Overview

overview

1

Static

static

1

URLScan

urlscan

1

https://controlc.com...

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240412-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21-04-2024 23:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://controlc.com/f79aec59

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 10 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 40 IoCs
  • Suspicious use of FindShellTrayWindow 25 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://controlc.com/f79aec59
    1⤵
    • Enumerates system info in registry
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:1580
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffcea8046f8,0x7ffcea804708,0x7ffcea804718
      2⤵
        PID:4360
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2192 /prefetch:2
        2⤵
          PID:3940
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2296 /prefetch:3
          2⤵
          • Suspicious behavior: EnumeratesProcesses
          PID:3924
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2752 /prefetch:8
          2⤵
            PID:3208
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3284 /prefetch:1
            2⤵
              PID:4512
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3296 /prefetch:1
              2⤵
                PID:2052
              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4192 /prefetch:1
                2⤵
                  PID:4068
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5356 /prefetch:1
                  2⤵
                    PID:1004
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5348 /prefetch:1
                    2⤵
                      PID:3420
                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5656 /prefetch:1
                      2⤵
                        PID:1452
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5664 /prefetch:1
                        2⤵
                          PID:2584
                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6296 /prefetch:1
                          2⤵
                            PID:5464
                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6440 /prefetch:1
                            2⤵
                              PID:5472
                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6448 /prefetch:1
                              2⤵
                                PID:5480
                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6688 /prefetch:1
                                2⤵
                                  PID:5488
                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6836 /prefetch:1
                                  2⤵
                                    PID:5496
                                  • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                                    "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7232 /prefetch:8
                                    2⤵
                                      PID:5900
                                    • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                                      "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7232 /prefetch:8
                                      2⤵
                                      • Suspicious behavior: EnumeratesProcesses
                                      PID:5916
                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6208 /prefetch:1
                                      2⤵
                                        PID:6036
                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6276 /prefetch:1
                                        2⤵
                                          PID:6044
                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6912 /prefetch:1
                                          2⤵
                                            PID:1676
                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7132 /prefetch:1
                                            2⤵
                                              PID:6032
                                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7560 /prefetch:1
                                              2⤵
                                                PID:6012
                                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6964 /prefetch:1
                                                2⤵
                                                  PID:4428
                                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=6820 /prefetch:8
                                                  2⤵
                                                    PID:6108
                                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6084 /prefetch:1
                                                    2⤵
                                                      PID:3012
                                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7512 /prefetch:1
                                                      2⤵
                                                        PID:5204
                                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6840 /prefetch:1
                                                        2⤵
                                                          PID:5904
                                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7436 /prefetch:1
                                                          2⤵
                                                            PID:3016
                                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3644 /prefetch:1
                                                            2⤵
                                                              PID:4508
                                                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7616 /prefetch:1
                                                              2⤵
                                                                PID:6052
                                                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6208 /prefetch:1
                                                                2⤵
                                                                  PID:4228
                                                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2444 /prefetch:1
                                                                  2⤵
                                                                    PID:5988
                                                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7660 /prefetch:1
                                                                    2⤵
                                                                      PID:1428
                                                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6572 /prefetch:1
                                                                      2⤵
                                                                        PID:3804
                                                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7008 /prefetch:1
                                                                        2⤵
                                                                          PID:6100
                                                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4996 /prefetch:1
                                                                          2⤵
                                                                            PID:5844
                                                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6704 /prefetch:1
                                                                            2⤵
                                                                              PID:6020
                                                                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4788 /prefetch:1
                                                                              2⤵
                                                                                PID:5572
                                                                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5960 /prefetch:1
                                                                                2⤵
                                                                                  PID:5584
                                                                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5508 /prefetch:1
                                                                                  2⤵
                                                                                    PID:5536
                                                                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7852 /prefetch:1
                                                                                    2⤵
                                                                                      PID:4756
                                                                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7128 /prefetch:1
                                                                                      2⤵
                                                                                        PID:2940
                                                                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6436 /prefetch:1
                                                                                        2⤵
                                                                                          PID:2008
                                                                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6440 /prefetch:1
                                                                                          2⤵
                                                                                            PID:528
                                                                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5180 /prefetch:1
                                                                                            2⤵
                                                                                              PID:5888
                                                                                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6420 /prefetch:1
                                                                                              2⤵
                                                                                                PID:4952
                                                                                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                                                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2176,6274053921720828023,2299313465144678030,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4924 /prefetch:2
                                                                                                2⤵
                                                                                                • Suspicious behavior: EnumeratesProcesses
                                                                                                PID:4868
                                                                                            • C:\Windows\System32\CompPkgSrv.exe
                                                                                              C:\Windows\System32\CompPkgSrv.exe -Embedding
                                                                                              1⤵
                                                                                                PID:4464
                                                                                              • C:\Windows\System32\CompPkgSrv.exe
                                                                                                C:\Windows\System32\CompPkgSrv.exe -Embedding
                                                                                                1⤵
                                                                                                  PID:2892

                                                                                                Network

                                                                                                MITRE ATT&CK Enterprise v15

                                                                                                Replay Monitor

                                                                                                Loading Replay Monitor...

