Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

URLScan

urlscan

1

http://disc0rd.com

windows10-2004-x64

1

Analysis

  • max time kernel
    270s
  • max time network
    270s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09/04/2024, 08:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    http://disc0rd.com

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 10 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 55 IoCs
  • Suspicious use of FindShellTrayWindow 25 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://disc0rd.com
    1⤵
    • Enumerates system info in registry
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:2664
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffac72346f8,0x7ffac7234708,0x7ffac7234718
      2⤵
        PID:3328
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2240 /prefetch:2
        2⤵
          PID:2332
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2296 /prefetch:3
          2⤵
          • Suspicious behavior: EnumeratesProcesses
          PID:2252
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2876 /prefetch:8
          2⤵
            PID:548
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3284 /prefetch:1
            2⤵
              PID:4960
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3308 /prefetch:1
              2⤵
                PID:2428
              • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5128 /prefetch:8
                2⤵
                  PID:2096
                • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5128 /prefetch:8
                  2⤵
                  • Suspicious behavior: EnumeratesProcesses
                  PID:4508
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5800 /prefetch:1
                  2⤵
                    PID:2972
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3308 /prefetch:1
                    2⤵
                      PID:2440
                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6040 /prefetch:1
                      2⤵
                        PID:4404
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5804 /prefetch:1
                        2⤵
                          PID:4068
                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5892 /prefetch:1
                          2⤵
                            PID:540
                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5824 /prefetch:1
                            2⤵
                              PID:4176
                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5432 /prefetch:1
                              2⤵
                                PID:4596
                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1820 /prefetch:1
                                2⤵
                                  PID:464
                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5644 /prefetch:1
                                  2⤵
                                    PID:1764
                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5300 /prefetch:1
                                    2⤵
                                      PID:3576
                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3480 /prefetch:1
                                      2⤵
                                        PID:4924
                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5584 /prefetch:1
                                        2⤵
                                          PID:4132
                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4032 /prefetch:1
                                          2⤵
                                            PID:4640
                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5452 /prefetch:1
                                            2⤵
                                              PID:4996
                                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6092 /prefetch:1
                                              2⤵
                                                PID:3988
                                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3996 /prefetch:1
                                                2⤵
                                                  PID:1492
                                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3968 /prefetch:1
                                                  2⤵
                                                    PID:708
                                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3284 /prefetch:1
                                                    2⤵
                                                      PID:848
                                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4020 /prefetch:1
                                                      2⤵
                                                        PID:912
                                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4632 /prefetch:1
                                                        2⤵
                                                          PID:1252
                                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3196 /prefetch:1
                                                          2⤵
                                                            PID:4040
                                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3420 /prefetch:1
                                                            2⤵
                                                              PID:1556
                                                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3280 /prefetch:1
                                                              2⤵
                                                                PID:4588
                                                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6128 /prefetch:1
                                                                2⤵
                                                                  PID:4780
                                                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5228 /prefetch:1
                                                                  2⤵
                                                                    PID:4752
                                                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5544 /prefetch:2
                                                                    2⤵
                                                                    • Suspicious behavior: EnumeratesProcesses
                                                                    PID:220
                                                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5500 /prefetch:1
                                                                    2⤵
                                                                      PID:2224
                                                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5440 /prefetch:1
                                                                      2⤵
                                                                        PID:4532
                                                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6008 /prefetch:1
                                                                        2⤵
                                                                          PID:4116
                                                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5144 /prefetch:1
                                                                          2⤵
                                                                            PID:2072
                                                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6128 /prefetch:1
                                                                            2⤵
                                                                              PID:3988
                                                                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5264 /prefetch:1
                                                                              2⤵
                                                                                PID:2868
                                                                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6068 /prefetch:1
                                                                                2⤵
                                                                                  PID:1548
                                                                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5980 /prefetch:1
                                                                                  2⤵
                                                                                    PID:4732
                                                                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3336 /prefetch:1
                                                                                    2⤵
                                                                                      PID:956
                                                                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1724 /prefetch:1
                                                                                      2⤵
                                                                                        PID:1896
                                                                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5876 /prefetch:1
                                                                                        2⤵
                                                                                          PID:4136
                                                                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3308 /prefetch:1
                                                                                          2⤵
                                                                                            PID:4764
                                                                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6092 /prefetch:1
                                                                                            2⤵
                                                                                              PID:1200
                                                                                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5792 /prefetch:1
                                                                                              2⤵
                                                                                                PID:3388
                                                                                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5428 /prefetch:1
                                                                                                2⤵
                                                                                                  PID:4504
                                                                                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5996 /prefetch:1
                                                                                                  2⤵
                                                                                                    PID:4396
                                                                                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6120 /prefetch:1
                                                                                                    2⤵
                                                                                                      PID:4404
                                                                                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5072 /prefetch:1
                                                                                                      2⤵
                                                                                                        PID:4552
                                                                                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6104 /prefetch:1
                                                                                                        2⤵
                                                                                                          PID:2448
                                                                                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3464 /prefetch:1
                                                                                                          2⤵
                                                                                                            PID:1484
                                                                                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3296 /prefetch:1
                                                                                                            2⤵
                                                                                                              PID:3896
                                                                                                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1808 /prefetch:1
                                                                                                              2⤵
                                                                                                                PID:208
                                                                                                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1744 /prefetch:1
                                                                                                                2⤵
                                                                                                                  PID:1200
                                                                                                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5988 /prefetch:1
                                                                                                                  2⤵
                                                                                                                    PID:2396
                                                                                                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5504 /prefetch:1
                                                                                                                    2⤵
                                                                                                                      PID:2728
                                                                                                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1756 /prefetch:1
                                                                                                                      2⤵
                                                                                                                        PID:784
                                                                                                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6156 /prefetch:1
                                                                                                                        2⤵
                                                                                                                          PID:4488
                                                                                                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2172,11998039294463933293,12640863818743776006,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5668 /prefetch:1
                                                                                                                          2⤵
                                                                                                                            PID:4540
                                                                                                                        • C:\Windows\System32\CompPkgSrv.exe
                                                                                                                          C:\Windows\System32\CompPkgSrv.exe -Embedding
                                                                                                                          1⤵
                                                                                                                            PID:5052
                                                                                                                          • C:\Windows\System32\CompPkgSrv.exe
                                                                                                                            C:\Windows\System32\CompPkgSrv.exe -Embedding
                                                                                                                            1⤵
                                                                                                                              PID:1332

