hxxp://badf7be152d16ad7fc2e87e5834e3e9be4357dc2e9743866ecc8672f3b18576e

Analysis

max time kernel
573s
max time network
570s
platform
windows11-21h2_x64
resource
win11-20240508-en
resource tags

arch:x64arch:x86image:win11-20240508-enlocale:en-usos:windows11-21h2-x64system
submitted
26/05/2024, 22:37

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

http://badf7be152d16ad7fc2e87e5834e3e9be4357dc2e9743866ecc8672f3b18576e

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1672260578-815027929-964132517-1000\{A6C52952-FE10-4FA7-9A95-F46B93A722E6}	msedge.exe

Suspicious behavior: EnumeratesProcesses 22 IoCs

pid	Process
4944	msedge.exe
4944	msedge.exe
1648	msedge.exe
1648	msedge.exe
2908	identity_helper.exe
2908	identity_helper.exe
4628	msedge.exe
4628	msedge.exe
4476	msedge.exe
4476	msedge.exe
3108	msedge.exe
3108	msedge.exe
3108	msedge.exe
3108	msedge.exe
1800	msedge.exe
1800	msedge.exe
4868	msedge.exe
4868	msedge.exe
4628	identity_helper.exe
4628	identity_helper.exe
1212	msedge.exe
1212	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 40 IoCs

pid	Process
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe

Suspicious use of FindShellTrayWindow 51 IoCs

pid	Process
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
1648	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe
4868	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1648 wrote to memory of 4828	1648	msedge.exe	79
PID 1648 wrote to memory of 4828	1648	msedge.exe	79
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 3024	1648	msedge.exe	81
PID 1648 wrote to memory of 4944	1648	msedge.exe	82
PID 1648 wrote to memory of 4944	1648	msedge.exe	82
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83
PID 1648 wrote to memory of 1400	1648	msedge.exe	83

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://badf7be152d16ad7fc2e87e5834e3e9be4357dc2e9743866ecc8672f3b18576e
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1648
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffcfa663cb8,0x7ffcfa663cc8,0x7ffcfa663cd8
  2⤵
  PID:4828
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1872 /prefetch:2
  2⤵
  PID:3024
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2384 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4944
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2788 /prefetch:8
  2⤵
  PID:1400
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3188 /prefetch:1
  2⤵
  PID:1224
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3208 /prefetch:1
  2⤵
  PID:420
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3968 /prefetch:1
  2⤵
  PID:2288
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4960 /prefetch:1
  2⤵
  PID:2960
- C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5232 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2908
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2080 /prefetch:1
  2⤵
  PID:2512
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5284 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4628
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3444 /prefetch:1
  2⤵
  PID:1116
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3420 /prefetch:1
  2⤵
  PID:4256
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5228 /prefetch:1
  2⤵
  PID:4624
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3040 /prefetch:1
  2⤵
  PID:4776
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3520 /prefetch:1
  2⤵
  PID:684
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3508 /prefetch:1
  2⤵
  PID:564
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4684 /prefetch:1
  2⤵
  PID:1180
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3304 /prefetch:1
  2⤵
  PID:4620
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3820 /prefetch:1
  2⤵
  PID:4004
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3656 /prefetch:1
  2⤵
  PID:3824
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3684 /prefetch:1
  2⤵
  PID:408
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3332 /prefetch:1
  2⤵
  PID:400
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5844 /prefetch:8
  2⤵
  PID:2228
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=5648 /prefetch:8
  2⤵
  - Modifies registry class
  - Suspicious behavior: EnumeratesProcesses
  PID:4476
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4000 /prefetch:1
  2⤵
  PID:4300
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=6296 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3108
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6300 /prefetch:1
  2⤵
  PID:2916
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3860 /prefetch:1
  2⤵
  PID:4732
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5988 /prefetch:1
  2⤵
  PID:2416
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3656 /prefetch:1
  2⤵
  PID:896
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1688 /prefetch:1
  2⤵
  PID:3776
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3888 /prefetch:1
  2⤵
  PID:2804
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6148 /prefetch:1
  2⤵
  PID:1468
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6060 /prefetch:1
  2⤵
  PID:228
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5240 /prefetch:1
  2⤵
  PID:3976
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5968 /prefetch:1
  2⤵
  PID:4736
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6032 /prefetch:1
  2⤵
  PID:4928
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6800 /prefetch:1
  2⤵
  PID:4184
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6828 /prefetch:1
  2⤵
  PID:4864
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6820 /prefetch:1
  2⤵
  PID:4844
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=5540 /prefetch:8
  2⤵
  PID:4236
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1800,3775168995009476535,5972840937532851965,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5556 /prefetch:1
  2⤵
  PID:1508

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2320

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1696

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:4868
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffcfa663cb8,0x7ffcfa663cc8,0x7ffcfa663cd8
  2⤵
  PID:4416
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1944,10244230963526995757,115572703362316622,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1940 /prefetch:2
  2⤵
  PID:388
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1944,10244230963526995757,115572703362316622,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2404 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1800
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1944,10244230963526995757,115572703362316622,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2640 /prefetch:8
  2⤵
  PID:2884
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1944,10244230963526995757,115572703362316622,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3416 /prefetch:1
  2⤵
  PID:4876
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1944,10244230963526995757,115572703362316622,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3428 /prefetch:1
  2⤵
  PID:2132
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1944,10244230963526995757,115572703362316622,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4964 /prefetch:1
  2⤵
  PID:4700
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1944,10244230963526995757,115572703362316622,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4992 /prefetch:1
  2⤵
  PID:5056
- C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1944,10244230963526995757,115572703362316622,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3500 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4628
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1944,10244230963526995757,115572703362316622,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4020 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1212
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1944,10244230963526995757,115572703362316622,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4796 /prefetch:1
  2⤵
  PID:4972
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1944,10244230963526995757,115572703362316622,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4008 /prefetch:1
  2⤵
  PID:1196
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1944,10244230963526995757,115572703362316622,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5456 /prefetch:1
  2⤵
  PID:2848

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:712

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2124

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
d56e8f308a28ac4183257a7950ab5c89

SHA1
044969c58cef041a073c2d132fa66ccc1ee553fe

SHA256
0bc24451c65457abc1e4e340be2f8faceae6b6ec7768a21d44bcd14636543bae

SHA512
fd5798559f4025ec3408f5550b8671d394b1ec83b85fdac8c005b0cc3e183272bdd07db15a156a572c9c5e5798badf235dc10aae62a052efa8dd9dfdbdca8189

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
62c5942603981188919283f8555aaddb

SHA1
db0302865de9da1d510e27d71964dcf9e5503ec5

SHA256
405c40875f5807719d6f5e2464b67b4d240c7db186b3157e650bcbdd31986506

SHA512
0a5ae352eb674ebfd60b43fa70741a25b1a4932b5183329bfb9199df5852efd1790ff1891952900434047158602a089a06888d67ea19a61f7389a07a4781a8bc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
d14664c3f1f230d5b51ac6842cc41eb3

