ede747e906b6109b15d20b7e628241aa181e08ae21542478f37168489efda948

Analysis

max time kernel
604s
max time network
604s
platform
windows11-21h2_x64
resource
win11-20240412-en
resource tags

arch:x64arch:x86image:win11-20240412-enlocale:en-usos:windows11-21h2-x64system
submitted
26/04/2024, 00:52

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

.html
Size

19KB
MD5

62ecc0702ec91e37451a6a2f8742b3dd
SHA1

4ff40b6af8a0cb53fe321f1bb496abe361a5fb89
SHA256

ede747e906b6109b15d20b7e628241aa181e08ae21542478f37168489efda948
SHA512

13fc8e8b50686670f73160e3da9d4fd160fd7eef3c720a23ecf8e6709816594e79688a6983a250679779e30e32c736d1d2828bcfccad8f8fb81be668bb578dfa
SSDEEP

192:PJ+pxFqF2nZqv2kRNdMbz6838aUjilyfrd8hFrL:PCxYF2ZqvD013f/

Score

6^/10

Malware Config

Signatures

Legitimate hosting services abused for malware hosting/C2 1 TTPs 2 IoCs

Web Service

T1102

flow	ioc
53	discord.com
7	discord.com

Enumerates system info in registry 2 TTPs 9 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe

Modifies registry class 3 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-2718508534-2116753757-2794822388-1000\{2A6D94BB-23CF-487C-9E78-3A57D80D21F0}	msedge.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-2718508534-2116753757-2794822388-1000\{9FD04C36-8237-434A-A266-4337029B4FB3}	msedge.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-2718508534-2116753757-2794822388-1000\{815FE3A8-17D7-4381-A8BC-0A3356AC9B94}	msedge.exe

Suspicious behavior: EnumeratesProcesses 34 IoCs

pid	Process
3184	msedge.exe
3184	msedge.exe
3976	msedge.exe
3976	msedge.exe
4564	msedge.exe
4564	msedge.exe
3684	identity_helper.exe
3684	identity_helper.exe
4988	msedge.exe
4988	msedge.exe
720	msedge.exe
720	msedge.exe
2352	msedge.exe
2352	msedge.exe
2572	msedge.exe
2572	msedge.exe
3920	identity_helper.exe
3920	identity_helper.exe
3772	msedge.exe
3772	msedge.exe
2596	msedge.exe
2596	msedge.exe
3016	msedge.exe
3016	msedge.exe
1864	msedge.exe
1864	msedge.exe
4784	identity_helper.exe
4784	identity_helper.exe
1356	msedge.exe
1356	msedge.exe
1356	msedge.exe
1356	msedge.exe
2296	msedge.exe
2296	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 64 IoCs

pid	Process
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	768	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	768	AUDIODG.EXE

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe

Suspicious use of SendNotifyMessage 48 IoCs

pid	Process
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
3976	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe
3016	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3976 wrote to memory of 928	3976	msedge.exe	81
PID 3976 wrote to memory of 928	3976	msedge.exe	81
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3364	3976	msedge.exe	82
PID 3976 wrote to memory of 3184	3976	msedge.exe	83
PID 3976 wrote to memory of 3184	3976	msedge.exe	83
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84
PID 3976 wrote to memory of 1312	3976	msedge.exe	84

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\.html
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3976
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffe70323cb8,0x7ffe70323cc8,0x7ffe70323cd8
  2⤵
  PID:928
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1940 /prefetch:2
  2⤵
  PID:3364
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2256 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3184
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2872 /prefetch:8
  2⤵
  PID:1312
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3220 /prefetch:1
  2⤵
  PID:2556
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3168 /prefetch:1
  2⤵
  PID:5036
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4652 /prefetch:1
  2⤵
  PID:1496
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5728 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4564
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5288 /prefetch:1
  2⤵
  PID:3380
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4968 /prefetch:1
  2⤵
  PID:3988
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6084 /prefetch:1
  2⤵
  PID:2484
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6000 /prefetch:1
  2⤵
  PID:4596
- C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5992 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3684
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5692 /prefetch:8
  2⤵
  PID:912
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5632 /prefetch:1
  2⤵
  PID:4836
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5372 /prefetch:1
  2⤵
  PID:4228
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=3388 /prefetch:8
  2⤵
  - Modifies registry class
  - Suspicious behavior: EnumeratesProcesses
  PID:4988
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5936 /prefetch:1
  2⤵
  PID:2904
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3324 /prefetch:1
  2⤵
  PID:3024
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5528 /prefetch:1
  2⤵
  PID:4952
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4932 /prefetch:1
  2⤵
  PID:2408
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4620 /prefetch:1
  2⤵
  PID:3300
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4748 /prefetch:1
  2⤵
  PID:3188
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1876 /prefetch:1
  2⤵
  PID:3916
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=3260 /prefetch:8
  2⤵
  PID:4940
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1732 /prefetch:1
  2⤵
  PID:3128
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4964 /prefetch:1
  2⤵
  PID:2180
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4764 /prefetch:1
  2⤵
  PID:840
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5948 /prefetch:1
  2⤵
  PID:3880
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,6370192517471975906,17673458347439963615,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4784 /prefetch:1
  2⤵
  PID:1432

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2028

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2004

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2560

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1512

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1560

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x000000000000046C 0x00000000000004CC
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:768

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:5036

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3128

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:400

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2800

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4172

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3852

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:720
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffe70323cb8,0x7ffe70323cc8,0x7ffe70323cd8
  2⤵
  PID:5052
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1940 /prefetch:2
  2⤵
  PID:3516
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2352
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2656 /prefetch:8
  2⤵
  PID:3296
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3332 /prefetch:1
  2⤵
  PID:2028
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3368 /prefetch:1
  2⤵
  PID:2536
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4988 /prefetch:1
  2⤵
  PID:1580
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5016 /prefetch:1
  2⤵
  PID:2792
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4152 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2572
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5144 /prefetch:1
  2⤵
  PID:1864
- C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5564 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3920
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5124 /prefetch:1
  2⤵
  PID:4528
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5312 /prefetch:8
  2⤵
  PID:3100
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=5036 /prefetch:8
  2⤵
  - Modifies registry class
  - Suspicious behavior: EnumeratesProcesses
  PID:3772
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5284 /prefetch:1
  2⤵
  PID:1632
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3980 /prefetch:1
  2⤵
  PID:3732
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4168 /prefetch:1
  2⤵
  PID:3412
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3996 /prefetch:1
  2⤵
  PID:2992
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5188 /prefetch:1
  2⤵
  PID:2932
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5144 /prefetch:1
  2⤵
  PID:3744
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4776 /prefetch:1
  2⤵
  PID:4208
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5992 /prefetch:1
  2⤵
  PID:3040
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5756 /prefetch:1
  2⤵
  PID:3380
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6528 /prefetch:1
  2⤵
  PID:3144
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5056 /prefetch:1
  2⤵
  PID:1432
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5604 /prefetch:1
  2⤵
  PID:3548
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2452 /prefetch:1
  2⤵
  PID:4228
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3348 /prefetch:1
  2⤵
  PID:3408
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5944 /prefetch:1
  2⤵
  PID:3416
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3428 /prefetch:1
  2⤵
  PID:2548
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6612 /prefetch:1
  2⤵
  PID:2800
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2920 /prefetch:1
  2⤵
  PID:2412
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5016 /prefetch:1
  2⤵
  PID:3924
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6996 /prefetch:1
  2⤵
  PID:4900
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5928 /prefetch:1
  2⤵
  PID:4220
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3392 /prefetch:1
  2⤵
  PID:4024
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1852,43595561910904519,7982067658053021219,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=7280 /prefetch:8
  2⤵
  PID:1312

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:900

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2280

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:5092

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3620

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4044

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:3016
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffe70323cb8,0x7ffe70323cc8,0x7ffe70323cd8
  2⤵
  PID:1512
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1912 /prefetch:2
  2⤵
  PID:1532
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2028 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2596
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2656 /prefetch:8
  2⤵
  PID:1956
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3236 /prefetch:1
  2⤵
  PID:1220
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3248 /prefetch:1
  2⤵
  PID:4564
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3952 /prefetch:1
  2⤵
  PID:1312
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4988 /prefetch:1
  2⤵
  PID:2592
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4308 /prefetch:1
  2⤵
  PID:1504
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3040 /prefetch:1
  2⤵
  PID:584
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4304 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1864
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4056 /prefetch:1
  2⤵
  PID:4228
- C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3384 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4784
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4820 /prefetch:1
  2⤵
  PID:2904
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1280 /prefetch:1
  2⤵
  PID:3156
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6012 /prefetch:1
  2⤵
  PID:2908
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5352 /prefetch:1
  2⤵
  PID:2392
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6300 /prefetch:1
  2⤵
  PID:2760
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6676 /prefetch:8
  2⤵
  PID:1224
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3400 /prefetch:1
  2⤵
  PID:1276
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6444 /prefetch:1
  2⤵
  PID:1864
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5288 /prefetch:1
  2⤵
  PID:4536
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7016 /prefetch:1
  2⤵
  PID:4524
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4884 /prefetch:1
  2⤵
  PID:2392
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6056 /prefetch:1
  2⤵
  PID:2272
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=5200 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1356
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5896 /prefetch:1
  2⤵
  PID:4120
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7020 /prefetch:1
  2⤵
  PID:740
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3308 /prefetch:1
  2⤵
  PID:2460
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6344 /prefetch:1
  2⤵
  PID:1432
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5380 /prefetch:1
  2⤵
  PID:2548
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3772 /prefetch:1
  2⤵
  PID:4824
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6392 /prefetch:1
  2⤵
  PID:4868
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5864 /prefetch:1
  2⤵
  PID:472
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7036 /prefetch:1
  2⤵
  PID:4228
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5972 /prefetch:1
  2⤵
  PID:2112
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7476 /prefetch:1
  2⤵
  PID:2520
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7444 /prefetch:1
  2⤵
  PID:1356
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7848 /prefetch:1
  2⤵
  PID:4976
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8120 /prefetch:1
  2⤵
  PID:2636
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8020 /prefetch:1
  2⤵
  PID:4888
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3308 /prefetch:1
  2⤵
  PID:964
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5948 /prefetch:1
  2⤵
  PID:4112
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5100 /prefetch:1
  2⤵
  PID:5024
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=7500 /prefetch:8
  2⤵
  - Modifies registry class
  - Suspicious behavior: EnumeratesProcesses
  PID:2296
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5380 /prefetch:1
  2⤵
  PID:1144
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8160 /prefetch:1
  2⤵
  PID:196
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5928 /prefetch:1
  2⤵
  PID:416
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1892,181768342088840205,9076334565736773784,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7616 /prefetch:1
  2⤵
  PID:2664

