MD5
673b1a41ec294fc1a554efd956e60f9b

SHA1
0f14361ddd0f1c08d55caa2dc26d5c90bba957f8

SHA256
a6338628e0bb9dd8674a562e87e1911c353a0e16d38479b9648c57470a57016e

SHA512
28aec7c0c7ae8fafa666473f6f67f0b56bcf0dd841e723a3ab2ec6f1fcf145531aa68d34f24c2858b2af4d9d8215d47de4dea91180561fa5bd36e346a6f47330

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000f

Filesize
27KB

MD5
22cbc61bf7fa7d62fceb223f558bcab3

SHA1
08733e27e48b3c8ebac373edd690bebd36be31ce

SHA256
9ad26b06ade4d7e937ebe7b7d7d2d19fb0f17e9d1aeef34a4e4a6f0c5d2cc9d2

SHA512
f095dec792f34d24f66f4157ae802fba843fe182075807ef3ec264f46dea38213074a986770965dd9153bf1b9da287d1c9841c51a839528650d81a510fc83be7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000010

Filesize
30KB

MD5
3cb05febc23881627d285fdf0abf61c3

SHA1
fc9ea95482159a44becc2382b969f1740ef1c343

SHA256
b26b5064f503ddb1f0b7ed4570228bb04b9b9c3ee47a7c89a73887f768fed996

SHA512
3db54a40e8dcd5d5ceea6e8f67693f7546a12d30bc9d0219be3aa6ec191d19ecbf063a2ac467936a779e6278bf5d08e5fff775c95cbc710ceb93da25e7e433bf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
600B

MD5
b49295b0b3187e8c5c2e5e004d21ed93

SHA1
723953a5795938c6ac2d147571d04793c036eac3

SHA256
6fd1a07a607f1c026de44564697a461d37bb132918b76b9b4d8fee65bf746f25

SHA512
9085fdeab51f6d19a7bc5d40352a69e90429f3aa8c39a46245c6106eb0689d9efe4b96b1cd428d58e8cda05e4d3af305d28de026af3b574aaa196a11002e9cc0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
4252cde03fad07f9033a2e29e9c4a615

SHA1
f1c7f7681b712982ae9bbbb0d43c6aeb02493ed5

SHA256
6dd060592a2771dc041d6e0544355bb2abc0a87f34acbaef930ecaa5dcc5d52b

SHA512
fbd0aaff5cddfcbb33d0330a4592bb4e152b4a9b22256d38f36f3d60e6c0c38f0433cf038bee21f4e4a46e7243d9b508352ea16da48b2f22880e2fa53fdac9f6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
4KB

MD5
ff86bff9363b8d518fc79fcb1fa6b447

SHA1
c958101509ab3b595ae7435e4c1137aa3ddd65cd

SHA256
f8cf55857b04d1b7636ec99d579bbf1122e6b9feb9f24cb99fa4574a9aa29405

SHA512
0d91feca887b915d2aa0cc8f5e1a54d5409be846a2062bb362173dadc960980c19e94074c1cded17a3417894128138bdbf775d9e0e993f61a5503937b96a1844

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
111B

MD5
285252a2f6327d41eab203dc2f402c67

SHA1
acedb7ba5fbc3ce914a8bf386a6f72ca7baa33c6

SHA256
5dfc321417fc31359f23320ea68014ebfd793c5bbed55f77dab4180bbd4a2026

SHA512
11ce7cb484fee66894e63c31db0d6b7ef66ad0327d4e7e2eb85f3bcc2e836a3a522c68d681e84542e471e54f765e091efe1ee4065641b0299b15613eb32dcc0d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
ad51b89bb262ef58aaea61154179792b

SHA1
5ea9b0831382bed8bf13485346a678e5cfac2c59

SHA256
a4fddab54b687a40a575cdc876764b983c55f77de286f26f4e12a72457590bd4

SHA512
4752ca278a64445c61a0a08daafcf7244862b67c385b678de43cac76230dc444fdd90e9ab8f9f00b81edecfdb9e0fa4ed6b5ee67bc6f0c76e159c29ab52e6e6e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
9886f2a855508f54be442f5bd0f2e2ec

SHA1
aa98b6800792c18ee67b3e3a1318dfb1f0481061

SHA256
e77a3017017e576d12a9262a455a13b84c004ab2ab51d782221c74be4a44bb22

SHA512
0bb6e67c6a4d1b1470a85dc4e217435e0ce06b6009e1840babbe94860c69bcd79c300d67c9c16375136ad56efcfddf791e2d3e75b155f4b7703d01f0c9fc4dca

