Analysis
-
max time kernel
179s -
max time network
199s -
platform
windows10-1703_x64 -
resource
win10-20240404-en -
resource tags
arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system -
submitted
26/05/2024, 03:48
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://github.com/Imagine-YT/Roblox-Account-Generator
Resource
win10-20240404-en
Behavioral task
behavioral2
Sample
https://github.com/Imagine-YT/Roblox-Account-Generator
Resource
win10v2004-20240426-en
General
-
Target
https://github.com/Imagine-YT/Roblox-Account-Generator
Malware Config
Signatures
-
Drops file in Windows directory 18 IoCs
description ioc Process File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdgeCP.exe File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdge.exe File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdgeCP.exe File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdgeCP.exe File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdgeCP.exe File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdgeCP.exe File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdgeCP.exe File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdgeCP.exe File created C:\Windows\INF\netrasa.PNF svchost.exe File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdgeCP.exe File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdgeCP.exe File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdgeCP.exe File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdgeCP.exe File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdgeCP.exe File created C:\Windows\INF\netsstpa.PNF svchost.exe File opened for modification C:\Windows\Debug\ESE.TXT MicrosoftEdge.exe File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdgeCP.exe File created C:\Windows\rescache\_merged\3720402701\1568373884.pri MicrosoftEdgeCP.exe -
Checks SCSI registry key(s) 3 TTPs 64 IoCs
SCSI information is often read in order to detect sandboxing environments.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\0052 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}\0008 svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{3464f7a4-2444-40b1-980a-e0903cb6d912}\000A\ svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}\0008\ svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\Properties\{656a3bb3-ecc0-43fd-8477-4ae0404a96cd}\2002 svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Mfg svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{80d81ea6-7473-4b0c-8216-efc11a2c4c8b}\0003 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\Properties\{cf73bb51-3abf-44a2-85e0-9a3dc7a12132}\0006 svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\CompatibleIDs svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{540b947e-8b40-45bc-a8a2-6a0b894cbda2}\0004\ svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\004C svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\DeviceDesc svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\0054 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{656a3bb3-ecc0-43fd-8477-4ae0404a96cd}\2002 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{540b947e-8b40-45bc-a8a2-6a0b894cbda2}\0009 svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{3464f7a4-2444-40b1-980a-e0903cb6d912}\000A\ svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{3b2ce006-5e61-4fde-bab8-9b8aac9b26df}\0008 svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\HardwareID svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\004A svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\0034 svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{83da6326-97a6-4088-9453-a1923f573b29}\000A\ svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\004C svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\005A svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{88ad39db-0d0c-4a38-8435-4043826b5c91}\0008 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\004E svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Capabilities svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}\0018 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\Properties\{540b947e-8b40-45bc-a8a2-6a0b894cbda2}\0009 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{540b947e-8b40-45bc-a8a2-6a0b894cbda2}\0004 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{656a3bb3-ecc0-43fd-8477-4ae0404a96cd}\2003 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{80d81ea6-7473-4b0c-8216-efc11a2c4c8b}\0003 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\0064 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\0034 svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\CompatibleIDs svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\Properties\{80d81ea6-7473-4b0c-8216-efc11a2c4c8b}\0004 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{88ad39db-0d0c-4a38-8435-4043826b5c91}\0009 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\005A svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\0034 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{88ad39db-0d0c-4a38-8435-4043826b5c91}\000A svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{656a3bb3-ecc0-43fd-8477-4ae0404a96cd}\300A svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\004A svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001 svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\FriendlyName svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{cf73bb51-3abf-44a2-85e0-9a3dc7a12132}\0002 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\0058 svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Mfg svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{88ad39db-0d0c-4a38-8435-4043826b5c91}\0009 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\0065 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\0054 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{3464f7a4-2444-40b1-980a-e0903cb6d912}\0016 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{540b947e-8b40-45bc-a8a2-6a0b894cbda2}\0009 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\0055 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\004C svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\0052 svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{540b947e-8b40-45bc-a8a2-6a0b894cbda2}\0004\ svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{83da6326-97a6-4088-9453-a1923f573b29}\0005 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{656a3bb3-ecc0-43fd-8477-4ae0404a96cd}\2002 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{78c34fc8-104a-4aca-9ea4-524d52996e57}\0058 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\Properties\{80d81ea6-7473-4b0c-8216-efc11a2c4c8b}\0003 svchost.exe Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\Mfg svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{3464f7a4-2444-40b1-980a-e0903cb6d912}\0016 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{80d81ea6-7473-4b0c-8216-efc11a2c4c8b}\0002 svchost.exe Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{80d81ea6-7473-4b0c-8216-efc11a2c4c8b}\0004 svchost.exe -
