Analysis Overview
Threat Level: Shows suspicious behavior
The file https://cdn.discordapp.com/attachments/1234488074650517647/1234988318874402846/SolaraBETA_2.rar?ex=66355f00&is=66340d80&hm=1639245bbf3eeee882131fa6522c0f9d317116e8cf139a8d8279a2c057ef6cab& was found to be: Shows suspicious behavior.
Malicious Activity Summary
Loads dropped DLL
Executes dropped EXE
Legitimate hosting services abused for malware hosting/C2
Detected potential entity reuse from brand microsoft.
Enumerates system info in registry
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
NTFS ADS
Checks SCSI registry key(s)
Modifies registry class
Suspicious behavior: GetForegroundWindowSpam
Suspicious use of FindShellTrayWindow
Suspicious use of WriteProcessMemory
Suspicious use of AdjustPrivilegeToken
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-05-03 05:59
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-05-03 05:59
Reported
2024-05-03 06:05
Platform
win11-20240419-en
Max time kernel
299s
Max time network
300s
Command Line
Signatures
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe | N/A |
Loads dropped DLL
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe | N/A |
| N/A | N/A | C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe | N/A |
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | raw.githubusercontent.com | N/A | N/A |
| N/A | raw.githubusercontent.com | N/A | N/A |
Detected potential entity reuse from brand microsoft.
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A | C:\Windows\system32\taskmgr.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\taskmgr.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-1856190483-1022094809-400023910-1000_Classes\Local Settings | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1856190483-1022094809-400023910-1000_Classes\Local Settings | C:\Windows\system32\OpenWith.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1856190483-1022094809-400023910-1000\{DF2757B8-1EC2-4BB5-A53D-091B76DEDBCD} | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
NTFS ADS
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\Downloads\SolaraBETA_2.rar:Zone.Identifier | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| File opened for modification | C:\Users\Admin\Downloads\Autoruns.zip:Zone.Identifier | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Program Files\7-Zip\7zFM.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\Temp1_Autoruns.zip\Autoruns.exe | N/A |
| N/A | N/A | C:\Windows\system32\taskmgr.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
| Description | Indicator | Process | Target |
| Token: SeDebugPrivilege | N/A | C:\Windows\system32\taskmgr.exe | N/A |
| Token: SeSystemProfilePrivilege | N/A | C:\Windows\system32\taskmgr.exe | N/A |
| Token: SeCreateGlobalPrivilege | N/A | C:\Windows\system32\taskmgr.exe | N/A |
| Token: SeRestorePrivilege | N/A | C:\Program Files\7-Zip\7zFM.exe | N/A |
| Token: 35 | N/A | C:\Program Files\7-Zip\7zFM.exe | N/A |
| Token: SeSecurityPrivilege | N/A | C:\Program Files\7-Zip\7zFM.exe | N/A |
| Token: SeRestorePrivilege | N/A | C:\Users\Admin\AppData\Local\Temp\Temp1_Autoruns.zip\Autoruns.exe | N/A |
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://cdn.discordapp.com/attachments/1234488074650517647/1234988318874402846/SolaraBETA_2.rar?ex=66355f00&is=66340d80&hm=1639245bbf3eeee882131fa6522c0f9d317116e8cf139a8d8279a2c057ef6cab&
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffb06463cb8,0x7ffb06463cc8,0x7ffb06463cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=2076 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2116 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2740 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3172 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3276 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4984 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5156 /prefetch:8
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /0
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5612 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6008 /prefetch:8
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\7-Zip\7zFM.exe
"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\Downloads\SolaraBETA_2.rar"
C:\Windows\System32\DataExchangeHost.exe
C:\Windows\System32\DataExchangeHost.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2320 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5536 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5008 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6104 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2888 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3660 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3468 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6232 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=1664 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=3392 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2324 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4804 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6744 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6868 /prefetch:8
C:\Users\Admin\AppData\Local\Temp\Temp1_Autoruns.zip\Autoruns.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_Autoruns.zip\Autoruns.exe"
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe
"C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe"