SHA1
62d1f1091660bded4bdf61ff46d9016780840603

SHA256
4e84ba3ce358d695308d9ac8446141fbb45dbd166f22701df72d0e49047de516

SHA512
a420247eda5b3442f27c4bcdfa3ee1e2b77fbd578fcfb96622f6ff32815b6f9ac119422c484265f47a499fe48db4377200f88771801aed9a3b1f0aa614038cdd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
8f2eb94e31cadfb6eb07e6bbe61ef7ae

SHA1
3f42b0d5a90408689e7f7941f8db72a67d5a2eab

SHA256
d222c8e3b19cda2657629a486faf32962e016fc66561ce0d17010afdb283c9de

SHA512
9f7f84149885b851e0bf7173c540e466a2b2eb9907d8b608f60360933328cc75d9d1b63640ea4ecc1e64ecc5dd7ee74d82903f96a8b4418ca56296641a8c0703

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002

Filesize
64KB

MD5
d6b36c7d4b06f140f860ddc91a4c659c

SHA1
ccf16571637b8d3e4c9423688c5bd06167bfb9e9

SHA256
34013d7f3f0186a612bef84f2984e2767b32c9e1940df54b01d5bd6789f59e92

SHA512
2a9dd9352298ec7d1b439033b57ee9a390c373eeb8502f7f36d6826e6dd3e447b8ffd4be4f275d51481ef9a6ac2c2d97ef98f3f9d36a5a971275bf6cee48e487

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003

Filesize
67KB

MD5
d2d55f8057f8b03c94a81f3839b348b9

SHA1
37c399584539734ff679e3c66309498c8b2dd4d9

SHA256
6e273f3491917d37f4dbb6c3f4d3f862cada25c20a36b245ea7c6bd860fb400c

SHA512
7bcdbb9e8d005a532ec12485a9c4b777ddec4aee66333757cdae3f84811099a574e719d45eb4487072d0162fa4654349dd73705a8d1913834535b1a3e2247dc6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004

Filesize
19KB

MD5
76a3f1e9a452564e0f8dce6c0ee111e8

SHA1
11c3d925cbc1a52d53584fd8606f8f713aa59114

SHA256
381396157ed5e8021dd8e660142b35eb71a63aecd33062a1103ce9c709c7632c

SHA512
a1156a907649d6f2c3f7256405d9d5c62a626b8d4cd717fa2f29d2fbe91092a2b3fdd0716f8f31e59708fe12274bc2dea6c9ae6a413ea290e70ddf921fe7f274

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005

Filesize
40KB

MD5
3c2ac6ed09323fe172784cdec7f3d671

SHA1
79eb656ac99f1a2efa7fbf8e8923f84dd2b63355

SHA256
67d42a456baa3edbec1eb21c94f294c04a72bac350acfae80f4f2b65afe8bc5f

SHA512
ac95a571afa882744a42447e84c1ca5231303ba33700f63e99d58860e9635ddc861745678d5c74b137af3d50daf05ea710abe65b11ffba95e2b2f6aaafb65071

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006

Filesize
63KB

MD5
710d7637cc7e21b62fd3efe6aba1fd27

SHA1
8645d6b137064c7b38e10c736724e17787db6cf3

SHA256
c0997474b99524325dfedb5c020436e7ea9f9c9a1a759ed6daf7bdd4890bdc2b

SHA512
19aa77bed3c441228789cf8f931ca6194cc8d4bc7bb85d892faf5eaeda67d22c8c3b066f8ceda8169177da95a1fe111bd3436ceeaf4c784bd2bf96617f4d0c44

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007

Filesize
84KB

MD5
74e33b4b54f4d1f3da06ab47c5936a13

SHA1
6e5976d593b6ee3dca3c4dbbb90071b76e1cd85c

SHA256
535fc48679c38decd459ad656bdd6914e539754265244d0cc7b1da6bddf3e287

SHA512
79218e8ee50484af968480ff9b211815c97c3f3035414e685aa5d15d9b4152682d87b66202339f212bf3b463a074bf7a4431107b50303f28e2eb4b17843991c2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000008

Filesize
1.2MB

MD5
1f7c0a3a257e5f561b61cb6af85289a3

SHA1
7bfd5ea039ee0f291fa4e5ef23ad91d583e840d5

SHA256
d15d37dd6e8b273c4bc1e4d64b8d462f33af2fd58831ea3e28c1cb6fcdec8669

SHA512
64a0eaa739a6f7f6e5579975a1dacb1741fe8d2f106c08df6cc87fde0bdad59ee80dbc8f7ea38cc926b5a51e469e32cb11effc0cb1ef50475fbc7747d240a442

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009

Filesize
33KB

MD5
3cd0f2f60ab620c7be0c2c3dbf2cda97

SHA1
47fad82bfa9a32d578c0c84aed2840c55bd27bfb

SHA256
29a3b99e23b07099e1d2a3c0b4cff458a2eba2519f4654c26cf22d03f149e36b

SHA512
ef6e3bbd7e03be8e514936bcb0b5a59b4cf4e677ad24d6d2dfca8c1ec95f134ae37f2042d8bf9a0e343b68bff98a0fd748503f35d5e9d42cdaa1dc283dec89fb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a

Filesize
74KB

MD5
bc9faa8bb6aae687766b2db2e055a494

SHA1
34b2395d1b6908afcd60f92cdd8e7153939191e4

SHA256
4a725d21a3c98f0b9c5763b0a0796818d341579817af762448e1be522bc574ed

SHA512
621386935230595c3a00b9c53ea25daa78c2823d32085e22363dc438150f1cb6b3d50be5c58665886fac2286ae63bf1f62c8803cb38a0cac201c82ee2db975c4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\0580a8e1646d7bcd_0

Filesize
14KB

MD5
eb3137608639a49c7231498c4cfd6fb1

SHA1
33cd48d71e67a5a7345b3f92d2fc931eac60bcd4

SHA256
32b6c6c9a86fd5f5dca4347114d3d363778667714aad2e9c33e1cabc45507113

SHA512
b2429757ae757f7080d37daf80188aca1f7222cc833b6d853c783ed26762841f5e259ce11a3ee18fa3e936957d309372d465e9c21e7e4df448f37ccd1a0b7656

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\06450eb6a7b09545_0

Filesize
2KB

MD5
4d97b8f321b0097d2143c7be20c0e419

SHA1
31e6b140ce64d03da1bce68f6d1075c9aa419945

SHA256
87caf5167689e75c66a5d6420caf2b6284b8088c67184d638ddd51d0171feee3

SHA512
a93f7f30c1b664b229864452b960617cebda47b23de5cd372899b11c78f72d254b3f245d5e1c00d5dcff1a01fc4c1f9af144100639ddef1b39b68f89c35fff74