description ioc Process Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000\Software\Microsoft\Internet Explorer\Main browser_broker.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000\Software\Microsoft\Internet Explorer\Main MicrosoftEdgeCP.exe -
Modifies data under HKEY_USERS 2 IoCs
description ioc Process Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\windows\CurrentVersion\Internet Settings\Connections svchost.exe Key created \REGISTRY\USER\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\OnDemandInterfaceCache svchost.exe -
Modifies registry class 64 IoCs
description ioc Process Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\CIStatus MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\Root MicrosoftEdge.exe Set value (data) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus\DynamicCodePolicy = 05000000 MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\Main MicrosoftEdgeCP.exe Set value (data) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = bd8dcbc71fafda01 MicrosoftEdge.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\NextUpdateDate = "423508902" MicrosoftEdge.exe Set value (str) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\History\CachePrefix = "Visited:" MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\EdpDomStorage\Total MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\HistoryJournalCertificate MicrosoftEdgeCP.exe Set value (str) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\History\CachePrefix = "Visited:" MicrosoftEdgeCP.exe Set value (str) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\History\CachePrefix = "Visited:" MicrosoftEdgeCP.exe Set value (data) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = c30364ea1fafda01 MicrosoftEdge.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DataStore MicrosoftEdge.exe Set value (data) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\Meta\generator$WordPress MicrosoftEdge.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\Main MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates MicrosoftEdge.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-VersionLow = "0" MicrosoftEdge.exe Set value (data) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = 0bf093a41fafda01 MicrosoftEdge.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\Content MicrosoftEdgeCP.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\www.bing.com\ = "587" MicrosoftEdgeCP.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\Total\ = "6615" MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\Main MicrosoftEdgeCP.exe Set value (str) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Content\CachePrefix MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus MicrosoftEdge.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DomainSuggestion MicrosoftEdge.exe Set value (str) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Content\CachePrefix MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\trust\CTLs MicrosoftEdge.exe Set value (data) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = e00fd9a41fafda01 MicrosoftEdge.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\www.bing.com\ = "23" MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU MicrosoftEdgeCP.exe Set value (data) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus\DynamicCodePolicy = 05000000 MicrosoftEdgeCP.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\History\CacheLimit = "1" MicrosoftEdgeCP.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\Total\ = "101" MicrosoftEdgeCP.exe Set value (data) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\SignaturePolicy = 06000000 MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings MicrosoftEdge.exe Set value (data) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = be4f95e31fafda01 MicrosoftEdge.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Protected - It is a violation of Windows Policy to modify. = "1" MicrosoftEdge.exe Set value (str) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:" MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\msn.com MicrosoftEdgeCP.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\msn.com\Total = "101" MicrosoftEdgeCP.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\IECompatVersionHigh = "268435456" MicrosoftEdge.exe Set value (str) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:" MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\History MicrosoftEdgeCP.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Explorer\Main\OperationalData = "1" MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\ACGStatus MicrosoftEdgeCP.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\www.msn.com\ = "122" MicrosoftEdgeCP.exe Set value (data) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = fc8210c31fafda01 MicrosoftEdge.exe Set value (data) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus\DynamicCodePolicy = 05000000 MicrosoftEdgeCP.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\ACGStatus\ACGPolicyState = "6" MicrosoftEdgeCP.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\CIPolicyState = "0" MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus MicrosoftEdgeCP.exe Key created \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Explorer\Main MicrosoftEdgeCP.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus\ACGPolicyState = "8" MicrosoftEdgeCP.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\bing.com\NumberOfSubdomains = "0" MicrosoftEdgeCP.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\www.bing.com\ = "654" MicrosoftEdgeCP.exe Set value (data) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\SignaturePolicy = 06000000 MicrosoftEdgeCP.exe Set value (data) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = 2d9214c91fafda01 MicrosoftEdge.exe Set value (int) \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-VendorId = "0" MicrosoftEdge.exe -
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 1148 MicrosoftEdgeCP.exe -
Suspicious behavior: LoadsDriver 6 IoCs
pid Process 4 Process not Found 4 Process not Found 4 Process not Found 4 Process not Found 4 Process not Found 628 Process not Found -
Suspicious behavior: MapViewOfSection 37 IoCs
pid Process 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe -
Suspicious use of AdjustPrivilegeToken 40 IoCs