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe" --embedded-browser-webview=1 --webview-exe-name=Solara.exe --webview-exe-version=1.0.0.0 --user-data-dir="C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView" --no-default-browser-check --disable-component-extensions-with-background-pages --no-first-run --disable-default-apps --noerrdialogs --embedded-browser-webview-dpi-awareness=1 --disable-popup-blocking --internet-explorer-integration=none --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc" --mojo-named-platform-channel-pipe=3792.2296.7191118522949022633
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Crashpad" "--metrics-dir=C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe" --annotation=plat=Win64 "--annotation=prod=Edge WebView2" --annotation=ver=90.0.818.66 --initial-client-data=0x128,0x12c,0x130,0x104,0x1d0,0x7ffb06463cb8,0x7ffb06463cc8,0x7ffb06463cd8
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe" --type=gpu-process --field-trial-handle=2008,18208603847807365759,4495727412593288375,131072 --enable-features=ForwardMemoryPressureEventsToGpuProcess,UseSwapChainsInSoftware --disable-features=FilterAdsOnAbusiveSites,SpareRendererForSitePerProcess,WebPayments,msApplicationGuard,msAutomaticTabFreeze,msBrowserSettingsSupported,msEdgeFaviconService,msEdgeLinkDoctor,msEdgeMGPFrev1,msEdgeOnRampFRE,msEdgeOnRampImport,msEdgeReadingView,msEdgeSettingsImport,msEdgeSettingsImportV2,msEdgeShoppingUI,msEdgeTranslate,msEdgeUseCaptivePortalService,msImplicitSignin,msPasswordBreachDetection,msReadAloud,msRevokeExtensions,msSendClientDataHeader,msSendClientDataHeaderToEdgeServices,msSyncEdgeCollections,msUseLabelingService,msWebAssistHistorySearch --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView" --webview-exe-name=Solara.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=2032 /prefetch:2
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2008,18208603847807365759,4495727412593288375,131072 --enable-features=ForwardMemoryPressureEventsToGpuProcess,UseSwapChainsInSoftware --disable-features=FilterAdsOnAbusiveSites,SpareRendererForSitePerProcess,WebPayments,msApplicationGuard,msAutomaticTabFreeze,msBrowserSettingsSupported,msEdgeFaviconService,msEdgeLinkDoctor,msEdgeMGPFrev1,msEdgeOnRampFRE,msEdgeOnRampImport,msEdgeReadingView,msEdgeSettingsImport,msEdgeSettingsImportV2,msEdgeShoppingUI,msEdgeTranslate,msEdgeUseCaptivePortalService,msImplicitSignin,msPasswordBreachDetection,msReadAloud,msRevokeExtensions,msSendClientDataHeader,msSendClientDataHeaderToEdgeServices,msSyncEdgeCollections,msUseLabelingService,msWebAssistHistorySearch --lang=en-US --service-sandbox-type=none --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView" --webview-exe-name=Solara.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --mojo-platform-channel-handle=2284 /prefetch:3
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2008,18208603847807365759,4495727412593288375,131072 --enable-features=ForwardMemoryPressureEventsToGpuProcess,UseSwapChainsInSoftware --disable-features=FilterAdsOnAbusiveSites,SpareRendererForSitePerProcess,WebPayments,msApplicationGuard,msAutomaticTabFreeze,msBrowserSettingsSupported,msEdgeFaviconService,msEdgeLinkDoctor,msEdgeMGPFrev1,msEdgeOnRampFRE,msEdgeOnRampImport,msEdgeReadingView,msEdgeSettingsImport,msEdgeSettingsImportV2,msEdgeShoppingUI,msEdgeTranslate,msEdgeUseCaptivePortalService,msImplicitSignin,msPasswordBreachDetection,msReadAloud,msRevokeExtensions,msSendClientDataHeader,msSendClientDataHeaderToEdgeServices,msSyncEdgeCollections,msUseLabelingService,msWebAssistHistorySearch --lang=en-US --service-sandbox-type=utility --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView" --webview-exe-name=Solara.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --mojo-platform-channel-handle=2856 /prefetch:8
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe" --type=renderer --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc" --field-trial-handle=2008,18208603847807365759,4495727412593288375,131072 --enable-features=ForwardMemoryPressureEventsToGpuProcess,UseSwapChainsInSoftware --disable-features=FilterAdsOnAbusiveSites,SpareRendererForSitePerProcess,WebPayments,msApplicationGuard,msAutomaticTabFreeze,msBrowserSettingsSupported,msEdgeFaviconService,msEdgeLinkDoctor,msEdgeMGPFrev1,msEdgeOnRampFRE,msEdgeOnRampImport,msEdgeReadingView,msEdgeSettingsImport,msEdgeSettingsImportV2,msEdgeShoppingUI,msEdgeTranslate,msEdgeUseCaptivePortalService,msImplicitSignin,msPasswordBreachDetection,msReadAloud,msRevokeExtensions,msSendClientDataHeader,msSendClientDataHeaderToEdgeServices,msSyncEdgeCollections,msUseLabelingService,msWebAssistHistorySearch --lang=en-US --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView" --webview-exe-name=Solara.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3716 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2044,8801382373860394487,18335777231895602011,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1308 /prefetch:2