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\0b29a005a3f64fe9_0

Filesize
2KB

MD5
5f4b3120ff973e778ed12df429411ed9

SHA1
58e301442f479ba4c001d5c77440f226511ccabc

SHA256
351d36ddfc499a192dae9b9c069692e95f3b1366d17394641d4cc213b11d6e28

SHA512
69cbdee1ad4643c4c4b6b5a34e5bbe196642439c8c6fe652d400aec30772b97c48da5a2b65db3729cfd24675b1a39578aa120584d40e98671ba2300ca9038f54

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\25c90b4fb1c6ef85_0

Filesize
1KB

MD5
49a03f78eef239cfbe1a9eeb1d302572

SHA1
95e9d4350ff3e1933ca4420e78943e6d01e50726

SHA256
e516eb3f6d14f51a3634bf2701a258d80b7a8f24606f66ef99dc1a235c7eabc3

SHA512
db82cb8307873cd05cfe8558ed929c3ec0a130a8d73c4cdf13acb194271f7f4427f77572e388e74b84de73996d9d8b198096b72b6c8fe3b0f8c9ac88a5a061da

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\295f5e2112efe00a_0

Filesize
5KB

MD5
e7905423bde402e648b7aa9fd3b0d86e

SHA1
514138603e048e97c044d20ab01a290f794edd56

SHA256
61a459e3c41edcbf4e7c59e5e6bce50cf932606d8a2f561ade13f72173fb74da

SHA512
456ca7ed0c3b2985e18d4fe99dda307da655652a85cf187e12abedd3e21b7d7fd5044dfeae3cf42d6771d90703baef8d19dfa11f23ad918a3c9cb93e245bbf01

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3424e7a0a708372a_0

Filesize
291KB

MD5
1e206b5568694fd896dbb04a5c707347

SHA1
834ce589830bc7a9c9c54760255e22d1790471d5

SHA256
67c8449e55bf5502d26faa9a4862112c29fa9827bc6933eb4c3fe2a51686a974

SHA512
b3011b558cf09c05d989979d3988c6daf63f4ab8de08e2a23d438c240522c9c42ad6383f167707e62a9e9a1d39c0a6a37b3bdfd8fe8be85dc825ecc170d2e698

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3f908eb48725b239_0

Filesize
6KB

MD5
b9db8d73ec932a08d1a501f37ef0bb0d

SHA1
fd75a8c90ffa4de129e02f2a71236981a803598a

SHA256
85d088e412c985de2ab7e0cf6ce95b0d833b8017f79a08192788576fdef5168f

SHA512
7ce637ccd187a0cbc6c1c91cc43e5062a16f4d896da7c50123a9c499e4c154d5dba8f372b448d988d09a2c2afe39462e1d6334d7a22c0d11d3d0ba3aa35e7945

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\43604d2a195c1916_0

Filesize
2KB

MD5
e599e07c7b8f2f3765e448edb50b4388

SHA1
3079b008ab55181a8f3374580bf9ccbf740c8ca8

SHA256
642d07a97e8c1f8be2dc2ec87278bb6302c0398413d8dc1a33c778e7037a6307

SHA512
cc97e404af0c5f05b1415e05379a92d99e366641fbb6fff40f6c39026fa957f02dd976b102b0653837a8758b67ad8cbdb919e9c7a03a25c9bae164b8d8f532a9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\45a16ff6d0d9ab5f_0

Filesize
1KB

MD5
648b9276138e6df81766e142907414ce

SHA1
ec4ce0453eaae6fba16567771393efa41ca3d427

SHA256
5e89fda0e74d3121f3f6b0867f294211f6c6c04da0a75cdcec7fb3c0597366fa

SHA512
9cc370f46efc7df2f09017773d2d505491aa48156a073e995ef253e681a412941b37fced2259dcc97a6d6ddf9b32a18a00697b82a54b4a55a1c18f148faa5b92

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\4ba235c604b81924_0

Filesize
4KB

MD5
8173a4a962a20c31df4133a8c92bb2a3

SHA1
18c5caf7ee7ef72e9a2ba2ff349c00b59ef375e5

SHA256
e9f633381965362b9c5f9b118f8d65009a2bcaba2fbc42ce197437d4893a464d

SHA512
5752695cd29fa90a8733db873536e0824d257ddbaeeb5b850b530d280607cebb886d9af32420a923dc2f2c4115198dd4a4688d5517ab8bba39e8162742043fd5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\53ac5abc87e80789_0

Filesize
2KB

MD5
5edbdab2bd85de2ff24c1798a231761c

SHA1
91081324802bc7c1d2ab8de79aea8459661413b0

SHA256
e4408cb558e33c448b38346b1b7d7bd1f9370c0788259b0375e0efc349b3b220

SHA512
84d8ccad7724c9c23eeecae2620e772ab67133f3df37a62c5b433a29a22d48e50c49fafffa71cd9d58831740a56769f5220c1aad9b4d2b4793a0369cfadf002c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\59fc8adf66a76ab9_0

Filesize
10KB

MD5
eb7c16aaec63f4389db33bbbccebf653

SHA1
046c62cf81e28d388cf8fcf055cc8e85bb0c6597

SHA256
9a135d85b5a06aa9b63fe6cca2e59a5e10d1d4261b77f788d2b9a97ced6e7c68

SHA512
4755400874e860e699c48a263130cb67c75bb198acc95824bce3e26125ce9626b76fcb7247bc67b12429e5772799483a0c0a2c4c5901c60de71eb1e6a2ac6c8b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6304fd6f9e3c8050_0

Filesize
3KB

MD5
0a69cb3f6aec88f26a03eed45b95a8a0

SHA1
1c53e9b93ff70984955a34b90c7dd54d1839df4f

SHA256
cad596b66c56f7d0ac442ac835c9755343d84f5d40670c43bf09ece484310a3f

SHA512
1210bce7b0eea95ca7e9b86a92c1f278635487de66bd98f66973967d893094e4ca57c95418c5b69f9209edffd52455e4f23d7b33091616af657d43c0209e9c1f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\67391d7ea53efdc3_0

Filesize
5KB

MD5
d95506934af9391075892d81959eff6c

SHA1
847e501cf1810526e3dcaa11d97b09e287c2f3d1

SHA256
e48d032a00fc5382710afda9bf3d59af547149191fb5ce37711e42d468276c2a

SHA512
ee027fc3517f9eef31be7a3a87f180e75fb8d2376b324f17436cd13630f8c3350905adb88098208e19cc850ee9119845a5966db5be11645ff5fbe780a948f9c8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\695c42f61090a800_0

Filesize
6KB

MD5
c48c3b872aafb6999ebe5360ef5d397b

SHA1
dfdcbbc4fe7fd23a0cad1775bdf39554272bbba9

SHA256
a23e7ca9c760ae735812a14281ddcf19617764d6793bc6c954de36bc750b36b8

SHA512
401337c70c4b6cf6348484a7e53c62b1dd81c8bf4389d48149b0123115216dde7f17a5a1b15ae7c6d7b2a030267860c24c744c3660fb527e048ec5ad3c3463e7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\71da22abe269277d_0