description pid Process Token: SeDebugPrivilege 3652 MicrosoftEdgeCP.exe Token: SeDebugPrivilege 3652 MicrosoftEdgeCP.exe Token: SeDebugPrivilege 3652 MicrosoftEdgeCP.exe Token: SeDebugPrivilege 3652 MicrosoftEdgeCP.exe Token: SeShutdownPrivilege 592 svchost.exe Token: SeCreatePagefilePrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeLoadDriverPrivilege 592 svchost.exe Token: SeShutdownPrivilege 5940 MicrosoftEdgeCP.exe Token: SeCreatePagefilePrivilege 5940 MicrosoftEdgeCP.exe Token: SeShutdownPrivilege 5940 MicrosoftEdgeCP.exe Token: SeCreatePagefilePrivilege 5940 MicrosoftEdgeCP.exe Token: SeShutdownPrivilege 5940 MicrosoftEdgeCP.exe Token: SeCreatePagefilePrivilege 5940 MicrosoftEdgeCP.exe Token: SeShutdownPrivilege 5940 MicrosoftEdgeCP.exe Token: SeCreatePagefilePrivilege 5940 MicrosoftEdgeCP.exe Token: SeShutdownPrivilege 5940 MicrosoftEdgeCP.exe Token: SeCreatePagefilePrivilege 5940 MicrosoftEdgeCP.exe Token: SeShutdownPrivilege 5940 MicrosoftEdgeCP.exe Token: SeCreatePagefilePrivilege 5940 MicrosoftEdgeCP.exe Token: SeShutdownPrivilege 5940 MicrosoftEdgeCP.exe Token: SeCreatePagefilePrivilege 5940 MicrosoftEdgeCP.exe Token: SeShutdownPrivilege 5940 MicrosoftEdgeCP.exe Token: SeCreatePagefilePrivilege 5940 MicrosoftEdgeCP.exe Token: SeShutdownPrivilege 5940 MicrosoftEdgeCP.exe Token: SeCreatePagefilePrivilege 5940 MicrosoftEdgeCP.exe -
Suspicious use of SetWindowsHookEx 10 IoCs
pid Process 356 MicrosoftEdge.exe 2804 MicrosoftEdgeCP.exe 3652 MicrosoftEdgeCP.exe 2804 MicrosoftEdgeCP.exe 356 MicrosoftEdge.exe 1148 MicrosoftEdgeCP.exe 1148 MicrosoftEdgeCP.exe 1148 MicrosoftEdgeCP.exe 1148 MicrosoftEdgeCP.exe 1148 MicrosoftEdgeCP.exe -
Suspicious use of WriteProcessMemory 64 IoCs
description pid Process procid_target PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 3632 2804 MicrosoftEdgeCP.exe 92 PID 2804 wrote to memory of 3632 2804 MicrosoftEdgeCP.exe 92 PID 2804 wrote to memory of 3632 2804 MicrosoftEdgeCP.exe 92 PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 2096 2804 MicrosoftEdgeCP.exe 84 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 3044 2804 MicrosoftEdgeCP.exe 93 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101 PID 2804 wrote to memory of 5940 2804 MicrosoftEdgeCP.exe 101
Processes
-
C:\Windows\system32\LaunchWinApp.exe"C:\Windows\system32\LaunchWinApp.exe" "https://github.com/Imagine-YT/Roblox-Account-Generator"1⤵PID:3508
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca1⤵
- Drops file in Windows directory
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:356
-
C:\Windows\system32\browser_broker.exeC:\Windows\system32\browser_broker.exe -Embedding1⤵
- Modifies Internet Explorer settings
PID:4824
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Modifies registry class
- Suspicious behavior: MapViewOfSection
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2804
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Drops file in Windows directory
- Modifies Internet Explorer settings
- Modifies registry class
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of SetWindowsHookEx
PID:3652
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Drops file in Windows directory
- Modifies registry class
PID:2712
-
C:\Windows\System32\DataExchangeHost.exeC:\Windows\System32\DataExchangeHost.exe -Embedding1⤵PID:4148
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Drops file in Windows directory
- Modifies registry class
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:1148
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Drops file in Windows directory
- Modifies registry class
PID:3472
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Drops file in Windows directory
- Modifies registry class
PID:2096
-
C:\Windows\System32\SystemSettingsBroker.exeC:\Windows\System32\SystemSettingsBroker.exe -Embedding1⤵PID:816
-
\??\c:\windows\system32\svchost.exec:\windows\system32\svchost.exe -k localservicenetworkrestricted -s RmSvc1⤵PID:2768
-
\??\c:\windows\system32\svchost.exec:\windows\system32\svchost.exe -k localservice -s SstpSvc1⤵PID:4492
-
C:\Windows\system32\svchost.exeC:\Windows\system32\svchost.exe -k netsvcs -s DsmSvc1⤵
- Checks SCSI registry key(s)
- Modifies data under HKEY_USERS
PID:4528
-
\??\c:\windows\system32\svchost.exec:\windows\system32\svchost.exe -k netsvcs -s NetSetupSvc1⤵
- Drops file in Windows directory
- Suspicious use of AdjustPrivilegeToken
PID:592
-
\??\c:\windows\system32\svchost.exec:\windows\system32\svchost.exe -k netsvcs -s RasMan1⤵PID:4632
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Drops file in Windows directory
- Modifies registry class
PID:3632
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Drops file in Windows directory
PID:3044
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Drops file in Windows directory
- Modifies registry class
PID:5376
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Drops file in Windows directory
- Modifies registry class
PID:6004
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Drops file in Windows directory
- Modifies registry class
- Suspicious use of AdjustPrivilegeToken
PID:5940
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Drops file in Windows directory
- Modifies registry class
PID:5960
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Drops file in Windows directory
- Modifies registry class
PID:2968
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵PID:5164
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Drops file in Windows directory
- Modifies registry class
PID:5320
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵
- Drops file in Windows directory
- Modifies registry class
PID:3764
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵PID:1988
-
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca1⤵PID:5308
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
74KB
MD5d4fc49dc14f63895d997fa4940f24378
SHA13efb1437a7c5e46034147cbbc8db017c69d02c31
SHA256853d2f4eb81c9fdcea2ee079f6faf98214b111b77cdf68709b38989d123890f1
SHA512cc60d79b4afe5007634ac21dc4bc92081880be4c0d798a1735b63b27e936c02f399964f744dc73711987f01e8a1064b02a4867dd6cac27538e5fbe275cc61e0a
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\QtJVX2BWG_pKK8Kg_EqULgkLsrk.br[1].js
Filesize5KB
MD54a7fbd9e7ea63c6d763f333644256a62
SHA1ef3dc9076b76d0a6109d42fa88915165e17f14e0
SHA256d27b551812ab2092c10677a8a587f808164cca3fae2d49d0b2a89fa348330084
SHA512de3966360449e59d45f0671ab3a2f0a6fd2c6c61328320d257fe17877168029e4515b06b373433f2e0eea7eb4d07184710e0c01b643ab7f836c586e6ceb91c5a
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\5cNYI-KHtSpU1cTpIG4CXkdsXFg.br[1].js
Filesize5KB
MD54bd9efcb4aafe3b855d455fd01d22463
SHA16be51274703da67c1becaa6d0196bc8c93050815
SHA256851dba4ff4d8c05904831a927424bde15a8d037313ced005820f4b2222ee1d03
SHA51256f563a5d16d3e55852140e5eb5006f610fc3c0e1e3567a8549ba16625e4dc1a30bd51c2bb4888ff83361921fcfd8f63f0b8b1b8cfe32933cb263e7b684e4b60
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br[1].js
Filesize2KB
MD560c8196199a6c715bc20652c09f64e7a
SHA1fd861e01ba063850704195b35e44db2562ae815e
SHA256708df52a72db22b1a287439cb9aa3ef2037bb67c8246835e36e673f70695a390