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=2008,18208603847807365759,4495727412593288375,131072 --enable-features=ForwardMemoryPressureEventsToGpuProcess,UseSwapChainsInSoftware --disable-features=FilterAdsOnAbusiveSites,SpareRendererForSitePerProcess,WebPayments,msApplicationGuard,msAutomaticTabFreeze,msBrowserSettingsSupported,msEdgeFaviconService,msEdgeLinkDoctor,msEdgeMGPFrev1,msEdgeOnRampFRE,msEdgeOnRampImport,msEdgeReadingView,msEdgeSettingsImport,msEdgeSettingsImportV2,msEdgeShoppingUI,msEdgeTranslate,msEdgeUseCaptivePortalService,msImplicitSignin,msPasswordBreachDetection,msReadAloud,msRevokeExtensions,msSendClientDataHeader,msSendClientDataHeaderToEdgeServices,msSyncEdgeCollections,msUseLabelingService,msWebAssistHistorySearch --lang=en-US --service-sandbox-type=none --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView" --webview-exe-name=Solara.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --mojo-platform-channel-handle=4860 /prefetch:8
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=2008,18208603847807365759,4495727412593288375,131072 --enable-features=ForwardMemoryPressureEventsToGpuProcess,UseSwapChainsInSoftware --disable-features=FilterAdsOnAbusiveSites,SpareRendererForSitePerProcess,WebPayments,msApplicationGuard,msAutomaticTabFreeze,msBrowserSettingsSupported,msEdgeFaviconService,msEdgeLinkDoctor,msEdgeMGPFrev1,msEdgeOnRampFRE,msEdgeOnRampImport,msEdgeReadingView,msEdgeSettingsImport,msEdgeSettingsImportV2,msEdgeShoppingUI,msEdgeTranslate,msEdgeUseCaptivePortalService,msImplicitSignin,msPasswordBreachDetection,msReadAloud,msRevokeExtensions,msSendClientDataHeader,msSendClientDataHeaderToEdgeServices,msSyncEdgeCollections,msUseLabelingService,msWebAssistHistorySearch --lang=en-US --service-sandbox-type=utility --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView" --webview-exe-name=Solara.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --mojo-platform-channel-handle=4540 /prefetch:8
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=2008,18208603847807365759,4495727412593288375,131072 --enable-features=ForwardMemoryPressureEventsToGpuProcess,UseSwapChainsInSoftware --disable-features=FilterAdsOnAbusiveSites,SpareRendererForSitePerProcess,WebPayments,msApplicationGuard,msAutomaticTabFreeze,msBrowserSettingsSupported,msEdgeFaviconService,msEdgeLinkDoctor,msEdgeMGPFrev1,msEdgeOnRampFRE,msEdgeOnRampImport,msEdgeReadingView,msEdgeSettingsImport,msEdgeSettingsImportV2,msEdgeShoppingUI,msEdgeTranslate,msEdgeUseCaptivePortalService,msImplicitSignin,msPasswordBreachDetection,msReadAloud,msRevokeExtensions,msSendClientDataHeader,msSendClientDataHeaderToEdgeServices,msSyncEdgeCollections,msUseLabelingService,msWebAssistHistorySearch --lang=en-US --service-sandbox-type=utility --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView" --webview-exe-name=Solara.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --mojo-platform-channel-handle=3504 /prefetch:8
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\90.0.818.66\msedgewebview2.exe" --type=gpu-process --field-trial-handle=2008,18208603847807365759,4495727412593288375,131072 --enable-features=ForwardMemoryPressureEventsToGpuProcess,UseSwapChainsInSoftware --disable-features=FilterAdsOnAbusiveSites,SpareRendererForSitePerProcess,WebPayments,msApplicationGuard,msAutomaticTabFreeze,msBrowserSettingsSupported,msEdgeFaviconService,msEdgeLinkDoctor,msEdgeMGPFrev1,msEdgeOnRampFRE,msEdgeOnRampImport,msEdgeReadingView,msEdgeSettingsImport,msEdgeSettingsImportV2,msEdgeShoppingUI,msEdgeTranslate,msEdgeUseCaptivePortalService,msImplicitSignin,msPasswordBreachDetection,msReadAloud,msRevokeExtensions,msSendClientDataHeader,msSendClientDataHeaderToEdgeServices,msSyncEdgeCollections,msUseLabelingService,msWebAssistHistorySearch --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView" --webview-exe-name=Solara.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=2520 /prefetch:2
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | cdn.discordapp.com | udp |
| US | 8.8.8.8:53 | cdn.discordapp.com | udp |
| US | 162.159.133.233:443 | cdn.discordapp.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| NL | 23.62.61.194:443 | r.bing.com | tcp |
| NL | 23.62.61.194:443 | r.bing.com | tcp |
| NL | 23.62.61.194:443 | r.bing.com | tcp |
| NL | 23.62.61.194:443 | r.bing.com | tcp |
| IE | 20.190.159.75:443 | login.microsoftonline.com | tcp |
| BE | 23.55.98.77:443 | learn.microsoft.com | tcp |
| BE | 23.55.98.77:443 | learn.microsoft.com | tcp |
| US | 8.8.8.8:53 | 77.98.55.23.in-addr.arpa | udp |
| US | 13.107.246.64:443 | wcpstatic.microsoft.com | tcp |
| US | 13.107.246.64:443 | wcpstatic.microsoft.com | tcp |
| IE | 52.49.110.165:443 | mscom.demdex.net | tcp |
| BE | 23.55.97.181:443 | www.microsoft.com | tcp |
| NL | 88.221.70.210:443 | assets.onestore.ms | tcp |
| US | 13.107.246.64:443 | wcpstatic.microsoft.com | tcp |
| US | 8.8.8.8:53 | 181.97.55.23.in-addr.arpa | udp |
| IE | 66.235.152.156:443 | target.microsoft.com | tcp |
| US | 13.107.5.80:443 | services.bingapis.com | tcp |
| US | 13.89.179.11:443 | browser.events.data.microsoft.com | tcp |
| US | 2.17.251.25:443 | prod-video-cms-rt-microsoft-com.akamaized.net | tcp |
| US | 8.8.8.8:53 | 25.251.17.2.in-addr.arpa | udp |
| PL | 93.184.221.200:443 | amp.azure.net | tcp |
| US | 13.89.179.11:443 | browser.events.data.microsoft.com | tcp |
| US | 2.17.251.45:443 | wus-streaming-video-rt-microsoft-com.akamaized.net | tcp |
| US | 2.17.251.45:443 | wus-streaming-video-rt-microsoft-com.akamaized.net | udp |
| US | 152.199.19.160:443 | download.sysinternals.com | tcp |
| US | 152.199.19.160:443 | download.sysinternals.com | tcp |
| US | 104.18.38.233:80 | crl.trust-provider.com | tcp |