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:760

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4044

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc
1⤵
PID:584

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2924

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1104

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
6e15af8f29dec1e606c7774ef749eaf2

SHA1
15fbec608e4aa6ddd0e7fd8ea64c2e8197345e97

SHA256
de9124e3fddde204df6a6df22b8b87a51823ba227d3e304a6a6aced9da00c74c

SHA512
1c9c9acd158273749e666271a5cdb2a6aebf6e2b43b835ebcc49d5b48490cbbf4deddef08c232417cee33d4809dec9ddac2478765c1f3d7ed8ea7441f5fd1d15

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
6626c8af3363a58b2d940772a2497383

SHA1
85f1ba87b7a4219030c1c409818c9c9ed69db652

SHA256
2ddb77ae8ccc975631467f2ec8108684c53b8882395266ed634d9d0981926b87

SHA512
39576d1b9d927444810a779507a04ddf9981a1e4b28b849f25d9544c669bf978d9a0a1d271514474fac8702e44ed42b2f5f7c61be3d55f9136877738ef8755eb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
3e5a2dac1f49835cf442fde4b7f74b88

SHA1
7b2cf4e2820f304adf533d43e6d75b3008941f72

SHA256
30bd1e1bafb4502c91c1fb568372c0fb046d32a4b732e6b88ce59ea23663e4ce

SHA512
933ac835894ce6cb8aac0261153823c96b6abec955173653dd56e534d644efd03aec71acb4f8cb0b9af871962296ec06cd03e570a0ac53098b8cd55657543786

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
ca89c6cfecf6db599bf7d4f73d013b69

SHA1
cc814b57135ed46b3a9974a6a89e9f92bd7d6110

SHA256
d3e17f9efb62abb14c86ca55d2a93234034d17327fe49060013480fe9c98c581

SHA512
c38b4d5daf19cde279a09da51b41b4ed6c4954f9fef47fe5a7f5df5cfb4f058d8efa8582d61ac6a654def06e91a587963d6d269926e311af02cdcc13449d5651

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
1a1d8c187e44d3c736ec9481099067ce

SHA1
0fe77a2d8515597900984845c0dc75280f810dc2

SHA256
fc2c2f6d67757b77bf581a45864605f10be2b0dbd126ad99832c299e823685d8

SHA512
490d2711df8c06f5c15ee7814d3227050d7f277f1f3cfb7f2f094547ee5678d37a687ac0e39dbbb0198be548ee30ba192bb70bd1e2fbe97820d6a96721707eaa

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\20b4dd9c-90fc-4ffb-8f0f-675a136a9864.tmp

Filesize
13KB

MD5
6590e668b45c01a97d99750df3e221b3

SHA1
93fe46cb82c888115b327532febb022c50bf4ed0

SHA256
1c6a1539d2953f8a4587d07b2d3a92d290897d682504898f0d5390eea1ea54e2

SHA512
f581580c167504a0c6e147993307b81634881029cccddbd34676ab8f77466b2ceaeb0a90ca47d6c9032057c35d23232411d9c0e88a150d67c9e5737dee3b16c0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\4f7ab18d-1ae3-40ba-ad9b-b6a759934bf5.tmp

Filesize
1B

MD5
5058f1af8388633f609cadb75a75dc9d

SHA1
3a52ce780950d4d969792a2559cd519d7ee8c727

SHA256
cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8

SHA512
0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_0

Filesize
44KB

MD5
047fd324d65a093c54ede8b7f37dae0c

SHA1
bfb7d483b344cac5773cf6d6912d9098915e40ba

SHA256
7303b397a695152c1cb5b9833cf83ec1e71222061b6acd0049a87f436eeac29c

SHA512
8ef9273d0e9cf3de0180413f8647ad8b65f9580530191739ef7daf7120afb9341cc4c172e5ea6ccea8025e5f974c51d672a84070678d800d16e396609343f9d3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_1

Filesize
264KB

MD5
216458d99a577986d13798bd5e05006d

SHA1
49aae7e0b40a24a515c2032c99b031d046c6aabb

SHA256
6ec9c83012ead53f5c574e6b780ea074bc408d8d91c0c63bfd6a25b59a1157d2

SHA512
6434eebd7e39ad941c19fb3766f9e0ee9ded13d38da33965685fc89ffb80f26c90c9c47f778f1057e46c77f1a28bc6a5170bac077c17ee3ee10abd483ba9bd57

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_2

Filesize
1.0MB

MD5
ec713f77ba373ecc568e97e726bd4a46

SHA1
95003d89cfdb15098f2dd00e50af0936056047bb

SHA256
9a6b6184e4b02c7e684d7ef3e26b13abacdf5af1303248e944ab8dda215b8c1c

SHA512
1939fdea9e618446d11f9932b48b49dc4b790c39b1572403d3bb29710eee575fb87fad974dd2bced1e1ff9b9384671e570dcf2f3cd3abdfa6be5852e43a183f6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_3

Filesize
4.0MB

MD5
4685490d14010558ef5792707e4629e6

SHA1
a9d69a20c3ee687671cec08d285148ade933692b

SHA256
38f919fefc2a3abc09e16a9007098e673f2f4b15f425d2c684243e57abd14195

SHA512
6de304182ee41701499687f3df4714dfc77a306d202ce6be55e7a31b819c1f2a95f5a7757b4469bea29beef4afc41c10aebc23eb2f22cda8e027c4d19df493fc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000001

Filesize
98KB

MD5
b4886ad2adaa98ef24d58eb1cb060a44

SHA1
aa94d771b0d2de29c95988501b1ae7d2f3fd1883

SHA256
75a435fd3d28b01bafdb13917390f73f6ff0bd1d6a4a3f91c3a7bedbd5459cb2

SHA512
99c10458ca308c49a0473f73d7161e8daab444be00a8a31373d398216204601316c604fa678f09f65eade7b920959476287853d2ac7ff41df68f2e6c0740839e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002

Filesize
98KB

MD5
9fc7b9c807bfe9e2fc70e258eae9b2b9

SHA1
8dfc32fffbedeec41fd50c83c05e949aadeb809a

SHA256
aaf5383efb6ea3c6392a826ce88628f2e439ccaccadb482a3c704222896a040c

SHA512
31a14472768da63e766da743e3b3cc28f0acb8dd24e958c473c81edd19f6bcd197e909ce55f73696311a46212b80009ecd19d2c0bc344452e325d9fe88e7d6f1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004

Filesize
4.1MB

MD5
0404602d6bb4fba955f8b91db2a42d57

SHA1
311a88b386ca5085de426a1f36d9940b23977cc5

SHA256
f75b3bebf76edf0d0a5de361e67c8276351becc5351994f64c78d12b6e983a07

SHA512
1345088fd3754dd7160b54d4c58d649f52612891ed2346701fd48d6dd9579177bf47fb46432f9120cd1cd19f0c22c418788144a10685b2c2103a4275ca835ae1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009

Filesize
46KB

MD5
fc61620b49e35cb359b1f0cf208f6a87

SHA1
54d6ad78961f356ae02cf52144e2baed96f97485

SHA256
65cf192b867dddedcb10ee782d29d0989c00395fc6ff6a0923e23756ab8e0eba

SHA512
17ae00dcb2a9293e33007c623ebb462ba4961e345255733b03b1dcd4bbecf34db280e77b57813e5b5c42467ec0a7c7af1b40fb038650fe526be380f4624dea17

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a

Filesize
17KB

MD5
aaa46a808d6f22dcd1424b64d8a9d811

SHA1
8fc0a6876897a96a58aabdf413de84d163a79049

SHA256
4aceaabe03f61949a6840f7255cedba05572fc58b6d54d06b438ff1126ab7796

SHA512
f67e3638a68860923f47b1d83a5b978217ef942ab6f94ef04cc4fb891e2ad7cbd51c0292ce15a952b9378608a19e7072a67c1c8eb14e7de6f987850bfc425af3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000b

Filesize
95KB

MD5
f7eaabc62f76e352325094b1dbee1026

SHA1
e105dacc3761d76dc69e6c89e2fc2ffe1a22bf0e

SHA256
ca82161ffacf45c52bf82d20af9b05ffb115c1fa1eb3836924db9c4e7890504c

SHA512
0923d252ba9ed3394c1d68b183594277dbf5d08f1f7cc5a5d039c70374de3fe9efadb1995195a1b080791a01ea7da222dafe2cdbed0bb5f6cb7256a8e8b036d4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000e

Filesize
32KB

MD5
fe8d1927850115e93c0fff338d26e33b

SHA1
fb05c4baabff24a080803100504fc6be93c17097

SHA256
a4626c2caff7fb896eda12142bbf07fd0d6ee79db365e994a9bec1935ea29d89

SHA512
a187213f00c7a15231d0b9899611c0cdd6688a6d49812005e2a166017bbb105ef4494bd4783d98c8de2f0495ba3eaaa3c39daad2231027b74a6460d296c16c8a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000010

Filesize
19KB

MD5
d50a8a256ed4eadbaff64d5dfc9b0b4c

SHA1
e060feb6d0d5cce5f997f01968446f721782ce71

SHA256
e36a39a9fbb1ce70412466a51627f78b27059195457d9e2dfe313ebc9e1f8b8b

SHA512
ea2ff6bc02496a8bb0dd23eeef3f3b7898033e56c1d220382c73e6dcf70a5bc313b03b62f3450eb8ace65b70b0467ad5a72aa1709f2af8d9410cdaf78e296610

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000013

Filesize
28KB

MD5
42b23ed9e16799b0fc210dc7efe41251

SHA1
b2b2b73b94de4981fc7dbff610edb2918231b4ef

SHA256
3f78fedcf8b67af8063acb1f423d93c54827c5b3214f9f01acec4a2615932f54

SHA512
cb6101ed135236fac3207850423692e0b6f1efe75086465d782aa571b77ac5f46b802001431096a9eb8668c57595a0d4b12025b0fa34f051f7523735350997f0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000014

