Overview

overview

1

Static

static

1

66d1971020...8.html

windows7-x64

1

66d1971020...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22-05-2024 09:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    66d19710200b4aabdadc9db12e7986d6_JaffaCakes118.html

  • Size

    80KB

  • MD5

    66d19710200b4aabdadc9db12e7986d6

  • SHA1

    50fc437e65f43a3abae250c08283b13318efb38b

  • SHA256

    1429fa3241ef1d3760209bee380dc92c136ae4fe65660abca5a2b0fbfea9df24

  • SHA512

    22cca2c4545f7dc180a63aa7a77380913d18ecda8c45fba24fe31aa065d4a32e203b6c1252e04a5ef279931d5c429de51985476864ec3da59a65cfb7cfbb97bd

  • SSDEEP

    1536:FLNCGEx04C8E63qZdF6xResh0qVjswlqTbS79P:FLNWuK3qNocsh0qVjAbS79P

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 10 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 11 IoCs
  • Suspicious use of FindShellTrayWindow 25 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\66d19710200b4aabdadc9db12e7986d6_JaffaCakes118.html
    1⤵
    • Enumerates system info in registry
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:672
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffdc2ac46f8,0x7ffdc2ac4708,0x7ffdc2ac4718
      2⤵
        PID:2888
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2168 /prefetch:2
        2⤵
          PID:3940
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2376 /prefetch:3
          2⤵
          • Suspicious behavior: EnumeratesProcesses
          PID:2464
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2900 /prefetch:8
          2⤵
            PID:884
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3252 /prefetch:1
            2⤵
              PID:952
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3272 /prefetch:1
              2⤵
                PID:3932
              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4936 /prefetch:1
                2⤵
                  PID:2544
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5536 /prefetch:1
                  2⤵
                    PID:532
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5704 /prefetch:1
                    2⤵
                      PID:1008
                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5836 /prefetch:1
                      2⤵
                        PID:4472
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7164 /prefetch:1
                        2⤵
                          PID:432
                        • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                          "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2036 /prefetch:8
                          2⤵
                            PID:1000
                          • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                            "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2036 /prefetch:8
                            2⤵
                            • Suspicious behavior: EnumeratesProcesses
                            PID:3948
                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5304 /prefetch:1
                            2⤵
                              PID:3992
                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5508 /prefetch:1
                              2⤵
                                PID:4656
                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6164 /prefetch:1
                                2⤵
                                  PID:2608
                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6036 /prefetch:1
                                  2⤵
                                    PID:1624
                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2160,17804338154236267490,5988999504141070608,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4520 /prefetch:2
                                    2⤵
                                    • Suspicious behavior: EnumeratesProcesses
                                    PID:4064
                                • C:\Windows\System32\CompPkgSrv.exe
                                  C:\Windows\System32\CompPkgSrv.exe -Embedding
                                  1⤵
                                    PID:2956
                                  • C:\Windows\System32\CompPkgSrv.exe
                                    C:\Windows\System32\CompPkgSrv.exe -Embedding
                                    1⤵
                                      PID:1288

                                    Network

                                    MITRE ATT&CK Enterprise v15

                                    Replay Monitor

                                    Loading Replay Monitor...

                                    Downloads

                                    • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416
                                      Filesize

                                      1KB

                                      MD5

                                      55540a230bdab55187a841cfe1aa1545

                                      SHA1

                                      363e4734f757bdeb89868efe94907774a327695e

                                      SHA256

                                      d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

                                      SHA512

                                      c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

                                      Download Submit

                                    • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416
                                      Filesize

                                      230B

                                      MD5

                                      072d99fb0aa58fdc229c4c26dbd49ec3

                                      SHA1

                                      0cb9283fe2a1d246a539dd5bc5b5ee404fa0a60c

                                      SHA256

                                      fbb99aa60b2d190af99d26ba28feed46c45a0b79b35538802c57d26cef09f6ef

                                      SHA512

                                      58b64654ba0f82aa7c98316c4de7cc120d9ebaea877185dd50ba35825d5a6a2fe8bfdb2b9b4b71fe055c1a032e85925c346d5d0b4d4333953cecd1e2d6d4cf3e

                                      Download Submit

                                    • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
                                      Filesize