| US | 104.18.38.233:80 | crl.trust-provider.com | tcp |
| BE | 104.68.78.119:80 | www.intel.com | tcp |
| GB | 104.91.71.143:80 | certificates.intel.com | tcp |
| GB | 20.162.145.158:443 | nav.smartscreen.microsoft.com | tcp |
| GB | 20.58.112.186:443 | smartscreen.microsoft.com | tcp |
| GB | 20.58.112.186:443 | smartscreen.microsoft.com | tcp |
| GB | 20.58.112.186:443 | smartscreen.microsoft.com | tcp |
| US | 185.199.108.133:443 | raw.githubusercontent.com | tcp |
| US | 8.8.4.4:443 | dns.google | tcp |
| US | 8.8.4.4:443 | dns.google | tcp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 204.79.197.239:443 | tcp | |
| GB | 104.91.71.146:80 | msedge.b.tlu.dl.delivery.mp.microsoft.com | tcp |
Files
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 0f25425fcda7474bc74cf6b914ce2262 |
| SHA1 | 541620b08eedb97ada0840960b2c59391ba9a530 |
| SHA256 | b170ac8e893bcbc87746d28c5068393019160b9f798db01d364812cac69f1cbe |
| SHA512 | f4c7257d8729f6d6338872ca36ed128349944c9efe8989dee267230e5ebae8675a3fba3ac3038a88d5b70977b767eee0c2423481c526ade354fb335592d80b7c |
\??\pipe\LOCAL\crashpad_3848_YTYSIEIPOBJOAKYV
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 0354ef8afd53bc4c27ab99144970a9c9 |
| SHA1 | 7105316ebb6a50dc71cc5402c64bba847a7c95ae |
| SHA256 | acef151efdca7eef151e0cc9e45d5945737c4ab7cd8493e3dd9acb49d8df6020 |
| SHA512 | af6d8f1010ab8181c6cbe4c64a0d72c20ddfc56257cb862570c410546ddc52d2f1a67e58b93e7548573091b0e7173f230868c28bc6ed0abb8116f850f7122893 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 4f77c4d45ece9f6fc1922aced46ffd45 |
| SHA1 | 13622f0ddea9db85edc4c6192e9cde22452315af |
| SHA256 | 9f4268c8b5a19567be6031978edb8e6b53c985574ddb9ddc7787ecc7761a5d6c |
| SHA512 | f304a9e208a4ed4b2deb5bde1ab1bba7a240298b249c1cbe35a72614d8d041bd26208993b9a21211cd5460f30ee7f26844b622504c7cab81afaae2998e5d8f91 |
C:\Users\Admin\Downloads\SolaraBETA_2.rar
| MD5 | f9e8217fedf29857bdbf27881dcc4f52 |
| SHA1 | 1287993809b1643f7873573b6892e352df811cf1 |
| SHA256 | 3b117feed881152b4d0a4bb9856ae90521d2e9aceabf63b0126502483b4274fd |
| SHA512 | feca2ca549a330903af83498f8cd17994590240cef49e6b9d44d54813f451237f24d64689bf3115463c450b49587ec2d04c56903a728de16c1328cfc1bef0774 |
C:\Users\Admin\Downloads\SolaraBETA_2.rar:Zone.Identifier
| MD5 | fbccf14d504b7b2dbcb5a5bda75bd93b |
| SHA1 | d59fc84cdd5217c6cf74785703655f78da6b582b |
| SHA256 | eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913 |
| SHA512 | aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98 |
memory/1344-34-0x0000021622AF0000-0x0000021622AF1000-memory.dmp
memory/1344-36-0x0000021622AF0000-0x0000021622AF1000-memory.dmp
memory/1344-35-0x0000021622AF0000-0x0000021622AF1000-memory.dmp
memory/1344-46-0x0000021622AF0000-0x0000021622AF1000-memory.dmp
memory/1344-45-0x0000021622AF0000-0x0000021622AF1000-memory.dmp
memory/1344-44-0x0000021622AF0000-0x0000021622AF1000-memory.dmp
memory/1344-43-0x0000021622AF0000-0x0000021622AF1000-memory.dmp
memory/1344-40-0x0000021622AF0000-0x0000021622AF1000-memory.dmp
memory/1344-41-0x0000021622AF0000-0x0000021622AF1000-memory.dmp
memory/1344-42-0x0000021622AF0000-0x0000021622AF1000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 6752a1d65b201c13b62ea44016eb221f |
| SHA1 | 58ecf154d01a62233ed7fb494ace3c3d4ffce08b |
| SHA256 | 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd |
| SHA512 | 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 49ec6623d0c6bd24093a4417e0d62519 |
| SHA1 | 3dba78b142b0e45dfcf030a0f0ab4b4e5f2e1e82 |
| SHA256 | 950568198c681ed822c088c35378dc0953f4043b5fe2e8a37a5cf4a045363c7a |
| SHA512 | fb7ad3143bf5274b483346561e8edcb5f9a40d3a0f22ffa89c4fea8ac327982f0ea58d9c235dc3ba269239302faae0d4ba8b24fdc8247d92abefcb374a48a366 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\4567f4dc-21de-4715-8a5a-f3b996302ed1.tmp
| MD5 | c4e76a2eb62ffa85b44fada02a33ff46 |
| SHA1 | bf6b981cd8920006b5b561d159eb56c1b0909abc |
| SHA256 | 52bc4b763e385e32ca845e83f613786128fdbe8bd7107eb206aa696deb72c8a3 |
| SHA512 | 811d0038fe970e613560e02b01c6078f9ca1753d7dde7b1cfe059bc6fee7a0b8127b030453da892226dc68c52c363695209133ecff6d8d80788fd64784701df5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 80490aa859961fb6d920b0edec8d7511 |
| SHA1 | bea7607e37665f56b34af98a0b8d5e0a7b3983d7 |
| SHA256 | 7f225aa8f1ce14e1719e84be15dfc33a4983abec7232e685d3cb2336550ff02b |
| SHA512 | 000b97bc0d523436f1b5e929a4d5d6f1dbb046b137b87df619c482e8e5453579b5c8508efd1b2b94223a2af71455a7c95218b8ca144d989796260b3100340c89 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 5063db42a34eb05bca473943abe11f4f |
| SHA1 | 8655ed48513ef3ff9f42944b75e301b765de5253 |
| SHA256 | 2e4832fcb315c0bc2cd2a7d596716f1c768d66adae8a9980c214858cb7bdd7f6 |
| SHA512 | d403ebb6d4c6420e75d37cec2e51b9f55d3d84c490c8dc3cb0efc1ee726a6ec3ecd4663d2efc07bd3387bc6cdc03020af5001ef3630e44aa369818b09a84bce5 |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Extension State\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Extension State\MANIFEST-000001
| MD5 | 5af87dfd673ba2115e2fcf5cfdb727ab |
| SHA1 | d5b5bbf396dc291274584ef71f444f420b6056f1 |
| SHA256 | f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4 |
| SHA512 | de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Shared Dictionary\cache\index
| MD5 | 54cb446f628b2ea4a5bce5769910512e |
| SHA1 | c27ca848427fe87f5cf4d0e0e3cd57151b0d820d |
| SHA256 | fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d |
