Analysis

  • max time kernel
    1048s
  • max time network
    1049s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    18/03/2024, 18:48

General

  • Target

    mr-goofy-ahh-this-is-eminem-breaking-shirt-Women_s-T-Shirts.jpg

  • Size

    58KB

  • MD5

    6057c5e61efe7c1d94668a3f2eab9f1d

  • SHA1

    c537b2d03d0681e05d8c86f253c440ce3b354ced

  • SHA256

    15cff7c8b152284652afdeac15bc84426518944277c4b6126e6fcbaed190608f

  • SHA512

    7b606ee4cce8779edc236f79c2184fa15bf163049aa0a8db002f56dd55ac2bc3f168246ea125e70ba3eb2d89ecabb6efb2a327294a2b79a4a2ecd49de4f7a342

  • SSDEEP

    1536:df/8Dl8nWsk2Lxw7OsN+EtQ/fz70F6U5J/krg//sFZxrjWMQ6vf2:df/KGNk+wENL703ccHsDpg+2

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Enumerates system info in registry 2 TTPs 6 IoCs
  • Modifies registry class 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 18 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 23 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 51 IoCs
  • Suspicious use of SendNotifyMessage 48 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\mr-goofy-ahh-this-is-eminem-breaking-shirt-Women_s-T-Shirts.jpg
    1⤵
      PID:832
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
      1⤵
      • Enumerates system info in registry
      • Suspicious behavior: EnumeratesProcesses
      • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
      • Suspicious use of FindShellTrayWindow
      • Suspicious use of SendNotifyMessage
      • Suspicious use of WriteProcessMemory
      PID:2648
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffa64dc46f8,0x7ffa64dc4708,0x7ffa64dc4718
        2⤵
          PID:1864
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2084 /prefetch:2
          2⤵
            PID:3912
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2224 /prefetch:3
            2⤵
            • Suspicious behavior: EnumeratesProcesses
            PID:3156
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2948 /prefetch:8
            2⤵
              PID:808
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3360 /prefetch:1
              2⤵
                PID:2652
              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3372 /prefetch:1
                2⤵
                  PID:4892
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4744 /prefetch:1
                  2⤵
                    PID:4152
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3916 /prefetch:1
                    2⤵
                      PID:2844
                    • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3468 /prefetch:8
                      2⤵
                        PID:1952
                      • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3468 /prefetch:8
                        2⤵
                        • Suspicious behavior: EnumeratesProcesses
                        PID:4292
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5360 /prefetch:1
                        2⤵
                          PID:1552
                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5404 /prefetch:1
                          2⤵
                            PID:1716
                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3672 /prefetch:1
                            2⤵
                              PID:3724
                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3172 /prefetch:1
                              2⤵
                                PID:980
                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5064 /prefetch:1
                                2⤵
                                  PID:2352
                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4792 /prefetch:8
                                  2⤵
                                    PID:3956
                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=4844 /prefetch:8
                                    2⤵
                                    • Modifies registry class
                                    • Suspicious behavior: EnumeratesProcesses
                                    PID:2200
                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4876 /prefetch:1
                                    2⤵
                                      PID:372
                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5892 /prefetch:1
                                      2⤵
                                        PID:4300
                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6060 /prefetch:1
                                        2⤵
                                          PID:5024
                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5560 /prefetch:1
                                          2⤵
                                            PID:4840
                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,15412520547778472578,14447162356594256071,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5792 /prefetch:1
                                            2⤵
                                              PID:4524
                                          • C:\Windows\System32\CompPkgSrv.exe
                                            C:\Windows\System32\CompPkgSrv.exe -Embedding
                                            1⤵
                                              PID:4948
                                            • C:\Windows\System32\CompPkgSrv.exe
                                              C:\Windows\System32\CompPkgSrv.exe -Embedding
                                              1⤵
                                                PID:3920
                                              • C:\Windows\system32\AUDIODG.EXE
                                                C:\Windows\system32\AUDIODG.EXE 0x2c0 0x490
                                                1⤵
                                                • Suspicious use of AdjustPrivilegeToken
                                                PID:5344
                                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
                                                1⤵
                                                • Enumerates system info in registry
                                                • Suspicious behavior: EnumeratesProcesses
                                                • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
                                                • Suspicious use of FindShellTrayWindow
                                                • Suspicious use of SendNotifyMessage
                                                PID:3684
                                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x104,0x108,0x10c,0xe0,0x110,0x7ffa64dc46f8,0x7ffa64dc4708,0x7ffa64dc4718
                                                  2⤵
                                                    PID:5528
                                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2136 /prefetch:2
                                                    2⤵
                                                      PID:3772
                                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2188 /prefetch:3
                                                      2⤵
                                                      • Suspicious behavior: EnumeratesProcesses
                                                      PID:4496
                                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2904 /prefetch:8
                                                      2⤵
                                                        PID:3500
                                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3252 /prefetch:1
                                                        2⤵
                                                          PID:5500
                                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3260 /prefetch:1
                                                          2⤵
                                                            PID:4600
                                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5048 /prefetch:1
                                                            2⤵
                                                              PID:4996
                                                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5084 /prefetch:1
                                                              2⤵
                                                                PID:396
                                                              • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                                                                "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5396 /prefetch:8
                                                                2⤵
                                                                  PID:5272
                                                                • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                                                                  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5396 /prefetch:8
                                                                  2⤵
                                                                  • Suspicious behavior: EnumeratesProcesses
                                                                  PID:5280
                                                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5472 /prefetch:1
                                                                  2⤵
                                                                    PID:4396
                                                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5488 /prefetch:1
                                                                    2⤵
                                                                      PID:864
                                                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4136 /prefetch:1
                                                                      2⤵
                                                                        PID:5428
                                                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5624 /prefetch:1
                                                                        2⤵
                                                                          PID:884
                                                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5004 /prefetch:1
                                                                          2⤵
                                                                            PID:2016
                                                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5756 /prefetch:8
                                                                            2⤵
                                                                              PID:1004
                                                                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5712 /prefetch:8
                                                                              2⤵
                                                                                PID:3616
                                                                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2124,7830713809619234105,17357158582903202796,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2280 /prefetch:2
                                                                                2⤵
                                                                                • Suspicious behavior: EnumeratesProcesses
                                                                                PID:3464
                                                                            • C:\Windows\System32\CompPkgSrv.exe
                                                                              C:\Windows\System32\CompPkgSrv.exe -Embedding
                                                                              1⤵
                                                                                PID:5740
                                                                              • C:\Windows\System32\CompPkgSrv.exe
                                                                                C:\Windows\System32\CompPkgSrv.exe -Embedding
                                                                                1⤵
                                                                                  PID:5180
                                                                                • C:\Windows\System32\CompPkgSrv.exe
                                                                                  C:\Windows\System32\CompPkgSrv.exe -Embedding
                                                                                  1⤵
                                                                                    PID:2924

                                                                                  Network

                                                                                        MITRE ATT&CK Enterprise v15

                                                                                        Replay Monitor

                                                                                        Loading Replay Monitor...