Filesize
61KB

MD5
a24ee446a1c4de93b8963017cb43c2c3

SHA1
455d5b824f5e0f683b4f2a9c109cff62ebc357c8

SHA256
3b65d6a6f1624290da903855ea1786f6be9e63357547e621b7d9b42600bff509

SHA512
54601534b2dfd075806846f7205901e7d7c5f39383db225dd5050a9f4155068ac68f5cc791ada1e2720cd249f29504abca3885a23fd785a1a1124323f910cc8d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000015

Filesize
43KB

MD5
a4f77063b9dc57e88639a730c5a6349c

SHA1
3564e3e9bf4f9eb0e15e42051e677f4765eadc70

SHA256
8c7d63fa2dd822edf42eb497f3a03e0bac510392a46fcfa40b15d829801997c3

SHA512
dfe9a71aa79710de0023e077a16032e3e129625be758bf71cb1cfc3eafd17f955bfcd90bd16af8a87863b2d24b01b93d24675af3e2321656dc173496a589c520

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000016

Filesize
24KB

MD5
d01237f3d934faee9bfb0ee2f981c60e

SHA1
0ae26b9d4bbbe516b16f1ecd2779f167b81ad602

SHA256
cc49f498d5adf5c5d4eec0f906816e8a680a54390207a3eadc4102ac3661bd20

SHA512
b2e6643b949029838b819cdc68a01dd6594607d0e65f5ea5f8b1fe1456019b74f0c1fb61ad7297897faa6cb66c07ee5680bf8966b0e816fba52b2736727aaac8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000017

Filesize
40KB

MD5
fdd0a7a58b37d9f155cc7fa6b00200e0

SHA1
1b3253a11da97aea90eed315a7169d23e8b373d8

SHA256
e8823739e5e8b0492c9e444cbe0ed35489984efca1143a9f9ab23552a2dd45ca

SHA512
8cc794b459865fcb651743499580bce8a546402f340f42f52b651df100e5519e66035378fb534c03fa314165627dbb1a43a8b92132e33282b2c570c4b66bbf38

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000041

Filesize
790KB

MD5
d3caefdb725367df55e024a7b2b07fdb

SHA1
43e17631f1f5afc1d4eb44520429d615a4c1c4ae

SHA256
7052bba6a95a3eefc446fe5056a331cf0a8a09b145ed17e7f55e6a2da9b70f98

SHA512
b021efb73fc8e0f1f19037bf5a4b78991c16f20a560babecb490bd7e74117565c0c760b5517b6f31a503931ed055d90b8015adbad097a936f5424a13ff351cb0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000044

Filesize
27KB

MD5
6b4c6c8283a5f55daaf536d0b1e96b20

SHA1
ef1f468475c33b756fdafac8f72d74d66302b494

SHA256
0185cdcaa6938c51dc85a30c97da3c73f0a234c97914f3e2c49064be0e3acf9a

SHA512
4ab27a66888ce8452756ddb6967e8d190d7d9436d58608f31dd9d475825e13970dabeaf0e94c24aee5d48d77f48a486af09859c24829b8bfc2791399193c74b2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000045

Filesize
43KB

MD5
c8d45548ecb4a587ee7a5a8b8ece343f

SHA1
046418f9a70195e2fd4b3f18a84a7391556f45c1

SHA256
bb549e4319a709971404ec4435a66b22dd056ff168120a3b8d00144ce40565e6

SHA512
62682136d5855a3fb2087b64197858bf6a0b1a6e332df4c62df0b4095932ba622f3c3faab10695998eb0eea52e9d2e0f2187f62e622cbc8dc86cb73aa9ee8679

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000046

Filesize
39KB

MD5
d9e2bbde104ed451cc9e8b9d0ac1c597

SHA1
4a61ac8f797e5b31a52e9275f1ad3f0502600222

SHA256
2ca7f32631eabc8909e6b7c7d5039c3dcca2d79acd72d8e6c828d706b873070d

SHA512
d82c69944ea703213c06b8dec439725e09f4bbe408c87bdea4ee7d79302546dd643be0e209948ec75b50f4fee5e4a71d93fee6684fdf7afdb19aca61a9e12135

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005b

Filesize
791KB

MD5
76dce37348fa908f3bc3e755356fe2b7

SHA1
34b23372d195bfcc1f6689b87a72ef8d522abc91

SHA256
23a643ef1a6a0bfb16f76c4525685142ae6ecae1fbf1144718cab83acedc0241

SHA512
af01291780f8ef185da0d9a3f24caa5f8a2a307907d1b7e3c6cb48772be4b7638db0ff12024e66dab0962ca2ac95b262ead2bca5336bb798745dd7a0ca17d9c9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005e

Filesize
32KB

MD5
1c0dbbbe78b3c4da3b17615ba2ad894e

SHA1
0744affda27ca159bece4c423c115ac7e4c83a8c

SHA256
8ea6f2138912706e4b02c78db64ca72d64cb632ae6918c181d8f7f90358e2551

SHA512
5f972037b0daf2f70d98f79540ee15138ac0cb2e21610f96d1c25903b0acd42b5031ecf0a9655a13e72b3430d126c9be64008c4b9219039d961c9c1be4475305

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005f

Filesize
46KB

MD5
93034958709b77ca22991f2ae190b378

SHA1
011ad697943b12f67252ccafa82bdfb322f368e5

SHA256
9d51239781b4e67851557fb3b7b5fca99c3205e9d53c7beaa0eecd60389fec29

SHA512
6a3772a08202fb3b34620ff2f007044e4086d2ab031baa0832e5372351d07fd6fbc161d97405f358456db86fb8928081f5bd5792def80a661c932b1a79dcff37

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\17ed38627cc3b203_0

Filesize
53KB

MD5
3207471b720a9880ff1d494e8e13a468

SHA1
e3e819c8dce8f8af6967631d952f72680a8f0205

SHA256
2b96abc60fa60d9d7d5ae3d3bad5051921ac93bdb8c2db0730e7d8e549b1b3e8

SHA512
edffb7a7bde6fc2e5f60de1c90edbaaedb9b6228466e1adfd26fded044cb6b88fe04d60fd86426d72670b4e3116e740bfc9fd9f210ec5e01796794e42436ec81

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\18de18fbb0b79d99_0

Filesize
3KB

MD5
23eca1417a8d0c3fec2b6038a925fdd0

SHA1
265488d6de85ca4ffbc832b9312095fb2982f314

SHA256
79cba6f7f8104cb53316ac9c802c5a183f15b3a9434d4d86f8bdfc53376b3e8f

SHA512
0e755be1cb5c68e3dd9f4dbd0ff58a058f1b89e98ac1e75b03ef082b1db75af366008c417c3f821011ede408cc11fbfb9a1df0c0d1c81278cd7a0503e957013d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\28f9c994cc0bbd84_0

Filesize
41KB

MD5
8da18771d71bdae890a1a99db9172f45

SHA1
a34c66fc2972d48d3ead1ed4036cc925ba3f18b2

SHA256
5fb3bc2ef5724b209842fe0ce0b057151482cafdc69179f0ea348ff2b11120cf

SHA512
07d48c0031a045764dfce344f7d4426d12e0fba1894857f46f1ecf7f9b8b7de4445e8e7f550780713ea33fe0c1ac2d7f4ec821450dc02036f9d4a1078928d69c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2d6a603c5d3388e4_0

Filesize
289B

MD5
26b02d1c7383695aed67177a8ffc5542

SHA1
74db83c5e647f1a1441295c54f108faa5a34a337

SHA256
0289a73b50cd3ede7181f90a0b4272ebffb155c0cf9c9796f68e810ddb030e64

SHA512
a5f6457e60e04628c3207ffdbb2b00af0622e279eb53ef6af60519bfc4b468e427fbb0a7cbd0474e747f6c1be7698dfed527733a1ffa405c1a97a7bff480a655

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\335e69ddec2b9ac6_0

Filesize
212B

MD5
46f7b358a8a47d1e96da509f287b52e0

SHA1
346351329750cbfd209e93d99d222199970be755

SHA256
da979c0b2b3ebb74eacec483d8fc2265fef707f5d87b888f93493392292df2bd

SHA512
ee38425d2521e01118adfae704eff34f2d07131760964e67dbb28242f0b295ef003ab58cd5bb1b1cbe19b0339ecff130ca9278569948fde5ef5ee8ecd62d93ec

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\335e69ddec2b9ac6_0

Filesize
7KB

MD5
4e2c7cea27cb10d85fb22a40c372d573

SHA1
c4b3cb552d54514a52e028591b767d7084d60c95

SHA256
35389402037079de16c395ee314752f6dd0ef9c4dbc448cd53430dc18573cd7a

SHA512
432f06c8ac8abfd3614a417b755159ccbac1ca38a2e47d51e507657624a23ef057805a95c3cf7236375392b2f6a157f707a1b23e8cdb153898094d90f68ba24f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\63e4bdfe212d13a3_0

Filesize
64KB

MD5
c4a5bd3e42b8e4422f5a68c2d37463b0

SHA1
734b60d9728ac0aa7285091261818913d8d7fc05

SHA256
d99d002ba8be71e87f553b262eca662e9df51b837aae8dbeff6d8f9e2ceae5e5

SHA512
08335ac0d5a0df72f95c350c30eccb152abfca0cd3666727661900ee97385f05a398d6fbc235116c5e6c899e2ae5a551c4959fedcbc9260bd844f3e5a215b80b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\660d389f2bcc9ce6_0

Filesize
32KB

MD5
33ec614242b73540e08a4f6076409be9

SHA1
8e91dde05fcc34f4c3b97f365800f2ecb915301d

SHA256
a918665b049a3b06f2bd321683e6fd1e5f60caba00c45399725e23f9d5bc1996

SHA512
80f3926016c93eb51d01f4534263e4e2ae128e04a3933341b3dbd6b9113ea5f0a51337147d0152799fac2b8d1a6550b5fb9f78fbb52b1b3c7e890e987c4b72d6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7a16d9f1c73b534c_0

Filesize
148KB

MD5
f47c3f1aa2c174784e85a80a4309fcc4

SHA1
b4289fa9a745cd9e612f2d6fbb31795197f74fd9

SHA256
2a0e4a10f3ba78f6aa2f57363b47a917f15bcdb1ff1c201f50e30298635ebc70

SHA512
61f4172ceeca86e2535a1d7b46ab7387b06c379db09d5c2692b2b828403456e0af190294750b8e5b6fd1d258caf72aea45826478d36618242c3f8aead4b74560