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
e85fe34e07abcee5ec48ddb1f3bceaca

SHA1
b0c8efa4aa41c1c68a6020d4bb1dacee2e24705e

SHA256
850ed30ad51a0b14e2320c3890c6ab834aa20a3b88fc1344c72228f0f7559692

SHA512
d725f798a88eb0ada58a814a04f3379cee11995fdad33b0c3e73c224170b2a445b08c0b71b6d78596ae4dce1985e251f3b333252ea4899cfbfbb7fdca83fe045

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
156239f8b37a96475d951588507eb280

SHA1
7c3d678f51e9e6f93099e5e0d52a1f53b747e4e9

SHA256
6484ef6fe126b994268789bccfa125033781bdfe9a6c173ed6fa24caf62eb07c

SHA512
a929b5cbed2170cfa856d119ac0f97d38401e5af9fb9cb83c974a3293f35d2b4cb19465c80dad139e274c3c424c4a46244d61cbe84c3191296f589e17c427e7a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
84f0d8e459a3d990b79f90cb3c95778e

SHA1
3c6e0449ccd093b95d8686677782896b6dc4fe37

SHA256
8d514f840f1f2f3edc3bfdfa94dbe5cc3d766464811125772b381ecd065839c6

SHA512
14d09e932e0771a55dfcdc783acc1e20ad5fd4550d8c489282b078a81c19654006e2848eb6342f37ae580d6749775d7638886f1c3693c34612d68cf9472366ee

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
39dd60b1363bb2c660ee3aa750730445

SHA1
8bbb80d3aeb92df59dcecf06b22595e3ebd6faf1

SHA256
07d7bd0595e6132f13abfd359cb206e9584256aa3faa7ec616123ee0773c8356

SHA512
3732ecdbb36787384f31c047c16eb187b271b86edcfa0e3e5cd38829034f4e9081ae9cf8e2d88db1b67df60d20dc8c41a882b7443dd29a0c3064a996a9f85314

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences

Filesize
24KB

MD5
c2ef1d773c3f6f230cedf469f7e34059

SHA1
e410764405adcfead3338c8d0b29371fd1a3f292

SHA256
185450d538a894e4dcf55b428f506f3d7baa86664fbbc67afd6c255b65178521

SHA512
2ef93803da4d630916bed75d678382fd1c72bff1700a1a72e2612431c6d5e11410ced4eaf522b388028aeadb08e8a77513e16594e6ab081f6d6203e4caa7d549

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\2c345ff1-9499-4ed1-8625-8d7d6a603b54\2c7dc7c01e6c7bd3_0

Filesize
2KB

MD5
893bda637ec72ef0c7886285f172a226

SHA1
18e196b159531662a5fd8b36465fa82a8e29268d

SHA256
ae7b421c4c31607c3e1841fe0958694def01ffd45fdfc9c514633b13f8ef5457

SHA512
c714eefded9f77cb1493dfa0286567c494a830144b05e7d03f9c0e0c9c1bcd52d4f4ed862d9aa527e4ec28a8b8916bbbb97b2687300be926963ac4ded07094fe

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\2c345ff1-9499-4ed1-8625-8d7d6a603b54\index-dir\the-real-index

Filesize
624B

MD5
57506ed38df0b52fe2f4d9620f643e36

SHA1
296106e3853786ee67c3a0c12c570e38cb856f9f

SHA256
f066243694c3c7855d0a88766d1238d9084ea7374d3ae7aa9325b17493b60dbe

SHA512
ee8a440854a3a8e1ec28cc7477dc217a1bd70317acd33d1ed546ee7409511df9f12c0478898a9e2fda823affcd44e735eac6387a775716fda1cb63d4a6e8e6e0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\2c345ff1-9499-4ed1-8625-8d7d6a603b54\index-dir\the-real-index~RFe57cc0a.TMP

Filesize
48B

MD5
6a5d63f409f6c73aa723e22aaa627e5f

SHA1
d937f54e412776003a275ba32223024568a0e81a

SHA256
e7b437ab9b48d2aa5a3d99272db9217cf94a82e8b7ecff27b3b8dabe05125acc

SHA512
f58f98698871c6e951c631b342d82ec327dd5073fc66a25e91e4153b0d0f638632696835084d973a38d4cb4cbb6df3cb06b70c366b2752ae1feb3eaa69aab16b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\30463c8d-e8a8-406e-b693-a80a494598df\index-dir\the-real-index