                                                                                        Downloads

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                                                                          Filesize

                                                                                          152B

                                                                                          MD5

                                                                                          4d6e17218d9a99976d1a14c6f6944c96

                                                                                          SHA1

                                                                                          9e54a19d6c61d99ac8759c5f07b2f0d5faab447f

                                                                                          SHA256

                                                                                          32e343d2794af8bc6f2f7c905b5df11d53db4ad8922b92ad5e7cc9c856509d93

                                                                                          SHA512

                                                                                          3fa166b3e2d1236298d8dda7071a6fcf2bde283f181b8b0a07c0bb8ba756d6f55fa8a847ca5286d4dbabc6dace67e842a118866320ac01bd5f93cccd3a032e47

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                                                                          Filesize

                                                                                          152B

                                                                                          MD5

                                                                                          3e9ecddd190b5433cf19cb65ad66565d

                                                                                          SHA1

                                                                                          a49f336323390adfc51f2770b6269d329a28c24e

                                                                                          SHA256

                                                                                          6d46ca773bfa4f9fb1a72a561960cb1d8ffdf7eb325153721124e5d1205aaed2

                                                                                          SHA512

                                                                                          74a6cfa57d97c0b0c5115f41773bdd2606dd92f8daef605e1f8641ce18c0272b18003643e3fe2f84baddfe9491f9d3cf9fcad14f42bff6519609470700cfa863

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_0

                                                                                          Filesize

                                                                                          44KB

                                                                                          MD5

                                                                                          edb2ce25f14c1c60e2ddbe4439dba664

                                                                                          SHA1

                                                                                          10da4d6c22dfaf896512cc9fdf4d8824345b339f

                                                                                          SHA256

                                                                                          1d7ef840186c24d4c2ceaf304abbe87a2c1467decb5d0d591484b401def676ba

                                                                                          SHA512

                                                                                          57995dbb5e633a697fd5d52c3e411b2ba66a32ac904122d90d1db8c28f67c316ad4ddde1932e558bea62679f59213e88516bfcc7058c154a5519e415f2196586

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_1

                                                                                          Filesize

                                                                                          264KB

                                                                                          MD5

                                                                                          8af856782505394c5bc25109354b064f

                                                                                          SHA1

                                                                                          fc64c986826084285a870dbaa747e50ad5b2ca4a

                                                                                          SHA256

                                                                                          c364dc9bcf8015fc728b2d0bc8fcfbb176c902eb19bb85db462178cdc3c4242d

                                                                                          SHA512

                                                                                          5a06c8982b3ba08d55fbd24eb057154d3ff6fbd87820e4779eb69829efdc803559845d8652f58ad7e78e30852e3ae8c8328bb5ac2404ccefc622d1496772020d

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_2

                                                                                          Filesize

                                                                                          1.0MB

                                                                                          MD5

                                                                                          0d1c81a451c69d104643a0ad72568a3b

                                                                                          SHA1

                                                                                          aebfe1af1377734cca0a1db7c5db10db632ff467

                                                                                          SHA256

                                                                                          4116d6656ada6b3d038af14581e87eadcc705918e6cce6875592ebc6db439cfe

                                                                                          SHA512

                                                                                          59c9dc869dfc157bc03457f32963ba7c7caec4ec0467bc93ad15560da8296542e37eacdb26a7e4731644842b67e26a5bb8cc42c2991968e7fe541641be0de4ac

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_3

                                                                                          Filesize

                                                                                          2.2MB

                                                                                          MD5

                                                                                          9046c221e7269770bf9fef8e1253849c

                                                                                          SHA1

                                                                                          c09c307db571405c5f2072a90147133c66bb9919

                                                                                          SHA256

                                                                                          36302c24a6df8690dda6c7851b97a467c571f74ce76aeeb850b3ecb18563c705

                                                                                          SHA512

                                                                                          bf0b0d22d85a89e2c1406656f37daa7e2b2709c141d03fdd5dee7ff3ae5ab0f57e1118698e0fd956f68a3b34db1882129d83e7c1a3bec4c0e1ae53f8febe7611

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000046

                                                                                          Filesize

                                                                                          113KB

                                                                                          MD5

                                                                                          4b11ae7ad1476c50b773f479036d4437

                                                                                          SHA1

                                                                                          a05b9131c6a32290680c7ad47bb9fcb2f60ce134

                                                                                          SHA256

                                                                                          67a21fec93112487b172a5eb2c12690b3c9b4029f98d802c56490adc110ac831

                                                                                          SHA512

                                                                                          4d3486d86b0c3d9ade592e03f8508ed169c09311f97ff70abbce2f72e3cf7551ee84cfcd3821b3f5a5b7df3e85f253261ffa90639392573ae94cf0aed1b26693

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                                                                          Filesize

                                                                                          2KB

                                                                                          MD5

                                                                                          0d250627b7d0f00195f721b61632088e

                                                                                          SHA1

                                                                                          57a4200b779e92ffe9c6afc558eb8b3f99f5441d

                                                                                          SHA256

                                                                                          e705ff0193551398b6cc8ecc3b2578c70f69ea2c7ebdf8c175bc33f6eb41497c

                                                                                          SHA512

                                                                                          e58acf1f1b3599e8ca92d1b17bcd4275e0515e7e935709e035e7cf87da4fd3ae07643924adaba47aebf97f411027ce2e54a2b0e9c860067cab46ff413bc5674a

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                                                                          Filesize

                                                                                          1KB

                                                                                          MD5

                                                                                          993c37022c1878c740565436e26a31ad

                                                                                          SHA1

                                                                                          d04d8222199326dcfec7b58899cca157d6b61431

                                                                                          SHA256

                                                                                          4b1c9572111a337f8b0f2321b7a9f10e647de19552d465c10406b9ca6ae8bf59

                                                                                          SHA512

                                                                                          e210da0ab8810c97a12d6ebbfbc5e566714c8cd463fbef309a69449aacc537bc41225fbde94d778b4e26343471f2103cd4611fcf7f4a1962806df2cd343e0605

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                                                                          Filesize

                                                                                          2KB

                                                                                          MD5

                                                                                          22043a2ddbdc27d8d9a2fc7f43bf21a8

                                                                                          SHA1

                                                                                          4af8e8fe2dc947d87e6e41bddd9b9fe9e0ad8380

                                                                                          SHA256

                                                                                          73beac3a2f69c2f4129cbe5aa3dacf29128a99e85ef2090944ca5e91cbf16793

                                                                                          SHA512

                                                                                          cad9099863cf51608cace48fc29165ae96aa63e73ed7b5396d241049cb21c184387e2a7c30403533fcc9d5cdc42237d3a6d463a11b3f0f27c8bb3c42bff3eff4

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                                                                          Filesize

                                                                                          2KB

                                                                                          MD5

                                                                                          69aff5a08fb69c3a83fb023581ce1abd

                                                                                          SHA1

                                                                                          76f2449d426616b9611f8872a9f0d10dd9e0c569

                                                                                          SHA256

                                                                                          6ff164b32e9376c6f5d44212bbd500621d62ea54fe2a5832c6a85e7c42715f04

                                                                                          SHA512

                                                                                          4d5cc5869eaf2f46db8eda8bdb68f0475a2da050665c34416bab867b25da2dbbe5acb96923c3dd3a7339c94d6267aeabadbfcf97e0d633b460c2bbdd90f4fb8d

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\wasm\index-dir\the-real-index

                                                                                          Filesize

                                                                                          96B

                                                                                          MD5

                                                                                          87e8c0fd2d9455d61d7bac9e3e40da5d

                                                                                          SHA1

                                                                                          044d7a714be3a28fe62642e4e4e5e89f91d794f7

                                                                                          SHA256

                                                                                          f4388b431c9649b02c143a85e710db75d344cb89f7c52873388b9d550cea3a39

                                                                                          SHA512

                                                                                          fd3b426289ab59f007f89ee5969aab43a2985049f3ec528c3b9b22e50fd6a66a449608a0c8d00e7cec1791a4c0cd88521659a7cd9a09b3d41ef2a830a2230646