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\909f6a6f38e4b338_0

Filesize
5KB

MD5
a09e21e95954679d604bcb63db80e367

SHA1
0814ec600b4853dc87514df1196f1542d9b24d20

SHA256
cc6e68359214e897341398453030d95b9cb660ac9ca975a1770cf3e53da84660

SHA512
762e4289986abe8231915509373e609089a356c725b1b5a1d7272c788961b9807b5d252d68a57dceae9567dd1783514de644404882a38a024bf9b7f1f91c6b42

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d9f24821f58abbbb_0

Filesize
369KB

MD5
97851f37f34bf13fd87c1f2882f8ea28

SHA1
77506219697d330ea470c5ea4c01dfefe2d1747c

SHA256
558604e79e8dccaff212a86e7bd1708c626b7955feb8d1acc9a7c4322e68a964

SHA512
1bcdcdbb459000e125e12980344c54f10da625dfdc8a62fbbd4f4a721c74a11a87f50e9e6a36948f40efbd0e21e971795b85463d8f9fd9ec9e2e1a5e7b345827

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e3625ef5bb6d5c7d_0

Filesize
4KB

MD5
f198f85b0d68c4014cf2c796da157b0f

SHA1
1d363a77b2bbd4ebdad8275ca5f00135aa64e382

SHA256
957bb1c594394aeb50f374675826825fd257331d4144fd7f4a94517822a1c63c

SHA512
1e00b7aa8e715c837594dfe75dfab020e664b78072c718246f9ae2552fa6f3c86e473c4431a9214a6dc3e032a31583177284c0ed4c09ed60514ce4e881ced90a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ea450ae6058bc189_0

Filesize
306B

MD5
9b8d5e10fc574a68e5b02d18db99f471

SHA1
0c3de159957130ab6dc268bf058e367dc2142fe2

SHA256
cdbaf36edca66abd69e38385c7aef4f39f4ecf81c3fd6072ea0f4da89053dc96

SHA512
87e771bb30de1a09dd736d0e9518b16977032ccacd9cf6535f7575fa9f529f5b3d87677855339654f0b4f7dc204bbc5e781406568df64f58500a773ffae290ea

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ee725bc06308030f_0

Filesize
316B

MD5
c9ff3e906e15e4aae17823192bc38b05

SHA1
aab3daa5c5fb6423f015206d130650b32ea3d57b

SHA256
f5695a18a13adf07fb30dcc0823fa808420b578cf7aca53b46627d8136a306ef

SHA512
5cec1b4698b1e2046d3c95db623fb6ff6f03dc75d4e593c42f0b47782da95ccd0efc534bce220fe478d5c6bc40dce723a2b1b408b513ae4501e078989a11fa59

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ef3e04027f5344ac_0

Filesize
356KB

MD5
c5b1e1669bb7b45b9955d57a846cb0d3

SHA1
9e0632404c0c85ae4607afbdb3b91d8b57203d73

SHA256
e72925f6ac684c30a33991862a99a1edd95194bb39e51e7c067bc13dc7ae469f

SHA512
c44fc2925f6588efd20fb411fb06dd1c6351d319ac856b6d2c55b1312099ed241bfa57b00793c67a0fae7a5f61d5070d77d8a105ae3fe248282b44fbf1189188

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
7e667900a1291b7a9539df6c1d98bf5f

SHA1
1e9966c560c0e59dbca1fa91d44e67bcce4a53ac

SHA256
d5e11c4eca08346a0e3702cbdab45b82af3536f8e726286d1f5a6ab40b6b3abc

SHA512
184cdfe856a131789f01decad10a3db9df4e42f8bc664af8aa5ca690e6ee7af6a794c9ec07a2e3330ab139e781cb5e3e1e68756e7eb0d4382b07e002daa14eec

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
6KB

MD5
0661d3c74ed4b192a249bce495ce5d63

SHA1
263b47b09e0982244d052d701ed5f5c2df21d7b9

SHA256
d96397facf939d3848e7d1f7617eeffdc1885633616ea24d102036ceb367de6c

SHA512
8e19e835bdb6d13db2bf223118d29d637ca977dd51f0708a6539fb782cfc1faccb31ab4c19781b787fa0ba237c0ca694142ace1baab180d4f36aafde48f812d8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
e251e8aa2b3d2f4d18c2b0cbe7591699

SHA1
6968addf37de2a36b2bda79db650342744ccb40e

SHA256
1383cdce957a526b45024a7780e891dbe82c02c991921152e86084b3b8f1c212

SHA512
2746eac99a995153219fe5fa7b89d04c1bb5b50f19c96afaea70bf63170e8c2f815e0ef04498ee7c83fc8b11e5deca64dd07b0b0e4362c4d180393d6a0b66410

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
6KB

MD5
d97f6e7252be286c07a6b4e9ad2eddf5

SHA1
573a5415986ce6799651ca880276d285673bae55

SHA256
e302400a768a5569df71c3d2ab2857da861bb0166a0ec7cd7d19a89cfeffe45e

SHA512
002ba7229eaf9de28ae4c5d44b8404f285ebfd501f541f91398549e910ebb68b4a0c7890ab6eb421fe43a17e073e607b692f29eeed95a7c8971b658577beb003

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
7KB

MD5
ba69e97b6d5a149a0267585feed45c49

SHA1
a7f5af21384ea72bfbe4a9cd9b53e271f011dd31

SHA256
02edeab4a5d9dee074d79d23d219e5a145b96ee23dc3c39f499b7e42d83d39c7

SHA512
7454b3218355f61219e37a8991b0567c0f83dfa7d488eb96c5cf0531545a44805ed21eecdcbc34845890d3d9fb2efd858fe04bb4eb3e7538d9da5c6eb6e36ca9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
8KB

MD5
e2f379fd760ad03fac1e74004f81b22e

SHA1
9e7fad3991fba87a8f5d3b19c1ca9929157555f3

SHA256
a69fec868dfebcbf6a4ca64ddabee6ca036f92b1fb9ef551e88d63e8c6745b10

SHA512
f64338787e15a6df55b75912f70cee5caa934eb1991f4783fe530a47da49f19d80074abb55b5e7f0b3e177d3ae7414228d1a8ed17138d34edb13afa30587f785

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
7KB

MD5
07d4d9c51c6e26eced171a098d49ea26

SHA1
0af4e583ebe24b35573a4a9d252274abb0ad9f7a

SHA256
082b25a6c97feceef023d286a1a93e7fdfbdd7ec426a9e9fee260cad1860e8b9

SHA512
1b0f2b9a32b8bb7118d522185f2930495d754c3c8f90cacb10545f2d35d6b0cd4949f4f41651e4e4fbeef943a302ae5260846621d3e6f6b3e956e7c4a62a1d31

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cookies

Filesize
20KB

MD5
36b726cbb8971b9726604468a53f02d6

SHA1
b29c5e153ba1f89741e4eb5012a48b8e8eaf7bd7

SHA256
6ba24165d1872f55e0b27d69e0348d7fad5e4c4a613198e4d8a08fe1c3d4c3b1

SHA512
8f32f36f847b056c7b1cbb0f20583f2dec01ce55df16dd4c8980f36997f1cdb832de85067ce7af41941fdd8f4d9c43aefab7a604080c48a7ce0394813eb39a35

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extension State\LOG

Filesize
319B

MD5
1308c9a08dd85936390b223e921757ad

SHA1
b348d32215dbd026b76b80042638711155a4b09b

SHA256
62e25c23ecf8fa4cb2028ca9060ad13e2f717812f1f22c77e4a7694f6bdee77f

SHA512
c84646726e9351c72409e3da6d92717db1bb99dda7c4928e38899265b4a328b7a74dde832f31a2cb7a2acc514aadcb7e84f6ea9c9dff54e1aa9a0bf50f789fbe

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Favicons

Filesize
20KB

MD5
9105484a11bd94fc89f1fe9304cfb731

SHA1
5ea168f6c222fe834bcf5e115bce3382fc4c9aa7

SHA256
186142d337fb9cda242d2e81101f2fac06faa924eea96bd4a16f546a36457bfb

SHA512
132f53f27045d0e70183ef59b5ed776e017bd4566b5210ae361c301bfca15cceb9f09080664b98cd760f293dfa5dea514e2d9e8161d1d68a2eaa3bc356a4137a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
37dd8a08a7d7d45f461935b460846cd3

SHA1
b5a670d5e27efcb5c5736e9ae0c2f5d80a6f874c

SHA256
81ad46690c8c83b953e7c30cde251a945f1e09c44de3da1b9fda84beaa5873a7

SHA512
dc8108bc4fd4a3311ad159ba54af22006fff732aabe590ee16b9a078fa47b853de13e6d7ce180e4ef2c863a97eea36241eb59e6afccdcf0cd4f14949cf29cdc5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History

Filesize
116KB

MD5
9d6e0dfde360dccf5cc0072603beb4c3

SHA1
67d7005c1b812288279b9b583bf7cf128ff16807

SHA256
202a5d89511db450dac3cbdee867620839d5695fdc2de399b597810da9e36e4d

SHA512
aa0f90f696803547481f45f5d53a5742c94c82ad45f1bda12901872c8e1ee89f72aa7a0c1281d150230f03e5ed976f726bc04ce46bbf65acab3032c4127ddd6c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History Provider Cache

Filesize
973B

MD5
2fca06476c922c2f9f1f75e51c03444d

SHA1
d90e562a4b8e0c3b74a72d23cd67f8c2f1b9b9e5

SHA256
01d997175bf906a43550a3e0867f9ff0980bd80e31e5f3ca08d8ded1fa4bfae8

SHA512
e4fcba4ea89d66f32410f656604bc1b01fa8b43253c7054dbe392ba603a23c7dabfaaacd0451a456e6bb0ae822a955fb07e549639510a3599f109f667e201a00

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\000003.log

Filesize
5KB

MD5
599c657add9a8c7d7cdd783fe2b8d442

SHA1
63c9ea0988ffa8464c8bdda2b9e4b9a4849fe414

SHA256
33285c23008410e95b1bd12ca3fbcc4f02e9ee89852a21c1f63bfbda06d0aec2

SHA512
a2593449817cdbd7bb594993d2c0953c32f6fb7e892716c03545e66f159dc680e98e2fbf0acf782781279de14341cb7bd15c719151ebc26d022ade398206edab

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\LOG

Filesize
331B

MD5
885ce3a09ea2542186cce10fa0ddccfb

SHA1
6325b2cbd3e1f44634608700aee70b4da6e806b1

SHA256
20abe401302e03c37e1aa5658b4472a905faa5988eb46a76a98c97b998328f9a

SHA512
853b35923dffab01b0f1d5402c1aaffeebd1c3d753b949028f3b84898535480404978b73f47d6256c3c92c66f41776dab79d4e97648357e6761a0d7d2ae95776