Filesize
3KB

MD5
9b0f356884e7077470a591442a314425

SHA1
90c54e59f73ae917356d8a705efbd2611720c117

SHA256
a6905bcbdad7b417f85100ff75ae6230631a239119c6480a785597fe9e01ffcc

SHA512
c26b03ea97d731feda40f94cae62961cb3cf85507b3588dd801de8759e952ca2a74db2e39062a544de266290ee306c7b56f1cf59391f598c61d84c2e407a86ec

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\74b88724f60b0383_0

Filesize
1KB

MD5
ae64b9a44a6651087b8aa3bacf60d87b

SHA1
75ddcb55319357a8dc245923f48adb8cc506f718

SHA256
1cb0b3035b0307311154bc3226993959d27022b80a30dcc5d909f8d1cfe6bdd7

SHA512
2df4a3eac52d0bb256134b136e2b4b9817091f56bdf53db9abe7ec1cb3abcc7eaab675918eb435cd50c7588c418cda8d8cc425dd08c3cfb4f38172884d362217

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7d11df596af7121d_0

Filesize
3KB

MD5
18c349833ab4bb5723a57faa3162a96e

SHA1
f121ef3f8a289fd281f1f7ab4ac042e19f90a9d5

SHA256
9718c9380a080bbc3c582c88bec3250c72ec358a90e80598ba961aa57737d13f

SHA512
59c02d399b5fcd6ae71c4776654dc9d50ceab171758e51ceaccc24f116fe5cb766ccaa7ef75beea6b339aa825cb4c6a7825bc1eb605a6f9235d72e5a43aaf088

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7f05d59e6df9a390_0

Filesize
26KB

MD5
90caddee250d42db3993090c85e6e8e4

SHA1
ad30679fb3e6d42d10bd8af3ddc9290991596230

SHA256
c80dd634e3891231348850eae79f860f6e1192a4e97132939e72a7781cbb5894

SHA512
5960cb38bf223bfa4db9165ae5d19dd255229386d90af2dd2bbd4e47551b5bbd656f0a1a89bbcc4ff2eb0199d35a66b226345bfbabc54acfbae4aac67e5bd33f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8f8d1618f73adfda_0

Filesize
10KB

MD5
b3410ac37f24cdc4df38afd4251dbf00

SHA1
9d8e02e5b07cae66e82e5f98caec434212f4ad98

SHA256
3d9068b1e9dcd0f24457a7377f20b7e08e8abe95b4d88839afdf47c18068a8e7

SHA512
6f87eab12ef4177cac376dcc35b5dd2a76ca0e7316ae1638ee14b20d4083f92097591893fcaf24dcc787dcebac644d31ea23a9f9fa12180a2ddefc536fc2534e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9412c8b664751f90_0

Filesize
1KB

MD5
a2a57406a5ac72a308675b73a1cf207a

SHA1
2dcad00a6e47b1a2595c81b7e5dd473b08232c7f

SHA256
93d748f1793531bce80e38923746e3a97f415fd179b2633122dfac0da7f1eada

SHA512
0fd074a08eecc3b5b6ecc3d25be46af7d7f537fc05e07e1da019cbe27192d056bcafc44285d92fa2933b3f6b7b1e96656b402035e6a1d9226b427ff3d4ceecca

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\94ebe1630900d094_0

Filesize
7KB

MD5
db766ca8a0259647bea6e170b5ace8fd

SHA1
70a6558a1c9065b01c8ae7f9d64d6990ce992c59

SHA256
2bac61597d33a05830b636ef1cc36c8b78c61fef32424af1798a51a1e59ffa03

SHA512
6d2f84b19afed905e549c220839124a5fcb7bda5f1d8c7e9293b59ecd9032d55f676ff10582e227724273e9a86d356f576dc5b8f35116fd63c25f9532037ba57

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\af2cfcaf6d9b18bc_0

Filesize
2KB

MD5
2d8fb7b34fa5c8dee8f3f6810d7dd522

SHA1
352418573dfbdacb2815ff36a80dfea792ab1372

SHA256
95e2ed9380911fa07de04033375426b461654e28b849cb7e56bbda1818f09809

SHA512
4af8a5ed0d61392a7668fa6aa329365901d8c3c7f9a70995bf6f205133c5450175bc038b79ad257af92e6a38836db49fe6ed2b13ea67ca2e0f58264b7259f0c6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\afdc28b58bf8c2c2_0

Filesize
4KB

MD5
fc5369aa47c0b4997f22ffd390a9695f

SHA1
ab0142674501e136297e09054923302e87afaf65

SHA256
a687886bc331700d88b6f643974b9b6b2ae89eb048cc950cd73d504d09175995

SHA512
1dfd71ab8833bc7e6478da5ee513d039a9c51ca0e06002c29402115241c5847e6e14e4bd6b41166c02f173c765137a812e0ed5ea945e5bd0b73717827def3ef3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\c035c55e661cf4e0_0

Filesize
3KB

MD5
4f9a7389619181301c275d844efafded

SHA1
1644fe6d58139e020de936f29734a2a2d10f7d63

SHA256
6f89b2d63e491efa8f27bee72d0fcc1b2374e2de61214dd04a33684b9519e4cf

SHA512
1cb701679ef04a18b11b24d35ada934660a709686fba4d11a01a68bb61dc4618837d8a3ad7097a0b7cb8ad5c4499da8dd05f0c264c1c7b6e8664f2117e7c2fd7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ca5bb3c84b908d6e_0

Filesize
2KB

MD5
fe14a5121e45114be9a202219dadbb7b

SHA1
6072ff7e7b514a99a1d1de6e6737a3f23e19bd23

SHA256
c00282b3dd51d4a9b48cf543f96d95b42256b965adfb6b00f46e9c2e20336129

SHA512
2d5f3cd1e9f13e3fa0798d842abec22d287f81d79923c7b0724e2d72df7b73bb58ec6770e10e40f439212f4c0a877360b8afff902045516ee6a6858f42c53863

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d7a29efad91a1117_0

Filesize
262B

MD5
28a410218c985e594690f1e5bc9454da

SHA1
4d9ca4b1ca0325c26f756556067613b2506585b1

SHA256
a6ca3d3fe8391fbf5050ac3a736a9982e492ec580fcff4892fede267e6bb586b

SHA512
9444bc6a0fd249728342f38b19d6743f4f8da34a4015eb1873fed164761605bcc866ca79a142bc4fd9e990a8a8f989be46cda44d5d2c6d0c63d1c0bac88689b5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e55f0a6d1b533c66_0

