58530fa7d45a6ebec1d73fa9fa94e54124c8f47615bac229c68e404590320e6f

Analysis

max time kernel
145s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
11-05-2024 11:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

34532d5488543f9255076c2b93ca3b6e_JaffaCakes118.html
Size

142KB
MD5

34532d5488543f9255076c2b93ca3b6e
SHA1

9e29a877701b70ae3c56fddad118fc2a2e8982d3
SHA256

58530fa7d45a6ebec1d73fa9fa94e54124c8f47615bac229c68e404590320e6f
SHA512

8420e66aee88dae5217c22c9b508dae3cf16d0b795d555981ac9e5b6be7c4b9ba5ae2f1fc020639b92a513c10e6fe79acd463719060ead560f8b4255d25ddf53
SSDEEP

3072:66TLy5v7EBWTUK1b+3TNDvNk+h/rSE4R/tfsgEK5Fu:lTLy5T5TUK1b+3bbclW

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe

Suspicious behavior: EnumeratesProcesses 8 IoCs

pid	Process
3032	msedge.exe
3032	msedge.exe
4568	msedge.exe
4568	msedge.exe
116	msedge.exe
116	msedge.exe
116	msedge.exe
116	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 10 IoCs

pid	Process
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe

Suspicious use of FindShellTrayWindow 25 IoCs

pid	Process
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe
4568	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4568 wrote to memory of 3496	4568	msedge.exe	82
PID 4568 wrote to memory of 3496	4568	msedge.exe	82
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 1548	4568	msedge.exe	84
PID 4568 wrote to memory of 3032	4568	msedge.exe	85
PID 4568 wrote to memory of 3032	4568	msedge.exe	85
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86
PID 4568 wrote to memory of 880	4568	msedge.exe	86

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\34532d5488543f9255076c2b93ca3b6e_JaffaCakes118.html
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4568
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9272c46f8,0x7ff9272c4708,0x7ff9272c4718
  2⤵
  PID:3496
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2028,13104574386383779259,8250135782759948058,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1936 /prefetch:2
  2⤵
  PID:1548
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2028,13104574386383779259,8250135782759948058,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2444 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3032
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2028,13104574386383779259,8250135782759948058,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2856 /prefetch:8
  2⤵
  PID:880
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,13104574386383779259,8250135782759948058,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3252 /prefetch:1
  2⤵
  PID:1672
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,13104574386383779259,8250135782759948058,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3268 /prefetch:1
  2⤵
  PID:1528
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,13104574386383779259,8250135782759948058,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2680 /prefetch:1
  2⤵
  PID:5092
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,13104574386383779259,8250135782759948058,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3296 /prefetch:1
  2⤵
  PID:3588
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,13104574386383779259,8250135782759948058,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6076 /prefetch:1
  2⤵
  PID:3768
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,13104574386383779259,8250135782759948058,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5916 /prefetch:1
  2⤵
  PID:2172
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,13104574386383779259,8250135782759948058,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5716 /prefetch:1
  2⤵
  PID:2012
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,13104574386383779259,8250135782759948058,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4852 /prefetch:1
  2⤵
  PID:3468
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,13104574386383779259,8250135782759948058,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5908 /prefetch:1
  2⤵
  PID:744
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2028,13104574386383779259,8250135782759948058,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5936 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:116
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,13104574386383779259,8250135782759948058,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4948 /prefetch:1
  2⤵
  PID:4064

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4596

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4928

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1128

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
a8e767fd33edd97d306efb6905f93252

SHA1
a6f80ace2b57599f64b0ae3c7381f34e9456f9d3

SHA256
c8077a9fc79e2691ef321d556c4ce9933ca0570f2bbaa32fa32999dfd5f908bb

SHA512
07b748582fe222795bce74919aa06e9a09025c14493edb6f3b1f112d9a97ac2225fe0904cac9adf2a62c98c42f7877076e409803014f0afd395f4cc8be207241

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
439b5e04ca18c7fb02cf406e6eb24167

SHA1
e0c5bb6216903934726e3570b7d63295b9d28987

SHA256
247d0658695a1eb44924a32363906e37e9864ba742fe35362a71f3a520ad2654

SHA512
d0241e397060eebd4535197de4f1ae925aa88ae413a3a9ded6e856b356c4324dfd45dddfef9a536f04e4a258e8fe5dc1586d92d1d56b649f75ded8eddeb1f3e2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000f

Filesize
22KB

MD5
5e74c6d871232d6fe5d88711ece1408b

SHA1
1a5d3ac31e833df4c091f14c94a2ecd1c6294875

SHA256
bcadf445d413314a44375c63418a0f255fbac7afae40be0a80c9231751176105

SHA512
9d001eabce7ffdbf8e338725ef07f0033d0780ea474b7d33c2ad63886ff3578d818eb5c9b130d726353cd813160b49f572736dd288cece84e9bd8b784ce530d5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
192B

MD5
302a0ff0d5d6261eafeddee918f5f038

SHA1
ceaf1b9230ba37ea8c14a43754f4a0824066e3ae

SHA256
b20e82a6543eb598b579369a5ce43b255c63ef70a7bb2e74f33bbff8c0b0d0e2

SHA512
c53bb80378b944ccb64aa6c7bab60e120d4fc41aa622055436e022bdbc087864c0e427bda1377d22c1da1de1c3424e0df9dc772a79e12a581fc56e2a07b604ea