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
bc7680b33cbf4e63ca9006c9166a6cfb

SHA1
1c50c526694a2b19732fe79bd9f7244f6f532ba6

SHA256
c56d33b63780c473cacdcdebcca102d3c403fc0c00e7fe1558c4675f08e11215

SHA512
609d69ead38b6dad500b1c9c58d2106f8a162152bbdc1c885f246b1ccc50b6cdbc9b7c664ee4a084bde20d812dd5a49744b44d5023253a3201df42f83ee02005

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
5KB

MD5
d44fcbfd4fd64b945a7d8b2d2c5e1035

SHA1
c7be5b96a88f2dd52f6443950641ad1f5e8ec3cb

SHA256
235f644dec0e6d662cae795dca95f8a73c3908ed150c68b232c8c125e0a5bc78

SHA512
d49fbc5e3cedd8bcebf3e33b2f1068d2aed1ac02ebe8689854f4777aef196d5961237f34c2ed441a860837cb07849354f9b1cb233d13c9857a227c577f40462e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
f1720b11c84925e2acb7b5024466bdb8

SHA1
02a64ceee4b887ccd4de6f7a90c6797555117357

SHA256
03c34d029b4c8c149a637be3d87cc3f1d9546799c5c6f0050bbec41ebadc6828

SHA512
dec6cdbf64303cb95d0f630a15dbcb839196a7edb6329f25ebbae4dfc75eb194d731455dfa98ee602002e7fc14c91b2edabe68d0ff8569514d7e2c13b22df0c0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
10KB

MD5
c46c00e736bbbe7aacd39cd80df3876e

SHA1
0384b297db1e1652d6b57a0deafb2b15b2a99b1d

SHA256
02b383dfae47357e53944f22930a400593afe07f4c240c59e499948c1b88cc62

SHA512
822397931cb0dcf2258d8e903228eb08a532c120546ea672b6143430b25cd1a4c11460206218db3626bdcc2091d2de3ae7e235d404592c575b652d625a21e6c9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
14KB

MD5
34e1b788b1516d0c668e9e88f4938dcf

SHA1
2863e4d15d6b2e8386748b7f47316cc1717c0e2f

SHA256
03fa9c30800d8a0d2c33f76dd656061b8732f9ff12d25334b18e5d4b865f047c

SHA512
17af5fb9c9304e13c45a250f44c583ada5e56d7b3312c3f355f7358232ed8a55dd0f22146b695867a2465ed66f5e7731f1d60e0c9fbaedd6fab83cb7f1292763

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
16KB

MD5
2cc109bfe6a75088fc756772c934553f

SHA1
6c34e79692eb08d5107da1a75424ab61fdb72942

SHA256
e09a4d0b870c51edb6b1875bfe30b0ded4d73ea2942340fbc313ee55d5d7be8b

SHA512
2840ce9f3e29d006c4d3351d693128250d8a6f28fdc0f93d4930eff121e6b46d5a1a59599d2b153783cc8e43f715e363c5355f4b86709532dc78f966f0944ef0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
12KB

MD5
c88cb7aa7ad31452871150c7b782db2c

SHA1
5ccddb7eff37460641d9f86e46c924406be71ac0

SHA256
666ca83ea1afe285d74f81392a6362bb3583bd31c1dd4c470f763f2692d6c4f3

SHA512
38b1f9c186f822a20a902141afb5ab8b20c9fb35b38b926393a6e534133954ef731f953c2a298a7fcbf596cbb3999c5653560084537915dde301e6f483dd02ab

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
823ac1f6709cc7a86be767bb32e1bdbd

SHA1
46a9a0d09645a1e489ff43f00e29341b10f1b8dc

SHA256
2d7e3fb889927b58715ec9cf7c402401741b7b2393fed9fcc9bf8adf54e3ac6d

SHA512
22fc46ee3c555b9d07cab9ead17246dbe74f225914c4035b9e8d45010191243a8c4ed7beb0cc1350dbfa4ebabf2e0e5ee0cc8ec40d938dbef02f226c9530eea3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
d93107d0375bf55f8ac3daa3b58699c9

SHA1
8466b0db4beac0bc8942365b986b3d9d7b7e8599

SHA256
f52d6b8a6f1f0e28c2f6f2a23eb1dc6f448102321ed255f2d838bd128a276022

SHA512
9b93d6911c14b9d0c8765dec6536c014e84a564f41f67d9ac3b3106b346ee1c59c3dfa1ce8a6fa9c03e61481f5de85d3af4bbc4c77b40de47b15b0147de7f167

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
57f187499a0e43e7efb4dddd3c7b4b78

SHA1
1839c47a6ae785033a38efa1992b54504ae1ce35

SHA256
a3b9b61ee899d7dcc55e906b502e5c152c3c9638b3d0c8ae60bb6d17ed0b690e

SHA512
a54d0112c423bb0a11918b2c923f987ef567fd682690d50d049bc1f37fc7fcc9c63842e442d33060454cda1f1199feac78ad0e6bc3491fced9d03cbebaca4879

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
7e11589d4c6f6f3d51073ff24c478697

SHA1
c9e62b3ee13c3b44e9f16dadb0d72d789b794032

SHA256
ee38f579582b3916fc94e6e4b528e4ef5d750d1dc68126d156bd5e5f717deafd

SHA512
e1566bcecf71da2496c439107afc454c3fbcb7797da2cce6fa0fc9b19f7e8e07f6a0ad103b48a8202af16ce220eb34147b9b88adb5b7ba980703a1485ff3e6ad

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
16KB

MD5
6bd460c9c3c75ac6c24433960ca87983

SHA1
37d372ec9fe13d569ebb0533180fab57130bbf62

SHA256
4daca2d8ec2776a5acfa1dc86a8b122ff382a89ff6ffd35dfb0742b68bc3677a

SHA512
703bcd3f98e70437ce14237f7670b26ca68eedeb33fb4742ab6ef84349575a071d66818647bd4888057eb7336f98f762858f86b92af251afd3b6afbccdf0a4da

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
a1da930b0beec8240d740d652c8a96b7

SHA1
bb98676395d050cba7e71c760c7079348fb8f34c

SHA256
8ce5d7e5042db3bf2c3bb8cef49768c9e38977a0ce3a54a60b8ccaab4db5d1bb

SHA512
1eb277ce56e3a5f79aa3add40ec889b1708f1e98db320768528961588c7833987e7e6c2bca8338a5eb33a0805bc7d163eb59e6ad2d2eb7487a9b81c94f5ae3ec

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
b6d3127c6dd5ff40cd818fc23a8d0573

SHA1
55872af4602d770f09a7c3dc3de7ba24f1c96879

SHA256
1b24c16c3fee326820899757bb5550ce5e1ce82434d5904ff16f44231674a386

SHA512
3373dbfb3da494e8e53ba7333e23f0a226e4e5bfe9389e85ab7aad076e28c0775ad96d91ae7449f21bac0006547e12efd196515d405c7aa0b0294698b5ec7a1e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
0ac0cf15acb09db0f732ec456d4c86dc

SHA1
830759c129357d35a3edf41892294c4843ff735e

SHA256
49a7e75e915447695e65578869094c2076370c985faa46f31f437523fcd38590

SHA512
554494fe656c2e43a027b1b049e4dc1927684680c9c3cd1791ddf4b6c9ab154a5cafcb23f348ae90141cc51cdcfe2f651ebe1ff8732042e73b88ec4b6cb4cdac

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
13KB

MD5
8b3ccafb5ee8c4434460298656491694

SHA1
c1bf8294a35341bcdaea8b235b9b9840582469ec

SHA256
c3c83828dd9ce1be3a5402df3ba84da589814a6f616b441cffb6fcc84891b62d

SHA512
954c03e28d19f5e54205e10d4577f0fdb823301a0f6e14b539d6df8cbbb0fc611497d35d803206516cf6473dccf62f81097bb24ac195924568f6ec801079100d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
13KB

MD5
855bb390b6000b28c32d284b8c98e760

SHA1
d4464af3a712edde743569878f4fd94b9f467b97

SHA256
ac3caa34bef41743e611ac4d8e4651dd437490679ad4af60aa89e5d997c66c2b

SHA512
d4f768c55823896ba3e1315fd81c2581a3b2da50f99ad91de2a9a417b0767ab3ce351576126899aef77e5a212c87117f7c20e767a256ce386af8fb2170a4f2b4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
0cff30f856f6df0c249cfa70fd946e18

SHA1
f206b83847f200382bc390d22d2f29d6b5d1631e

SHA256
cfb4549eecd5213980c3825b5b9e3afa670b415910b4081d878205f4d5a6a23c

SHA512
12c0bda11310b5f3891d83db5f54fe56525eddfba8db7191be6a16db2467bbfb1982d2c1dbaa4fd557297ffb60217cb9d478a245efdb90c7849f398cb124be09

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
b1589d84a5781255eb3881ff5ea39172

SHA1
d746058130555ec28720db8e4626ceadb96be940

SHA256
4b171370b92be3c2e45abaf83f1693209d35757e61a9baf32ebbd43f911dae8c

SHA512
0eed6a60e90d18e36781330560b3ae404081ddcfa2231f1f44e97e7c4b2d20a7e2f0b77d5d2919a67cfa48751cd9de158bc4b77a8743bb1141e5bccb3ee8b362

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
13KB

MD5
655feda3cb62b57cbcc9f2ccff682e4c

SHA1
10e8d02748fc8c02fffa5579eb82f331f1b3653a

SHA256
f0a32e417eac147f23e58781c96a563290a849d60cf2d4e0a7bbd46e1910e0c9

SHA512
f56d765cb7c792c91e2136810701e0f39dc55e210b54f07b5a264bb7bdc26ca23690018f5fa55934b7c49534b34daf2605b6814ead83dd98d221095aef9a5ab8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
13KB

MD5
d6abc1eb890d65b198c08da53770ac8e

SHA1
7f5bde2168a076ab349759420190ee4f5ad8bf70

SHA256
80a98e08a240efd00fff25b3c621e7bd683ce21002b0ff982ffd6996d2d3b03a

SHA512
c3993033bfaf91d1b416c4ddc2a9bc024c21be27bc92455a0c67cb31f382c3688833341d43389bc7b705976bacc90f894bcd268871b2fc3d63b4f324fdcaa575