                                                                                                                            Network

                                                                                                                            MITRE ATT&CK Enterprise v15

                                                                                                                            Replay Monitor

                                                                                                                            Loading Replay Monitor...

                                                                                                                            Downloads

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
                                                                                                                              Filesize

                                                                                                                              152B

                                                                                                                              MD5

                                                                                                                              9ffb5f81e8eccd0963c46cbfea1abc20

                                                                                                                              SHA1

                                                                                                                              a02a610afd3543de215565bc488a4343bb5c1a59

                                                                                                                              SHA256

                                                                                                                              3a654b499247e59e34040f3b192a0069e8f3904e2398cbed90e86d981378e8bc

                                                                                                                              SHA512

                                                                                                                              2d21e18ef3f800e6e43b8cf03639d04510433c04215923f5a96432a8aa361fdda282cd444210150d9dbf8f028825d5bc8a451fd53bd3e0c9528eeb80d6e86597

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
                                                                                                                              Filesize

                                                                                                                              152B

                                                                                                                              MD5

                                                                                                                              e1b45169ebca0dceadb0f45697799d62

                                                                                                                              SHA1

                                                                                                                              803604277318898e6f5c6fb92270ca83b5609cd5

                                                                                                                              SHA256

                                                                                                                              4c0224fb7cc26ccf74f5be586f18401db57cce935c767a446659b828a7b5ee60

                                                                                                                              SHA512

                                                                                                                              357965b8d5cfaf773dbd9b371d7e308d1c86a6c428e542adbfe6bac34a7d2061d0a2f59e84e5b42768930e9b109e9e9f2a87e95cf26b3a69cbff05654ee42b4e

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
                                                                                                                              Filesize

                                                                                                                              1KB

                                                                                                                              MD5

                                                                                                                              aa3fe4ce7bae418b15df1fe2cc5ff354

                                                                                                                              SHA1

                                                                                                                              8c8c25377a90f5740683b831fd45019471309e1a

                                                                                                                              SHA256

                                                                                                                              3f4705a83c24c4539c5431b6406641aee553f0803e3f7b3bdf52d14c6e0886d5

                                                                                                                              SHA512

                                                                                                                              17963d8dc27449c4d77e7d4d60a9f4316cc36f4d4f223a38d777f9003dac072e1cd757d857b591c3679871f4f7c007b63df8ddad322c110fbfce2c98137d86f2