| SHA512 | 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0 |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\GraphiteDawnCache\data_0
| MD5 | cf89d16bb9107c631daabf0c0ee58efb |
| SHA1 | 3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b |
| SHA256 | d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e |
| SHA512 | 8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0 |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\GraphiteDawnCache\data_1
| MD5 | f879b4106e4918ffd7c7321eadfc8897 |
| SHA1 | 1b7bf5e81e0127e4073830e8252772a146161f89 |
| SHA256 | 872ae3c16c371716c520601ed5aa97cbec7935206e17b70948d264bfe65d924d |
| SHA512 | 8a961792e7b2a40739cbaeda680f0563d067d1c18732225a14c63633930e112a383321a3c2f827c2d0836782b5df8f8f8f74b33b698567e4569875921c04342b |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\GraphiteDawnCache\data_2
| MD5 | 0962291d6d367570bee5454721c17e11 |
| SHA1 | 59d10a893ef321a706a9255176761366115bedcb |
| SHA256 | ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7 |
| SHA512 | f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\GraphiteDawnCache\data_3
| MD5 | 41876349cb12d6db992f1309f22df3f0 |
| SHA1 | 5cf26b3420fc0302cd0a71e8d029739b8765be27 |
| SHA256 | e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c |
| SHA512 | e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\WpfApp1.exe.WebView2\EBWebView\Default\Extension Rules\000003.log
| MD5 | 51a2cbb807f5085530dec18e45cb8569 |
| SHA1 | 7ad88cd3de5844c7fc269c4500228a630016ab5b |
| SHA256 | 1c43a1bda1e458863c46dfae7fb43bfb3e27802169f37320399b1dd799a819ac |
| SHA512 | b643a8fa75eda90c89ab98f79d4d022bb81f1f62f50ed4e5440f487f22d1163671ec3ae73c4742c11830214173ff2935c785018318f4a4cad413ae4eeef985df |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\WpfApp1.exe.WebView2\EBWebView\Default\PreferredApps
| MD5 | 2b432fef211c69c745aca86de4f8e4ab |
| SHA1 | 4b92da8d4c0188cf2409500adcd2200444a82fcc |
| SHA256 | 42b55d126d1e640b1ed7a6bdcb9a46c81df461fa7e131f4f8c7108c2c61c14de |
| SHA512 | 948502de4dc89a7e9d2e1660451fcd0f44fd3816072924a44f145d821d0363233cc92a377dba3a0a9f849e3c17b1893070025c369c8120083a622d025fe1eacf |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\WpfApp1.exe.WebView2\EBWebView\Default\Safe Browsing Network\Safe Browsing Cookies
| MD5 | 26fc054d6e2537d0eefc2adccd8aed48 |
| SHA1 | 57d91cc39566739e53ee686fdf54a54db586225e |
| SHA256 | f1f4cab488693f20a1daa0d0d9bf8d5f4bd066d939fbcb78e3c1eb5b44582e4d |
| SHA512 | b674081966ad1cf5318e3e86c628c13cdc67bb53cbea5a49992551033fe9730206d7133aaf0535c95a6245a2e20522a9ea9bc7c414a72cf08be8f5c2d81611b8 |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\WpfApp1.exe.WebView2\EBWebView\GrShaderCache\f_000001
| MD5 | 93b26a977cf99c9d7038ce067f3f6c19 |
| SHA1 | daae119d188382adec6aad4c5c34c64adba38ca8 |
| SHA256 | 63c283447cef315cb5165e4f0b879f2554c854f8de5b9919d2578441b4f92e80 |
| SHA512 | c3ef41ba6bde3aa36479efae3f15c9dc45487615c58a240728b03b1c2b06e31c14810a1344a22f923387c33de731ab70994c3265a023c13dbaaba3f829884464 |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\WpfApp1.exe.WebView2\EBWebView\hyphen-data\101.0.4906.0\hyph-as.hyb
| MD5 | 8961fdd3db036dd43002659a4e4a7365 |
| SHA1 | 7b2fa321d50d5417e6c8d48145e86d15b7ff8321 |
| SHA256 | c2784e33158a807135850f7125a7eaabe472b3cfc7afb82c74f02da69ea250fe |
| SHA512 | 531ecec11d296a1ab3faeb2c7ac619da9d80c1054a2ccee8a5a0cd996346fea2a2fee159ac5a8d79b46a764a2aa8e542d6a79d86b3d7dda461e41b19c9bebe92 |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\WpfApp1.exe.WebView2\EBWebView\hyphen-data\101.0.4906.0\hyph-hi.hyb
| MD5 | 0807cf29fc4c5d7d87c1689eb2e0baaa |
| SHA1 | d0914fb069469d47a36d339ca70164253fccf022 |
| SHA256 | f4df224d459fd111698dd5a13613c5bbf0ed11f04278d60230d028010eac0c42 |
| SHA512 | 5324fd47c94f5804bfa1aa6df952949915896a3fc77dccaed0eeffeafe995ce087faef035aecea6b4c864a16ad32de00055f55260af974f2c41afff14dce00f3 |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\WpfApp1.exe.WebView2\EBWebView\hyphen-data\101.0.4906.0\hyph-nb.hyb
| MD5 | 677edd1a17d50f0bd11783f58725d0e7 |
| SHA1 | 98fedc5862c78f3b03daed1ff9efbe5e31c205ee |
| SHA256 | c2771fbb1bfff7db5e267dc7a4505a9675c6b98cfe7a8f7ae5686d7a5a2b3dd0 |
| SHA512 | c368f6687fa8a2ef110fcb2b65df13f6a67feac7106014bd9ea9315f16e4d7f5cbc8b4a67ba2169c6909d49642d88ae2a0a9cd3f1eb889af326f29b379cfd3ff |
C:\Users\Admin\AppData\Local\Temp\7zE48496A38\SolaraBETA (2)\WpfApp1.exe.WebView2\EBWebView\Subresource Filter\Indexed Rules\36\10.34.0.52\LICENSE
| MD5 | aad9405766b20014ab3beb08b99536de |
| SHA1 | 486a379bdfeecdc99ed3f4617f35ae65babe9d47 |
| SHA256 | ed0f972d56566a96fb2f128a7b58091dfbf32dc365b975bc9318c9701677f44d |
| SHA512 | bd9bf257306fdaff3f1e3e1fccb1f0d6a3181d436035124bd4953679d1af2cd5b4cc053b0e2ef17745ae44ae919cd8fd9663fbc0cd9ed36607e9b2472c206852 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | e074dba25c5657c29ad86167307fbe6f |
| SHA1 | 8ebef3a0f6d7cad5bd96fb6a9f2f9daa9e235d7d |
| SHA256 | 075dd452f74a2c7d79f67124b1ba3d81a47cff7dad046e1d9f261f297bb8c067 |
| SHA512 | cd789310ea6076c7ba7bbf75985e3ee0e107cd770aee15117092c65e1245303b411f44146f65b5fdf6273196e6baeb6cc476c8387a7cc3b8585647f6e0292deb |
C:\Users\Admin\Downloads\Autoruns.zip
| MD5 | 09aa3a18f9dbf8588b0a3489f5c752f4 |
| SHA1 | 130a744a421ca914f2809685af8262c468f4177a |
| SHA256 | b04d2ac6dcc287a4b01a9cdc5bd9580a38df8a3379e03698cf7b888cdab7ea0f |