                                                                                                Downloads

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
                                                                                                  Filesize

                                                                                                  152B

                                                                                                  MD5

                                                                                                  a9519bc058003dbea34765176083739e

                                                                                                  SHA1

                                                                                                  ef49b8790219eaddbdacb7fc97d3d05433b8575c

                                                                                                  SHA256

                                                                                                  e034683bc434a09f5d0293cb786e6a3943b902614f9211d42bed47759164d38b

                                                                                                  SHA512

                                                                                                  a1b67ccf313173c560ead25671c64de65e3e2599251926e33ce8399fde682fce5cb20f36ee330fcd8bb8f7a9c00ef432da56c9b02dfd7d3f02865f390c342b53

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
                                                                                                  Filesize

                                                                                                  152B

                                                                                                  MD5

                                                                                                  cb138796dbfb37877fcae3430bb1e2a7

                                                                                                  SHA1

                                                                                                  82bb82178c07530e42eca6caf3178d66527558bc

                                                                                                  SHA256

                                                                                                  50c55ba7baeebe1fa4573118edbca59010d659ea42761148618fb3af8a1c9bdd

                                                                                                  SHA512

                                                                                                  287471cccbe33e08015d6fc35e0bcdca0ec79bebc3a58f6a340b7747b5b2257b33651574bc83ed529aef2ba94be6e68968e59d2a8ef5f733dce9df6404ad7cc5

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d
                                                                                                  Filesize

                                                                                                  65KB

                                                                                                  MD5

                                                                                                  d37a0b50e8cbbc3de35d3d1e9e1185cf

                                                                                                  SHA1

                                                                                                  c898ddfa3f2c551980ab4bef4a463c3fd11021b3

                                                                                                  SHA256

                                                                                                  deb12434ba06baf14aed67ee8aa28f48ae856f3792797eeeab1ee218754caf04

                                                                                                  SHA512

                                                                                                  d52983a3cd1343454bb9bfecdcdb76791a93b15fe83a46a62ca668041fff818f94815b6c596c2794972e11df3f4139a86e480578cd5e332bf9325e6e5e1572ca

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000010
                                                                                                  Filesize

                                                                                                  30KB

                                                                                                  MD5

                                                                                                  6fb26b39d8dcf2f09ef8aebb8a5ffe23

                                                                                                  SHA1

                                                                                                  578cac24c947a6d24bc05a6aa305756dd70e9ac3

                                                                                                  SHA256

                                                                                                  774379647c0a6db04a0c2662be757a730c20f13b4c03fe0b12d43c0f09e7a059

                                                                                                  SHA512

                                                                                                  c40f4771c10add1b20efb81ee3b61fc5ede4701587f29a1c2cdde8b6faabd1c76d769bf8b99aa19082012f95d99ba448a472463fb9056acd2e43542e14e605cd

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000015
                                                                                                  Filesize

                                                                                                  99KB

                                                                                                  MD5

                                                                                                  963256b0db15bca2ebb623155b80f338

                                                                                                  SHA1

                                                                                                  50f9624145835d26e5008c1dd6f4c27ef198127e

                                                                                                  SHA256

                                                                                                  deb178d91a6616e8a1b94bfa3da075bb3d720aeb95fddd1fa44f965abcced78c

                                                                                                  SHA512

                                                                                                  641b991b8883f2848b347453bada72fe7cb46025271c513b9de6de6bb03bcf9165cb688c5fe9e3547685af1520b7d4c6715c021a8ba80b7ed361dbbe5918cd92

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000018
                                                                                                  Filesize

                                                                                                  134KB

                                                                                                  MD5

                                                                                                  cb3d82dfe1957fc0aef1e1b905d4b12b

                                                                                                  SHA1

                                                                                                  aa058af855e1b680acb6715b2faefb4909c7dbeb

                                                                                                  SHA256

                                                                                                  0b7cf04c3840a493b4d3acfb8433ad239fc169a5b8191412fc93fdf7ddf44167

                                                                                                  SHA512

                                                                                                  8037a6dcefef4625a76a11015d2c342f10d584388322de451c9c8ce6f9a957ee9032af852d314f046f773f57f83248ea77e209c49c0372028c13fa0bd90d58f5