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
120B

MD5
0c743bf655c0deddab12321ba67a9ca2

SHA1
2ed3db15f222adfc4c48a33f7ca736ee074dafeb

SHA256
7e85e209b10bb993cee6763f291017e6470ad06de897393941633547d94ed2d6

SHA512
76c2b6d1b0f3b3003e66b126fad95e7d9d4b8d5864eec00df1327976fd84039e79291a28466ce51353564137a7839663790b9a82296d70b8fd387317d6d55a4a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
2ca0e7e800631f8a2de58f308b37b312

SHA1
67786e694d78a07159be83dd90c4106bc2764e33

SHA256
456b256e6623d7ed1e6c26d800312a60520b61b850baed7cbf1194f3b71310d4

SHA512
879de8440faebdf005b4182929422c4d9ab1a01fb9eaa0047c813d7a5457f79b9bf206f6d2ce23e91e75dc5277088aede5c3908100e9520d77df8260a500aa64

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
2KB

MD5
854c58b594256986a1ea5c09de45247d

SHA1
2eaa2e0b5b2b7c33660011d64a7df4089377bb0b

SHA256
3218247a33de00f27f88e0754b20ecd9a8de1f4c6f38bfcb2c864f13ea20af69

SHA512
bde211494be19c0ede1187b89c45a88beeb84504623c035647d16f96e54a18c148c77c429bc73d4bb91a7fbc0a6f6b15a04a9cd8322e9c02d952bca2a8d3551f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
fdb302db5199b647ffacb0546f45394f

SHA1
bad1c60d2ef7f7e661223ffb5ff5b5b3a7fc8797

SHA256
7438e11e6b628c22a64ade981afad08f480405249f35be28a9ae085c24885d8c

SHA512
f99d74bd43ea8f308dbca42818fa52a155211e0fe37dab81d5bc4743239341b0629b0980fefc8d981db3f0de464eee41f03aadafc7285723e85392bbdca94b85

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
706B

MD5
a31c7dd0927ec814c310a5c28a692741

SHA1
c71c539ca285a3424d5d9b80460e6a920e8db6ef

SHA256
a0bcdc5c53736d84f7ed4a30b8a3c1974f7143b6067de272341733551a10a50f

SHA512
8993543bad5e68328c362f8264b3b0478dfe24f02fcac02259980486fefa10a73f69053bc14988b65f3da2b414ecd537e31fe8e6a1e1c152615c303f6585b6da

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
873B

MD5
ba3b07e312c8bc4b156e5b602623e823

SHA1
f74aca5c543f201b31f5c44a77a09b4c0161788c

SHA256
7cf8d8049369096014166fc69418702a0c39dd1e22bcc18486c004c84275969a

SHA512
1cec4c05a78ca69931e857d3e99d567dbe6be87bc1d8af7c972d6e1d02fc988dd6bcbf4a396e8cf4d3a2168647fa03c03d46def4e28d888724f0af7f738bea07

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
676274a5497e7236f620b0dacc622911

SHA1
64a79dfb429fc7cb9b7221c84f9857852e360439

SHA256
bf1ed0f7d8a668868b7f093ac1e8f9efe642c9c1b75ed50c8ff083bed5cb38c6

SHA512
d15855c1ab08d1c360a2cbe69e14f3bbf0ee9dd9d38356011b20a0138c415992b7db4740fc116577f4b4c036c03e38db1cc785dc4465362d95c656b0e718032a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5826fb.TMP

Filesize
538B

MD5
02ebf1d22ce840957edcc43ced463f71

SHA1
d3f07d1326efd13155d6ec6258064e9f92fe3cf1

SHA256
ddec839d7934a7fe336c242e0d77af13815810c105c6d37b1812a7b82474c35e

SHA512
3f14eb1059fa97caef313bc43d602f3537ba986bf8551f87722060b2274cd9b5e8869c21bbd5fc1d5c5013ede34ef47d0579aac6ad88a5eb4d187bdae16c7e9b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\b47dc25c-2e7f-4e2b-ab44-5c46b588a5bd.tmp

Filesize
6KB

MD5
42c1a303d71712db4fa908ecb2b9df3c

SHA1
86e841f8cc85d32347077de7d734bc35dde5fbee

SHA256
d7c81221f24a6b12a562d4fb09248be46cf609e8c63a965984cde79476c32546

SHA512
278a206fdf384efd86c8e498aaaee791a6ab29e82900fdee6a9cbca0596f2c2c957907c08f9d96b3a8cb74a233f2127f104baca5c590ba656c5a770f89a80113

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\a362eeb2-3342-4776-9ad9-fb4408d16e7c.tmp

Filesize
11KB

MD5
301a04da7ac8d4d655ebb3125e6e0e68

SHA1
2f464a02a758bb1771f6488c9bec600bba710996

SHA256
de71bcd64613d2b3141b2efce13784d669ba8048ee21ac7d122014286cc32e4a

SHA512
9ece172fac430f82d45034074f41ed68bf539b57e146adde21641901ec3be5578d49619dfc076a1f41160e793ecc6b4a92dce1b0c6e36bcf39bb192f4c64a649

Download Submit