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
15KB

MD5
a109d8d9363ae84e5949f59ce1006d8e

SHA1
0edb6483f94789ca91ecfdf8dd5c2fb34b325d3e

SHA256
7d45b65be8c4f3b758f8cc5873eac5c22501146ba439999a31bb78514165fe1e

SHA512
8d2a9fbe9385597b4af4dd0ab53fad78c49d3e92ba5ac86114df9b8d9e5d34ad49a38b4eb018be197809393b8b627bdefd61ea42e36893455272b0a9e83ed789

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
912fc090d2107945063c1dc529f8fd2e

SHA1
d0eed82f312f3fbf353f74951f8b9aa0cdcc0f13

SHA256
9db5ca13e7061fb0053c01dc803be4ccbe9a0c159586640694c2f7d2dc0538dc

SHA512
daa65f924883414e6631fac8e6cc36251e5b70e3df11ce6e1429d31e9fd77f26b883fe449da518d99ccc482fcbcc568f37b26196c3dd930b1b14b313a5b6aa0d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
17KB

MD5
f683e2ae48e91b790bf5a083acb40438

SHA1
8118a14361557f403cfc30697d23272ebece15e7

SHA256
27021071b753a846b6137818c1d2ae765ae334b3163a77d8e3a3e7bb51ecdf8f

SHA512
c1cabb85211b7847e8b0c2dff8fb1ec2e79d1fdeda1aba1f2b66e51b1f3e5e5321a14fef3e9292c3e4be3ad2710063a77e12261dbecc07a91e8db70d91cfd0db

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
21KB

MD5
4682eb807fa14edf7fd99a45e23a525b

SHA1
06ad9e706a87f63ac740aa6c32d465cbf5ec7ae3

SHA256
b513bff8764bc819f690cff904198aefa191e54f065285712bb58107cb6a16d6

SHA512
a711b75ed0d3d3431b7f38e72a1fc708c56ae61a98331d7bce4a12ce943fdfd58b1d36f1d7209e4155a95517de8513e54067643a95dc1f4607fcb65db1578eb1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
16KB

MD5
ea8ab5a21b92b150df6e27073996431b

SHA1
b0cafc6da0fe55e991b2c5223cd8e8271fffd44b

SHA256
a9cc0d4d47120ff982cd03a0d8c360de4e17513b9bb242e07d098b2b8298ab10

SHA512
980aef082b648d78f637f65e8bfcb2344880569caf99d2a3eb15ab4d32768448fb646d56afbb96dca52fc43c8a32893d9ab60704ff4f9b30155813058398d39a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Reporting and NEL

Filesize
36KB

MD5
bb65b7e14f390461acee5f59a2750f26

SHA1
94ff85516a53d400ab1b31654fb0947a0933ffba

SHA256
7920b5094dbea5adafc55cf65f81f6c05d859d085de81c35e4a2eda889d1da06

SHA512
e085477f7e6541def9dc376e020780ca28509ca87bc62ce07f165545a39b6e1056eee7f20f8f5c27d257023aa8722e5793fa9e509c8a56131fe5d4748636ad0d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\87b4f4e9-03fd-4a69-9a8d-8117a84fe850\index-dir\the-real-index

Filesize
624B

MD5
f5ebb95c8769f59cac0ec3080ce89233

SHA1
41a17cfc9bf2cfa36ee02be49476ed3740e93f55

SHA256
bbabbf6f5c77788029963608296b0e1e94ad25a5d6cf4dfcfa15366173c21f29

SHA512
b3fe21f01981105f3398c1797c23388c7a4fe464098404c0e5c33772cded2d266b12444e4f491eaeece3ba8b3dbb195bfe0b9ef771adf8e30a0c8624e45eeb90

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\87b4f4e9-03fd-4a69-9a8d-8117a84fe850\index-dir\the-real-index~RFe59cb84.TMP

Filesize
48B

MD5
ae887ab27790f99ff052e262daf0849e

SHA1
20e948bdcfa8c4f561bd42efa2993d2c3af5d04a

SHA256
b556dae4ddd507d25fa6679abd7eba9c6927144e1900cac29e15ff02f5659995

SHA512
c2633b7d323e914a7c730ba85bcf4de32a1665c5ffc2acb4509032a66327a4e1c40bf9c301877f55e887468d0e0a221912ae2e66d6133e52db207d8e21243678

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\9e9bd673-86d8-4a54-9b6a-d0fde6f16b93\index

Filesize
24B

MD5
54cb446f628b2ea4a5bce5769910512e

SHA1
c27ca848427fe87f5cf4d0e0e3cd57151b0d820d

SHA256
fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d

SHA512
8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\c268f225-5682-4e4f-9de1-6945dec0c26e\index-dir\the-real-index

Filesize
2KB

MD5
032f1072014e659d3bb12dce99a5b0d5

SHA1
0f984b69cb16470d9cf0080f438c0af493794950

SHA256
f7c391568f66a3e3c614e277612c1652376ffe23a3016319a7e499300effedca

SHA512
f610a38dd8ec146ebc7c61a50626612156303b52d6bb107e7ef3754d8639dfe6a2b78a614f6e63342c25899109109c56b0b6e280418dfe51b0b885eab1ec65cb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
89B

MD5
b18fc9af37ff2b1b957e53bedbbf40f2

SHA1
ce7bb98ac2cb7ed08953ff0ba676e6c5af3c57e6

SHA256
3066f85fd8599389abedadb91045627983454eb8475139c8dcc87140551c8a45

SHA512
4058659818dd03221b1193680d5940ebee3b8a42f24840564d0fa238d9278e1e78ae52803cc08cfe6cfb5ffe7ac6d714237864fb2e8f174c6ebca50c97833736

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
146B

MD5
8089976b9c275997fb8ba3523d50706f

SHA1
ad7875d9750d744618b7fadbcb791466a0287162

SHA256
291e85584caad2f734b35fe05e91a8949c65bb935d07ec57b34e1dff46930c13

SHA512
4d476e0317d16b3d619f2d0a51a4cec552440d61566265825761188b6623082d6af931c6e7a20aa41448f79c50e4ca88f6747b5136c13ba0751fba2823ee14ec

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
155B

MD5
5b2c4a20b97550dd62a6bad2e88caed3

SHA1
cff4297310078fe8a058e6f74e1ecb2c76323d19

SHA256
aa422f51cd11417f4d888d0fb04f0500e16840a0761b3cf8d8036d8e438369fb

SHA512
462a10d19a7d24ac3defb8fede8ea98ab3688c47c83f88effff11085bfcf364bada1aabfc7776109a4a5bc7c0ddc550795637f645aa4c6252f2cb2107273d5a7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
215B

MD5
fb28bcf6002ac22b32fa26b6e5bd2a13

SHA1
bb307ff27e5f721833986da39e2a6ffb1f3e0b1b

SHA256
f2083e4e3bc713d1949ad6cd6cf61026a77aaa84d9c6fd1e2278731ab955d618

SHA512
c3d95b4af8d4f21aa6f2006b0c16dd99f904f1d4798cda87ed38be5b959558ddf8044e8a3a7152cf730600635bf5778ac5020de15c07211295c208b2b8c8a894

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
82B

MD5
e7752398e59e8aaab7b033cbd2c01324

SHA1
aad5114578b8be568a306db0dd769aa1e756d59e

SHA256
e13f468e26c0c1285901ad70c91ea5c64c5e525b35aa11b29a0881a800856f4b

SHA512
cf60d3a3deaa976673b1f3b87f406eaef2dcc83c25866a69c7e2058a268311899fa70a043d7c5cffe00f6a5e9ea27e00140e20b1ada08776c780238c0be88dbe

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
153B

MD5
6d498e291b2e481456ebe29da3839607

SHA1
cea3f3b835b8efed9644259d6697ce2669e450cd

SHA256
fd264e7526a02563bd0b235eaf611dd79f30e160eef8d888ff19d1d94d0f91cc

SHA512
bea098358a346a8d4edf33c089a95b96e25f4f056a796a9ac04c643712b72848aa9514f8e8ca45086d2ac63706fc7338b3cd1c3bcc831a66728a0c4f36371351

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
151B

MD5
df790f17376790257747ee16438bf2a8

SHA1
aa29b1348318f23a26a1d1e31d43203c9a017132

SHA256
6489eeafc5b2a5b871f27c12ac40048c6de0faf4db295f001491ccdd9afc81f0

SHA512
74be45b49f746124e3ef0af603384dba0cb4290261c08abdd7477c71a5316730f5b2267814b77d0c298f26027378a1ac8f6b4d3c720392367ca647a0859bd0e5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\MANIFEST-000001

Filesize
41B

MD5
5af87dfd673ba2115e2fcf5cfdb727ab

SHA1
d5b5bbf396dc291274584ef71f444f420b6056f1

SHA256
f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4

SHA512
de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
96B

MD5
6102cf07e080cb7f9b9c3a8d21fd36b7

SHA1
421139c89cec7a30f4761b7fb5832815a84c3357

SHA256
01495b08cee10e8d2d440560f7b05f5a3250d4d78457e0f49550be3326d0e1a7

SHA512
bff15a86bb4158fce5d85d9d561b09476e58e4c64f1fa36e5391ca5a26ccb1b1529146fa447c65f1748d9e6726ec46d055834e8f12553c1c6626035d3e854a6c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
288B

MD5
d0e0bb8f37f6c48537c2b6804787999a

SHA1
c7bffdf99d34cad1044c86cbbf78d021d9578fa6

SHA256
aa6cd89bf11f969f525a83ac93c6740a11f3e05e5fa9e80a08b0baf160d069d9

SHA512
9ffc840f32b9141211ea8d2253e55ac608256fd2046952fe9e3c1ce40e250c0c2908edfcc96eaae789d0430427fd41d05d9fed8fa21ebddd10a57bf1b0ab706c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe59a658.TMP

Filesize
48B

MD5
fe83d88cbb7723e7e89c4d609361b44e

SHA1
83aca702f535165073dbf12c175f76293e4c25f3

SHA256
9f0c2afe5fe6bdea1e7da1c9a8d62b971ed4bd33fe4c0f02dec2107afff8175b

SHA512
b3e7e015585333f8043601120f2fc6ccdc4cd189a5bfc39a2b8633e1fa15ab076bd5926af2b71649a56d719cf35b847866d6a6fb6d7b960ab07ba742d13bf06a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\000003.log