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000019
                                                                                                  Filesize

                                                                                                  243KB

                                                                                                  MD5

                                                                                                  3ca8d16518783a628020b3a5d10d95f8

                                                                                                  SHA1

                                                                                                  d214b570cc6e435ccf1cd2d6268cd76a59305698

                                                                                                  SHA256

                                                                                                  df30a3d02525fcb6fa0171fe7874880a4100c06978fce9ec5e44991870c8a2d5

                                                                                                  SHA512

                                                                                                  ef80ff090748d2e47d40191ba1c4bd99ec68973b89b55e4677407fbdac07dac15f9439b5db6210e8978410f93f4a90e9a7f53a43e7f987ef0bda587d47bb68bc

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001a
                                                                                                  Filesize

                                                                                                  16KB

                                                                                                  MD5

                                                                                                  49295de6ccd23cf80b6418a2d209868f

                                                                                                  SHA1

                                                                                                  42a955b4560bb22cb9b5b39577f7a691ea345018

                                                                                                  SHA256

                                                                                                  d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa

                                                                                                  SHA512

                                                                                                  2954ab185fd84a08933bb6e79d91e301021fce4e632b477e765c172cacf72913561e101ed2f7e66bfbdc5946b35f2b63eb2b6f878e0afc9d26ffe71ee112a1c0

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6eefb384c4e3eb17_0
                                                                                                  Filesize

                                                                                                  257B

                                                                                                  MD5

                                                                                                  41f431bc637361966543a3d88a23b8a4

                                                                                                  SHA1

                                                                                                  91d40affe21901fd8097dbac52041aad14745587

                                                                                                  SHA256

                                                                                                  08e69f51dbed9238f92d6a07818e849220c567e8bc471aaa3eb10df29759fc66

                                                                                                  SHA512

                                                                                                  a4641ddc6593bd2e0c45a97b1bcb70cf5998042f9f3a20e729a4ee6fad03ae2c8db25d8b83e6359c21502d9ad8f858d4cc3ba79143b6fb41c347931841007020

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\793576e7195d59f2_0
                                                                                                  Filesize

                                                                                                  456KB

                                                                                                  MD5

                                                                                                  1ca45272da7dd89d1271513fb4cebe77

                                                                                                  SHA1

                                                                                                  a8cc62c4efcf7d601b95ac2350d9a067740527e9

                                                                                                  SHA256

                                                                                                  35dbd4732ded610f7e0cafdda7503d9778e7d7501a2bf18153fad7f034e60504

                                                                                                  SHA512

                                                                                                  b9bc7756107e02f93ea9cd832331712da53b6d03be01228dad53614f8e87f405bc563fd7609635f7fdf159ecba878d53f4ef171e914dc92de7045dbf881d2018

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9f05f7421e31294a_0
                                                                                                  Filesize

                                                                                                  266B

                                                                                                  MD5

                                                                                                  28fac4df4c66762429549e295c85c63e

                                                                                                  SHA1

                                                                                                  93b8e13f88a8bd28ecc8bd916723d8ff0b70d588

                                                                                                  SHA256

                                                                                                  d671fb6cb30a7b15ff2bd2607be40f5904e468e9a19b2f84e126cdf98e424bb7

                                                                                                  SHA512

                                                                                                  917cf3bd5384cb69773b3e9ba5afa7d01ffa7748b8bb11a94ba075e718d3552c41e89304c570c87580029a6ee3c191d5ebf1d519e50bcc99aa028ca7c62a7665

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f554c5a1abba1bcd_0
                                                                                                  Filesize

                                                                                                  386KB

                                                                                                  MD5

                                                                                                  90eee9fe7b9377b1890efa08ccb16cd7

                                                                                                  SHA1

                                                                                                  5ea39d6e9758dfd4738126f9554b88d63bd1b9d6

                                                                                                  SHA256

                                                                                                  80a22ebb20e8eea90d906c7c4907dea7dfeaa7d746e537fc875f1d723480830b

                                                                                                  SHA512

                                                                                                  4d22cdc0dec560c3d38036124305453a5a98fc46d1ec3921f9ef7ed6eac33187d3219e98b0bfb15de53026df184d71efcd3089b1354c7ccb7ab646b3408b2d7a

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
                                                                                                  Filesize