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cookies

                                                                                          Filesize

                                                                                          20KB

                                                                                          MD5

                                                                                          18524542a3498bc072d6e4538d4ef23c

                                                                                          SHA1

                                                                                          5136b2b8361e1ea1d28dd723eab76543c2ac1d7d

                                                                                          SHA256

                                                                                          fc73204fede5d9c23ad176b30411145a73d4477e08cb0948dc19a6838f985d72

                                                                                          SHA512

                                                                                          d920666d346901dd689b8990e7a9a09a022e9d6b4d2483ea3f9639ba1467839343db0b21b98f3a2571b4ac6dee8164e0e10dd94105006023d21e1897279ca415

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extension State\LOG

                                                                                          Filesize

                                                                                          322B

                                                                                          MD5

                                                                                          b1025572645bf64ab7b9fc343122dd97

                                                                                          SHA1

                                                                                          1aa6fba70e3f64bc72a99469e869711c60d5a49a

                                                                                          SHA256

                                                                                          9ae51582d5d0d5a05ebd04a1bbc8335991c11b54705ee3a4e1e6d314575305e4

                                                                                          SHA512

                                                                                          4afd922de91e424d3aa6a928d2ffe99975a703d1bd1910d97029f1154f2fdef0a51822280383ff7ddc14a433893e8c944bbffea30611d383d5859a21c6436fd0

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Favicons

                                                                                          Filesize

                                                                                          24KB

                                                                                          MD5

                                                                                          afec0392210d10310ea619ffbb11d4c9

                                                                                          SHA1

                                                                                          e6022813ac48a9560c5b7b0928e6481d9200828f

                                                                                          SHA256

                                                                                          4c0c30a16ae2a8893229eca257ee543fefdd52dfad1503bcf74a798dc9235630

                                                                                          SHA512

                                                                                          013049b77736d84edfc27bc1687afa56b6cff9fa0b4585d471c6b61a38f4932b5cc55fa75d2bd7e9e0e81d1905b394464d0fa04dcb0fca1665fbe4ad60ec67dd

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History

                                                                                          Filesize

                                                                                          124KB

                                                                                          MD5

                                                                                          b132c0d1277fb3f8cd33ee1c41fecabf

                                                                                          SHA1

                                                                                          1731d9683a0df3cf9caf2afe30e07ec312c857e1

                                                                                          SHA256

                                                                                          d7ccccdde09b8eed7fb9256ec87d8113462afce31cf189f9e03d3308f2bd9a20

                                                                                          SHA512

                                                                                          58a680dcb536033169d0b96b89a45184c462be30876400f7cc5613652ac03f9940bdf03e3ca3e1848384763ed8fcd4967b3a39138b048a80cf7d0458141212f8

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History Provider Cache

                                                                                          Filesize

                                                                                          2KB

                                                                                          MD5

                                                                                          2e10b720b9d61f97cf336fd4742dda5d

                                                                                          SHA1

                                                                                          c2312342b30a6248c7bf488de22d05f05c960d1d

                                                                                          SHA256

                                                                                          079ce256e13ce7b2102290ca3a8ec0b377d98805b8b5b4ecf7a1f96236e4ee3b

                                                                                          SHA512

                                                                                          a6a5f04c878a47700d3284b73bf81ced871e0c70ade398ca36413c3082e3dcc7e96495bd739a4c1f6173cf9337131c48f8249bad572a76117c7798031e7c2984

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_www.twitch.tv_0.indexeddb.leveldb\MANIFEST-000001

                                                                                          Filesize

                                                                                          23B

                                                                                          MD5

                                                                                          3fd11ff447c1ee23538dc4d9724427a3

                                                                                          SHA1

                                                                                          1335e6f71cc4e3cf7025233523b4760f8893e9c9

                                                                                          SHA256

                                                                                          720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed

                                                                                          SHA512

                                                                                          10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\000003.log

                                                                                          Filesize

                                                                                          369B

                                                                                          MD5

                                                                                          36058571f591b831c5e36fb299333f9a

                                                                                          SHA1

                                                                                          6d112718c6b82846b7c88a16c96cdd357e5d372f

                                                                                          SHA256

                                                                                          dd439a4de3d3036fe7d2a9a4171056de67dd5038f180d9a112903565a145c23b

                                                                                          SHA512

                                                                                          d26173c4b1795d2a32fb0c1531f3331feb7a066396071c8f2e51d5fe9b333767557d862916dc3e9dd98b38b6201bcd05619000f05cb2049c9c72e8ff427163f0

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\LOG

                                                                                          Filesize

                                                                                          331B

                                                                                          MD5

                                                                                          18754dc102f6faad71ac8d16f6d467cb

                                                                                          SHA1

                                                                                          0b3ccba27e48ea9e84de708610edab394f1e5b04

                                                                                          SHA256

                                                                                          451b580499961505fdc3684be8c84e751b1cb74c77d550bd86bcbcf90aaa0626

                                                                                          SHA512

                                                                                          f736eb7cef1cc681316c6d5d772b58ff26756ae69bfa80b473daee8b99480329bdaed65736ceaa52d030d6abcc92b879d3a5027c3ece1d6857608c4875c6c6b4

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                                                                          Filesize

                                                                                          2KB

                                                                                          MD5

                                                                                          0a538422ed2db76dce63302ca9542ba6

                                                                                          SHA1

                                                                                          b446cdae06f11a898b87320fc15616807794c531

                                                                                          SHA256

                                                                                          698245ac9fa9928bb9cea22c4269c5ea265f26dfb573ca63102f712ea81a0df8

                                                                                          SHA512

                                                                                          3054a9a7bb344b852c714bc3d37489cc79d84fe6dfa36cb8ffb69b414ea71665400e9f3bc5d6d8179dc8cc4040422124e7c8c092af470a80a93aa61cb0914d94

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                                                                          Filesize

                                                                                          111B

                                                                                          MD5

                                                                                          807419ca9a4734feaf8d8563a003b048

                                                                                          SHA1

                                                                                          a723c7d60a65886ffa068711f1e900ccc85922a6

                                                                                          SHA256

                                                                                          aa10bf07b0d265bed28f2a475f3564d8ddb5e4d4ffee0ab6f3a0cc564907b631

                                                                                          SHA512

                                                                                          f10d496ae75db5ba412bd9f17bf0c7da7632db92a3fabf7f24071e40f5759c6a875ad8f3a72bad149da58b3da3b816077df125d0d9f3544adba68c66353d206c

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                                                                          Filesize

                                                                                          2KB

                                                                                          MD5

                                                                                          192f79f4ac126b2286cf866357d792d0

                                                                                          SHA1

                                                                                          4a0749c468a53fe4d0afdbb31d4517a2e5c3e748

                                                                                          SHA256

                                                                                          bd12107081c2f3b485d220cb616fe7e0bc4cbbf85100762ad400d28b9c9e9be2

                                                                                          SHA512

                                                                                          e043c1f270543bef1b73125b2c76c5f2f89b8cf55c4ce5807001d46c420a84ba7c1c98b4debe8a0d8193988c9d96d7a1134622a0447a679944022f6daf74ce3f