Filesize
1KB

MD5
745e8104e81a4e7609f0a01289b43d0a

SHA1
665891f9b5e368b35bc9af4d0a5946d2d781cf5b

SHA256
42b8f2335652cbaf3b11113b250ae52c6a7d13fbdcf272da7e22717c2e7b7c94

SHA512
33e8e7d00aef8c6ef2880356ab0817b0adc20498e455408cd50f36bb82d8fea9a27947a93cfaef0c17556f04e9642936225a504776ccad42da06d7f524f623c9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\LOG

Filesize
319B

MD5
76a5bdf4a9cb1d0edc1b2a1ccce4d48f

SHA1
ed7f8106152d8a828f5cab56d0e3200ac6046a3a

SHA256
c51b7102cabd579ed932150ab94a1fc63fab4fc7318f184af06fd4bc165d1d43

SHA512
492c78671cfaadbb4ecbf450d85ceb4edee06f7c68990f268c49621daf78845769e8768750ed75f9f53b366bedbc151b79b344fd5ba6d5b81277e444e5696ba3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Session_13358566386959950

Filesize
32KB

MD5
12127a931da0fe6b4c3f6513c2dc95f5

SHA1
9b9273f08da4cbca1a4068a57657e3242cc38364

SHA256
a8e9ba65602b16feef69fb3800d3a2d37d569552394a139112d78e86dea3286c

SHA512
ec13dcb1cd641ef83c9d3b3dfdb9289f6f94d9c3811aac8e9e3d873325981ff0c10fff4e93d316e06f64d6a03d224982818410fa11276da4ad6f81b0bd223467

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Tabs_13358566387094950

Filesize
6KB

MD5
d7055c4f97695130d28f8124024cbbc1

SHA1
6857918e97d5559f04ee7a285c242a9e5dac6e8c

SHA256
1b0268d3f0df6a7baf3d88dbeca47628963bedf3300b9b576c7d44627fc7204d

SHA512
0ca5fadfeb248ed5dddfdbbd325abd297e632e2920dd869c86aab1bd99612a3efb78c2e675251275e5ad8f7df97b7b80679b8930192825b14b977e7f0d9108a3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG

Filesize
350B

MD5
4e7fd58ce3de07c5b680ce19507abd47

SHA1
6fa6834bf483e96952e0fb52d84b3b4aaa93e673

SHA256
f9723a62d8ab27bb7e91bf4e451d07bf94ef6b31f93b09a86b422281ca1a46cf

SHA512
0471c6a486c7c2aad2a88b95cef0547ac1f82f654510fb37186e18e60745ed258ba00cee92d6273108050dfe43a61182d389bac372d8af8ca381071ce6310597

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG

Filesize
326B

MD5
8b62f2b24b7552c6197c89e90dd9fcf0

SHA1
1bb964e7d012ab3c9fd812d0577ed1540ead6fb2

SHA256
b45b8388fd312505f41934ab6428be431807f3e5625e7fc86790db7be8bd154a

SHA512
d689d783c36891dff91839dfb691b3b915c533363729167ff013165195f49628168d86f313e57bf0510710c15d5ee0aeaee12e629b935119cba88c8ac0ff898c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
1619648f7a6a2433128a3d3789f9cade

SHA1
f288ef5c644bb2b9277cf2f583bde268b75c1eb0

SHA256
df08d8b42c5d8c465f1702573572ab8a226d8e10ef564dfc69d5796b9fcfa168

SHA512
d01e163df3387cdea90cc229be11189d590b68c2f541d466243749a0d0f2927f5ad3b55a9130176af700598e2f368cacc3b98a493363e22008d189191c7b0eee

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
4KB

MD5
c173a0fe1ff2f27aa42da4db33a211ab

SHA1
f16cc1ff0b8f13de26e04b3d89926b036f03e1be

SHA256
4bd1c54c91d8375943c7bac53cf41c5751cd163a28058475884a9dce72ad1446

SHA512
dd05bd403155b7fb0fcaab1cac37b93f22d6e1a60a398f83d1c64c93c95a05290ac48e09fb1483918dac99f36636f7aac11fff61ec116eb9929a5fb80356744c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
2KB

MD5
128b8c29266b148ba93b2e368ec851d8

SHA1
9670e2e67ee6160f6076b9d1505c9455a6d90f4f

SHA256
9e83770d43e16d6ff1317932b4c4a13c138566cbd026865e6473a8a03ec4ec33

SHA512
a3a1fa9cce6028f5b296f9cc63c74e7961b0558267c21e7f10fdf53ae770810de6a289bdb6b23b5e5acbb7c4ad73b96e2257b002d031551d0b0888b739a1049e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
4KB

MD5
68d62da959ff0fc187a5b1f5ec507d18

SHA1
87c577b4af210e3c98cf5fd2475ad1f059d9cae7

SHA256
64892b31983134eb59545b61153bce65bfcd7e5a9df1e8a259aae24f837c8774

SHA512
747457b27e56101b2ff945ad2dd9b46cfc676a2619af979581b07a104c5a4048d143b3e54a181be4d09a2bfa020539a3282a4bd0b6d3822dd3deccf76a28c227

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
4KB

MD5
0598aabf7694e1ff09664e537398e8df

SHA1
6b9575dc49d127f8fe08308609753a13be31e29d

SHA256
1958ee75ae9a42769fe0d0d1cf72c415b8686864f5df12271e042b7530fbdec0

SHA512
1fc8c66bb529d7f1467cfc3848f556c8c3ec8bc40274398de9db9cb50bc55d0b3486f495de1e4b9ea5a96c92a2a9feadcb689ef5db56ee7676bc313ef2ef8457

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
fff93572ead3605f83644a7adcdda6b7

SHA1
c0188297c9f35ec214d0f109d0ca5bf82a2eb3af

SHA256
8f4a74651ad1247544b4546135af1156dae0dc4a3ac1f220eab0e4ed99b1c1a8

SHA512
db0aecee13e89f90576e34cdbed868553d1342b0c4edccb9010d64a34d7b1d154f62ca31afe553f368d0ee7d23b4b7c361c7bb7c9aff697c1a7241d9ae73388b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
4KB

MD5
bfce13751cbdaf59fe2c074084cf82b1

SHA1
6459217bacd394ea6f09a2454b13ab67b36adf4b

SHA256
c3572a8e09b642526b83bbb079a65af7cee1e2d47ed9286b7a074a890166ae3c

SHA512
86f7e0b0af9cb27977c20a3021e00fcfebf02a3acd9194bdd180a2d0648d9c7200a06caa99626c43474f030b0df27d72ba8ae127a53eda923f298e4f561c36ee

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
ac8126156d80aeab988e19b3abc203be

SHA1
1601b01e163cb378b5878d807d4b1350205a21d8

SHA256
7c1946aa4d6f8435cc075db6f8140236e41cc63a6d953fab68af19266928763e

SHA512
2f835c81bfc40ea879905429de2bb976f79c2c02e0851e28c2bd5f8be0cc78f8a7f2c63d813b10c139b2bf254a6f70720e18e92f56607d2f9549213cfb578bc6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
4KB

MD5
185e8f092ab211fa6a62cf798c7819c6

SHA1
d1c87c826c62359ec9a9073063b00d76b34cd635

SHA256
72f09fff6fb74f9654a49946e6fc3aebf41b46c3e8c934bda0ad136da6520faa

SHA512
4594f2d197d1814d55a4322582a0b674a9c02e30805d9808e10c6eeb9efcda70082615ccc3d27139eb40f01c74ebaa936b2ef9d6ce6d516776d4a67cb84f40a7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
ea28de7bd05ca98e8651904a648cc7f1

SHA1
78abe11e5917130afe228c20faa038d509f6d141

SHA256
2dc8619ae1654f25bb41f984d461e3d3a83612faa9052557fdc8bfe7e8831fde

SHA512
b3cc52e54c74539214e9972a58d40f35d7bf64077bb1d333eb71d25f5df5fe34c291cb82e3310d6b6b930622f564785de82298479080dacd0f3556d1a62f2d32

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
9f512fbd6633e54e8de07fc4f383ba3b

SHA1
6ae59d136a280f10daa576adcd327d007c4dde44

SHA256
9dda651cb2109fa82558bd66027123059b357395cb06606a968d951c12fce335

SHA512
4bdfd5c3eb9be233f9eefffacb362b1c6f8cdcd86cc8a4218373b36c5894c45972658ccd1ef0905159f62b003096ad772ba996d6779c0ce28f38472f07554732

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
4KB

MD5
0df713ef36b2b3804fabe4cb6470f7d5

SHA1
0d6696c6410c08dde1883a5166541f6d1479af4a

SHA256
5d497c40bb75f3664ace8f745b952dea8c2636cbd90cf398423ee26da09f0e09

SHA512
2420b4459e6c7a761b37a724c1941a45dccd5acab3ebde9cb07f815e1fbb1d7bb2e228993bfff794963c21cd04c4c9d3636489f3842dc742a6e1372ffab37e51

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
a389b92b0f90f3ea7dbb8e849d03833f

SHA1
67ec2992782593f8931caffc4754548b93041e15

SHA256
de4902864e8749f69142f9d3c2092a69589407248b149c09563decbccf3df84d

SHA512
d8f069cde199a220d0f549f7d21d3ea69a4160c14f917ccadec9b730e03b72f9f67501d087332a91cd73cd31e2f2398cdbe5521d01cbfa3721400235b539b170

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe579e53.TMP

Filesize
706B

MD5
3101738f8847caaa9ab64fa0d0102902

SHA1
69e43afc3e241cfd2648809ae4e76c4f3c8e2d02

SHA256
c0d613a748a136851186179cb107dd58d30277a0b2c6ebd3429c088a6d5457e2

SHA512
5516b92a78df58745d0b936b7e99bd691825339061902308c21e983c0af0a528809c04a430b6ef6f932ce584ccfa986612b7ccedc81548f49998349f522074dc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Visited Links

Filesize
128KB

MD5
efcba4bee29a6f273d16a20f1f965fe5

SHA1
edc9824550797e999b6030bdd9ce9fcfb89a7b88

SHA256
19b7b17155959c7e6195b0efb88c6b65bc945441e523a760aa03f22dd4238194

SHA512
a73eda947377258c847285a05732983972a9ecbf8bbe3eaef62ddee8b679f2ef9e695887fc3244e9925e13b5f49ec814f890c3e7fab1add58f1b2142e6620ff6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
206702161f94c5cd39fadd03f4014d98