Filesize
2KB

MD5
2449d7c14ebc3d0236953bc7fa7032b6

SHA1
4958eb2762741d2ee99cd1337d52e5b89d55ed50

SHA256
f7d67d3d9e647b25093ea3abe9aa27b61fcd17eb93f1bd07ca8782b8cdfb95e7

SHA512
9b3f713550f906a1f743f499c458f28065db5c4a7d29b06119813ed9e1bb943046679fb28d3f0f716afb1f4867175334bb0ffc3c5b5cc45e230714d6e5c81da2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ee78db1f46fcf47c_0

Filesize
21KB

MD5
a0a84007a04f2614ea67e184eae79873

SHA1
4bb5e5778505823b5ce782461f827c7dbe13d74b

SHA256
4ce7e7803a0be94b2b81081ab84fa2c470485ee4794cfdff6dd0babd725ef184

SHA512
c3dfb90c050c9bc9913664c4356944d5da633896b493c8948006404f495ce471fd7c30b595d5d2bca9f30ce6a9e0a8a0600218697570c96beefcfca23aff5250

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ef189c55bb899fd8_0

Filesize
3KB

MD5
afbc13ff5f55c92cb789135f10942455

SHA1
75b3211be24d7f9ada517ff3a3b90c35a95d8f57

SHA256
90b1118fa2178fa8b0ca683f6c2ebe91f0ab2b6eec856e9e38d482d4dc499af6

SHA512
3d8a077421b14c1f9f9d1391cbfe7780a3663ba74ca37abb43522398e008c86cb491d19a295183e75edf7477439fe8ec47af60f42df28a2ce0b059ea5c1ef7bb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f078f5fb70fd150f_0

Filesize
4KB

MD5
ef41571845b5519246e75e5db39cf506

SHA1
e0a930bddfd856aa81c7d40b0379aeb630ccab94

SHA256
76533618bd0b3e310208bc2107b64a720a50e88f314e0db3f53003efe39156b9

SHA512
16b5a50eb5f57113cacc5e3adbac5eab9da0cd79df9f8c47aba36c19c0eccbd537f0a5905e65a3b392c5da427d29ec47e9dc36ca88a5be9f1760405818bf0639

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f89251fac2b69325_0

Filesize
3KB

MD5
03ede6a3ba07f616398819e58e8824f3

SHA1
90877f8ee3857d6f1ab67aa78ab68ce059336a8d

SHA256
0f3af4a34d39ac3618ff1ec2b179a511b422e39c564f2aa3795eb07407caa05a

SHA512
30b00d317f93f00999524ed6fe53a117b5c20de17c7fb537b766c9d82cd4fda8a529319f4c22a29659e6ed2b4565ebb466b5f79f0fdd7370243ca7a63a8b75ba

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
ad8effb3f21ac0c8e0975871efe60e49

SHA1
bb9b9f22c2d2c5e937916452733f4dcbc4be10c7

SHA256
045a03a0fe5168f32129bc3b16fb0490b9ac70f56c5d5e2d31e069a34dd9d526

SHA512
f4fa4f4ab678fe5b1df54da2b07ce3df1ea67d726fa1a5a862cc4e6e3ac995f6e207c3e90a1669fc9d7154394d743d1565a32ef6ebbff857bed4e422b3b6c0af

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
00a03cb6c224c4d7c10fba4c54ed21b0

SHA1
5786e170180575ccdc31b309aa31d5afc020e5d0

SHA256
11f3ec0381e9c25678c0e7edb06678a5f748674ab4a866f23d5926909e067e53

SHA512
69cd04a89ea4f1354acfc505c65601d69e26f99bcc5b4dbd06c1d7be07e8f542ef4615e9a27568ad6185f23ee8678f4a6c099822dc30257b176303882d95e894

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
0d73bb12e7a63967470597b10e04ddc7

SHA1
30c0c5a6174a4e4e4563bc3ca466ea5dadbb9305

SHA256
e5da99bbfb256120590106e44f2aa1ade87f3c7a5d740915e8196c0d1b245a7a

SHA512
c6fde6cf4f96beaadf07242696852859fb1da7adc609611513a4e289ada419243cefbd81aa02e7bbe1b55f0fd4c3af783f9848b5206341b7520e108ed5b14aab

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
b84193cc023b8f014a683ec264688d1d

SHA1
ab8947cb121ad91e0d577cb8b6e7b1bb3249d796

SHA256
683ab7c08e0bd8f585a3b955a3539b41045f3d8eb87476265d2e58fa1bddcddc

SHA512
ed6345dcf9aa93ebe444183fad5bbf2dbfc83cc4c1bc93ab2a51dd902b19bfcc6ff3acd7ffc5056b2377ff8088065ea506ce003679da4dfba0ec3909fbabedf8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
255ebacb02370b8b4de18ba39bfe60b3

SHA1
f9dd7be78635c1b86bc959054ed138d80be79169

SHA256
07a72a0d8c0413ae957ea23e9809006fb8a5f3423d8a53e0dd6108d4e2711567

SHA512
3e0314b0b1b6fd63961b19f2799512d08abef519248e630b2e7c9cbec189b21a853c6bca03a7c5071f5034b90f2daaa622257cf8b001b913cfcf1e78c339c5c5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Favicons

Filesize
40KB

MD5
6b69eb64dc6970bbf8128d1a64bbccf7

SHA1
b9724fa6e80f09c53b41e29514d16e8d20309a05

SHA256
ce6dce1d418097ea1cc103081ba3e3991142d7cf29bd4b4f5b9b3699be94d0ac

SHA512
217adca95a36d187feef81eb511fa7d9a3fd678e2e779eef5dc5af570ea479bb5796dd93fc132a7881409986beaf7169652ba9b897602be0ed9c38ea9b656d6b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
edee762f451e898a6a836793ab7b74f3

SHA1
95e23da1aa9d6ad0c40e15698bfb65c4762e0bc2

SHA256
c7e50585df25d930636df110b7f38c9743d27446d6b13f48fe6e3085646ae47a

SHA512
2d3235691c12ba25e651a2f277312b73c5a12d180d5dcefd2771c9d0d41364f3e3650b7a4f51061f9c4666f4d11a8d7dfc13050928e51b4a16c8620b7b3c7c95

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History

Filesize
132KB

MD5
0d50b635b0cf2aa5a51c6da7e08d2157

SHA1
2b9b2c2c018626d6eeca7f1b929957428166601d

SHA256
e9ba0d90974d42c3cb01f7920db365fb7f9de9d936cf2056e1c7f92e01387c40

SHA512
99b41c5c34c992941b8bb4af397a9dc848d5a4695bb5cac37c32a17ce2ada115667264496ad7d94612737d638b2374a0bd70b4d61d3e08e3e2a9d73bc22fc50a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History Provider Cache