SHA5127f16a9c7f5e6df6d78fa1d08818580dbcc4c7453db9d095794c730bb0f67e14070369e610b90225acf6961fda6471c7f497d59da0a7fef2f95e8bcc180b63a0d
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\HdiojNH85n4iu87NAQvDH5bKMnM.br[1].js
Filesize353B
MD5794184fae3c0890ae4ea642fd8f7fbf8
SHA191f8e72f3517d86a28edeb1b476f90fa5f972168
SHA25600ea5dc006fa84e08d604bf9708135b98138ae0a092bd2c101a912b5efe3fe17
SHA5123bcbc295c3e482ba7d8d99df3ac396fc1da973745a82dcae8d02270afed54b758d3f2c9811ed3c08e817f78a1a6a73eb5564d05e0c78d8009cf2608d14bb96fc
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\LTCT2zdUcB3ayDDUpC7BI5zxXuE.br[1].js
Filesize1KB
MD5480df9ada0ab4f05ef58e5cb2e2392e1
SHA15510d9c30128875621b2f587563e7c1d0153f164
SHA2561c56cffb0e9950e4a61b6955e8708befa2ceca71017838f1fc233e2038b23c2c
SHA512dae1a6680c0f1dfcac1c2b7b23c459f162d3d00d83548dce37bb86a74d2c04f2ec6b68449631eb53dd176153bdec74086f287b02688ef8d4d977671060709d09
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\WPedHfV8dQrn4qkif5azDZSqmn8.br[1].js
Filesize1KB
MD5f5dfb6428494da3c1f195528588587cb
SHA17575a1f3dc367b2332d837a46d1dd2748b225c38
SHA256f45968b3999174976d6fbea229f627f0bda56fd84f8b1924c01da624bfea01e3
SHA512bb677ee6f22dfe28ca9ebc94a6ea7b5bdfb95288ba246c85c135f083c3af765964dbe5f3a028dca6e8a6396e967f24c2734442432abf00e690f34bc8106dfe9d
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\ciI4DrhPUNmhXgxM4MW52bFXjfw.br[1].js
Filesize5KB
MD5ffdc7892743e65d4e1747d695ab8fa3a
SHA102c6c4d62ba6806b28f1c69462e55e631ae13970
SHA256e7f80dfe7b61e64faef1f7408f32ed0194ae648931d406fa987ec50c7326eb2d
SHA512d85141d067a79df5b680fcc0d2a49e913847fed449315c238f08b2b92847cc5549798428b4921483604898dd44a75a3595e08e14ae132c4ac72f72caf731422d
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\kNUdPzzLEbQzYr3icm3MTxwk6-Y.br[1].js
Filesize4KB
MD5fc3708a7ac43ace3d3406c2e5f7f1116
SHA1cbd3116ecd59fd4a44f8b3cd958cbff724989a29
SHA25637d9b83c929f1a8d94c4f29000cbfdfa72c4bc61c3950df02523252928591c29
SHA51212122417b29aed27eebf3bb36e740c86567daef7060b5e8d64d11c83a5045e6eca5f3b1bc5a6d6b1a8e3eb23f8c34d48b63fcb41e43143e6b146fb2d51cdbd58
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\pYx84E5QxKsDa_GCjDkQj38YO0k.br[1].js
Filesize4KB
MD5487d9ac02e3cf57172045869ac3f97a2
SHA147c9870beb200a74d274fdf9e98aa2efcd54efbd
SHA256a97799ff4c48323ad3314a13e6a20a69145d0f8257fdae6882551d6fb6610ea6
SHA512f13633d84fe8133da9d1823ce418cf42717cbe79176c9c11f4a7dd66905ba1aef571b968bd29d7c7ca91d802b4b36aefdb0c5d715e480215754c5d164eac27cd
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\warmup[2].gif
Filesize43B
MD5325472601571f31e1bf00674c368d335
SHA12daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
SHA256b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
SHA512717ea0ff7f3f624c268eccb244e24ec1305ab21557abb3d6f1a7e183ff68a2d28f13d1d2af926c9ef6d1fb16dd8cbe34cd98cacf79091dddc7874dcee21ecfdc
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\4TQ6xhX_0XDFyLdFRS-kPhFXirA.br[1].js
Filesize7KB
MD5fbf143b664d512d1fa7aeeeba787129c
SHA1f827b539ae2992d7667162dc619cc967985166d9
SHA256e162ccd10a34933d736008eb0bc6b880c4e783cf81f944bca7311bf5f3cd4aff
SHA512109ec6433329f001c9239c3298a10e414522f21be2a3d7b8a9eb0b0767322eaad1fdf8f5b11edb1f42882b4e75ae71bef7fe786716407c8efad4feacb3dcf348
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\FLbS4sMDF_AAL4geGmkhCan3K7Q.br[1].js
Filesize2KB
MD5c0423387659756bac316ad4c3a2c0dc3
SHA1b5d9cf4fe69b29a69839c86979643e7a6885e145
SHA2568eeb1cdb826bc855f7254c15609b44fbde63a6c660adf21ad0fbf00cd015499d
SHA512a471dca94efc4027ecac3cff0003a106dc2c55df9d157dd09a721e4f679be28ba29d805c0dcc27034664e423c65efe6f8e4677372156748bd9c8824b88b30db8
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\IdUTPeerhJUBvXEe7f4gFEe3qoI.br[1].js
Filesize9KB
MD5f8867659eec16d15e723c56aeb7c34d5
SHA1fbfb3436e5ba3b1653aa2216c717db403d9a0b8a
SHA256c33b076ea6748367e9898c67afea2f0042988e544142d42bf324cbb62fd89d70
SHA512808bb92c1ed4ce68711ffeb5836ce93cd4daa66d17c3ffa60cc317ae32dea841eb00e7b2b19fa3957ab7f1fd6c88f6cd5c45bf1c7ac67c30e5acac0acd8b851c
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\e5E3S-lkItFHIqVf6KjzTWPZb6Y.br[1].js
Filesize1KB
MD500bee03327af12e5db14aa0967daea24
SHA1c8afb873b9fa284b539010ca72220db8aee40fd6
SHA256c8f912cc21b8a576a62b9f03976f49a6b6f96f10fbd1042ec56af4da02d985ec
SHA512494860cdefb1d070b4f390ecf9803fbdaa88a94bf91c84dbd9b95d4e86205c1ab7b28e24aa074ca13a86fd74194cabd25fc4a64e4dd8730707879dc351f1826c
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\y9cMttd-SwSaYuiqhqk701fxHs0.br[1].js
Filesize6KB
MD5142a83c5800451a9731a262400de2419
SHA11e5f6598f7f6b43a6f4e1b2a900ce1676e0c024d
SHA2567d49a33d66c98ab838f9a15d2ff49bbac72c1588d979644fc174116d0afcb852
SHA512b1d7fa83b4bc787409c088f7cba58acaa031fe3239a7bc139b6d4839ad6c66156e44cdf6f545d7b6b9309b3ebbfa0b17d9f307884f679cb6d2ae11c6935eea2f
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\YAMNA6LF\8aj_I6fSAQ2HauP0CPPAfDwa2j8.br[1].js
Filesize598B
MD54ff32905762c3a445028e11ed69f04a0
SHA1809535e72d3dbe00f945893f7581eb3897f4439a
SHA256336342b76b1eec2f9698dacb5d7d7749148a2036172435cd0c1a80a80a9886e7
SHA5128b20273037fc33b549b6322d4b6a7623b0e24cf737c8d562e226f3bee2f5ba5a0692569fd0039e296146e9845e4f00ed5f08566980ede5fe449be08ff1f0b79f
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\YAMNA6LF\DUK18cY3cfD0zk-_nBEv4bFX75k.br[1].js
Filesize7KB
MD5600aab0f07672850c21b8ad1f208c021
SHA11164fe094cff4bebd4a1d307f6083aa13dc2f556
SHA256be32f8b54035cf1dc8c7eb6e9b7b297262bf16275c97df2988f02084e4843390
SHA512f6c1195c7dca727848d863d0d653f8ccb814d9a0c2b0481d511bafaa5b2278bb9b7b3d954cd26593a8e277bcce0f0b555457068c4e992eaa011bdc900bb05535
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\YAMNA6LF\MCwdqGFTwqu20jt3177s57V4wZk.br[1].js
Filesize104B
MD541e1135d5d4aefe240c4dbd7b71f40dd
SHA1cd1d7feee9a4202cf3a32172e8c5b081855f3061
SHA2562e51a8c4ab5b014aeff1eeac9da5a0937f5ca7dcde7f089f88db05460f2c47ca
SHA5128b43c0246a2a3447dd0fc818a67faf5c76d4bdbae52989c80da3004f032033cd2fd45e484727facea150125766a8c6b9b1094b855b9e1d23495e85d8ae1ce041
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\YAMNA6LF\fRSNKQanUHk53F1a1Bi8UA71Qt4.br[1].js
Filesize289B
MD59085e17b6172d9fc7b7373762c3d6e74
SHA1dab3ca26ec7a8426f034113afa2123edfaa32a76
SHA256586d8f94486a8116af00c80a255cba96c5d994c5864e47deac5a7f1ae1e24b0d
SHA512b27b776cb4947eef6d9e2a33b46e87796a6d4c427f4759c08cf5aa0ee410a5f12e89ca6ab9cddd86c8471037e3c505f43c8b7fc6d8417f97f9fe3c5c47216bc4
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\YAMNA6LF\gzg_B3ukx_AYCFS4GLoV44gMclU.br[1].js
Filesize31KB
MD528e9b258942386afbd84879df1197f68
SHA16cc244f9345c63c45bcae728e1a8494523b321c8
SHA256403d5763ee9090d6869085c42e7aa9f0d12b07bc66104b277778e9b0a26fca77
SHA51254c3cc5b4e51a3f4b86ecfc29adadfe2bdd9e4449533ea5adb74a6bd909cfb2b1f9bc7396f1d15714174e38d392501d520b1225cceed6aafb01c519fb43380a1
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\YAMNA6LF\home-f57bcc4383d0[1].css