Filesize
2KB

MD5
fe522d12f3b2ad367290d089ed3dbb19

SHA1
35a14d25a150e1790608b9725b46144980b6f66d

SHA256
e32bf8b277b0e4b2326f1adfff4f399b18ed97d48b0bf20b8769a3394d142479

SHA512
eee221d6c707f639e8af88ed5df0154b0c8fdbadab4f3b6c55aed94d4cbce5be079789c506e3bf0d06679814a2ed46800b0f0015bf17d9e57b326b5bfda5cc5c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\30463c8d-e8a8-406e-b693-a80a494598df\index-dir\the-real-index

Filesize
2KB

MD5
77816aebe724aebac6298936c11c9ee9

SHA1
b6cc31876ceac537e746b67b6f65b3605a928d69

SHA256
905553de44e725ee164033756cb7773b811c61b7cf4ffe388faa1e2badc7cf90

SHA512
eb7eea24feb513eb79a9f94e3a255bc1413f38b3eec2f410da0fbf1ed187b799c3fb17cdc6785d0792f76c3a3262fea7bc9b28251f2bb35cfb9be5a75c9e8b63

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\30463c8d-e8a8-406e-b693-a80a494598df\index-dir\the-real-index

Filesize
2KB

MD5
0609f1aabf277b272009a21cf4286e20

SHA1
99ed41b80b3228c1244659ac69853c82483f5971

SHA256
6ef7c1671764f1411bd1926eb012e287c612837b86a8e63e93005cf8235bde60

SHA512
e1c734f4d3583570507ae51e2cee180c2efcd1d2b399972c5164d66431e0ada138f2d5fa47aca928a5f84369ce32c318aff86798716c310ba4bc390e2a60707a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\30463c8d-e8a8-406e-b693-a80a494598df\index-dir\the-real-index~RFe576939.TMP

Filesize
48B

MD5
d6b863c5bf6b957c2fe83bb740d3a49e

SHA1
b9c9e2a753499d323a7503486b23b58d98e9e409

SHA256
a56a29f6862b20bf15cebe578fed853fc006d6e72f0f918a498bcad4120cb8a4

SHA512
990732e86979e01aa2024a01bf0f690d5b21d0389b83fae851634aaa58921775ee059700adc2eea4f215d05ddb2e79cd6ef9addeb76a225983a3da2b76d66482

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\92e3af20-3653-4e2b-971a-8fe30b6aca34\index

Filesize
24B

MD5
54cb446f628b2ea4a5bce5769910512e

SHA1
c27ca848427fe87f5cf4d0e0e3cd57151b0d820d

SHA256
fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d

SHA512
8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
153B

MD5
f59f38ca82df7fe9b2b1e4a7010a6e6d

SHA1
e9f739f8fb2914026820839940cee6558def7f6c

SHA256
772bdfc2b0f676ba73e28a23d4cdd27dc73b0d3d5bccdf5e53f136f2a69f23ec

SHA512
d400921fcf319f7c9e3fcb2b71829dc2161fac11b5e0808fa4bb78c3145aee2b31504c58695d02196bf93cbcc6f66fa2a0bd16867122591a1bf8704f04487f6f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
153B

MD5
3607bcf0ec4b31937a58d758e42475cf

SHA1
36cb826a7c50e4ecf78e25048a67f5e47217e261

SHA256
210f26c3019f5115bb8f6a05fd024687982d65db8c700c1e102a1adf3199e485

SHA512
9161470893a987d6e814f73c5581b994e438940ec75de5c957d1027e2f48de86bbfbfce96c5ed539664361d174af3a1ec76d27b1334e52cf793039e1f521a100

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
146B

MD5
4b18ca312df45b1e09a3f5e57c786401

SHA1
0ab899e2a118476e079f120814d9e649bb563214

SHA256
622a4a111284ec93d98a35737fd6d971ffbe63fbf93942dddbd0085c2037975a

SHA512
2ce4ece74febbc1585cd82143cfb8eff62f29a9068d03a3d8b499f9704af3789b66af1fcaac343aab12eebf55359ae48491717b961dbedf8e7d23fb781af802e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
148B

MD5
8d1d8eb02d46ca9cfcfb530c2659bb38

SHA1
cee4e76ce0f6500608ee17ce273087b7877bc11d

SHA256
c54db9d6d2d2836443359b73652e33f11e478e072c60736f79bda97e3011a0df

SHA512
816c56b3d96db314ca7f10cef5c739b1439af5d786d715f78f54a80c69a81da7dee2d3d758223510ebf87f5a170f7a61a3deeb772002f26b9885999cd5e8de7f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
157B