| SHA512 | d0a18f5b71fdf9df60e604d12c9279322a6aa8ce6001cd980bd9df138718c59bf7023690de51b64e6926f154b2ebd52950fa21a89e5e30d6942c784a28edb453 |
C:\Users\Admin\Downloads\Autoruns.zip:Zone.Identifier
| MD5 | 95382976d1d1faa42a3d1561498e4ea6 |
| SHA1 | a73de3ad4be0e5beadd5fe5ec4ef9e5bf41da233 |
| SHA256 | 10b5e0c965f5f3a06c919adddcb0a93458b0140de324b0ee96873d8590a98e9a |
| SHA512 | 59f643930138c9f9064e469ed880eec1577086319906269ed9673f3424cc1ed6a8e606a249133ce03c48fec006aa48cac0bcdd970ac4f91849dc1baaf91653a2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 8c90e37d33db8200c9baa45172d57791 |
| SHA1 | 75218d240d766ade5d33a4e8cada1878cd9f720b |
| SHA256 | 106b58cfd18034962199bbd3bc41b0a12228c782884995a9b3fd1b96db5c991f |
| SHA512 | 7f6ddc1abf9046c92f62b637fe256c44a6c7887eb726716056fcee7a96bac8db1e323ed1b1754fe3550e9fe55245e5b12eb3d693124b6d4cd1885e37e9096aa7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 955d234046fe413414cf386bdfe7c540 |
| SHA1 | 69afa55ce5312106f0584079ad85da29ed775601 |
| SHA256 | 64ca51b5a52aa4f26cbc0ff057b409b057e05550374c562382b1f622297297fc |
| SHA512 | 584ff372f03be40864383ae1ca2b4904bfc65e7f6bd14e0944540d82af72482131995651462804b5a9617e8865c7c914b4522cf6e10b6f4ad4cad670cc685853 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 96e7823c94dee162ef3d5be050b20ab9 |
| SHA1 | 88dd02e744c049e3c36bdfa0e2552d341dbbbe3e |
| SHA256 | 3227086ea088a043337bd9a853dc1dcdab23db54a919bf629d22c1277c3de140 |
| SHA512 | 4853ca7b740df976953123c9f3ba8ab69aaadaa863eb3db03e525a3fc3ceb8ef949f0cb83496495fd1bd66c438eb9fc89b66cbe820b989f684900e854a14795c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 2516eeadedf64d9555e1a3bfbf34e9ea |
| SHA1 | 09e4e992fc27deeb1e68abd4cd57c2afaa15cc54 |
| SHA256 | e2345ede4c273f24b9f7a76d2ee314e8d9e5e7195d3ab06113dcbce46499ff1f |
| SHA512 | 6d2ef1d008d8657991d57672b698c015f3048ba0277d2101112fad8aee3cbad2e2e4c2b1098145ef8fbf4c1e92ce35cb600fc1c417c617d70484d5995943e46e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe589fa6.TMP
| MD5 | 366f4fbad82bca186be77455ee5d4fa3 |
| SHA1 | a5915996337dc753b888b56bfb7334e056cef842 |
| SHA256 | 3f41e4c446734120079c08bca9c206016d4d6121d88f39c4d79583cf900dc98f |
| SHA512 | 8a18edd385a94219340e3a1b63eaab27f2b07fffc9e7450ca2f0ecd62668a0e2e266bb20953c004dafdb8b0209cd52ed39fd5b7aba3eb4afe8deeeac9279fceb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 17c5e5d62154282f03f63212579e9116 |
| SHA1 | 8ede6dea043e4709a0a640698d40db84e2573c2a |
| SHA256 | 682ff39d8fbbd9b4766133383a7544d5dea393843290c86407abd7ceb614c7c9 |
| SHA512 | e8ee96adf12d0f6a5e7401d0e78a143bf8ead8734ad14703ab074ade55d2c27147929bbbaed7d597ec61ae1f1758c6ad0070be5e6eeffc455d05134c22049d7c |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe
| MD5 | c3256c5f0046841c566b77f0c86eedd8 |
| SHA1 | 48ab4b19274e8bb4859236e73e8e2ce3b6957c59 |
| SHA256 | d51b22a5d11d05453349ef55d319f950f6b1d05ecb3c6d4f34f3f2d2dc55c63c |
| SHA512 | cb5a224f26aade0499ca0fbc6cabe2f348eaed86812e8f5b1b271019744830dbba46544ba7d974af404fcd556f487f790affa814aae6cbd6946bb935d3de37f2 |
memory/3792-1806-0x000001D6C0680000-0x000001D6C0692000-memory.dmp
C:\Users\Admin\Desktop\SolaraBETA (2)\Wpf.Ui.dll
| MD5 | aead90ab96e2853f59be27c4ec1e4853 |
| SHA1 | 43cdedde26488d3209e17efff9a51e1f944eb35f |
| SHA256 | 46cfbe804b29c500ebc0b39372e64c4c8b4f7a8e9b220b5f26a9adf42fcb2aed |
| SHA512 | f5044f2ee63906287460b9adabfcf3c93c60b51c86549e33474c4d7f81c4f86cd03cd611df94de31804c53006977874b8deb67c4bf9ea1c2b70c459b3a44b38d |
memory/3792-1808-0x000001D6DB330000-0x000001D6DB86C000-memory.dmp
memory/3792-1809-0x000001D6DAEE0000-0x000001D6DAF9A000-memory.dmp
memory/3792-1811-0x000001D6C0BC0000-0x000001D6C0BCE000-memory.dmp
C:\Users\Admin\Desktop\SolaraBETA (2)\Microsoft.Web.WebView2.Wpf.dll
| MD5 | 34ec990ed346ec6a4f14841b12280c20 |
| SHA1 | 6587164274a1ae7f47bdb9d71d066b83241576f0 |
| SHA256 | 1e987b22cd011e4396a0805c73539586b67df172df75e3dded16a77d31850409 |
| SHA512 | b565015ca4b11b79ecbc8127f1fd40c986948050f1caefdd371d34ed2136af0aabf100863dc6fd16d67e3751d44ee13835ea9bf981ac0238165749c4987d1ae0 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Microsoft.Web.WebView2.Core.dll
| MD5 | 851fee9a41856b588847cf8272645f58 |
| SHA1 | ee185a1ff257c86eb19d30a191bf0695d5ac72a1 |
| SHA256 | 5e7faee6b8230ca3b97ce9542b914db3abbbd1cb14fd95a39497aaad4c1094ca |
| SHA512 | cf5c70984cf33e12cf57116da1f282a5bd6433c570831c185253d13463b0b9a0b9387d4d1bf4dddab3292a5d9ba96d66b6812e9d7ebc5eb35cb96eea2741348f |
memory/3792-1813-0x000001D6DB0A0000-0x000001D6DB11E000-memory.dmp
C:\Users\Admin\Desktop\SolaraBETA (2)\WebView2Loader.dll
| MD5 | 7bf24896b80f336c1d16b488f89fef34 |
| SHA1 | 50db3c6002a85894f7b960aee1d01b5537a7057b |
| SHA256 | 28cee166d574b246aa076eb59e24567026c7782f9a70a05b48a61508589e6840 |
| SHA512 | 07a660ab26343cb45602710a2935c6b948c80976de612ac403a6e354f7bedbe56e1e92f95cfb0ffa746625a3da5108c9a796941a0db462621ecb653a752766f0 |
C:\Users\Admin\Desktop\SolaraBETA (2)\runtimes\win-x64\native\WebView2Loader.dll
| MD5 | aee20ef43cf692c9080c5973b1b79855 |
| SHA1 | b3885791b0e122f8360d6fb7c0e0ac7fe4fa14fb |
| SHA256 | 31423e905e29c8a40a483e81dae1491990805fa066634d218b35bb96692bef0d |
| SHA512 | eab6684095c0a7555d921fb1a2e136fa1d761c5766c48571000a97403e6d437a3a4833c571f86c039aa8307fb2fc3fae1acffd63085ae9d2ea0d9e7f9ec1ace6 |
memory/3792-1818-0x000001D6DAC90000-0x000001D6DAC98000-memory.dmp
memory/3792-1820-0x000001D6DB260000-0x000001D6DB26E000-memory.dmp