Filesize9KB
MD5b62c6b754eb544e40ff19736d98e7236
SHA13935abd3901272c7425b0fc01cf3efbba671cc8d
SHA25698d5620368b6e0ea7de7f5e7232fa24e66c20b81b3c8e49740dd7878f08c1e48
SHA512f57bcc4383d0b44dfb47c0a726412e1bf19df141e12adb97c85ca682379a9f4804d73d7303f24b5b356bd190770d978e41dd8ac0a23a5c3dabf8af86b2a28aef
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\YAMNA6LF\th[5].png
Filesize944B
MD55496597e20e98afd6b2f08771b2628e8
SHA13f85c598274fb3046bac85717ec4104d771fb3ce
SHA256068ca3be3290c3a3fe8fd025f6248fda0a70c0442a035c0d3cd355bbe7b673d3
SHA5127cde5dca42e2da879d36c01761ad9b033a1f0a1f04354f4a85d1223e46971cf2a0594ec4e798cae23b9369221fe7a6fa49cf541077ca5548a1d834b5f2a502f7
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\DAGSKBJE\otTCF[1].js
Filesize38KB
MD5ccc7bdfd4fec43bb4e2ee254705af6f9
SHA19a2a188ff810fd0f025266d2b65f448a5ca84181
SHA2560881d43075354250e7ca66af2628b7f894bca339f73be5add8c16e166d253708
SHA51293e7b2cf7c54dda5bacede673dee2829335642aca27eb36afc4a117ee38e00bbc2ee801d751c7af5cbd1c31d0fb92643a862ca710f243e4e9fe64027fa0e39b0
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\LB8O8165\microsoft.8aa91a5fe4f5d8517ae1[1].js
Filesize142KB
MD51b4bd481201681e6e6609b4e84d91900
SHA1712b959a52f424694b3fa5b852c3d7adf27bc19d
SHA256ce3eeed6a430adf998eac68138d70e1d064cc81a54274c00b71a22f6c1e0b2b0
SHA512e844c8e156b94fdedc70830471a4b8cd095926c0a0e5fa3c2685b34a7efbc8d2bfdd662513f46a2021b92d46289ad25ebe7b54d3885c438ea3d4fb7cfb17e5fe
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\LB8O8165\otBannerSdk[1].js
Filesize426KB
MD59407efa17b9fa09288ff833eeb111cc7
SHA14fba1d46d43eeaeff48b8493245e5cda953285c8
SHA2569cfaaf4e24c9a20159123c632711d2cbb98854a66ab659a5c24373633f180d4a
SHA512f864566e20f37099463b4bb39665a52293402d293f9bdbccdac3b6cda7db41f91ce79c34786129f84c822f2c35a7a0976060fcd97271dd27685e4f6255f70b0a
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\QVW2OXG2\vendors.c47bf4f4981f23895ddb[1].js
Filesize206KB
MD501cd3e668d1acb88b93ab929d450ae63
SHA1f44e64fd07d828ef0b41a127faf5fc4d0ccb7515
SHA25676d32a47254928b038acae6e59dbad89eff8d7126eae4391a3a869a3ab6a4eaf
SHA512b8c1db0645e3aca3e5953724077fa2699216e1f8f780346fba8bbe27f1ec2d8c7bef62dba1a88d3cec8db445418bdc7c3307ac3bf84abfd400d1f1678681e368
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\VRJUEGE8\common.5dd7cff85de67632bfd7[1].js
Filesize743KB
MD5cd8d2938dfcc295d8d63f9e40e79b3b4
SHA108a48c71162cb94c0a4737376c499de1b4666a90
SHA256881c2664c20a836f6784a1db963fe6f69f5809912ffa0b2d54ecc1361526e922
SHA512fc252ab5d8444efbc3072b1101c7ce89f91cca35cef475eaa3c28b33dc746aa36b6ac82d1a6d896a975a3e086d8e73882af29392d1235962883bf9e7f0feb590
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\VRJUEGE8\otSDKStub[1].js
Filesize22KB
MD54ab1f8890d25b8991347267757b97564
SHA177e0c938ab737969ce4145a0f66f5218d640a0f4
SHA256b0729bf573f57578c2197be145663a338b0f265c14bee646a7d2dbde4b3854cb
SHA512a57fbc16f30213c0ad1a0e9bf030da87398d7aeb3217b90946293aa8aec83295a40ca6c2363d65452db4bd0d02c1fe5237bd93e037d975ffce3636a1292df9ed
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\P43R95D8\1\ntp[1].htm
Filesize63KB
MD56fd30c89f65d09fed490a5cadc25a708
SHA1032804f2db37d0722e51d458e9c3d4592847df9e
SHA2568e205874a5be25051f6679dc5ef282a114e02d99f5eb03ccf064057044e1cf48
SHA512c32e61bd6233fabd043cd08a9e4bbb15bbeaeb89bddadcb025aee1e05c45c5d1d4c9dfe3de3b47ef33e8c71ba4f33fbf54beeb8898285ae31c3788aaff0a1494
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\DOMStore\WT77IYSP\www.bing[1].xml
Filesize1KB
MD5d32effbc0a2e5e6a8adac72cce5ab1bc
SHA1d66ed4a252e091537f6ab83d2f34374bbb63d0ae
SHA256ad94fd15d8e542b98ad65009d7323795839914a83e4a205e9234eac3b62cde8c
SHA512f14c54a6c06e96524cb30280cf0233562bb212dfdb57ad989e3e15e7e714590468a0566b60458094d7862c771106ad3901d8e66aa984386ed8e660752907e88c
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\DOMStore\WT77IYSP\www.bing[1].xml
Filesize11KB
MD5dbc9f86184eacf7fd3041dacaba3437b
SHA15b08825af5f25cf79c3fece758057e3c09b7c722
SHA256f70b343406bddf15776cd8f91247d9a6a6efd0c9edda6d33a5a6739d32be970d
SHA5122f80a5f19fe1d76fc452607f70a0771ea3f3ea43223b7cf1d99e3594552f30a100b7ac7787b0ae1917ef283c0f3c5895a09ba369e1a930912fb992f0fbf24149
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
Filesize4KB
MD51bfe591a4fe3d91b03cdf26eaacd8f89
SHA1719c37c320f518ac168c86723724891950911cea
SHA2569cf94355051bf0f4a45724ca20d1cc02f76371b963ab7d1e38bd8997737b13d8
SHA51202f88da4b610678c31664609bcfa9d61db8d0b0617649981af948f670f41a6207b4ec19fecce7385a24e0c609cbbf3f2b79a8acaf09a03c2c432cc4dce75e9db
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\6YS4122L\favicon-trans-bg-blue-mg[1].ico
Filesize4KB
MD530967b1b52cb6df18a8af8fcc04f83c9
SHA1aaf67cd84fcd64fb2d8974d7135d6f1e4fc03588
SHA256439b6089e45ef1e0c37ef88764d5c99a3b2752609c4e2af3376480d7ffcfaf2e
SHA5127cb3c09a81fbd301741e7cf5296c406baf1c76685d354c54457c87f6471867390a1aeed9f95701eb9361d7dfacce31afd1d240841037fc1de4a120c66c1b088c
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\7PLS22MT\favicon[1].ico
Filesize758B
MD584cc977d0eb148166481b01d8418e375
SHA100e2461bcd67d7ba511db230415000aefbd30d2d
SHA256bbf8da37d92138cc08ffeec8e3379c334988d5ae99f4415579999bfbbb57a66c
SHA512f47a507077f9173fb07ec200c2677ba5f783d645be100f12efe71f701a74272a98e853c4fab63740d685853935d545730992d0004c9d2fe8e1965445cab509c3
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\FEVE23QY\favicon[1].ico
Filesize4KB
MD5da597791be3b6e732f0bc8b20e38ee62
SHA11125c45d285c360542027d7554a5c442288974de
SHA2565b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07
SHA512d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\FEVE23QY\suggestions[1].en-US
Filesize17KB
MD55a34cb996293fde2cb7a4ac89587393a
SHA13c96c993500690d1a77873cd62bc639b3a10653f
SHA256c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad
SHA512e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\JMMW8YZQ\favicon[1].png
Filesize958B
MD5346e09471362f2907510a31812129cd2
SHA1323b99430dd424604ae57a19a91f25376e209759
SHA25674cf90ac2fe6624ab1056cacea11cf7ed4f8bef54bbb0e869638013bba45bc08
SHA512a62b0fcc02e671d6037725cf67935f8ca1c875f764ce39fed267420935c0b7bad69ab50d3f9f8c628e9b3cff439885ee416989e31ceaa5d32ae596dd7e5fedbd
-
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Temp\~DF0E1E53FE844DC217.TMP
Filesize16KB
MD57123e680dc2faad30b0d47f905332ec0
SHA15ffc6a0c8560f9a9bbb2900d0dfeddebda7a4011
SHA25662769100e0c007a41a9a7d1c79b84ebd87b6c085990edfc4c0e5d062393179f4
SHA5126f1d280018a5949ba39f6b5e3c3ea0154f747efac2ce77fb794583e76b81ac4f476a19d68186d1db785a469f23055669cf2b2bc82faab3f34581f1a7058dc787
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\code-33498bbbf39d[1].css
Filesize30KB
MD5c33214069c8aaceb09d0bda33fc0dc53
SHA1e048f70e3ec7acd9e07aceb3054b5946e57e0423
SHA256dbe4579afad9456e07fd6eab0e4e0f6ef895e360fe26c5d4b3867f54081eabcc