Filesize
14KB

MD5
7e923ad04c2b5bc01a945be22f486904

SHA1
80b8b1d08416f71b634881707a5024d5f4b70925

SHA256
071e25265ee6decc53fb1e7111dcdf23576b8c1f5b3964b5ef9dfce5956c5e83

SHA512
49457f575a200ee1c5a1f276b6a345fc08c7b218c7d265629bb3071596e3b4d8542e24fa4f52398f25edb993a5adde04af61b8a19e448fab56b230fe98c48858

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\LOG

Filesize
331B

MD5
81e477fbd264aa1bfe07c4532b6bd78f

SHA1
5cc25f735df4609d33fc7311c3d927b1ab50362c

SHA256
17270db1e7e54383ca013460ca6bfcb6eed3ce8b81686cccc4cb88280105fb4b

SHA512
b4c4ec469e7503f49864637d437e818783b83274d60de0d728ea7e9920ebbff40f5b7074aea0f2ef6abd08e06a6934093f79d98db2d1abedb6f0a36e0ea5cb45

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1005B

MD5
96bb54e396b396642945ba77a3e688c4

SHA1
efd30d52f854d5ec1eb5d96a2365e1f4ec52044f

SHA256
d3600a2ed17b7c95d408ef86f1cb43a4d620f675a6f40d9f1815e2a0d7b18970

SHA512
ec1a2c924d947a320c9b77066aa9cf4442d1ddc5109dcaf1d661422e83585d8ffd07ae5ffe138f9829baad933198d8bee348ac08dc3bea7343aefce9bfd35070

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
8048865911401668d54884a5a12281c0

SHA1
d5541a61e98d88f01ed185acdd8b9b5cc995c98e

SHA256
84a0301864a0b71f337fc84079d5484aff6434edb5154502ed98199bcf44aab2

SHA512
60efdf48ee8dc6ce48620b3fba64174cc130a25fa3513fa7eef0f7ea6f6eb4c71aaac730c799adf7e5684b2a59c9a27234461b1136ed10b115d0f7ff91b8dab1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
1dc4928784d4f681b822a5895bf316a6

SHA1
57d346bf29ee816d5ce1a3eacee6df4c4bdd04d0

SHA256
9894ff92aec00e484ec91c02ac0dda0f0a1da49374046d3696442b50865d1404

SHA512
65539df9d318ab48549ae4bc5c2734bc96ce06b492e26277c7272d6c07e1caa586ef0acda4219b8e7311461c17bb0c288af0af2a3b3c62321ea15570487dfe76

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
9706b856032b9c4e71700df6d184d599

SHA1
5fbc24d55898a491f829fbb12105ba9196df26ab

SHA256
bd5701a3cabf799d2e488cff2d83f218b2b22520c447a6c4693358c5a3d0b7d2

SHA512
c248d83c90a0d1ecdf2df76d00aa34e2e8387a5f3228c7992b927efa89810eb5a04d937d2b58ba0484ca18c0b29368d329e95b8c6e5064cdd1323413d7def472

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
fc8d3cbdfc12df158e518d7086a3bd27

SHA1
9761937822b45d6896645e881c9fc24f995a6d6d

SHA256
1ed8925ad46fb885af72137cb830514ddddbef457e1b9bf957647b861dfd6847

SHA512
dc4611df01924685c133a332d69492dfa587ae3d137c0702367da71756242d868362a4c71c59621eec2a5caeff198bcb8476f391848f513761e410048b90c83e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
930B

MD5
6beb28d34bbfd20c632a7b6b7424c669

SHA1
dca0db7ca620acf67c9c52a1584c0230717fed6c

SHA256
58a5c530ba7abfc897e6e88c79bb16c9ecbafb5cdb043eac239ad3f6c0b66d33

SHA512
1fcce4ca5d8a773f12e2bd4f7d5c3189012c31941930a7b3a9b58bd32225c76defb9d273c64db965b823f19b2d45740cf70899792c4dc043378d98a613463598

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
185298fc37e45842f23bc3f9f6b45e90

SHA1
603e4949b32c8eef48375faa012c1b55b94b2f02

SHA256
cbad2a2a2125bb3db519d39dd78570a853f7dba8f753d7cb215ec7453a445546

SHA512
acf309dc8c41c3ca8115c94803f9bd1ed8df045587b2118cd860279747f52df6478e59917e00d6baff92dd2743d1bb5fcfa7a2c8601b8ed153cc9c643658c8ba

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
ecee6237b78849547aa195ba0e45478b

SHA1
215b08ffe93600722782ec8ba9a3f6dca66227f9

SHA256
4c9b02348a446d41faea0914bcb943f172a4967e42bbf1d6c47266b2183062b1

SHA512
5637bd411640dbba4718bc2c4cdf32647cde20bc7ef6c38f5d67c2b0822e6eca09de4e7290ebe91e5a17c99b47d7cb30affc936755a6013b71f19a61588ffc23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
2b8c7b05898ae2a0939d69aaa4988b96

SHA1
5ff47ace682adea1f101fc7f3ce9dc09baa6b94e

SHA256
b3591e3a47bc545865589bf2cc2d1b6ac489d333dc2597fc68a9258ed023b0e6

SHA512
acfe29b2dcd7dae7a7d30e6205e2fa19fd9eddcc0dc86828b3e19dadfcd8c31506a6b1d68d32d6de469783e95b772189b0cc1a9e1b38513d9a2539cb7aec382b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
f3454cc457a5f371458b56eb38017e41

SHA1
dee7c1849fb7c2e30930274a8c26f964a17f4114

SHA256
bf8842e493fbc0b26d6bea6349fc3d30e71866a9b9fe420ada7b5d699840f720

SHA512
4a20b9178b7fff47f7af2ba5073ba6d6a5ff1bd837b7efacc3aba075cac05b1a4734fa25b77ee741c27776a7cf86e70002c76f7c9cca3b6d8db6a24ebf7848e5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
881aec799d7fc7ba1083b70590a36b79

SHA1
916c5eb67ed0b02f13ce041965527db7fb31eaa5

SHA256
e7c83047ebfc41dfe8c5c20077f8488f75fec308835a1057baa1a0e4d109f7e7

SHA512
9e3425a2eb5e9187678a313eae37f74d69984e4b5f6916d535dc7ce18d3d02465b740cffcb0f3d16e6b0f59c7d7eccd5a8aed431cc8e6c3d53c59c015e6c47f9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
1ead88653071004fe3cc0f6826116dd4

SHA1
73eca00874a6d27d31baac1a43f5769404ddb7d5

SHA256
e7fabd5337369edeb711183c62ae53c53c0fe9ddacce27b5d9589788b99ce2b5

SHA512
4383cc072a74bfd39bf689db64231f6c68161bb33ae79309762c1ff3633f5b48f8d7617019a4ef0ce0d8fb92955f7c846a92e781bb55ebff1f84ca926ada1689

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
f7e1a3bc406869b53dbd08b4ff162de5