                                      330B

                                      MD5

                                      b9023315ce105b833606e135bb3d6fa2

                                      SHA1

                                      d7b6ba6d3ae770da375283c2c301447621439ad4

                                      SHA256

                                      3eba81b3d97eaec2ad79218a1dbac99298d30575017b2e36bd1c572eae7f7408

                                      SHA512

                                      73938f0911a255fe60961033e7d241b4814472c4114673fe5fe2c78d3bf24eb99b530f1de86bb59ab1894bcc3922fa34e34b9118416782798c7e28408ea9fa55

                                      Download Submit

                                    • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
                                      Filesize

                                      330B

                                      MD5

                                      987ac704f13ab5c2278154f60e0a2f1f

                                      SHA1

                                      ccb9e1140cbf95f3116b28328fa8c0819bf40103

                                      SHA256

                                      3409c36145f641dcce631078d9c5d37a73ffa0f4fedd42fd4155ecb4f24be633

                                      SHA512

                                      c55efdfdc0cac614b3da38273a95337dd8c48c1c568cf9e603a336b61958446cfc6a10bb797a3eb9d8a6562608baa8e79ee3be53cd7206a8b50f0f10bb45a782

                                      Download Submit

                                    • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
                                      Filesize

                                      152B

                                      MD5

                                      a8e767fd33edd97d306efb6905f93252

                                      SHA1

                                      a6f80ace2b57599f64b0ae3c7381f34e9456f9d3

                                      SHA256

                                      c8077a9fc79e2691ef321d556c4ce9933ca0570f2bbaa32fa32999dfd5f908bb

                                      SHA512

                                      07b748582fe222795bce74919aa06e9a09025c14493edb6f3b1f112d9a97ac2225fe0904cac9adf2a62c98c42f7877076e409803014f0afd395f4cc8be207241

                                      Download Submit

                                    • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
                                      Filesize

                                      152B

                                      MD5

                                      439b5e04ca18c7fb02cf406e6eb24167

                                      SHA1

                                      e0c5bb6216903934726e3570b7d63295b9d28987

                                      SHA256

                                      247d0658695a1eb44924a32363906e37e9864ba742fe35362a71f3a520ad2654

                                      SHA512

                                      d0241e397060eebd4535197de4f1ae925aa88ae413a3a9ded6e856b356c4324dfd45dddfef9a536f04e4a258e8fe5dc1586d92d1d56b649f75ded8eddeb1f3e2

                                      Download Submit

                                    • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
                                      Filesize

                                      96B

                                      MD5

                                      83b831be308414ca0d45bd9a4c49ef79

                                      SHA1

                                      0670a6ced455761165e318f8407d86f121b2fd36

                                      SHA256

                                      c7219cd3fa7010c8625fdafa3e2120e1aa3ce9e5e9197baf58f9df46b2efc611

                                      SHA512

                                      259e5b01076a8f168bd27a35c76be5736b0612167dd83aaef82339842240189d857d0bce3522303af631ed1d5e720203f70dd900190e9794ed5213641d226fbd

                                      Download Submit

                                    • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                      Filesize

                                      1KB

                                      MD5

                                      4972af41cd031e49a9da0c613851a2ac

                                      SHA1

                                      5e30a9fc5561573ab512ff14dab8a6a39f9215bd

                                      SHA256

                                      2dd58355b73c28cdb3e58839954fd01820a1a3f09985b13c761dca7e119a2cb1

                                      SHA512

                                      cc97ac336005f909291a78def72b0e049b2aaf16cc3dbf9ba1176653d9f0ca2d032b0a2317841734b7b3e656ac2e8e5da22d90c86ede890c41c293cada54ca26

                                      Download Submit

                                    • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                      Filesize

                                      7KB

                                      MD5

                                      1f3051baf5b259c09cdacbacc807ba0e

                                      SHA1

                                      6a875a6625a72597b3f316b9921f8bb6cdc3b693

                                      SHA256

                                      a8f594368fdb2b66a381a51cd202090ae8e83d2cc67867768a491b888754ff06

                                      SHA512

                                      1bcb664a4ed77dd02c4dd98c7655c02792c7ad250d75c8119f52df2edb438ab2579bcb06c67d57d76641963b07f956541b912287768674200946deb38e087091

                                      Download Submit

                                    • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                      Filesize

                                      7KB

                                      MD5

                                      d446084184ceccbd33b931163e3b3d3e

                                      SHA1

                                      d4b4434f2b186b41e686c8786af6f6e0030512e6

                                      SHA256

                                      d7be006b5bc44cf4eafac48c85ac603d48c0a996209b35fe4c4631cdac946206

                                      SHA512

                                      56d3498d3aa34be6ed5b1dad70fe51cab972b4abc115df35aa3fb72570c2a91ae05599b5b4227e976332aab57740587a771c468ddeb2e0ca7228b51a29aad358