SHA51233498bbbf39d518a3b435bc1ba104a944183437fdc155a5dfaa6c4b3d67993b9e01661a416a53975889059e4a5d4a3ab164afb30634f6c6ffadee24d2893450b
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\environment-2168885ea2b8[1].js
Filesize12KB
MD59cc4cfdbadea1eb96bc923f120b5405a
SHA12c0051d7fda65f19b520fa7813ae87eac2e81e64
SHA2563de027e86916dea9ccca9f0c9435cc20da1480bef2a797f6544074f462b1e5d7
SHA5122168885ea2b8ab820cd72d6e85ec6d968a54db7f3a4135408e3411173bccf5c46fe49007ad553c7783873960881ccef4dac25e3a352c6efbae17180d0bb26ddf
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\github-151c896d0930[1].css
Filesize121KB
MD5c412ad0791608cd15fa8ab58e846ef37
SHA18e7847b37a5b03115b9abcbe87aa57fa8f17eee6
SHA256251f70f5ef04320eef6286bfc5095a8a1316775f1a368456c8e13a4c4e574c49
SHA512151c896d09304c2f6ad9e8c675f571ce56c7e0934173105095be3618b09874cf1ea23d8dfeb68a3c47c6e38b19269ddd482fb6d01c30dac95f2ea11ef2e39e55
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\react-lib-dc88c1a68b28[1].js
Filesize209KB
MD5981a6faf0381babe5499e4df92510c0a
SHA1439ce7b8e817c8879be54a87a57a232b37d9f937
SHA25665b9d96ea9ff578196a219ba5c1c0015975d4f89013a6b17f1c7a39c4fe411f2
SHA512dc88c1a68b2887d974326d8380593be9e4dd135176c4de793651167650bb51d855f7a62eeda2b22163e2596e39a05f298a994a9cba97918a42e35178bb7e6391
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\repository-2e900f0ac288[1].css
Filesize29KB
MD50e753444198d619939444d6f8d168f7c
SHA1830a3b21b982bd016ace447462d1ffcd0e91c1f6
SHA25693687313c07170c3ef1624982cdad4939f9ddbc088b24da5882dddaf1fff0058
SHA5122e900f0ac288f08a8f9053cd191db0f007263da300cb50cad02ae785cdc1bc8debd76cefee03471f7ae6641ada999e765160e41fba8d812bc7ae668a84106e45
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\vendors-node_modules_dompurify_dist_purify_js-810e4b1b9abd[1].js
Filesize20KB
MD5917054ff94af6b65ef610aa7b541865a
SHA1ae699adc368c0bddf428d4f17cec479c6d96cd6c
SHA2563b0d2012948870af14b480bed5535b34c5f7e649a2c9c13234c319fbf8d2d7db
SHA512810e4b1b9abdcf5f10506f484ad38bc17cae973d1609d2d8d51bb4a8eb8d3c542cacfe6e4b1c31a062238087e216dfe4206064e8c1dc4cb5d961fc8e97a5a1ea
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-4ac41d0a76fd[1].js
Filesize9KB
MD54e684fa742abc9befc4748e8a4680586
SHA125129f277cfd66774a3c47db8b22c19b364bdc25
SHA25697652a00703643a49de00ea59316fd488cf72429b599a62d7cfae464f7bf5a96
SHA5124ac41d0a76fde41832af2c742d4a063ecea83aafd5233ec46f82938fd5ba06aebc0a69fe241df477fcdf08b1a8e6d6f02e0a42669a351ea50b3056ebc8eefc9d
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\vendors-node_modules_primer_behaviors_dist_esm_focus-zone_js-c7679f99a1f3[1].js
Filesize8KB
MD5f4c247ce967cbfd4ab3c833c9b82ab6c
SHA1c3d38f4f6dac79bcb91b4fe0c3f8dabe23b5455f
SHA2569934ea98e9391532afa53b20441b8a9157ca4914e33643be75172478a82c8e70
SHA512c7679f99a1f36ab562986302c30fd1445585810dc1ebb2804a61c59384378af7f6a1a514dace66ae79e582baab7d882d47fb7f9081eb7d70061ccbd931ccba6f
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\vendors-node_modules_primer_octicons-react_dist_index_esm_js-node_modules_primer_react_lib-es-541a38-c63b7a3484dd[1].js
Filesize708KB
MD52c4669e5cab4b9f0e9261e96988285fe
SHA13ae3d5ebce389ed0c519d971e9ea0995471809fc
SHA256c52f3ccd8bd84298712687bef3c311642c2c880343c19bb1f708e20f3e5806bb
SHA512c63b7a3484ddb3ae3f05108d981052f169f5205f4c96153dcccbf4bf9ee8896b65f54c62665b2d0be8aab58007134aa757b3f0ac258dab7e9e05ba79e2c037cb
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\vendors-node_modules_primer_react_lib-esm_Box_Box_js-8f8c5e2a2cbf[1].js
Filesize14KB
MD5e13301561af6d955f28e15fb1289f257
SHA1cba18e711015c8eb73907a47316a9e72a04cc4fd
SHA2566f56c90679703b770ea20b56e706321a2b5ff837a521aa0977640d19be74d0c3
SHA5128f8c5e2a2cbf938918866c1a84d9c1e242a98d5ecb48d3b2861faf32e19cfdb924f2bce7230b6cbcb67597fbc2e05d6d445115cfec1a1d636151ceb0548a5ab4
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\vendors-node_modules_primer_react_lib-esm_Button_Button_js-97ed51d4f278[1].js
Filesize12KB
MD5e08c5f96ff5ca48c88f82d6d242f6893
SHA152f043fdb9ed2ef981cc18516fcc9f3ad0955897
SHA256c37af02ee25b715987ec988821555ff22626b6d95507e9267a6cf0b3e315bec5
SHA51297ed51d4f27875b8741a25c92df082813314fda27e1450bb57e8375cc117d9c0d8e4bb15a4bc5e54fda4e5ac5f271eee16d0a3aacdfc651f81786551157dd6d0
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\vendors-node_modules_primer_react_lib-esm_FeatureFlags_FeatureFlags_js-node_modules_github_ca-9009bd-47065f21e9ac[1].js
Filesize6KB
MD5bfae9a18a9134040857ea47d5d6fc8be
SHA12d62903054eb3fb759823d198b4affef89920fc6
SHA2561c14e852372cceaf9ffd8dd18cb9dbf9af72ca9deb302a50560ef430ffd7f14d
SHA51247065f21e9ac0f3bf437395f6ca6a48da1289fcb405294db65a65f75b14d0798dd1ce383c67ba43546c5c282687e9392c0e398beae5deb13d52774bc5a48eb96
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\vendors-node_modules_smoothscroll-polyfill_dist_smoothscroll_js-node_modules_stacktrace-parse-a448e4-f17a27f30529[1].js
Filesize13KB
MD5e7e4593fc2e398b643ac46f72fb64c2c
SHA1ff807a2fffcf90fadc032dc284191da75b1a3b45
SHA256c2aa448500cc9bf17d5b318607d25f1d7a27ff5a4d0bcd1fd72f09b24fe9c3dc
SHA512f17a27f305292f98031a79ed141ca71b8881070db030000ff52c7519ab6af5ae65fc83fcddf5cdfecf903c9ec1633e8dd7f117590fb47a8fba3011afafe00132
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\5LWPE8UN\wp-runtime-26a3b37fe16b[1].js
Filesize41KB
MD5fbff513859345cc7ae1c41dc72a0759b
SHA1035e1103de4b67fd5e8cf560420dd595ca173e95
SHA256fa0ecb3e52cc2f9c66232739592c130127a202a41c6cbadc6c62c45596d4a365
SHA51226a3b37fe16b10b371e7df62e9e6ed8c56aeb9239d26481302654fc30c50af422690d8d876b64c18368e375ff492b22d5ba6159cc6dd81b0f02837ed711f0967
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\Roblox-Account-Generator[1].htm
Filesize235KB
MD5dc3083353162f0fb94b8ccb78d3f49a3
SHA1f7580dd0e6989822a67cd2571446a12f384e179f
SHA256008eb7426bc2f03a0a04450b285aaa2e2409d3fb32e808b5966fd3eb409d542b
SHA5122a6cd7e424ae09754eb2b55add1bd46e9f44ad3969e618f7927aa05ee0fb820a750587d6e716cb956ff7b54389f828254bfad7a823963a1d9a207070715b188e
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\app_assets_modules_github_onfocus_ts-ui_packages_trusted-types-policies_policy_ts-ui_packages-6fe316-ae5060590d17[1].js
Filesize12KB
MD5ba2fde722e3ff133b37bd6a85f364f07
SHA1d7dea7aa89bcf48333574cb52fea804acfdbbca9
SHA2566156c5c471879744a2d427763da07685e0f96ec6b94839e402b5970d424c8b72
SHA512ae5060590d171a3b900a3c2897f3cba129d0cf13f8852de0c24d390fc7d2bdf9186a254902549f536b1c42a8554d6cca1a9cfccee80691e77c3b67e8dc8c55aa
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\element-registry-56143ee4a401[1].js
Filesize44KB
MD503d1a3fa88260e598e8a48129d58534a
SHA1ebb5e73bbcdbe7eb72301dae2e89561826fd4190
SHA2560c8bb0b387c4cb28ecfcb5856c98744b6ca2c878039a1d8f58281f97456a5876
SHA51256143ee4a40106135464b2e5de5ca1b79a46be616d2e315065a9312dd1656a674c35ba808ab1faeacb4b7c142cdf7542bf2d620dd3b27804ca1a2a4d1f8ce812
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\github-elements-524aae40a1ff[1].js