                                                                                                  1KB

                                                                                                  MD5

                                                                                                  d4b410d8f5244228fa3dda5785d57aed

                                                                                                  SHA1

                                                                                                  b35290b65402dd7178118abd18e21c74f249e7bb

                                                                                                  SHA256

                                                                                                  247b3cdbdc019a6c50f9843762c000ffb441eeb86be15ebecf0d395d25b89eae

                                                                                                  SHA512

                                                                                                  8f56b91e8f509f0af04a27137034084b8b60aef7d10895057d9d2605f8abf88eedd8b69cbcaf17d49a36524f7de95efb496a96decd56f2f988f08529f10db0dc

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                                                                                  Filesize

                                                                                                  9KB

                                                                                                  MD5

                                                                                                  7abea70df549e4242b29e4d919c614b5

                                                                                                  SHA1

                                                                                                  e8038710659281fd071f3f030c72fbddb2b30ada

                                                                                                  SHA256

                                                                                                  d2c771b458d8945fd68acd2bb461e34975f3458ba1ca1f48f5b59584084956d5

                                                                                                  SHA512

                                                                                                  be6cb8bd1284a3b680adc8e2dc0e160fc55a15a2fc2346fba8973b4a6906ee5f757733e8ecfcda6e3899fddba3a8ae367a6a9975d230e9311a1e6c4e3310e7c5

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                                                                                  Filesize

                                                                                                  9KB

                                                                                                  MD5

                                                                                                  2c653216df4307490526f1eb308f6612

                                                                                                  SHA1

                                                                                                  cf9ab1b6d72971c05df734c4f4cc22ff9de49472

                                                                                                  SHA256

                                                                                                  b5d917f0f8033d7165382284451ded7d0075448055ca5eefde38dbbc88c1dc84

                                                                                                  SHA512

                                                                                                  93c7b60d974f8d66bc6c0d4be15c8b397e49071ef604cbc2145f8d6c8e7135433bcf0da1dccb44ee8ea8746e2936dc80a83bee5d397dc07df84604ccca3cc2ed

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                  Filesize

                                                                                                  6KB

                                                                                                  MD5

                                                                                                  f34e1a8d49e879b33ca1815085ed20e5

                                                                                                  SHA1

                                                                                                  9f98b2a0d43194290e080433df6d99f99a903d1d

                                                                                                  SHA256

                                                                                                  5e6e06e4dbc4c041c67eb7db269fdfe860da1d08d55d5bc1a10d2eff2d4ac9dc

                                                                                                  SHA512

                                                                                                  750cd20fc79394ae9ad7b360cb5e414dae611d109e14b54bea9a93e25eed641e494fb847afe53c1c137519e1aadff1cbb8b893c2c0c11b4d8f72d4cae1e81190

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                  Filesize

                                                                                                  11KB

                                                                                                  MD5

                                                                                                  bb01f90762c52b4dac816a0eb7644f10

                                                                                                  SHA1

                                                                                                  60b5090b1360f224e4312e1fb32628be666da574

                                                                                                  SHA256

                                                                                                  a563fe8a596c9172e88e193291cde109dc714e47b74e4539b0d5970f7595d530

                                                                                                  SHA512

                                                                                                  c9b3d0abd8b1959120bbaa9f1a7067e382d6c44994de6fab2b02c7c64ed0aedcd08166fd4e820dd97236c2fc750ff73a8356b9cdd113f4ae74da131280102085

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                  Filesize

                                                                                                  13KB

                                                                                                  MD5

                                                                                                  f701acc69cc77bcb30e5e08486e9ae10

                                                                                                  SHA1

                                                                                                  86387a20ab81fc30a12d5169088a6847a530e362

                                                                                                  SHA256

                                                                                                  e9db60f62ecbf6545de0e141380f9eb2e9c19661840d3f47b3f73e16b497c07e

                                                                                                  SHA512

                                                                                                  1a1da4152e54d29591377a15f4a34db79895d80552226322c845cd993f3e935f9623f0c2f0ad23a7796027c1290cb0a71173c99e2fe80f3709603c9b368ffaf0

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                  Filesize

                                                                                                  13KB

                                                                                                  MD5

                                                                                                  7ca70ff4cf89a7bcb10c8573644d70cc

                                                                                                  SHA1

                                                                                                  8b70018274d720af4bdf4c3095333e8aae9e6143

                                                                                                  SHA256

                                                                                                  96e28ca3ed0d4949a4bd25327a5be6839fb38edfae137494278bff5b148f474d

                                                                                                  SHA512

                                                                                                  3beaeff16ec3226165b254182555c264819dc8a8866d77f1cfa952e6f06a085700f7a37c220c8a91f6941170aedcbae2348f44629fde31e0d4b1ceccfaf393fb