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
                                                                                                                              Filesize

                                                                                                                              504B

                                                                                                                              MD5

                                                                                                                              a0f8d2707c4480f806e14133ca5e8221

                                                                                                                              SHA1

                                                                                                                              99b08cb7234add26bd35f3e7f04627e5f5220f3a

                                                                                                                              SHA256

                                                                                                                              118ca164f77aa546ace9f062c5017e08833cfd80332b38cafa383671c2d60c65

                                                                                                                              SHA512

                                                                                                                              d999ec6e7932d150342cd1ebdfb27455765ac9759c6eab5acd86afb71c49bd641269375d6d81db2f3648f6ea78395583af6584533656ca9f8d812f379783c2ec

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
                                                                                                                              Filesize

                                                                                                                              2KB

                                                                                                                              MD5

                                                                                                                              615b8b2d8068805d75d8ebf778de68da

                                                                                                                              SHA1

                                                                                                                              1995e788af4b8e9fcdbff186ea5e106830fa22d9

                                                                                                                              SHA256

                                                                                                                              2ecfb5e033ec92b81f034f62a3f4ff4cec6ba6e0dfea010e9d9367646adf93da

                                                                                                                              SHA512

                                                                                                                              055dccf3b5156e2ab66e2cbf46ca36c2ed406d10e7ce8496bde1b967fe9fe8b34f2487e6059185d0bc7492c625c58d30ccb6e3f5e853f224fbb4b2e8fe06285f

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                                                                                                              Filesize

                                                                                                                              3KB

                                                                                                                              MD5

                                                                                                                              81b1f3e02a84c42908f74baec9cb3dfc

                                                                                                                              SHA1

                                                                                                                              96094b7891b836bc0fb27762bd3f78c5d23ae0a8

                                                                                                                              SHA256

                                                                                                                              3d94871c4f3fb8db88b4b17c35135f9a4dde8b5f5cb2ba147c8366d6bb58d049

                                                                                                                              SHA512

                                                                                                                              19b2a42fa418a5a114ce02e7791f214e3dcc35a57a636be0ced46966d64461cd837194a3706bacaa7af39c0c4b901705eb4685ab39464517fb2ff11b230b31e7

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                                                                                                              Filesize

                                                                                                                              3KB

                                                                                                                              MD5

                                                                                                                              008cb996ea237749ff4ba2da67002f57

                                                                                                                              SHA1

                                                                                                                              d6e065e344a9216d164ba8ca39a6842014f5ec5e

                                                                                                                              SHA256

                                                                                                                              ac7e34056c453b57e7f6bfcf27b2c0b82593e0958f3ef513de5f41c28634c999

                                                                                                                              SHA512

                                                                                                                              8b70cc64c1aa841fbc3349a86abf158924639153ebfc9146d8cc0b32cc6c47b1fc634e8c175a2a9f38e8b1b7e8b009873b2237b9e64e7c81486bbc170e62640c

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                                                                                                              Filesize

                                                                                                                              5KB

                                                                                                                              MD5

                                                                                                                              a588d9afdfae02151c52c0cc35bc803e

                                                                                                                              SHA1

                                                                                                                              b7a879067028aeb79d3931fc405dd64942d347af

                                                                                                                              SHA256

                                                                                                                              22b8a1507c4293329a281c15efe9d32436a9522d19b041548a2cfe92734bfb19

                                                                                                                              SHA512

                                                                                                                              8076aa0b944c7f61980efb5ab3474319e3458b721a475ca148ef94c6db6b80985b6c836889321b4bdd50aebcd79f7e533fa6785f0a13a2ff7c7efc41b69e1878

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                                              Filesize

                                                                                                                              8KB

                                                                                                                              MD5

                                                                                                                              3db5732760e3b817737873b87c85401f

                                                                                                                              SHA1

                                                                                                                              b65d0c1fd29de3cee6cc55ec314c5d044eb3144f

                                                                                                                              SHA256

                                                                                                                              1504290ec9374400bda6b802ed0e86d706ea71e7a50b1afc08e59dba41dfc3b3

                                                                                                                              SHA512

                                                                                                                              a4640bbf9cb8c43879e321974bbd2fe61ccd8471935685df8607cdc23493654c60cf3fb50734968255b5a252dbee8de7c135b7243c184a0f56c81c0171416b62