memory/3792-1819-0x000001D6DB290000-0x000001D6DB2C8000-memory.dmp
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Crashpad\throttle_store.dat
| MD5 | 9e4e94633b73f4a7680240a0ffd6cd2c |
| SHA1 | e68e02453ce22736169a56fdb59043d33668368f |
| SHA256 | 41c91a9c93d76295746a149dce7ebb3b9ee2cb551d84365fff108e59a61cc304 |
| SHA512 | 193011a756b2368956c71a9a3ae8bc9537d99f52218f124b2e64545eeb5227861d372639052b74d0dd956cb33ca72a9107e069f1ef332b9645044849d14af337 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Crashpad\settings.dat
| MD5 | 453ddca701ea944b47bc3a9b6b44aebd |
| SHA1 | 323fdd3957818e4fafb3befe6d06f0fca255fe51 |
| SHA256 | a6c25ad18b275f8d9d48f10e5bd5d8879e79b5dabfab8ac63f1dd74328500303 |
| SHA512 | 3a4c317fd615080b763c4765206fc99c900c98310178f815337b0d63ec458f46abedd3e53f77608064c67b7c0b8fa554d85d1bf186d85461b1bbd0f93d4c2dc0 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Crashpad\settings.dat
| MD5 | e0f52a2b38df9c591400f14986ffefb0 |
| SHA1 | 91fcf3318c6e55d2ee4735829abc6fcae4f8e464 |
| SHA256 | 172fc004763469f2fe690bda54e6b354a4c6b3d5a62f1f37663af851096564bb |
| SHA512 | 784e2d502fd3e066039116f101d652b01442842dfe0d2cbc2268217d05094012d5bf0b0c83de01233005a8d35909590a396716ad9bafbc1b4b925fdec4ab29f5 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Local State
| MD5 | 38c09f9a9c35e8da08d2fd6abb9d3639 |
| SHA1 | a25fd030daed859ab3aa44a7366cc08e8a0806cb |
| SHA256 | 56877d7716385b0861a46782bfa89152875dbf047e346b610893ef80d9ba5409 |
| SHA512 | 27aa0996f90ec17775cb36abfaf5a97e582509ab2b33c57d87a21663d9f01b03ce35667f50113cf4e500fbec20fe04849163a1b700f6ea207616082fe9b0df52 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\BrowserMetrics-spare.pma
| MD5 | 1045bfd216ae1ae480dd0ef626f5ff39 |
| SHA1 | 377e869bc123602e9b568816b76be600ed03dbd0 |
| SHA256 | 439292e489a0a35e4a3a0fe304ea1a680337243fa53b135aa9310881e1d7e078 |
| SHA512 | f9f8fcc23fc084af69d7c9abb0ef72c4684ac8ddf7fa6b2028e2f19fd67435f28534c0cf5b17453dfe352437c777d6f71cfe1d6ad3542ad9d636263400908fd2 |
memory/4456-1843-0x00007FFB14370000-0x00007FFB14371000-memory.dmp
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Last Version
| MD5 | b29bcf9cd0e55f93000b4bb265a9810b |
| SHA1 | e662b8c98bd5eced29495dbe2a8f1930e3f714b8 |
| SHA256 | f53ab2877a33ef4dbde62f23f0cbfb572924a80a3921f47fc080d680107064b4 |
| SHA512 | e15f515e4177d38d6bb83a939a0a8f901ce64dffe45e635063161497d527fbddaf2b1261195fde90b72b4c3e64ac0a0500003faceffcc749471733c9e83eb011 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Secure Preferences
| MD5 | 91f50a4603ebc352f44ad90cc0fa1fc6 |
| SHA1 | bce527c69251c495e29c9bd8045cbcf2800c2392 |
| SHA256 | d01d65aa648118742db4c773c427e6cea1d7a266a4c15f215ca6e443333274d6 |
| SHA512 | 66b3dd012e7d2c67590ffedad4d5899a017a63019e09c305aeb589655ff9289d077ea0523043ae9327aee2de421a61e8666fffbffabde759cdd459b5eab70c40 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Preferences
| MD5 | 174b1517d3c0bff4932b912221b0db7e |
| SHA1 | 7cae026de512f76a2580c8f9e6f75597efb56deb |
| SHA256 | b545d93665bc44d36e1c1580a7792b8ca3a3be496c96017339b7e5b06d0bb90e |
| SHA512 | 2ccae0b40a9bf7072b27b53cdb3fdbad1b1029c1e48ab04686f3da8e60030b8e645cf368191e64cf7e8dc408f5dd1fcb4b477164aa3e278043c02b972b45ae51 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\History
| MD5 | 4f9a22d63decfbf2dc70fa0e9177fc9c |
| SHA1 | 1d8b46f93deeca7e56d1a278ed01411a918c0912 |
| SHA256 | 68d47b997aee358042a7a160bfd585c7439e686bca535f440b8eede35a39ff1f |
| SHA512 | 0df4ccdd2808df8e30c23fe8a7115a625ad468bc28e4e062b260a17b3f0671bd5ed1a104ae7cc8a9bfb7218c6381f95fed03d1c9e22eac2fdc0a4cbbd8fe92b7 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Visited Links
| MD5 | d67ebbf0fc2c8d925d777252dd7d133b |
| SHA1 | 103c088423764e256e36ffbef3d119776d060b5c |
| SHA256 | 672b17df7755c38ba03ca13d9d7042ab0cbd3b9c0bd0ffc151530b1d2b6b76b2 |
| SHA512 | 724724678d569c92c454f41f228d7ab8af78a9a2cbd60c46e7cacc9bfcf141ef49927b091e124d28d3abe251456aab49f15f62ac8eff412dcba8396b1e41909b |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Site Characteristics Database\LOG
| MD5 | 2c2a5edab4fb46c1d032ecee369a7038 |
| SHA1 | cb1592a784234ad37279bce427ec2b0504423ae1 |
| SHA256 | d0f2b5c441dff4a42e392dd8fe262232b66ac47725723adf64d1059e5d5e67c1 |
| SHA512 | 4718cad8308160afa1577c0684ea8e9149b6df55e8f8d9a45ad767eb4b8db8e89c1663faa6c0b8ca7c6e4ca56c0b875b9bc241e33a3399dfa162c2738c3b63a7 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Site Characteristics Database\LOG.old
| MD5 | bf7b17db1b5809b817f9b046612663f4 |
| SHA1 | 02e67a8b9bbbabad9bc8109008e4c156a7a93401 |
| SHA256 | d6c70f2aa03ba49d0e344f677476d74c69c08a17909b52a41d1f17c5be3b53f4 |
| SHA512 | 1a5322ab2c61668dded351515356445d3b80efbfadd6583a3f8f2e72a46b0f36f9be7e860fd59b663f72f43483cc29d7a7ee8118780a54dc95e20a8c2a7d0755 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Code Cache\js\index-dir\the-real-index
| MD5 | ba773c8842db276a48f01c19ab39456f |
| SHA1 | ed613a87271a007206ab43e6384d45245bdf6ead |
| SHA256 | 17b84a64ca830979764fa834a198f51c23370f097a8880683845cf9eed48b605 |
| SHA512 | 359ce3d1a59107b87e1dba2ef044c2d3df09d924aa444affaff38870b399402134f018e46188b4ee877c9612d9a6458aa4c1f2cda55bb6471c72516be5b075e7 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Sync Data\LevelDB\LOG
| MD5 | 9662643c1f0fc87374d7f9741e14a17b |
| SHA1 | 15347884aff84e00c34797ae19e86b2035e01bf6 |