Filesize32KB
MD50ef9b2c293fd8c59a51086a81d379d42
SHA15398043a1ec1a02a6a94d3238f1ea4da57646f64
SHA25602df70e70b0dd101603525ab65c20ac1a748feb5b01d7057a6496f96bcbd73c2
SHA512524aae40a1ff33f093ac07f583756f93802c33714b539456a333da4e34f0460aecaf3f656f573facfbb3a7dd7ee4ffbc3ace4b84fea82f75e663c64ca099cfb5
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\vendors-node_modules_delegated-events_dist_index_js-node_modules_stacktrace-parser_dist_stack-8585c6-b62c48e55af5[1].js
Filesize16KB
MD5929596073e8849b6a7c7966d9247d850
SHA1f94042590157ecc4b6d329fa8f15fdee2347f08b
SHA2564adf72138a53ffcde0e7dc84366762cef915609acf3ed3e912e7fbf051a24f35
SHA512b62c48e55af50851b8a590cf8576b4e134434be706dbd2f6f6b4ecd57e499dc4aad641e1acef8e523539945c4ddfaa7dda83c6d5289388a76487afcd052f529c
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_catalyst_-392fe4-1327b94f3269[1].js
Filesize26KB
MD55ff54a67c72cc7fa84817e0fe75b510f
SHA11a1cf59fbe8d463ef12b0a5e1a11f0050e47e57a
SHA25681a187c88d2cf527154d681ca1891c122b519035673689e706956ed74747e4b4
SHA5121327b94f32699e098e60e1814a5ab921f75d4f594c1036974572b69d3b70b6a4179021afe9f55b70fd956e5f6c1223ddddeb4e0fda25c42f98aa25f581969bff
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\vendors-node_modules_github_combobox-nav_dist_index_js-node_modules_github_markdown-toolbar-e-820fc0-1176135e4d90[1].js
Filesize18KB
MD55f9c4b41587e7a2b318b2a5222c04c66
SHA1ccd9b5c33099937404d9f16dbcee6966bcd59689
SHA256197776070ec3e0f130a099defaacce4a2e38f467119b89621a3f6152af1fe928
SHA5121176135e4d90915d6b565d6cae6e59f4d5c167d1e868ba094ba80320c127d0094a7d76dce0df4380d55f98a20fbb93f77b1d08b90fa616540f2af38cc793e13e
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-3959a9-8b35cf73f178[1].js
Filesize87KB
MD56f0a0c8dc1f58ca04604ea25e3fca3de
SHA19070db7b8851900bb67c84ac54fd2b1923f2e39c
SHA25662e3f05e42a7af5258f7ca2d6049fa915bebdf526d6acdb04f50a0745d7ecc3b
SHA5128b35cf73f178856345d3f4e37f42ddab2302a8cbb15d46a989e63c1d545ba26af030805bea99e78ab07f210cc50742208b77a3344c3f01036c70a10d324ac2ac
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-b7d8f4-6e6f83bcc978[1].js
Filesize18KB
MD5c51750a26a33cf80e50f4a3d0aeb6892
SHA1e98129a8f85a2630c649dc239a94d87eaf04ae4a
SHA2569ea40b58c32c154e2cb17834f70f7bf8c6049bac1dcf640bbda8a8ba1e0f7670
SHA5126e6f83bcc9782b534fb50f26d877fe691ced39bf579844a5f4667460de9d723d918d312f7f1454f29ab63bb9263f5364339f3022c8c33b8c7ce816e869f15eb7
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\vendors-node_modules_github_relative-time-element_dist_index_js-c76945c5961a[1].js
Filesize14KB
MD52cabd818fb8745b2fc7d5f92594269b8
SHA188108fecb3839f06671c2a21e35163e0e414b2b0
SHA25655cdbee6ddce98f5c299a24fb9851501f46ff0cdd2ef3b2f7bb572a3940b462d
SHA512c76945c5961a4f5b2cb1f85bd3cbb35d5e81f611c3ba05543acfe870728e94e9719c9331b65f4c2c8723960c5ac1e9cac0495a892f049b41ed3ffbe899b93700
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\vendors-node_modules_github_selector-observer_dist_index_esm_js-9f960d9b217c[1].js
Filesize9KB
MD5683a7fe431bded8fbbf7b5189a1b8209
SHA12fb527473877ea06ec6b023690ce933c216c5d07
SHA256f87c5b59b8f353c8762f2e44e1f82feafab882a96a0fad135dc6fc1555872ab3
SHA5129f960d9b217c457d467a9510dd9797c4ec9df9a892c0a3e1746b2b87dca8ec191dc901e983bc509bc282004967b6fd588dbff5bf70bc7e20a5ca32bc7f1d772a
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ER2IFQ2K\vendors-node_modules_github_text-expander-element_dist_index_js-b2135edb5ced[1].js
Filesize11KB
MD53f5c04894f0202a67ec6f0354c1f9acd
SHA16a6bf35008b0121bb5806e68bd5f87b20ba72f17
SHA2560dd1ec9da83fce11b3bfecf9aed67d4f33f7a1d4bd3f04dd1ed941f3b4c8b3fa
SHA512b2135edb5cedb3b45ffb96906170b242918156621c0d13000d18ccffcd2f20c2f1e2827b391cbe89f499745b748ae99bc51b972b4234ba739624caa4d2e33862
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\Roblox-Account-Generator[1].htm
Filesize235KB
MD534b7a55fcb9bd6cac998cec9ac8b5426
SHA19cf9955e3f10a2422755034283d3be1c4f2ff1de
SHA2560dfdf36aa1e1a5e2ee3aba46e518815a866398b54743be61858c860fe5e2ba72
SHA512eddc56775765cecf2f4eccb8137871eb2b7e75f5d0e890b9ddd4e43cc3007543b51cb94ce8b131aaffb67d624588cd2e38dc65a636fe3b3d52d51edcee295914
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-467754-25aa4f5b0d26[1].js
Filesize16KB
MD57832723c9c193a65a7b0e76bed2b58a8
SHA142816c9128d6645e2a7c9c74e148f5c9728bd7ff
SHA25642a51d824869173e2ada23e833e4c64ec566d15294cdaf27276c87b7ca5c5224
SHA51225aa4f5b0d26b1200d18acb63dee8e3c04eb1b01cb84ce316756f8f17904bff3310df030d553aaf6578fefe201f174dc44fe1cad83629fc779c2efd82a94054e
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-5276a3faf037[1].js
Filesize11KB
MD53e855a7d6aa0d98ad056c321ce1ae128
SHA1ea16fe78e6b620dd7dbbffb567d61c4f6c44524d
SHA25609ad4a9c952859abbee59fbeee5bc1c16b37099b7d9214c1339a33fa41ffa5f2
SHA5125276a3faf0375562d48bde775c5c8fb7491f877b71c2055f46455109db130acb9c05c2c7805a271b876d5fa79b74296fdde5ab1a3d5dbe933eb699dd217499a3
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_onfocus_ts-app_ass-421cec-d3af2356fb47[1].js
Filesize14KB
MD5c9698d20f6f4024fa7b622c1cae739cb
SHA16e0f6f4f2fe3314749e55abc856aa222b40363fc
SHA2564d4bae616851c4ca16253326e968847135c8eea71aafe2d418769429040a19e6
SHA512d3af2356fb47037c6409ffe9344ecf8acd012c337849b573125191ee10c8402fb6fd888971290557031ac446aa57d4e060d70e5610cfbc2409010450405d91db
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\app_assets_modules_github_sticky-scroll-into-view_ts-72d6e7bfb28f[1].js
Filesize9KB
MD5649b30cc83f9c1f8d8b96b7695cd1421
SHA11ff4602bc602c831e3a8def768d09cfc009b62df
SHA256198d2d18b62fe5ecea57f96aa3688a7fdf65f601e35ab8e761a1ee983265b43e
SHA51272d6e7bfb28fca9e36da6b3bfffa5f55fc4b583627157cd09fec4c799db4845a7406237c1e0b3bdd12200076443c58e81d5c29a1a97952d51292bba307c083f4
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\app_assets_modules_github_updatable-content_ts-4d91e80fb877[1].js
Filesize20KB
MD5b92f08edaac7820481a47feec4fa443f
SHA14f730963da84fc08087dd8443c2142a604f4300c
SHA25676030c97cfeecacc4472b8becdb66f5466c9dd05a85e0c96262aabc28b570810
SHA5124d91e80fb877a188a3e86f2852dcbb6801f121760c4e897795bc72522b8a4178697b4bdf3b28222f892a3e6c5720c4c96a53df9f908075106d0e3beabccc97e1
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\behaviors-b75fc2506ff4[1].js
Filesize230KB
MD5d917059028d7874ec5b4069817dde0df
SHA1d1df183a1cda780a6683e42876b8b501e31cf5a4
SHA25659565e5c3b548071c2d2abca5e395d7429073dd30259b37bcf22d99e7a99897d
SHA512b75fc2506ff4879a53ca3ccf2729912266667edc1fe6ca7d3e4de02a925e110f24c568aede68f06ec885bb8a07ed155e15622e54e72b99f1fa928777c6f24ac3
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\notifications-global-1506817815cf[1].js
Filesize12KB
MD5a3f0cd474d8600550ad59a77ca3575cb
SHA159650ab82fd77f4fa0d8a4524b0932c3c6d2b131
SHA2569f4ca5232e8c2a00bd69fa9cf6a8b67b9c5996eba79cd1e70819b9c75b4f22bc
SHA5121506817815cfe138fb0e2f5e6e72b0bf635d67f23b8cfd1719d2689ccdc7f5db0da71ffbcfa94f8f638a391e0b22fb6fc38e906b44172f15cb9c9aae06a3b1a1