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                                                                          Filesize

                                                                                          4KB

                                                                                          MD5

                                                                                          8ad809d561f54723a50a7f086f1748b2

                                                                                          SHA1

                                                                                          447b5d8170187c4421f474ee2c7cd921b6681a1e

                                                                                          SHA256

                                                                                          ee74f28071404f3b0caa97e0a6cba301dbdb0f9bac209db29424567aa77e31cb

                                                                                          SHA512

                                                                                          d789ac8e724243aace9e4ea5261580b3e10b4efdf8774c7ce4fa1afe0fe10ddf84b6a6962c3fbc78b6d4830657a9f9a116b3f228c8ccec416bf16b7bd7115dd2

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                                                                          Filesize

                                                                                          4KB

                                                                                          MD5

                                                                                          635d8041da5dad6a444e5dedccfd2500

                                                                                          SHA1

                                                                                          7dbd00bc787f538a561baf02e872959ee3e02fbe

                                                                                          SHA256

                                                                                          fe5bcace5ea6cf75a8fcb2b7e28a068fc89b7cfa74cf9488c86dcc6409c2d53d

                                                                                          SHA512

                                                                                          c0be2cb03b90133844bdb3112f9ac76a3ef81c5f99e89285e659306cffbd47494fed47f97149a3eb6645c0e6305830e2bb6f3dae34a8cbe8d50de37a5c882cef

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                                                                          Filesize

                                                                                          111B

                                                                                          MD5

                                                                                          285252a2f6327d41eab203dc2f402c67

                                                                                          SHA1

                                                                                          acedb7ba5fbc3ce914a8bf386a6f72ca7baa33c6

                                                                                          SHA256

                                                                                          5dfc321417fc31359f23320ea68014ebfd793c5bbed55f77dab4180bbd4a2026

                                                                                          SHA512

                                                                                          11ce7cb484fee66894e63c31db0d6b7ef66ad0327d4e7e2eb85f3bcc2e836a3a522c68d681e84542e471e54f765e091efe1ee4065641b0299b15613eb32dcc0d

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                                                                          Filesize

                                                                                          1KB

                                                                                          MD5

                                                                                          536c01646cd1897b0b2accf46aa2b982

                                                                                          SHA1

                                                                                          93cf1e28eef631aa01ce07a0ade64a659605fce4

                                                                                          SHA256

                                                                                          3cb4e3fb9a7730c8a1dba162de26fb0493291d6693e77812df88aea425375408

                                                                                          SHA512

                                                                                          126022843f4e163380661bd5fea408b34120ed3143aa6f9e5df984bb770ad63b8a555706d3e2b6688260569a7a680b65076b816d2dbf688cdfa9961582d35c06

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                                                          Filesize

                                                                                          5KB

                                                                                          MD5

                                                                                          9e50e6fcd5a8ac844ab553bc3a10ea76

                                                                                          SHA1

                                                                                          fcd7258a149f39d355151342447d4b084c2ba692

                                                                                          SHA256

                                                                                          bf4d158ec173ed8c35d19ef7f42cd214f39e069039e99c61842b9678e77a63f1

                                                                                          SHA512

                                                                                          063d3cfa1c51898332dc73a0afb042ccda5fa3c544c63bdabda3910acb1d13e0d0cca4d40521a724d32602324983d50a098a2e8d5aafe51732e972d5e05d0efb

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                                                          Filesize

                                                                                          7KB

                                                                                          MD5

                                                                                          81111da8daf359fcf3241e514c92580d

                                                                                          SHA1

                                                                                          a0bb5a09d5ed2eb4cbed1ae46b3dea6f1b0ffce6

                                                                                          SHA256

                                                                                          871d1422cbad350a5a5e652af3f777ce3e9369b335fe5f9f6407ab56b938f958

                                                                                          SHA512

                                                                                          75df82d18b7e979fc6732f77ef793525b937f9a0a8c8f8608c44222c0d559d0a39174e6a6d8beb5702eb5f0c4da3cbb15dc59cbdb7878f0e0e286829b041dcf8

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                                                          Filesize

                                                                                          5KB

                                                                                          MD5

                                                                                          75d4588d57595f86b4b4e14d6e1b8db3

                                                                                          SHA1

                                                                                          3f88afd76fae06d0eac2746c2325c4837fc827ac

                                                                                          SHA256

                                                                                          ef26b61904c0d4b85ee9bfc411e061961478955064a54f06a8f50dc155ca83a4

                                                                                          SHA512

                                                                                          24ec4bd49fa052ae0d5aa265593e964430f4a562d9c2d72ac26aeacc3bdd2b62a740552111eea14d0e4f2ded27f5e576c07b25ad1729659a8fa89663a85cd898

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                                                          Filesize

                                                                                          6KB

                                                                                          MD5

                                                                                          8d88b62483c99bd566322d306bef8c80

                                                                                          SHA1

                                                                                          a8ca407a3d4aa21003bbfd5ed4bc02d4f1d1e2d0

                                                                                          SHA256

                                                                                          b20666a48a7b5c4085810531a3c1798dc72e7f4d70b29f705dbb80ab05821658

                                                                                          SHA512

                                                                                          029d2bde621837ada9284734bc77a23eb03dab8d68341c98730253a3948a3af559fbbd2f2522e974e12edcaa607d7d143bd3d2a5d9108aa3b826bd730158167d

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                                                          Filesize

                                                                                          7KB

                                                                                          MD5

                                                                                          314a8462f8430c9ca76d67af7095bcc9

                                                                                          SHA1

                                                                                          97c8830d4622ead2468799e80019e778b590addc

                                                                                          SHA256

                                                                                          f8154e067785d153f64b4dda68d6e134a96b2978d296ec42bd3fdcb4098cc07d

                                                                                          SHA512

                                                                                          60badb34b5bf560585bbaac00c7a22a85005bdc2bba45dabf042b7c395e2072cf6700f86e0258691e583bb4d9e43b973c736009791b3b092f330cb901edb59de

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                                                          Filesize

                                                                                          6KB

                                                                                          MD5

                                                                                          937c10dcc166a395e4d277d1ee796b51

                                                                                          SHA1

                                                                                          3ef46300fbf24a607eb607ebc235b14c3a711c20

                                                                                          SHA256

                                                                                          d7c32c19068cece1489243dfce5c7375d90d07d14aec1214c20506e4521f0b70

                                                                                          SHA512

                                                                                          ed2587e2dc5b3759c63770a45af17bf01d29a470b049f42377786d34ad9a4a3f9aadbaaa48aa96effd271ae8ae5fd27d07499b7d3de40147b9d529dae11e69d6

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                                                          Filesize

                                                                                          7KB

                                                                                          MD5

                                                                                          e412485ee15f2aa5a0650b154b092959

                                                                                          SHA1

                                                                                          a861b3ba10313f1caac6fbd0a13d2f18564505ae

                                                                                          SHA256

                                                                                          c9fe2e13c8947358800c8b7df0f92e1b6fcb6bb7fd03402d2c0cc9a40637a753

                                                                                          SHA512

                                                                                          56f6f4107dde195ff89f9fe794b3201d7d8b61c7c29f10986a2186d9ee1afc2c855c22e9793a1ac5ae305e92bbba6e9403dc34c192d41b9683aee259ce3c5634