| SHA256 | ac5bb21117aa5040a8a2e4ca27fe68499086d94ee749fba624d8d800ee91cd53 |
| SHA512 | 69a91ee5fa92332568acacb296be6c7486c32a3408b068d32ee6085e94bb519854bdd0b21c3778216b5cf3733abd607ee5e31f05c9b825a3901c54726ae9fae4 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Sync Data\LevelDB\LOG.old
| MD5 | 07d60c55d3af7c828f610f5e45390c88 |
| SHA1 | 35546aa2a51450c4b88062f6d15674debbb419b7 |
| SHA256 | 43e4222ad78b374345d91a95fa8b6d316de0d28ab4e0005136be2c54675f3681 |
| SHA512 | 5991484bfb370eeb1c3c5003c82898a3024b9b0b10a814f4300f4180e4b4e8568cc9beb45e1f2b20375b3f06ad4f3081729ef1c325c842fd14b1183cd98698b9 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Site Characteristics Database\000003.log
| MD5 | 148079685e25097536785f4536af014b |
| SHA1 | c5ff5b1b69487a9dd4d244d11bbafa91708c1a41 |
| SHA256 | f096bc366a931fba656bdcd77b24af15a5f29fc53281a727c79f82c608ecfab8 |
| SHA512 | c2556034ea51abfbc172eb62ff11f5ac45c317f84f39d4b9e3ddbd0190da6ef7fa03fe63631b97ab806430442974a07f8e81b5f7dc52d9f2fcdc669adca8d91f |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Favicons
| MD5 | f56e431b1d09b7ee9076ac27c118cd1e |
| SHA1 | fd00bdd050f91f04e12091c5786438f7f9b0b28f |
| SHA256 | 0db6438854d1086c869c9bda01877547517cd155cc8336dc1838abe3458b4bf6 |
| SHA512 | 54f7b298f2f7447fa071f58bdb1bb80acbdb1c0de4ea46760d391427649b8f255f040c650ab758700289ad5b35096ef8192eff77c4e3c47d72713148a4ad3714 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Web Data
| MD5 | cfb2e508f034dc44935da51dfa22c3ba |
| SHA1 | 4d60c926ce0d3b53697b2804a2394dacfe3f75de |
| SHA256 | 2b057dccbf112f89920ec013aa00b7991c315635b6f9225400de43c50700957d |
| SHA512 | 77ce51fa4f156766e7d419ed09d4003821ba4614bbae3b83b6f4e496ed9aea59d2b42a67c93ea6d864910c0633db974abf866bfce4f73b55c12717a5a85430e8 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Login Data
| MD5 | 5cdbe5fe7b39e0617a15efa1daca1f6b |
| SHA1 | eace7b5e04c4d3fcb5a48baf00a9f1aa41ff7e13 |
| SHA256 | ee6731dd6cdae816e48422f6f77482460ec71446d7450e7d9c363bc4f76a0842 |
| SHA512 | 8e85f436537d2a15fdbb1199af7f1df7eed3f31a9b8b1c2e299bfd6bb9c511279eace1dac6a3edb62b7be458d68e4c24e82e466dc2095bff5f6cfa8d844e6e42 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Sync Data\LevelDB\000003.log
| MD5 | 90881c9c26f29fca29815a08ba858544 |
| SHA1 | 06fee974987b91d82c2839a4bb12991fa99e1bdd |
| SHA256 | a2ca52e34b6138624ac2dd20349cde28482143b837db40a7f0fbda023077c26a |
| SHA512 | 15f7f8197b4fc46c4c5c2570fb1f6dd73cb125f9ee53dfa67f5a0d944543c5347bdab5cce95e91dd6c948c9023e23c7f9d76cff990e623178c92f8d49150a625 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 206702161f94c5cd39fadd03f4014d98 |
| SHA1 | bd8bfc144fb5326d21bd1531523d9fb50e1b600a |
| SHA256 | 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167 |
| SHA512 | 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Local State
| MD5 | 8bd6a891f86e1dc1fe3b57e2bdae4d0a |
| SHA1 | f9e161094ddd8eb9db6f2dacc957fe4898bcb329 |
| SHA256 | f5c711f20418bc1765309b8260c325458c2335135071e29e6f66f3ee39c73d22 |
| SHA512 | 606f0abae4d17686386b3487fbe2ad1e6f01845b81b98ef717a7e1d53784d873a2f2f4a855a82273554136281a57c50cc72367234f8ad47e736c22be03e247e2 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Secure Preferences
| MD5 | 86d560366106eb22e5bdd666ee23bc7a |
| SHA1 | 18ec11b62ee5a06facdcb855725bff5794ed36fd |
| SHA256 | bda209a0900692c4ad04bfd1ed8144dbcbdaa3cc04e707b5e8c2e1874bcaff6b |
| SHA512 | 655938532c21f1c2c363d20a8bd89025ff50da3545932eab013d0a7954ae0b1d17ccf641a08e4794eda8f90facb81316e5310b4c30951b8cc35aec762d500dda |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Preferences
| MD5 | 0891357c6d65efc1aa77862c0b3253f3 |
| SHA1 | f65f74bc15848f2c1b8f7989203935dd085e9665 |
| SHA256 | 1733aa8c1b941b7668167f5f782d56a299b1e1af6d8bd53a27f7fbcbad572f45 |
| SHA512 | 3a4c46e4fb3800d11b4a8c51de4af2da8ed5bcf03cc8354233b4e33f845a0f6d821bdac3a5ec6b50bc0465a14789ff41ac5d97baba571b9e5dc988a7abb0a44e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 9aa7ad3ae171b108f8ebbe8004b0de28 |
| SHA1 | eb47126b87005438e3bd14416be83ef4ae750a45 |
| SHA256 | 1f82d58b91bde95fabe6393df672808aed01f9962ff1ec978bc4054ffbf7a95b |
| SHA512 | d2e3c0af7984082d86f699a847232611a9764c470c6c0e266c49fa5a25743f92c4f5c524bbafe0268dbd795e595924d1c27c1307196232f3ce3a3c6f4f623868 |
memory/3916-2010-0x000002999C600000-0x000002999C83C000-memory.dmp
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Network Persistent State
| MD5 | 4bf6797b7932b8b49220b64d6409c684 |
| SHA1 | 16504d6c1150b75199145497a20281c9764dc84f |
| SHA256 | 3681f54328d132485f27bca867a6dc783d924defb4f368034dc5131731a9c436 |
| SHA512 | cc13c676f7f581ba937efa3ca664e237be85457d3aaeae5d193e2a9792ca39d54539f81bb7f60e716ec4ea9722aca0bf3562e733ec4e7b9a36681c46ac444f25 |
C:\Users\Admin\Desktop\SolaraBETA (2)\Solara.exe.WebView2\EBWebView\Default\Network Persistent State~RFe5a56ad.TMP
| MD5 | 2800881c775077e1c4b6e06bf4676de4 |
| SHA1 | 2873631068c8b3b9495638c865915be822442c8b |
| SHA256 | 226eec4486509917aa336afebd6ff65777b75b65f1fb06891d2a857a9421a974 |
| SHA512 | e342407ab65cc68f1b3fd706cd0a37680a0864ffd30a6539730180ede2cdcd732cc97ae0b9ef7db12da5c0f83e429df0840dbf7596aca859a0301665e517377b |
memory/3916-2032-0x000002999C600000-0x000002999C83C000-memory.dmp
memory/3916-2042-0x000002999C600000-0x000002999C83C000-memory.dmp
memory/3916-2052-0x000002999C600000-0x000002999C83C000-memory.dmp
memory/3916-2106-0x000002999C600000-0x000002999C83C000-memory.dmp