                                      Download Submit

                                    • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                      Filesize

                                      7KB

                                      MD5

                                      23d58d540edfdaeb6b07caea51245961

                                      SHA1

                                      8aedaf94b01f5b5b178b53c5bfdf999866882415

                                      SHA256

                                      8d0c69d7d85eefe87c84ff499c07459de3100a23bdbc85dc283a8ceaf876656b

                                      SHA512

                                      db94c8893b579a75059a7d2ce6547e47a836a6726e4c33c33ed5a49eda97ae57a51c55d3b64362be3c5bbc0475124203cbf2e4351be2a77f0266faf56870e323

                                      Download Submit

                                    • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                      Filesize

                                      371B

                                      MD5

                                      62d083b0d695a390fbce705eaabea22b

                                      SHA1

                                      d5d5dd9135d3dfc7ada5f65eefa8051d53524173

                                      SHA256

                                      18df56de049a693a2bb4b4de6278f9134508a43113751f0c8945ba577112926d

                                      SHA512

                                      43f7cfff158176fab6223a5b99dd21530e56ff287033e2a31adbbb26c52387055a501aa3c2f133919ee9287b2c92227a147c22a7b610c4f0b1d7ec57c26412a2

                                      Download Submit

                                    • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe57cbbc.TMP
                                      Filesize

                                      371B

                                      MD5

                                      d843aad9cbe76cc02a736e0d2799a71d

                                      SHA1

                                      fcff9ba5146aca89a746f3e9fc8d640ca7334f6a

                                      SHA256

                                      3c9841b67d37dee63f4e177654e770d7c95ce9bb40269527134cc06d477c1350

                                      SHA512

                                      ad3c90626d7d7000cf0a1859d56b765671864879d80e374d26e37d89923e6f7478452437908154a251a32daf4c3c87b6fa9f5a6e1411a105538faf8b471a6c8c

                                      Download Submit

                                    • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
                                      Filesize

                                      16B

                                      MD5

                                      206702161f94c5cd39fadd03f4014d98

                                      SHA1

                                      bd8bfc144fb5326d21bd1531523d9fb50e1b600a

                                      SHA256

                                      1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

                                      SHA512

                                      0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

                                      Download Submit

                                    • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
                                      Filesize

                                      16B

                                      MD5

                                      46295cac801e5d4857d09837238a6394

                                      SHA1

                                      44e0fa1b517dbf802b18faf0785eeea6ac51594b

                                      SHA256

                                      0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

                                      SHA512

                                      8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

                                      Download Submit

                                    • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\e9e2d85e-4c39-4711-8bec-d4908de6819f.tmp
                                      Filesize

                                      5KB

                                      MD5

                                      e623245a3d961169953ff3725e3c48bb

                                      SHA1

                                      acb2db3829f54abe0138619b5abaefb932d2987b

                                      SHA256

                                      6975cb7980866d46b25b6157c1cae68e029072bff5ddef7b2062668d32e2e3ae

                                      SHA512

                                      3bb5ae7ce2fe03fed1fe3b5d2c895b314ad0b5a61fc28cb9849981d34233659b6ade4c5f9f1f23bf6b7d89b172146b2facfb8acf8dd11470fd938c34b5555515

                                      Download Submit

                                    • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
                                      Filesize

                                      11KB

                                      MD5

                                      fc4f3c575372c9e319556bd9e6b9baa7

                                      SHA1

                                      db92cc0e1b0dd19f2f63170d23db0099dfb7679a

                                      SHA256

                                      3488ddb739c6cfabcf906183b9a8ab9b7cf4fff8a890fe8c1945277bfa8ee648

                                      SHA512

                                      6cc70e62eb47fd512d0c94089cc88e9367001a809ff5146b1f6dfe1cd1f568c0648f212382bafd6e160bdaab75a941b3146a48841bf84ca29dd64b1a30a5fd09

                                      Download Submit

                                    • \??\pipe\LOCAL\crashpad_672_NQWZYHFSJMZQEPKN
                                      MD5

                                      d41d8cd98f00b204e9800998ecf8427e

                                      SHA1

                                      da39a3ee5e6b4b0d3255bfef95601890afd80709

                                      SHA256

                                      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                      SHA512

                                      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

                                      Download Submit