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences

                                                                                          Filesize

                                                                                          24KB

                                                                                          MD5

                                                                                          c2ef1d773c3f6f230cedf469f7e34059

                                                                                          SHA1

                                                                                          e410764405adcfead3338c8d0b29371fd1a3f292

                                                                                          SHA256

                                                                                          185450d538a894e4dcf55b428f506f3d7baa86664fbbc67afd6c255b65178521

                                                                                          SHA512

                                                                                          2ef93803da4d630916bed75d678382fd1c72bff1700a1a72e2612431c6d5e11410ced4eaf522b388028aeadb08e8a77513e16594e6ab081f6d6203e4caa7d549

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences

                                                                                          Filesize

                                                                                          24KB

                                                                                          MD5

                                                                                          1c7ec27d94da04714401b9adf0b17756

                                                                                          SHA1

                                                                                          3e18d51664cd7c8036552c1557391ae0e7d3363d

                                                                                          SHA256

                                                                                          57be391e5772faf9845cc18c3b6c5e428c1181feaa56c5dd4c4d16472c9ebb52

                                                                                          SHA512

                                                                                          067ce3414a4fdadf8b1fbc79cd0abfdbde43e60b848d9f06e1310f3c1192ab2135347d570baa9c1eee1da941f70e66a85ff4a82fcd6286268c542c97a5f2ba24

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\426dc30f-56df-4771-921f-f8ee2554b469\index-dir\the-real-index

                                                                                          Filesize

                                                                                          120B

                                                                                          MD5

                                                                                          ec91ddfff0ec67f1378cec399bff27b1

                                                                                          SHA1

                                                                                          36d41bec2edc07fd9cb143d8c6841588ea4bf083

                                                                                          SHA256

                                                                                          cea868e025b1391a3c2190eff3985ffd3fb79b5089e46ba3731098ac9b61fd92

                                                                                          SHA512

                                                                                          7f3a759faa1907ea9f9768f9a5f0ab7a3010901a1c7d9e4eb8b43138bd4bc33713d7f878222f3043fb8b7f97d33b339ca9593b3c104b51e3b177544ddffd6e11

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\426dc30f-56df-4771-921f-f8ee2554b469\index-dir\the-real-index~RFe57bab5.TMP

                                                                                          Filesize

                                                                                          48B

                                                                                          MD5

                                                                                          8a1a390dbcbd9707e8ffe03ffec07f96

                                                                                          SHA1

                                                                                          136c72a632e8661b740150883770313e071daae2

                                                                                          SHA256

                                                                                          8982b5686c9b8b39ee30d3347356cb0a5fa14234cbdbb209783f13d948da5257

                                                                                          SHA512

                                                                                          e1ed1b8255e0fb79932750d5e52d5bfb2b618a6ebc5ee8d51b1a7c26caeb6aa932f7918130649adafde153043dfff1fe8d23a985c54e52c7ed98d784545fe8d9

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

                                                                                          Filesize

                                                                                          89B

                                                                                          MD5

                                                                                          597656dda80cd427fd3122e130644722

                                                                                          SHA1

                                                                                          83bee7c688a8bd2736d4ad76500122952b5f840f

                                                                                          SHA256

                                                                                          996aff6df3eefea773b39cb2a3d83766142824eedba07ebdae81d25c6a0dfbc0

                                                                                          SHA512

                                                                                          0068b07603d874100cd1aed9d0f78adb66a9020757f0d5025b6437433e9c8356e5076ecc370d40ca872b1c0f0ac096968394a020ba901fc1250607a23e26eb12

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

                                                                                          Filesize

                                                                                          146B

                                                                                          MD5

                                                                                          e595a12f084e164e3b70257824aefc56

                                                                                          SHA1

                                                                                          de69d80a8fac85885166afa76f1630629f5641f8

                                                                                          SHA256

                                                                                          62915ebd9c9e66523c6352b29da40e2d64db314d800678552f82d6da249335ea

                                                                                          SHA512

                                                                                          15f75df5d41cf32fee6937940cc5fad4750de84146a26b14a9e25cccb2fbd1353861e8890b416f19cc3fda26b0b531b37762eb87271d5b57e20096a8744a0b3f

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

                                                                                          Filesize

                                                                                          83B

                                                                                          MD5

                                                                                          dbbf512b5b660fa9f5cbe77eb9bfccf9

                                                                                          SHA1

                                                                                          d30159d265714dadc0937608cf4f10ffed533a5b

                                                                                          SHA256

                                                                                          7fded3e4f544e77cb60ec20a4c29818abcd4249337cb0fcda68974e07bbfe77a

                                                                                          SHA512

                                                                                          f8b1078622de74781af5398f151142df4d030ba34adb112f05713b295b2ab28105cdc76974cd023cf706a04179306d19b434df46cb87c3bee04e7a3ae9c1be08

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

                                                                                          Filesize

                                                                                          82B

                                                                                          MD5

                                                                                          a071650c7aa463947dd213910c565946

                                                                                          SHA1

                                                                                          66ef6a5336e70d22206737c372df5267dae2a66c

                                                                                          SHA256

                                                                                          3e2ff09f117f1cc4449b6d3e4f7b95d642024313bd8dd5c0ceb3ccb54b029861

                                                                                          SHA512

                                                                                          2b27ef72bafe6d925f0abe19ff6ce8d36fdaad8898334f11b6778d8346eb698a2e60e7472fe616aca416f2a3b1b0ba7794ccda778f81c610755a85ae650d0376

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\000003.log

                                                                                          Filesize

                                                                                          947B

                                                                                          MD5

                                                                                          74fc819c8c72b35539d0018ba36cd3fb

                                                                                          SHA1

                                                                                          0537e666205d973115866f60490272abecffdd9a

                                                                                          SHA256

                                                                                          82b1bcad44e95aa1932c297e73893599bed8d1b25364113a4fe2629d1171b3ef

                                                                                          SHA512

                                                                                          00f0a0c65450d94936050546d85a6284912611a25a536d58c8b6d934bc7143b291eec7f0b8c6d9dde1d713cc5594d080b33c50c7b1a6ca974750a28ded92c337

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\CURRENT

                                                                                          Filesize

                                                                                          16B

                                                                                          MD5

                                                                                          46295cac801e5d4857d09837238a6394

                                                                                          SHA1

                                                                                          44e0fa1b517dbf802b18faf0785eeea6ac51594b

                                                                                          SHA256

                                                                                          0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

                                                                                          SHA512

                                                                                          8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\LOG

                                                                                          Filesize

                                                                                          295B

                                                                                          MD5

                                                                                          e4a7cb7e4f372ab0303daa623069f379

                                                                                          SHA1

                                                                                          bab4c5bd44b0d9a1b793e0924350a873e6cb1606

                                                                                          SHA256

                                                                                          7583ffe7bf591885a513b84997ffaf98cfd68a2b470e2ceabc6a771f8b42b990

                                                                                          SHA512

                                                                                          9de4b9464be7bdc0a27762c38938847c5f68c4a02cd74b28da918f05013f5d1c3b8dec152e83a96cfda05aa6e78ac35f6081f2688abca27af07876907c8f8034