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                                              Filesize

                                                                                                                              8KB

                                                                                                                              MD5

                                                                                                                              ec0094a08f176651ac942e3c6ae2965b

                                                                                                                              SHA1

                                                                                                                              83aca424882e77477dd6aa1085b3991f9858ccd3

                                                                                                                              SHA256

                                                                                                                              b48110b7015f0063543679c5cbba8ab302c00ba873888eeae6584acaf30a8873

                                                                                                                              SHA512

                                                                                                                              2bbd4e654cc4d3bb121f4c84243d47f0f0e5848b499f6c053833b4e30af631f9173d4c90137f947c90551e5fa2bdb1a19793682cf493c440df6b05340fb8b010

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                                              Filesize

                                                                                                                              11KB

                                                                                                                              MD5

                                                                                                                              a40df0ca51c5925b87c4ef931cd43ba9

                                                                                                                              SHA1

                                                                                                                              68c67f7087ae17819c9956b2c1e9800c170171aa

                                                                                                                              SHA256

                                                                                                                              2d56a843ee9bc2240315b1f5d95dc891ec845facfab44f889f9b88f86ba221e3

                                                                                                                              SHA512

                                                                                                                              136922d738aa89b5a6f901f52bc4b5337544d28cf6bc52e200918b9ae215ee3551d3bb66151f376171bcc077d4f1b598cdd30a5314fc87e5f6d85cad48c9feac

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                                              Filesize

                                                                                                                              9KB

                                                                                                                              MD5

                                                                                                                              004775e3ada9241ce4f5841a6118b534

                                                                                                                              SHA1

                                                                                                                              e2223112d932c5d9547b70257f11f3d6b55ff41c

                                                                                                                              SHA256

                                                                                                                              076113e22adc2c248c0b985128da07e00485f110d5b52418dc84e237602e25df

                                                                                                                              SHA512

                                                                                                                              792ddbc42c43d0b85ca85d42587b1f7bea86858533d6f68e34adfdc4f7b6bbfec76a16f60812b8bfa2e3dfed530c1f46bc8595a2009818d4729e9dac828ca7b5

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                                              Filesize

                                                                                                                              6KB

                                                                                                                              MD5

                                                                                                                              ccdfbbe14c8ee67f21f29f5946d31831

                                                                                                                              SHA1

                                                                                                                              97b88f7e8c479732e5e99a78c10ab808a2b1f859

                                                                                                                              SHA256

                                                                                                                              455e171bd8f38d146d5f94dec27670482db314e334e1f0abf66ce010e4afb793

                                                                                                                              SHA512

                                                                                                                              11ff0d8ccda159b757d30ec06d7d1d9424966f138c48148ed46da490d282a6c99dc8c5d6bdf19b79ecf1fcb383df4dfc45f520cbf0898549df2cd4a887f627b2

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                                              Filesize

                                                                                                                              8KB

                                                                                                                              MD5

                                                                                                                              ab247738021262f9c9657cac575d0827

                                                                                                                              SHA1

                                                                                                                              2b40e1fc0b845a8be32e5db2fdf4e02324acbf1e

                                                                                                                              SHA256

                                                                                                                              b53b40adfe7d29df075a1bd251afd9e1d4521ac5566cb430fbc05e4a33d50e1c

                                                                                                                              SHA512

                                                                                                                              6330d23f466275b1f39348a24ca372b3e39169fd30370b12ce2f7f41a9b56a119430828504072ec045f004e55bf72795bd75cc06fb860fc03a1477190d99a31b

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                                              Filesize

                                                                                                                              13KB

                                                                                                                              MD5

                                                                                                                              75451d549883da3a142671bd8814787d

                                                                                                                              SHA1

                                                                                                                              2d52b8c304da66a8e040e59b4c3ce2bf62c35ead

                                                                                                                              SHA256

                                                                                                                              794b4db50e3b01c9c75a95ae9d7da743178dfa108f6f9422cab09a0f0f900b8c

                                                                                                                              SHA512

                                                                                                                              6a9457868cf6e6d61e80492db142f5b3b700695c58464c4df3d214b98d9c06e7836852f9d3439bb66d98d3fe907953d07635871cab7b158db0ae3b285008518e