SHA1
318ce09bdee38fc07d4bb75ef556d5cda15f6c8b

SHA256
4c01154f0e761bcd37472b00f92b2ef49e88ddaacea3fa7cd63bb94bb3f7d156

SHA512
5cb5d5dc28a6743eb6166c15c98dceb4beba7a2a336f5a121a12583972efbde81da4c6cf279f02762102fa981c90a710f041c465e22831771660707a6b98beff

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
d03ded298b53872177929f2c70740590

SHA1
cd786a737d3a3a74c5463d3229a7509ec9bdf63e

SHA256
4ff702d5f94d7b8fdf2edc07db28c15b9d508633f8d068a1bca4055f6f920212

SHA512
19c0109fe107b6012c0131bbd2d1adada36f3ec9d28a1df2d39362f43cb1c241ff1dd2a31673e705c2d4f3e82b1af9ce2c4e5bc9fc90f3a2c53dd555d03fa153

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
34e654fcf2a123e57973428447d4da04

SHA1
c063abc8d3104de760b6396d03f41973b38b049a

SHA256
bfb29f0a37cd91072353f68c264b06598b900cd8e55f0099ecb446acf7652e3c

SHA512
57583ee49cdc1ffe650a38d35a81547fe7a2c10e370ea0a2b77c00dd8a4a8a477da325abaaae6c5a3a36aeeadcd548a13d8a7825fc95430bd28cfcfb25c67d98

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
c5145f19b453ef636b26f362b1a3153e

SHA1
1a68cda00d96f57b3662b8afd77f25c21e05dfd7

SHA256
ed9fc32927488e710ea1c7ab1763ee50e305293251a42738e07e6e980102b7d0

SHA512
3cdbdade422d4d5776bf5bfc2666116de73c4272f73b298c65f923213c1f516d216e3d066c35b2df1b166fc59ad5bd543605896f65c6a3cc599dbfd0d426fb5a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
41dd01da258916189cfb07eb09b3bcd0

SHA1
ba9ac23cfb1a91e78e067457cbc710fdbe6442ce

SHA256
ad5d0e644ddea32d8c618bcfee9b5b73b4c43a15ca15c56f41e0fa619e8db0b8

SHA512
cc66a62f632c158a6a3ee3fa0779a7ed568af1ffd3405acb542a92c519774a75a65283c4895dfe0557894c6f82543e51360153ae7c30284d408c7ad33b69cce3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
7211ce65661cade9bf3bc6b4c75e4f9d

SHA1
93fb9537af031b88eb3661640553747905da201b

SHA256
24eb47165b9a8defe3e52eed78f0dbfddeecd54a3b981a593152f37c694d4218

SHA512
0dc24449dd78a00bdcd1a5c3cc1929c97efa3317b934608b405de991364e8282ce59465335589303460e3ba5eda7c36f3c95135124cf279c29949797e5ffb211

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Tabs_13361236828311627

Filesize
72KB

MD5
c9c3d63c1f7ecca761dc83ad9d5d39f6

SHA1
27c4a6ae0a8127eb7ce5e6fd297ac58270e11c08

SHA256
2c6e26aa5f6ab18906f0a45698be3c4f62d015e49a2f844c207a34f0c88bed7c

SHA512
aa1af60052691eef8b6ea95550100c375f6b74c7f0d501b61112468c56f8d2740233557c35c77989af1cf541afd34bacfdc8439052d8701cdaabfdf64ef25454

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\000003.log

Filesize
259B

MD5
be95d131b94debb0ae27fc2e8db49e26

SHA1
18a50d029b3a429a078ac55267c16446245fd67f

SHA256
9166b3664b1331c4b67a42c1bde231c0d4b0b2f3dab0c4aa5c87e80d5e0b2f4d

SHA512
a69ef68b8c35509a04b68b965c2398815d2de53b7b3e5a25e6672d6c8834d6fc6df7c02dfaa307df4abe8633fdbe2e2335e457466bb7d51cf3df33b7ed5e0c48

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG

Filesize
347B

MD5
aa7d8d7641479f526845b97c2281c73c

SHA1
13c8f3b3f483cb634efb81e98a7315fa37baa86a

SHA256
264549846aab38809ab441cb664dd7c5a3dc0a57180c54fdabc37adf0f819d8f

SHA512
0d700b429b2ce75648e5f23a3a28597cf1defe604c646de98c4c9eeb350d1569d1653c1a008f233b0de1c5e3e600466a1bd20715fd90382a8fad43743a6db61b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG

Filesize
323B

MD5
2de07c3af882f2c313ed1ca6a539a83f

SHA1
f9abcb318964cb7efb666c51fac49377e4b6cbbb

SHA256
79502c6ae869366dfa82470aa210497a46cccafa7adc0e18f4c2cdf766ef4417

SHA512
703bab5fb61a1e53badd8e0b938ea7b774a0ef9ab190e1fe4acb5a95a87f0807b3945c2b419b0e354ecb91108f6704c74259a5c0b6ed68055c3eb3dc9c69194f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
706B

MD5
6e031477131186b679c47061a345273f

SHA1
36b69e62da1317cc5a5a827ea7178b9832cc3da0

SHA256
49b0ebd45018530b8554528feb08017e1b61b8833a09a305babe1adc34f84732

SHA512
792c62bfb353710320bd0edbe4df2f6f035da8770bac354aa9e4d7ef8641c6e52c9fce6bd81d372e1b2c0cb61ab133110778aa09bd2b7cd9252fe7eab38f4141

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
874B

MD5
491012bc73a912c5e6d6064301f21469

SHA1
13af0a2ea83e496994ac5d4dfba6507f352dbf38

SHA256
a0dafe5386e75acab86d37ca57e41074c4a3c830455900da75a96ac34ecec50a

SHA512
a321bd35d48bfbd3b83d0d0107fe5715edb5f10292cfef48da3fa46f7b2ee8208c91eb6a3504c53a2da2e82af59ab4ef5afc35ce64b042c8c13929be3c05cd12

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
538B

MD5
1be86c17e37afdf8ca4924cb5b430b60

SHA1
70d3795fab0b4554c610be142463e5cf6be6efdd

SHA256
5d0f83c2823815a2d93c060c52cfcecdcb01ecbc77b7aaa0b0fd4e5e16bbbc68

SHA512
0147fed3a1ce487800154d763b25fcc0c375a8f79a54220b74a62e8d6040cbf94cf343c76cbdd48602769ebcc0bef328a8bd0fa99c1f3385867abcacacf1d9da

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
706B

MD5
7c1f878a5d6eb4414dfe9cca6c4f8646

SHA1
ff172dd434db8899731ae409c75fa4fd317f53ec

SHA256
0872500300440e8b506442a29fe88248eea767b2ec9df5cf7d7e37df9d30953d

SHA512
d297fb19a4ecd8c3681ae090e7d822fa74c0e8ea47c0c3a6501b310067fa4feeaf61ed4c65b935c6a36aeb7c059e906728f381812c54dc3dcadb142190a5798e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
538B