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\MANIFEST-000001

                                                                                          Filesize

                                                                                          41B

                                                                                          MD5

                                                                                          5af87dfd673ba2115e2fcf5cfdb727ab

                                                                                          SHA1

                                                                                          d5b5bbf396dc291274584ef71f444f420b6056f1

                                                                                          SHA256

                                                                                          f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4

                                                                                          SHA512

                                                                                          de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

                                                                                          Filesize

                                                                                          48B

                                                                                          MD5

                                                                                          56969c24115c5d85d7091eca2edb1f80

                                                                                          SHA1

                                                                                          03bf91c15c85d697a5ae26c82e522e15cfe5555a

                                                                                          SHA256

                                                                                          4982b3981af161653f3b61d9da905ab981b172758aa59a945ec04a2f0055f0ff

                                                                                          SHA512

                                                                                          4d19f47937415de30029680ec5ae456903dc5e41d30120da176fb471b2a3df1dd535d31d143d0b28670c44b92aebc486e4bd3aa0ab90de1ce39aa51ab077b025

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

                                                                                          Filesize

                                                                                          72B

                                                                                          MD5

                                                                                          39b93c38d0a5d2d9df74c5537108c907

                                                                                          SHA1

                                                                                          0fbf62912e916ad2aa0a8e28f6c526b4519c0dec

                                                                                          SHA256

                                                                                          5146c53cba2b3cb0f1836c1e18dbd017a8d8897b4e12fcdb8f4d2ba62476e9f8

                                                                                          SHA512

                                                                                          a2432f3d6b4fdcc83ce0b8c5f3c19763c88d186dfd458ababd08471800e024f438c9b1eb93ceb7687a225dfc26915a092a85629ae81097720fced373745acff6

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe57c091.TMP

                                                                                          Filesize

                                                                                          48B

                                                                                          MD5

                                                                                          9531c9fef7980163f80e21d5c23724a5

                                                                                          SHA1

                                                                                          099a6e03f46e4ac80a7bea46c6db25c04c04adc2

                                                                                          SHA256

                                                                                          d31c4add3b4691bceb3e09b160094d921f9358c5913531a285641ff7c571510c

                                                                                          SHA512

                                                                                          13021db9966a712167420f32e094a03174f4fb6ff6e2082068a5d01cc64ad7f34312be228a4b84479a323bda0524eb188276c3725dfb06e4d9e1d5f69ab93c0b

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\000003.log

                                                                                          Filesize

                                                                                          568B

                                                                                          MD5

                                                                                          31a3b01dfb8237e4f8288952b4cb4214

                                                                                          SHA1

                                                                                          af6e3dd8ebfe770ee3c93775f5e8aab33564492c

                                                                                          SHA256

                                                                                          6190f849efafa10a6a51ed8a9611ea56890f9c00c4e115a08bf69e30990dfb96

                                                                                          SHA512

                                                                                          9a41918a8a318c0cfc6e13168a33503ae98590052500c9724967a921a1f1757be68bce4667799990f68fda1f2062560161d33a449ae8f56f0ca919e1fec14dc7

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\LOG

                                                                                          Filesize

                                                                                          319B

                                                                                          MD5

                                                                                          72914de83d7d2ce588a4c511f078c1f7

                                                                                          SHA1

                                                                                          08b798b99fc8ae40010f2424ad4f5994323fc412

                                                                                          SHA256

                                                                                          f2f2b4be6381268d9020201e4ab9e7b3c23b51a117a6bd75139a4b768a1c1e53

                                                                                          SHA512

                                                                                          c0d2b0597e83875a3efc53ae842157634bc4bf2dc759b4114b7ef2765b109b6816ebee6a073214d9180daedf0b4ce8c9a0fc2c31d7adf059377b8485c6f1ea83

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Tabs_13355261310679956

                                                                                          Filesize

                                                                                          12KB

                                                                                          MD5

                                                                                          19faea110cc1c9dab6d54567576bd43e

                                                                                          SHA1

                                                                                          def4e0f92555da3d5f016c359626df1db936f742

                                                                                          SHA256

                                                                                          100c5018d6cafdc65ff102f096e491e5a754c559cb7d4b667b6115305b6629dd

                                                                                          SHA512

                                                                                          2b4642f76bee0a8ae185e3bba0b8bbc63bb3fdc3928c94486619dfd186260d325732bc8f0d9407b25b8cdae093eaebf26ab79413921486b3377f5fdccba776db

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG

                                                                                          Filesize

                                                                                          347B

                                                                                          MD5

                                                                                          933ed1171495c979ada89de28d9670fc

                                                                                          SHA1

                                                                                          505c7bdfe09c9ba6ca6a19e590b8ee8e9207e4a3

                                                                                          SHA256

                                                                                          fe0b20cfa953d9b0f60e84ee305e8c03bfcf4b3a11b5bf081671c1f7ed024bab

                                                                                          SHA512

                                                                                          2a151e11c71eb9c25a1c2e6f1b229c9f8fe083b83a7ae91fc3a53ed464435a52695a38ee18ffc5065ad3753e83352ae0d12f42e749b640833831dfbfe0fe0695

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG

                                                                                          Filesize

                                                                                          323B

                                                                                          MD5

                                                                                          d3d3a9b8abff9ee5142c473b17d1a28d

                                                                                          SHA1

                                                                                          b3bfac150ed8583c0efc48a02064ada81b781e7c

                                                                                          SHA256

                                                                                          ea6c9ebdb3ce66b1ee4d199971f4a6bf078055a9aedc3f20ddc938cca6ea4996

                                                                                          SHA512

                                                                                          fc133ccfbe051771dffcdb402f16085ab4baf00f8665486e264ff0bfa0d7f19d1428054ea0aff0c9c6adfd1ff1034b0e53cb100826c49a6a8b5a56f05152c55e

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

                                                                                          Filesize

                                                                                          1KB

                                                                                          MD5

                                                                                          5ab83d97d9ede8a141050ee2aae8f847

                                                                                          SHA1

                                                                                          25a2224be99013806212cbbc2fad829f9c07c452

                                                                                          SHA256

                                                                                          97aa5cda68d11caf48abfbf14d80a497fc6995600bae997116bfdc3a9dac0fd3

                                                                                          SHA512

                                                                                          3cecd80eb06096c77ec529f791f1fef17d99739ca0bc661a84db2d481da292ffa204c1907faf9090079f053a002dbf9c314efd28f2d8acf02b55e0ce59c22947

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

                                                                                          Filesize

                                                                                          1KB

                                                                                          MD5

                                                                                          789684fc2c83cbef9bd61bb6357edeed

                                                                                          SHA1

                                                                                          cdc27a0100bac9384bc7c1ac90af18f046f5e488

                                                                                          SHA256

                                                                                          2a03c4d84d958363bf2ea8e46b3cdbac9e51cf61fd7f4bac483758d42da6b366

                                                                                          SHA512

                                                                                          fff09aaa2134fe2f6685dc455cf4e116c4b150d14f86bcf9283733b58770baa6fe714a98fc9c3c9b91f9d0db061719b3c5ec0f8c425529bf97c89e1b3f21e0b5

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

                                                                                          Filesize

                                                                                          1KB

                                                                                          MD5

                                                                                          8d7367fc121edca528ece4b8578b8504

                                                                                          SHA1

                                                                                          8d0336b4e2a29298e74b4e74bf05899883d81539

                                                                                          SHA256

                                                                                          cfd71747d65358948e3c439a96d04db859b4773a743348bf2a805944cc5159cc

                                                                                          SHA512

                                                                                          a1acdc253fe70c2bda8d3f3c6ece26dfd9ebb43f39ab055c0a4d1328bdfe0bbb30da31fa2d1f47fa7c647f445162236395d2c1b9d4781c9e9005acc58fed5818