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                                              Filesize

                                                                                                                              10KB

                                                                                                                              MD5

                                                                                                                              50113411bdec99e03e30f2d49796d4ce

                                                                                                                              SHA1

                                                                                                                              f199a3d81c0a1ad5e022fd8b3f69f4400e283ceb

                                                                                                                              SHA256

                                                                                                                              01846109c8e1d878406952d4c279406a47246eeb9bf301c054be526dd6732e37

                                                                                                                              SHA512

                                                                                                                              f2bb6ca3ca434f5880cd790fc266797c031094890c47e914cdf4695d407730c760e49c009d6b130405871e0a15583e9058b407b4cbd53503eb1144ca1862dd4a

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                                              Filesize

                                                                                                                              10KB

                                                                                                                              MD5

                                                                                                                              4f35afd82c99626fb3cdbe54cf7ea03f

                                                                                                                              SHA1

                                                                                                                              6e6ecae06aa9203a4786eb5222063df6d0390a0b

                                                                                                                              SHA256

                                                                                                                              b38a5c5fb7b47aa76c59f5e6d365c44764d55a2ff3596c530cd4df575d37afb5

                                                                                                                              SHA512

                                                                                                                              f094cde20cb3c910c86b6f8397732f254686af58a2a507f33fb7a362296a8ec52c81f58ad971255b3437bc8a3542cdbd02f8ab138dac3a4026b4ba8527342477

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                                              Filesize

                                                                                                                              6KB

                                                                                                                              MD5

                                                                                                                              d5cbf71426845e078ec2911f7f1328eb

                                                                                                                              SHA1

                                                                                                                              a114db24dc8aeb16d7718f1fc08b0ffc6b09b2d5

                                                                                                                              SHA256

                                                                                                                              42d4a97139c9bb8c7719914193d782a41abaac5c8cb6f8e7399c56cf2121dd5b

                                                                                                                              SHA512

                                                                                                                              3cc69bf5106b8d1621879c32d430508c234429b6ab328ed0deb9de7d3f10f14fcffb7c820303e402ddde3133ff9c7bd78a76ae7de74e2ddd25885f05ece8c10f

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                                                                                                              Filesize

                                                                                                                              874B

                                                                                                                              MD5

                                                                                                                              b3da90b195f3f5b3c134d7b37aaeb6a7

                                                                                                                              SHA1

                                                                                                                              e84298b58add71bc15fd4e3e9f52937a65b9bfda

                                                                                                                              SHA256

                                                                                                                              029ab8b619ee540a1980e040e9be671547b10088a8c8ef8e2ee42a76e4e3abf4

                                                                                                                              SHA512

                                                                                                                              66345af72f79785e8e4150f7228600483e275b2da66e911710331a20bc85cd092cbf5d6565c10bf8329b5ec9d253273bc821a48ab2ac2371ece191c49426b2c0

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                                                                                                              Filesize

                                                                                                                              1KB

                                                                                                                              MD5

                                                                                                                              41f992cb8ae7a694010532268b72ac44

                                                                                                                              SHA1

                                                                                                                              a0d9663580b0fb267977598d00bc09961d8344a0

                                                                                                                              SHA256

                                                                                                                              ec927279f10e1cf8e2f9bf7b38e2c19399b48029cb12b0f75558aba873f68868

                                                                                                                              SHA512

                                                                                                                              1b0984060de19523bc7874103d47a7860a7a0e344d97ca6aa8d7a2eedd528784853613256f4f2f2789f4281cfd170b862fa3d70db0e8c4a17a15ff00b0440192

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                                                                                                              Filesize

                                                                                                                              1KB

                                                                                                                              MD5

                                                                                                                              185598104bcbc3ef776348ad421d6ad5

                                                                                                                              SHA1

                                                                                                                              518c32eddc16eb87720a532ba7ff4b2adebf8674

                                                                                                                              SHA256

                                                                                                                              91d9f8a7ee1d6c8e8c25d366765b36d26a9647b993e3d898a0cd71f3a26c6414

                                                                                                                              SHA512

                                                                                                                              919067cf0103f64a15d578f84bb87d38de59fb64c6220b823b256e2bae9dc33773653e97ac5866728feca9de3c4e2cfb11de1d61798e6b97d25a91c17215fb45