SHA1
bd8bfc144fb5326d21bd1531523d9fb50e1b600a

SHA256
1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

SHA512
0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
aefd77f47fb84fae5ea194496b44c67a

SHA1
dcfbb6a5b8d05662c4858664f81693bb7f803b82

SHA256
4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611

SHA512
b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db

Filesize
52KB

MD5
696e5f093fbc9fde20c913a021275275

SHA1
d67e88ea8358f5a4cca03ed47d389aa3ad0a7386

SHA256
bb445b60f00cc6c302c5147e523eefa11a3aad584c0fac8ff6103fe0d906939a

SHA512
edee5857ccf045fd17b4918e78b9a2af9e99fac00d95d0a12c96a88f0efbc64bf6dee7d711bcb140d0fc3e16dbc97ef4b5aab0bece24a038a2fdf79554b2e47f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db-wal

Filesize
3.9MB

MD5
4b629884c751f03b6cd30a04ab46841a

SHA1
06eeda653249d594f3341946ffa230497a949923

SHA256
91f8a6a417932d046f9a53c34184f9f5c0ab2743cef6b018a45e09f07329743d

SHA512
8d03482be69fcc2939aad1695ebcd79f06a94e34eb9c315c541537b1619c396879bb77f2cb7bdefcc6219d1fd0433cf1299589a3fd35da53985561a0a7e54e5e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\000003.log

Filesize
19B

MD5
0407b455f23e3655661ba46a574cfca4

SHA1
855cb7cc8eac30458b4207614d046cb09ee3a591

SHA256
ab5c71347d95f319781df230012713c7819ac0d69373e8c9a7302cae3f9a04b7

SHA512
3020f7c87dc5201589fa43e03b1591ed8beb64523b37eb3736557f3ab7d654980fb42284115a69d91de44204cefab751b60466c0ef677608467de43d41bfb939

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\LOG

Filesize
319B

MD5
28e1be2bcf253c22ef71c2ef10acf6ac

SHA1
34d448a801789dd090ef82863250083b086a9995

SHA256
2f3ba84c43ffd1bce8844617cd3c8383ecb4e1c433c1c2df6a545053abdaa945

SHA512
ef0d80b3979b02bf337579e36e6571ecbe7aa273589cbe7a6008905450f184d61efc4c8eaf40054d330b566fcc37084f938a8b95aba431fc87ff380bed103754

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\000003.log

Filesize
318B

MD5
3023e0ebff8ccf548063144e0ab7e786

SHA1
409fe87ff642d5793edda2b5b28750bf2412c25d

SHA256
01712f1b985c775cd41e813e4a5c9d6a2600a4ead477003e01196a0e401e54ef

SHA512
16106cd3186d7dc5450990a02c217cb8b63e9f14cace75bb881c97638624b713ec56237085fe12276891bdbd8623626a37ae80bf309deb925e3278746e1bdf8c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOG

Filesize
337B

MD5
74ee69dab92a92779242871ff017e646

SHA1
3c0470aabf3e9d7ca3fa4106ee91563a46fb5c47

SHA256
89bbe441d6b1796a0b0998295d3f7919be272fd1c4fb23824a7ef814674f53d6

SHA512
fcceb181cdd0130c2ea265a7594eccabe712655ee37c0eafdf18b0085a6e36febc5db004b1a51e93abe66bfcd3c9ab5149d1239368fd810f50bc61b805ede029

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_0

Filesize
44KB

MD5
6a54f9c4fd441b42a2a00ad9977a11be

SHA1
9d3206c3dbfd80a89a935dfd5a8c15142a9b44f0

SHA256
53873d814f2124adcbc4002d1b5a00dd49a66d4c0da6e5780b221d27cceb4d60

SHA512
39a30e2427fc003588a181db4149663da64c9bda8f89a1ad34c75f1fec7dd77116fa89eca51a1584ed09fb27f202fcf87e7830bfa2de38500edef720e90e46c7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_1

Filesize
264KB

MD5
67bae610e2ecd8cdd62bb1058d423c19

SHA1
151c2792d5aee2aff721fa5df03f1291c505b148

SHA256
782e22c44be766d52d6cc9e1675f2bbc5ca5d9dbda49ab34641c44ebca8a0957

SHA512
aa34e7d13168de6b4bff9c8383d5b55ba0cf02acac64ef758f73dbe955eb6c1736ff8941bb3f8cd5e308b22af03d811d89b2d89247ee64108c29dd5c84bffe71

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_3

Filesize
4.0MB

MD5
40ff33910236559bc7e2b9e449ae13a4

SHA1
0bc22d1cd64011a823e0a4245827487b78f2c9dc

SHA256
104b6b92309d23d6b56cb240014e805e5ba1d6638be49bbf65b4137b5f8c29c6

SHA512
ae5984a3db3614e4e7434aa7de13ea093a1aa91487deb00e054908ee878f3f4cd24c6aa4131214894782be1fc6a5a1fc7f8aa83affbb253c91611c75d28aea38

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\f_000001

Filesize
20KB

MD5
7e86d5c1bf2ff36b15bfbd8fcf748b16

SHA1
59a1515ddff8caec85c4f27ffb17b69a42ec6226

SHA256
82f03e141e82546b261c1a24cd9ae3cfd4b19a7b4f343a296428deeda88cf856

SHA512
943fdf966d2ca4bfb35e01431e7bae1611e86d4bbf9c27524ba4502a9a93b8c0bb39e7760a8ee76993c4099da1ff49febe0b48468f134d4121f22a0ffb41bf2f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\f_000002

Filesize
20KB

MD5
2a029687e73114ebcb4fad10c0114e8a

SHA1
f09cbbed46b9f8c731568bdcee13024e89bda397

SHA256
fe6e92a5b020858bbdd8089533c6f22703bc5927e22f689c384164096705b11b

SHA512
211dc45e2bb5739bcf863c44ca8132f92e895b3c95d074929aa4338698d53c6ccb3a8e2f23180260d9226073f4f5cd21a200010a7a224de7c8ac2e1cc853730d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Version

Filesize
11B

MD5
b29bcf9cd0e55f93000b4bb265a9810b

SHA1
e662b8c98bd5eced29495dbe2a8f1930e3f714b8

SHA256
f53ab2877a33ef4dbde62f23f0cbfb572924a80a3921f47fc080d680107064b4

SHA512
e15f515e4177d38d6bb83a939a0a8f901ce64dffe45e635063161497d527fbddaf2b1261195fde90b72b4c3e64ac0a0500003faceffcc749471733c9e83eb011

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
719632510188b781bcf0b619aa55da5b

SHA1
797cadf1943f0f9ad72304a8aeac4ebeac209945

SHA256
6ace23e57a59f6184038a5e78033becd857fc5c5c7f2aa8c21b8bf4ebbc66036

SHA512
aae2202c188e2b0de2a3dc77ef3ba925af15623f55f4af6a5d13066f310745ae9234497064d3ff11d1d53716088c2809c291453dc8608b27bdd6482261f7264e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
3a0de6f820f25c199a0ee77fa06e14c8

SHA1
49528494519b4b985c3aa5fe06f7f1ffb99f4c42

SHA256
eb838b7fde3d8f4c199f2db1d3c80c9724f5785719a487b8a998ab738a52aa83

SHA512
69880b020434ce0dfe987045c5f66da435c73946cbbb19abfb21e2c7f427a114d5908fd1132fbd89efde4df4005f323756cc1cf3e5b16ccd99d53698d50c6835

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
2436d648faf479f61452add3135ce268

SHA1
05edc9754519691fa107f8ab1d3f2b9ed8ea60a2

SHA256
9aba7c6f1a32b6fc723e19e12a27f8746f71061da47bc7e74b1e2f19643129e0

SHA512
b0f46c1a032c0b23e171742644ec0535724d97efeb0ee37cce7d8076389b630df41185bda68815a9142c2f267872c7dc320de3b5b1fb2ca4ae1eed3bb166d8b5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
f1ffb73ed40722b835eda95b0a4d6d23

SHA1
56748957193598dd334cadbd36a5ae5aae29e5c9

SHA256
0f4ea0a2b4d2665f2ee91a5884ab1484a07bc33da3e905d99b9b626e151edfdc

SHA512
9a996ee870b69a832984a81f2197dfaac11b3aad2b77c1a0d549df7244946fee67880c752c7c14e36fa8a954d8ea743dfbd9af9b0ac4b3566862f217821c49f9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1

Filesize
264KB

MD5
d2e0f2b505da212a19f7d754b954f92d

SHA1
4463eefe7270cfe66fdb7db100e984e33598287d

SHA256
fdb2bbefcb8e7ec470915bf4dbee94d67b781067605c11e618329cfe313760c9

SHA512
fe271a303dad74268ed3daf6d2d9f361ad4b9ee33d35511214d790609d98b6ce20884b0ff914355c2a98dbfb4660af52b86baa2fd72b9abe2c2b438131027976

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1

Filesize
264KB

MD5
2b50267430f9f571d1f0b356e8958d20

SHA1
2f423740ed0accce05660d69bc6daeab4f14544d

SHA256
2d17d089d596e961ae08133df51eedd4d63b8400f517fb83e5d51a56765b18d3

SHA512
68b2c366a0a43604c68575a5b930b18484e1ba82183b0caef2f9201956ca72c2f1b8b954ff18ffa6cbf344a170fbbf361ed614e9fd11c50dc8e94fe364caf6e2

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

Filesize
11KB

MD5
66d729e71454d0475d7739731dba1d7f

SHA1
b8d390de5b8be1f81f562dbb9002d0ed804e293e

SHA256
1d4872d3456546dcfac7b96f7679b25d2267fc2148d2aa4ca498880bf93351f6

SHA512
a155245e1ef5ec01abd4c37f54a5ebad2626d3935633c11e108ffcc64334691f34a095d288bb5e5b2d47e754e7fdaebb7eaa9a0109f4d9f03afb03149b20862d

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

Filesize
10KB

MD5
d69a970d53cd3c50b111ad8d396f699f

SHA1
11a044d0b41099510ff18c0250622eae120cb07a

SHA256
6db5a716ac7eeae9e435a86ce339fbb6fb58d2cab54d44175bb9b43eac3b1330

SHA512
a7ad178e44f8c299c38e6932a1d374ca735121e163f8a5f207fba355c16e0c64aec7577c0bcef0335ded16041071780d48417d945369b318f761060bb4431cf9

Download Submit