MD5
ac4ab7e219e98417ab9aa9471512c572

SHA1
32920a76fbc26f33e9b9063d8dfd9da4abd918dc

SHA256
3db1b6df63a47865006561bddc42388c40682a1538d32919efb2fa9bc2e37e1f

SHA512
57f65c6a960c786ffe56c77a3d63a0701c910ee3363f7c8edf62727cc902a8e5911ca62bb6bdfa22e31111a6226382a0d89ef18bfc7c3a301cd3f052e83154f8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5a1de9.TMP

Filesize
538B

MD5
f98cc58447de4b1c0b743bc4f7e44e22

SHA1
9c73300833eb082ca77facb9587f2bbcd44cebdd

SHA256
e0e8a0374aa15d30664faad7732188d1c828a9ba372bfdfab45f01ab6cb5f215

SHA512
9b9022908cd6fe8afa84918ba047294eaaf49dc379285b000ebda4c3bf28c4b81f0de03defac021abbc9ca8d2c65ad2142adaafcd25ef778ca71b317f5e8df6f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Visited Links

Filesize
128KB

MD5
3aa865762e66c1fd1e96e58c196260fa

SHA1
e3f259f9de6d33159c8617788a05ea79d0788607

SHA256
52e7cbb5432108cc0df04d7e7b1624448cb50c207b40697e243ad784568be629

SHA512
27ced7a558536bea3493cbdefd4d47bc9d764a6fc48f98e72e3cbb533c72dbe39619beab31ad4dbfb798ff855fc55874d6e7e33f9e3c72354d601f9cd2d5b7ab

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Web Data

Filesize
112KB

MD5
3eb3579720d45ef81950bf3e8e41383f

SHA1
f08e5fca00c6fff6903764778e4fb563184933e3

SHA256
c0b5a0f09ce82efb63000dde97ea6dd53f42c5566da5be58a9cf77ad280990f3

SHA512
949ebf667d5bd75ece40be0606a4cb67a2fe9c310781bfe0b1a8b632b5720ce3b72c986465defa1e462e316e3129b2e089527591708cbd1da7fd186fd53ea75b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
206702161f94c5cd39fadd03f4014d98

SHA1
bd8bfc144fb5326d21bd1531523d9fb50e1b600a

SHA256
1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

SHA512
0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db

Filesize
52KB

MD5
0d88b5ac44c3b5375e82c6e5095da7bd

SHA1
703379851fd69398743f9bfa908c0596f64d75c0

SHA256
ae013f4dcb19feb06cc746b4c8d48a161921247eb88630e74826915e636e1443

SHA512
7c3a25e0f0dc49eadde748d1adcaab049ce2efd30dbb251de861e24e5b8ea14ada90574827f5b7817ccdc18504957b4f6155ac2c8f2c29d6ad2db41344c026b5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\000003.log

Filesize
318B

MD5
c0a4aec65e924811b5267ea9dbb7e925

SHA1
dfaddc1e893017d9c67c4ec401959a2aa1afde60

SHA256
ec9507f38a78dde367e6b65592bbb744b0d08549f442e68c14e8c4ec7da697eb

SHA512
79ef023f8270c2d86ef76c632bd93f55f350bb643de015a8c4e8de2524d3a94e91072b2e4a9f5d62b644884e0eae0064a1fbed589710c6c3a1be43b28a3f1c59

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOG

Filesize
337B

MD5
c14f990b6a58cc5c8b437b731db6b8cd

SHA1
775469d0f744b4074272cd3748e8c68b0a6acc80

SHA256
e04f1184d2b12f4007e09d5c507b5b623a55db9eb9968d036d9d80a73b5418e6

SHA512
32dfe8c20e15b836fdd08437f2cd44fa81fc195579473f0033b29d7becc1ee36dcf146af0569ccc4f709b88efe9633bae5d1c2d995bfd125dfc2703538a0bee9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Version

Filesize
11B

MD5
b29bcf9cd0e55f93000b4bb265a9810b

SHA1
e662b8c98bd5eced29495dbe2a8f1930e3f714b8

SHA256
f53ab2877a33ef4dbde62f23f0cbfb572924a80a3921f47fc080d680107064b4

SHA512
e15f515e4177d38d6bb83a939a0a8f901ce64dffe45e635063161497d527fbddaf2b1261195fde90b72b4c3e64ac0a0500003faceffcc749471733c9e83eb011

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
30da533aaf2dff024c78cf4a3db44f2b

SHA1
0f706aa9f873e85c4e614ff70cb6d06c4dd5317a

SHA256
5c9224545d398699c5b6d2472ec38ea3400b4725e05474af822401b4e3cb86e5

SHA512
c51df3bdccb1e649b0520b1fdff8bd759d8cf889c8fb2bfc997e54743a690af506c6337bbc75379ca0fe22e53dee4bb9d1595ec848c642a6bd8cbf3dfc2546ad

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
28e7dc25c4aa51d57707feca97748305

SHA1
f5f37e5687ab0f6b413c7829030d1d4895bf104b

SHA256
983c6c1c0fd2317bb9a9ad783642b6673d17a644d8b5e3bd066e9497e954df6d

SHA512
eea892cd9cb856160c63fc665d47c3fceca4ddcf27215c833406aabb612910825a0ce910e73d0cfc796dce71d740b4bb5a45a6ecb3d72ccf2e07cf1026229735

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1

Filesize
264KB

MD5
7102c03a647445dc056ce925487ef6a4

SHA1
c1ae8d71e2590cc6450047c2cbb49c11a668c757

SHA256
271c64ffe041aaed12288892c7883137715dd31912a0fca7219343d804d9b0d5

SHA512
8315869ba50c38dd1bff97d597aa18d96ff3a1af3734b6d9b2a863f3115e8d065f135360c3dfd92bd2974f6bb2b959e07749b2a757f220172e2fd1a37796a155

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

Filesize
10KB

MD5
da7c3652c85f3a7a78dd95e51605baab

SHA1
ce85875759acbe8d779e8813e537d6a93dae0b21

SHA256
262d8950864a9ca5b371e0184c19f78bf6efed25233f07abe2d6728d544e3a2e

SHA512
a355102b12a6685e86e463195f06b2e5c2e72e653531e99ebe8f1f728ab5c7f5c201d8d4c83b42a65fca4e105031fcfc8510b9e55a3e8fb24db4034b97c6e0a6

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

Filesize
10KB

MD5
5bfcf7d5f25fb6829b9179f88b499ed4

SHA1
6091e13e980d9962a01f71bede04706de277e45c

SHA256
b4adbcdc3f4065ec3a5590d444b14c5b0d96ff5145cdd1fc17fddba74f67d283

SHA512
6108e3460fb154be47a4d5d7418b336ffa4eb4e11c8358e3b768023ca2e9c8c527a1a0983c1edc158a23a5e1613a8d2d5b8a5a8816e41eb536e12443eeaf6d2f

Download Submit