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                                                                                                              Filesize

                                                                                                                              1KB

                                                                                                                              MD5

                                                                                                                              8f7e2e7ffd2082c52d175efc27e1b133

                                                                                                                              SHA1

                                                                                                                              f3d9056f2d769fd58a1629c9dd3a9d6ff3e71589

                                                                                                                              SHA256

                                                                                                                              552b03897f56fc2661c97ed086318eab1ddfbb191819ff211047aec7c28155a7

                                                                                                                              SHA512

                                                                                                                              05ebe31eb579a91d639436a0504c042549127c97c022ed1ff5f7cbfd425866b134788ea997c5369a2d5d08ad7ad215b05e6ea0b9008e4ff4cc450c8aef22d9d6

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                                                                                                              Filesize

                                                                                                                              1KB

                                                                                                                              MD5

                                                                                                                              37a75099bfcb1d5f79956cca4e5a8e83

                                                                                                                              SHA1

                                                                                                                              f9a47cf8c343b7538debdadd8a7c96a52503cda0

                                                                                                                              SHA256

                                                                                                                              dc18ad691b5db5433ee8efa6749cb497ccefc3b03f5d60d3dc53e42a82c80691

                                                                                                                              SHA512

                                                                                                                              631589957308ccb8f435e96cce518be175c3e060f6d542dc836f240886fb930032f9ddbd62a60a8035fe43c22729b879ab1dedd8dd7ef6821e4253c231c14345

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                                                                                                              Filesize

                                                                                                                              1KB

                                                                                                                              MD5

                                                                                                                              ce95151b56e6bb6f3b1affbca43e78e4

                                                                                                                              SHA1

                                                                                                                              d521f405151d9eb37cfac26db091a06e89b0f11e

                                                                                                                              SHA256

                                                                                                                              a920421a0937218ec80c0cf792f77e86032b9aed90b5749db09f8b20170a209e

                                                                                                                              SHA512

                                                                                                                              6e10dcde88d7094515388d1e5033455bf29179602afbaaea917193cd7a69b10f68422ea813123ec323b8f9e1537f16e9217408d18a15c1994d8f516659c2822d

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe591563.TMP
                                                                                                                              Filesize

                                                                                                                              539B

                                                                                                                              MD5

                                                                                                                              c6d9aa266d6ba4bbd853e0b06c43a2e6

                                                                                                                              SHA1

                                                                                                                              a9a2f4207740e9b63a58fbcea0225b42cb456e66

                                                                                                                              SHA256

                                                                                                                              e81944576fec3d0bd34c7e48887199269c2892e3b6d1c010f620fdd9b8dcb785

                                                                                                                              SHA512

                                                                                                                              d8608499cee2ed7c05bc44124877fbdfe32dcfab9cd908511da58748618160fe46103eda97541c0cbf13f40ff59922ce2f43817e780c4d50b39c3ace6755c254

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
                                                                                                                              Filesize

                                                                                                                              16B

                                                                                                                              MD5

                                                                                                                              6752a1d65b201c13b62ea44016eb221f

                                                                                                                              SHA1

                                                                                                                              58ecf154d01a62233ed7fb494ace3c3d4ffce08b

                                                                                                                              SHA256

                                                                                                                              0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

                                                                                                                              SHA512

                                                                                                                              9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

                                                                                                                              Download Submit

                                                                                                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
                                                                                                                              Filesize

                                                                                                                              11KB

                                                                                                                              MD5

                                                                                                                              6e57ab59915206c3b1bc8fe31dc60980

                                                                                                                              SHA1

                                                                                                                              9ef93694a13b674608b8fc100a77ecfcbcd07939

                                                                                                                              SHA256

                                                                                                                              bbc14a655c367e5486afec04943ba59567878e2253789b317a32448d4d9a0e49

                                                                                                                              SHA512

                                                                                                                              c87e69fe27e78e105f2807fad91d208b587420a118e337e597f34e62014d4c0f0e6a07e123589561c10191a1413a37fd462943712cd6a4baf6d8c6a7289a04c6

                                                                                                                              Download Submit