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

                                                                                          Filesize

                                                                                          1KB

                                                                                          MD5

                                                                                          be5f9e482ee3eca0d1d574667a960dc4

                                                                                          SHA1

                                                                                          c998a4f3ff13e0cd51a77cd04d6e1b93dc514398

                                                                                          SHA256

                                                                                          3a8e6c9c284365a2138b780864b66548cdb7b04d3a51ae892737e68505049d30

                                                                                          SHA512

                                                                                          94e28ee40a358ada1caedcfe4123167f46723eeabde60ef12e91f47007294c4c454f427f046fd53c9964507160d3ef75fbebc688be5cae6e1c86114bdbe33316

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

                                                                                          Filesize

                                                                                          1KB

                                                                                          MD5

                                                                                          ae248d3a60cf750057143c4c0643a707

                                                                                          SHA1

                                                                                          c7469e6a2241a2856f49c8013beb6b4683ef4b00

                                                                                          SHA256

                                                                                          d92b7c06720ba72147a8b13277d1cc6c802c7a674dcbe4f12a6d3f62a522e3c9

                                                                                          SHA512

                                                                                          e2bb65850b256f6ebaac699a7ee682ff1dbcfc4f9c68d333930d8e797f34c1a3fb6bfb1a3282671d4d0e154ccb57818c3bd213204e7aacc5448357efa07132d7

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

                                                                                          Filesize

                                                                                          1KB

                                                                                          MD5

                                                                                          445ff0d4e3944c8ab0eab99185e4e58c

                                                                                          SHA1

                                                                                          8845be8dd3bb30db51568ea00e04a24f87064d77

                                                                                          SHA256

                                                                                          f9865761d17a8475f219f50f13e616203b695181ca15358f70955bfa32efa72a

                                                                                          SHA512

                                                                                          17bc38d85ce3c9b218ebf3873db2ce72a7d74b244e7b8ac85a3aa5a5ad168104ec41e1a98b7ddba640dd3e4327cdc7de6d1c1113509302de12581bf744b2424a

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

                                                                                          Filesize

                                                                                          1KB

                                                                                          MD5

                                                                                          2a2c4a213e2bc2a918adc02b5db01f60

                                                                                          SHA1

                                                                                          0a69a8d1d51906bc1327ab6bd2150a4b8b4d82fd

                                                                                          SHA256

                                                                                          489c4508456139f8dd260dd1edfddb51d606600f351033a82b9c16b2b1ccc7a3

                                                                                          SHA512

                                                                                          8a7ac9b0f19fa05a07f2663a9d85f99bde1cf4b1dfb19b7720c4dc0c8d924a7e68ef70a2afbc03a783c8d27ef1fcf07905f6d92a22f599a8ea4e06482b8525f5

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Visited Links

                                                                                          Filesize

                                                                                          128KB

                                                                                          MD5

                                                                                          62913952624dc0d1ca5b8bc1a778097a

                                                                                          SHA1

                                                                                          ec096135c6695228b746a663ae4a7a1600fdf7ed

                                                                                          SHA256

                                                                                          cf95093fb4fc9cb3f0fa9b5aac2864a0074b5e5753332c3b00cf72329b1ad194

                                                                                          SHA512

                                                                                          f8a025756148b2212d911ed5d594af4fc4f6dc82ed644620bd00a84e746c1d72e0d901b8a955343c2397c70dd2328123030c7e1df221d8c4f59c114e3cd9246f

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Web Data

                                                                                          Filesize

                                                                                          116KB

                                                                                          MD5

                                                                                          275fdd575f77ab789232e6de6dde9284

                                                                                          SHA1

                                                                                          31162f368199b4254009988b83688919d88392f5

                                                                                          SHA256

                                                                                          20085da9fca9fd73995b9b4f4b0fdbd4526d40e08fbbe149388ca3aa84423495

                                                                                          SHA512

                                                                                          daff2545fba52e7073234e8b475212fce4858aaec9bde928bea7272d1454556c113738cb48871b46ab1068a1b4de145d32f0ba6552a69245a16eb3bd23988ed1

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

                                                                                          Filesize

                                                                                          16B

                                                                                          MD5

                                                                                          6752a1d65b201c13b62ea44016eb221f

                                                                                          SHA1

                                                                                          58ecf154d01a62233ed7fb494ace3c3d4ffce08b

                                                                                          SHA256

                                                                                          0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

                                                                                          SHA512

                                                                                          9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

                                                                                          Filesize

                                                                                          16B

                                                                                          MD5

                                                                                          aefd77f47fb84fae5ea194496b44c67a

                                                                                          SHA1

                                                                                          dcfbb6a5b8d05662c4858664f81693bb7f803b82

                                                                                          SHA256

                                                                                          4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611

                                                                                          SHA512

                                                                                          b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db

                                                                                          Filesize

                                                                                          44KB

                                                                                          MD5

                                                                                          5e1bdb68a22f12b6619997e93e557674

                                                                                          SHA1

                                                                                          2786e3b1700286a63c71a7854e8074878da10300

                                                                                          SHA256

                                                                                          c84a6e1b3e026feb8e5405ac901880a23519b0ca1ebeef50ccdc46efbc894e4a

                                                                                          SHA512

                                                                                          3d7d3d794bb12e6116a611e58f53f8267fa68b7b2732da0786763c78e7fc9c91bcc7ec18c27bf497f10ce5fe92be7d76dd3be5220548a580597dac99e3708e63

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\000003.log

                                                                                          Filesize

                                                                                          206B

                                                                                          MD5

                                                                                          120fd93495ab948f4529f30335ca3c11

                                                                                          SHA1

                                                                                          ff2397ac0148c7fd04a101e9ee8f451526cfecd1

                                                                                          SHA256

                                                                                          c52ee3912090a5cd53e533e65b8f439f55aef1faecde4b4e683e04fa5d1ba038

                                                                                          SHA512

                                                                                          be4cb24515f74016ee9d1faae9d1760240ca4fdbb5bb14519fef245195ba87a00c5f28836c415b3475ce349d9107d7d6f0fc481eb2e7a56e9c9cb498a915a279

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\LOG

                                                                                          Filesize

                                                                                          319B

                                                                                          MD5

                                                                                          b4ee4319a1c1eaedaefc2e762ae77ad8

                                                                                          SHA1

                                                                                          1e737dddc8b9a416eee683c4d11768dd81c6afe5

                                                                                          SHA256

                                                                                          73f50904b8b3264be959199527325931b9fa209c12fe4e62cacc1c18f2a7698c

                                                                                          SHA512

                                                                                          6807d3b1de7427a2ab4d9d509bef337eff549ed07d9b1ab7cece2ee829978e9ffc1bb715a7036f3c35711b1b769a3586933bd1e137a701d012a83c38181882c6

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\000003.log

                                                                                          Filesize

                                                                                          594B

                                                                                          MD5

                                                                                          277802d0b29884fc8821adf2e1840e2d

                                                                                          SHA1

                                                                                          4e30e6e731b69cd68d579700dbf33e5403bafa8b

                                                                                          SHA256

                                                                                          f1f3ccdd6c5494743fa5cc1366a29fc5d1e749757367f554fc0373f236a51591

                                                                                          SHA512

                                                                                          6aac1d18315912227b60072f20064807f6a949211c999236a30b4861a5ea606569fdd8e69dc1fe8bd2da0a2f8e016144dad4796c12e98a171b7a811e0988f9a0