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                                                                  Filesize

                                                                                                  12KB

                                                                                                  MD5

                                                                                                  85b934d25b4953c554575ebf5d5ec7c5

                                                                                                  SHA1

                                                                                                  dc1d5f0ab9a71a6bad66463686fee02e990a7e7f

                                                                                                  SHA256

                                                                                                  2aebfb9eb32084fbe81092f9a25b6e9f01ec3207d4304068324e28cdea3684eb

                                                                                                  SHA512

                                                                                                  848fd140823ced878939f91057e1975f77bed3406aa30d7426ba17034168f2b301dcc70409d10a096cd9d06aaa698e37dce6af93a490663500d204530c394961

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                                                                                  Filesize

                                                                                                  3KB

                                                                                                  MD5

                                                                                                  1154b92900628ee07f86fd4f6a45ee98

                                                                                                  SHA1

                                                                                                  7391fff229f9d419d7b210f948c99d1b24c3abca

                                                                                                  SHA256

                                                                                                  57b13e98130f90a4e168e7c3d03b7cfe6bafee0edbc218b4ab8f3338ecc7f54e

                                                                                                  SHA512

                                                                                                  c7aadbf7b39bbf1f3d8acca7ddc0bb6739b127bea5623ff3163a7cc0e977bdb2dbade5def475104892136d5c446b32cda264485e24d07493a225958534fdb224

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                                                                                  Filesize

                                                                                                  2KB

                                                                                                  MD5

                                                                                                  3ecd3b60f82b74a7c450ee12ddcc9189

                                                                                                  SHA1

                                                                                                  798575c078a251e5967370668dcca6c15ae05bd9

                                                                                                  SHA256

                                                                                                  4e7c046820cf399d05b45bf9ccf3e3dbf250a9e8ea0c0669c7f652f60a980bc6

                                                                                                  SHA512

                                                                                                  b3375bcff87b591da425936c0bfcee594867940f4d9158613f4b7f36bc11a05ed8628ede82a8b5eb608c9bea0cded348a0168c172c13e2f80430a1be82e53ec5

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                                                                                  Filesize

                                                                                                  3KB

                                                                                                  MD5

                                                                                                  940c828dd62f91521294c8988aab8968

                                                                                                  SHA1

                                                                                                  7e82090e331c20e02939fc449891b520c01db095

                                                                                                  SHA256

                                                                                                  c24f7d90162df23274108437a6d41df5d639aa28be78f6891902af3b227be61a

                                                                                                  SHA512

                                                                                                  00bf5260e8a008d83f5f9bc11b3f97ff563d50e1db1e5b1645a6723f14a9909f60825ce8ca4dfa76f492ef19f0306a9540b5c9716daf69f052491861ccb1f029

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5810e3.TMP
                                                                                                  Filesize

                                                                                                  2KB

                                                                                                  MD5

                                                                                                  88585665c170aed9cecf7481d237884a

                                                                                                  SHA1

                                                                                                  59e63f46cbb26968cf145e0fa09dc161fd2aed04

                                                                                                  SHA256

                                                                                                  b67f104076fc7abcdc5ca54666f934a0949e8e9dd7085632838dac4598c1d8f1

                                                                                                  SHA512

                                                                                                  65b3156819f8d4770ed0b086913e19329461d73cdbfb4f792692c6d677d1c3b80e8e5f5b9c90785669578cce51da8e3e316b470896d6159595922fd9c64288aa

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
                                                                                                  Filesize

                                                                                                  16B

                                                                                                  MD5

                                                                                                  6752a1d65b201c13b62ea44016eb221f

                                                                                                  SHA1

                                                                                                  58ecf154d01a62233ed7fb494ace3c3d4ffce08b

                                                                                                  SHA256

                                                                                                  0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

                                                                                                  SHA512

                                                                                                  9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

                                                                                                  Download Submit

                                                                                                • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
                                                                                                  Filesize

                                                                                                  11KB

                                                                                                  MD5

                                                                                                  b12dc0de8812c8d8462314ce8bae0dc3

                                                                                                  SHA1

                                                                                                  aa68a717d3c4dcfa3816dd218bebaff91d5cf56d

                                                                                                  SHA256

                                                                                                  edd4ecb17eea3b02081ebd89e447a61812ac5c2e92798d24018059f2e173769f

                                                                                                  SHA512

                                                                                                  c767a9e261ffdefbba59626affa428bbcea9ad169b576e383c2b2f952a51ff04194cb86ceb03518060bdc5a9fd28f81be203594aac22778e00cce5060f8e16ab

                                                                                                  Download Submit