MD5
d5ba823fda7d8e92c7a20e10a6673f24

SHA1
5561fdbfcb2ee2a5c15a5cc6161dca25a7d037ec

SHA256
ad23c538391b0b600c83b027bdca915f1ab86a107185216a0276062783ee4ac8

SHA512
aed149f9fb672d0616688e955ce5b4f2c8c52aebee85cf12de6bb518dba0d291693884af8551c72a59352885e7028aa9283b19a2130b504adfdef6bb1924d992

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
82B

MD5
ceb6469884c706118af9b8cd32e1e9e1

SHA1
269ff5edc3713bb4b78495025063dcbb45d8d126

SHA256
eb3cfc8927fafd2ea77129e9e6a34b7c4909ced4eea2592e324744bad1841d83

SHA512
b2577d42695a94aa6d270302dbb60423548e4b77f8da2af05b3be5378f80c3adcf779432e8063150e46d6e4a44cf5bf8ae3725cbef2f4632641388d532d357c8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
84B

MD5
47c52df1b3245d759c938b84d5814594

SHA1
160e30e3609964bde29f024978245c77e9f38024

SHA256
7229e84de783500c1a3c812b4dcb817253fff1f5ed6585a67fe075445fa012fb

SHA512
152123984143009352b3605ebabd54f2cbfb1f0da79b0853d44dad05b4cdcbf5ebd8dba2df30e6caca2dce7c0e9c9d59b550c320c54e44d3d776cb6d2c18ac46

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe57595b.TMP

Filesize
89B

MD5
13435258b4cc4cabfc8853220a97ae9f

SHA1
44c686b1527c9f908898c2e1ed31cdd2e5d1a4fc

SHA256
7a8113a8d1e9bc6b108ab371c65c61a4f91992090936f1f2d678aeaa85390b98

SHA512
7b5227b030038bc9742d0f9e0a21eca08110157964b75139a70c7f9ee7a839c6d99bc5122b2869dd70ebca3df9f1c76694c9724a4ba494a001556106827ebec3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
96B

MD5
53e06651aa34141fc72b4d972c4e73d0

SHA1
75675cb4bf84c61d64890995d1fc18c4555c3694

SHA256
d5143f8560cfbe54a799b6d3b7329d9f436d8b8ec9f52c9ff655065ab0361534

SHA512
31284b8cf59e765a69ad902fef0794a531018f591e306569e4f83e05f2568d22239a06458465cf1a1d36f49dbffc16ee95764f0c7cacd08f58b65b0de0cb1780

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe57be5e.TMP

Filesize
48B

MD5
60a06262ee3e5db0f1a8618cf3490533

SHA1
65d1daecbe6a152487d02d576c6a8585dc669c7b

SHA256
e6debc31bb1300a776dbdf45289777014539972cf13da27e694a25cf8cab13ba

SHA512
b19ad81da8abbc7275b09c25512a1224a0c9f59d0934d2f85c29599f70966fd98b014bd2ec267013d9b6c451111d8cdd02a4b47ab0f1f5c5f9802d8d68a7f1a8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
874B

MD5
2ec3d7f7b5d70c101aaca4ea9d49172d

SHA1
60533770a0136d0b3dd652b85d0020ea7ed8e14a

SHA256
02d83140325bbfd8f6812c6d361d9bfb068a35a247cb9a7ac50e8c78cb6db9e2

SHA512
fe1c22d5daea7c4e8727040525d634c57b282cfc3bde25365aad7ebb76f9984e7330fa7cc7abfa55d8338ccca7c05f83e61afe6f5bd45fae4f6d3656313eb995

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe579dc6.TMP

Filesize
874B

MD5
39fa64f3c7985119eb2134e8d43db183

SHA1
a09cb31340d74f464b1c4d2122c6d0f06f540ee8

SHA256
b5e76af280538afa4f2e51787f2b9c7f303f8496fa6f8b0df5b4bc024210a3be

SHA512
9836af846597a7ad9261f51665d79ac2f128728313c90b953c99f148f1991bf063ee945dace12bf4a77437caa31ba31d16e50936143340bd3762f45e255bd710

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
52938d5c773505f6baec661bf4233c49

SHA1
15590d0a0ff0fc177352d5b035a093893f0ac941

SHA256
277d72821280f0b275e91da458e4b38bfbdefcfbde927b20c40a16bacac4de50

SHA512
e535000fa14de26d27a46215f30faf68fbcd4eca10f3602b891f03968a4dd8bcc7936ff19f5d02c68f5436fe6f7e517c9ed8e96084e785bdd5f07a064a6943bc

Download Submit