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOG

                                                                                          Filesize

                                                                                          337B

                                                                                          MD5

                                                                                          c5d39abd81af6a100fe42b162b8dfeb9

                                                                                          SHA1

                                                                                          aaa6d02784f37863e86dd5a93c0a9deb676d5483

                                                                                          SHA256

                                                                                          f028f77e13279b558f36c4b6d4babc497c40bb80e2067d028789297aac1059d0

                                                                                          SHA512

                                                                                          4f7a185a03d27a4061c444aad6b2b85952baf1b4bac3c30744ab04a4b746e748f9aa7d66ed490dfbaeb6a3a3af0a271e153b1fde7dc4462a6c7624bc64348e2f

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_0

                                                                                          Filesize

                                                                                          44KB

                                                                                          MD5

                                                                                          f977e0f7f29de0cad18ac333ee93bf5a

                                                                                          SHA1

                                                                                          1f748d78f24db261b486a3469881606e9da8c812

                                                                                          SHA256

                                                                                          22c9eeffc1a104999a84c15d6de3c0bb5d6238d39af55d2ed25088eeb5027fd4

                                                                                          SHA512

                                                                                          0bc8aa52f5d4be53c601dbec677cc5728f4b2c6f89ecf85372d0827bbcdd3043a4b222e7b6d51c5aea95014791075a7f1f15e9e0ada1dad9b29b48b4a570148f

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_1

                                                                                          Filesize

                                                                                          264KB

                                                                                          MD5

                                                                                          9c38ea2f9d3bb9a4350d4d545683bd13

                                                                                          SHA1

                                                                                          9e466cae33d5c1f7f7c17305d9aa3eefe33afa75

                                                                                          SHA256

                                                                                          8e1232ccaeea0b954f3ad3b262f2acb5076c164f35b560ca0b68ab0b6f5ba620

                                                                                          SHA512

                                                                                          d1f375ba7e9309f8c50bf90142f8c9230c480cdafa0e8b57e13ee16da15f4dcf0cf4158d9508784bf781c6e31f84e4332e0f3a172116d1836ad5c26067e1cddb

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_3

                                                                                          Filesize

                                                                                          2.2MB

                                                                                          MD5

                                                                                          2544790114b1ed25f3e20e1e63f43a3b

                                                                                          SHA1

                                                                                          043b68c45027575ab4843d4899f5eda26ea538c2

                                                                                          SHA256

                                                                                          f3cb0b0c57e5e1f7bad05f4a932dc72f025a86f94d1d2b0e4b957e6ed38347df

                                                                                          SHA512

                                                                                          79832acf6b6863d137e6402755ae3ef82f1707a97ff2873eb55c0006859dfcb4f34f8e7acd24bf7c7fac297788ba9daa2bb755cb7e44eeb6b0b64b76d7e327c4

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\f_000007

                                                                                          Filesize

                                                                                          17KB

                                                                                          MD5

                                                                                          fc97b88a7ce0b008366cd0260b0321dc

                                                                                          SHA1

                                                                                          4eae02aecb04fa15f0bb62036151fa016e64f7a9

                                                                                          SHA256

                                                                                          6388415a307a208b0a43b817ccd9e5fcdda9b6939ecd20ef4c0eda1aa3a0e49e

                                                                                          SHA512

                                                                                          889a0db0eb5ad4de4279b620783964bfda8edc6b137059d1ec1da9282716fe930f8c4ebfadea7cd5247a997f8d4d2990f7b972a17106de491365e3c2d2138175

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Version

                                                                                          Filesize

                                                                                          11B

                                                                                          MD5

                                                                                          838a7b32aefb618130392bc7d006aa2e

                                                                                          SHA1

                                                                                          5159e0f18c9e68f0e75e2239875aa994847b8290

                                                                                          SHA256

                                                                                          ac3dd2221d90b09b795f1f72e72e4860342a4508fe336c4b822476eb25a55eaa

                                                                                          SHA512

                                                                                          9e350f0565cc726f66146838f9cebaaa38dd01892ffab9a45fe4f72e5be5459c0442e99107293a7c6f2412c71f668242c5e5a502124bc57cbf3b6ad8940cb3e9

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

                                                                                          Filesize

                                                                                          10KB

                                                                                          MD5

                                                                                          b6dfbd917a527bfeb83f1c663226f552

                                                                                          SHA1

                                                                                          11e65010d9dcc5a48ad8320324685e5696a0ba97

                                                                                          SHA256

                                                                                          2f13c725eb1fb94444806f6b750a8206a46372765e905df6742ee4a0bcabbd1b

                                                                                          SHA512

                                                                                          4f389ae5e7e9697ca3879e5c74d57f62fcf7c28e426af1705f9046ca3a8a4930253183a59e160bbba9db68bf2669eb21ddd8756726d1425bf835f3f6b19d9c96

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

                                                                                          Filesize

                                                                                          10KB

                                                                                          MD5

                                                                                          4449a32a940ebf70f1f31b943fe79e42

                                                                                          SHA1

                                                                                          4aa2b062ded22b94ed26e7cc40ac652710a57c40

                                                                                          SHA256

                                                                                          ac506368cbe3594ec3d6f3dc05f7a3a7b5ce9a0b6b5df46f8cbcf205c7304230

                                                                                          SHA512

                                                                                          30422e889c8968b29af02fd43733306fcec64f67b514504a6b7dd6b3df029c392521a0764afa9142dcfc1a14d3943afb126b111c13babe425a7cb52b3b8a8034

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

                                                                                          Filesize

                                                                                          11KB

                                                                                          MD5

                                                                                          9dab59be3723e02bd73be08a9d6bfe87

                                                                                          SHA1

                                                                                          8127f0fc85523c74c62d86a3e30a83cd72f58553

                                                                                          SHA256

                                                                                          2f844e95d75dac3d96f45e69196ca6ee3e3b73850e4f1ac1d4bb8368ba2ca987

                                                                                          SHA512

                                                                                          89b8b78a4ab173589390f031ffac837b5449f759a213a0d550e9fd66fd6b87f1520f115190bd5d2b93f3ea6649b4fd10d23d8c0641723e31b68aac34af349920

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1

                                                                                          Filesize

                                                                                          264KB

                                                                                          MD5

                                                                                          f50f89a0a91564d0b8a211f8921aa7de

                                                                                          SHA1

                                                                                          112403a17dd69d5b9018b8cede023cb3b54eab7d

                                                                                          SHA256

                                                                                          b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

                                                                                          SHA512

                                                                                          bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

                                                                                        • C:\Users\Admin\AppData\Local\Microsoft\TokenBroker\Cache\9cd93bc6dcf544bae69531052e64647ec02f2bb4.tbres

                                                                                          Filesize

                                                                                          4KB

                                                                                          MD5

                                                                                          520a05f4b0441de4168e95c05da731b3

                                                                                          SHA1

                                                                                          ed468862d76231e8b893e72ced0d01859d5495e9

                                                                                          SHA256

                                                                                          6e1cc7e8f3531054900a111a62cfa016ecb94ddc403c96b0eedfbfb3304f50fd

                                                                                          SHA512

                                                                                          dff59834beea7bec1a63a451968f17587d7d4488d1e1d89363020d1cf38bfb5f191fbe87c875152352000f7f3bda6aabba19871987bebdc9358bd76b07a67a5f