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-fd5530-141bf1a3abfb[1].js
Filesize23KB
MD50b64152d6b140b9349093d1e60bb9c4d
SHA1d304828dd88496e2aa19d7dbd15eb5fd8f7c3f22
SHA2569e8cbeb328a3de4b4b5a02ad07f7494a2a10605d819e33d193ce4f70552f3e27
SHA512141bf1a3abfb0260791a58b2b93747bffe65856dd780f563e76af0f2f8e2ac55143443b40d973d6a052cd0980fc33cbf6cc3afd124d4cc34491f0fba1906b303
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\vendors-node_modules_color-convert_index_js-94fdbf91204e[1].js
Filesize12KB
MD545c96705c4845cf4d409e09f57e4a62f
SHA1fb3dfe5587c2ab6c94c115bc4df9179925e24398
SHA256a57c95350d8c8ec18156a2f897a8070bb65da57ef0a45b29a4fd6324906cfd76
SHA51294fdbf91204e407c61e1942daea616ab17b3ad58c3ed779aece172a939c2698a4fc46985052e8b50975701ee52ecd71e3bd8d25e3232b14380884af1c977c53c
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-06ff531-2ea61fcc9a71[1].js
Filesize11KB
MD5c59673d413609f36559412bd12b5776f
SHA17cd5f0a997f4d154400dacbfcab376395009f690
SHA256eaeb0852cbcffaef96c7a00b0080169f4aa752f0f1d5cafcdf6177e2d0698c5b
SHA5122ea61fcc9a716eb3452f0b6d6531d0c724f69aa55a032af882eaae96f7f59bd26f028f1832f1aa65bc6fe90612acbf145249cf83b285399e8e4da7fc4c9ff5d2
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_textarea-autosi-9e0349-704599a61056[1].js
Filesize30KB
MD5aaa09df15e19874288ce917fc1680d0e
SHA17ec1209af14330aea3303f303efe8785ac4a0d0a
SHA256595b19c4b5c680a5cea781f86b27541d010ed63e351566644a3dbb803d8dea19
SHA512704599a61056cae1c60dd0b9d9751f6a866461a4f368f0d15e271877da8f469116e5d3531327ae956284011ab5addf028f1538ec3d314c8239bccca4a51e112e
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-880ac2bbb719[1].js
Filesize9KB
MD56fee5ae66b3515a659af0ef1e63104ef
SHA12b3cb4839002d6ec44ae230968bfe3ba30fa5e00
SHA2560c05a71ebe46d680af577222bdea67e723372a350cdc0dfb0d4f1c0b4d3e7b58
SHA512880ac2bbb719b7dae39e8de2da4d712fe8abe809aed99d81f01c988b484bb36d1844cc287e6439f2b2b2d47150dda8051bbefe71d4116ec1b1060f9758ac62c7
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-e53a3f-cefa903dda50[1].js
Filesize22KB
MD5a99c5da02a918374e1f97b2b8739f483
SHA1234058ce241dd33bf01bddc7d69724f8b0834573
SHA256c3ad518824d4872eb0b6e1fccd934487d99f004a3d365b511879632c9015eb05
SHA512cefa903dda503129e32aae17161f05e2bdd10f8e397b90c1b51889c23570ba1852cbaf4cae352561df64545ff607c7af68f65c52c42e043839cb335eec0993b0
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\vendors-node_modules_github_session-resume_dist_index_js-node_modules_primer_behaviors_dist_e-da6ec6-77ce2f267f4e[1].js
Filesize8KB
MD54c374dbb8b51ca2a17089f1cbe0d81af
SHA116780554210360605236977d3220e017ef6af907
SHA256a2fe57f312a0e894c2ac18814d3d96185e35248ff0807578f32132134c9b333b
SHA51277ce2f267f4eb27e280615a84be951e6deefeeff796cf216dcef3366c68b03e609df7b2fc6e437c6ef3e626f80ee9469b9dd4a2f9a6606be2878d71980f8aa1d
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-1cea0f5eff45[1].js
Filesize75KB
MD5da12b1c4b7ef43005058dc23dc1c9241
SHA1ead4a499250e02d02de785d57e9c9ef0a5479246
SHA256e5fb7f565280a04a61ee0cb172345c19f4e3fce199cdf6ba8c7d7a8d1485bf53
SHA5121cea0f5eff456dd50d0ba331c24b25c3e46cac17f8486fff1d504dfb4b08de97b1c9e0f20c9f97f5a2e2d252096cefd77ddb5876d8d941b7e4e23cc1947d84df
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\vendors-node_modules_lit-html_lit-html_js-cc7cb714ead5[1].js
Filesize15KB
MD5044ea6b19bdb237ca2c2911dd285d4f1
SHA19451d4ebea616500153220d7efa137cae5520087
SHA256a6d419935f6f293c3fd5b543ef57c5cb3b22ebedee6b1cda1b9ca45e36667c0b
SHA512cc7cb714ead55b9a08ad75ab729ce084785a6287a782dc6f10aecd0af788c0070519a84c3fc5f197cfd99ba66891d988488920fc1e225f6e0245600870dd9aab
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\vendors-node_modules_morphdom_dist_morphdom-esm_js-node_modules_github_memoize_dist_esm_index_js-8d7117d67c36[1].js
Filesize5KB
MD556f7f274c31dc7466bba321ca7f2980b
SHA1c90cc8de61229db83a4e139a8def18c8b629c5de
SHA2567559850df847d01f92f5b98bff9c1b14066d7aa326458feff9980bf943ba4673
SHA5128d7117d67c363b6eba83cf07b26f89a06115015ed86845388245b491bd013c55d6a10b22dea14e7e6a18c3a4cf0011f82b45ae0950cc0ca682aeac8d24583651
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\vendors-node_modules_primer_behaviors_dist_esm_dimensions_js-node_modules_github_jtml_lib_index_js-b1947a1d4855[1].js
Filesize8KB
MD59df3b614049471137f614271f8e15f99
SHA1d85e313268cc2ef1788b1a8482a2d0cf8d1e4005
SHA25651f1f221edf00dd3df759a4dfbdb1da5710234f20c31f31e3b164f0aa9e2358d
SHA512b1947a1d4855f3022c3bf10b14b5cb764e72259550236e9c88903f78c558824107c651dc080a33ca768eb47be448a8ccf54e345755067a555147b93ef55938d7
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\vendors-node_modules_scroll-anchoring_dist_scroll-anchoring_esm_js-node_modules_github_hotkey-1a1d91-1bb71f3f93c2[1].js
Filesize12KB
MD55e47e7018f1fd8cc688d1b137a845c66
SHA14799f57188bb867526e5c4b2a9dbd81a49b73d5b
SHA25620713a700b8f47053141296fac93cf45d39b323b23d864388d39224c62ed1cb0
SHA5121bb71f3f93c23d1ffe47cb27f0879c6949488482dae90ea0ef0a336178beeba84875e557f26d42ac87a610520c7e2eff40b89b80b04ba770d5ecbc79fc1c66f3
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\OXRAE06T\vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-878844713bc9[1].js
Filesize12KB
MD584eee0a0d2d52ce4048f2dbdb3589012
SHA19723f142ff6ce47f65dfed06d70b68a305a8dbb8
SHA256bf11813ce0246da52cb3132837619c44d1e837e3eeebbbef12137dd91dfbec7f
SHA512878844713bc98efc35c1a8041e3a53fa3e2ac9669dddeeeb2962ce6cdd465f84f0d41c3774ac27bd4bffcfbdf4832897e7711dbfd17adfac9d2fab206292c4e7
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\YAMNA6LF\Roblox-Account-Generator[1].htm
Filesize235KB
MD532e22e36198f487f33eb91d2c3ee77e3
SHA138361f4116360109278f8583e05c6fc3edebbc4d
SHA25677b5d741e3818148eec08eeaf1418c83df3931ee0d17068142d418b74125f33e
SHA512c71395ef8a7ea6fab0b8dfa999aa22984ec253710d5a51fb497949e8a46a5ac1deb87a922707dac90532e00179876221a235355ebf295a954e32afaceb1b9efa
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\YAMNA6LF\dark-4589f64a2275[1].css
Filesize48KB
MD5f61d3d72b892ced3002fed1b6dae1a06
SHA1efe5d615d7f12c1e089ed7e68238d3e161b7ef4b
SHA256b459cea038df58dd56e1cc7df606193ea027792427343f4d35a535fb0e96ebcd
SHA5124589f64a2275cb4827c2f43b254ce635913bf9eb54a20d479c2cd12b1c506105de508d551bad833ee1e9396c31e50a552d5186966ac974646e84330c3348161b
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\YAMNA6LF\global-31defe89cafd[1].css
Filesize277KB
MD5f39a1ca77bee9dcc15ef916dd55274fd
SHA11d9516a1715d78534cbb0dd87a08990002b7c412
SHA2560db986206964b2864cee67337a3afcc536bcea0d12c10a83f0dc8d7fcf4cc46b
SHA51231defe89cafd690f06151e7f2932937364f1feb49b74d6ac5e810b69fb43c6d3f1994089a1bd7f8dba2b3861fbee5be739b60a70cef8262c7e65b3e2b4491036
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\YAMNA6LF\light-f552bab6ce72[1].css
Filesize48KB
MD557b715fb666fb30b8734dc22bc74467d
SHA19fc81a5dceb105e5cc83b1b3b859d3f54b8ac898
SHA256e9f53883f1a355c1c0eaf1e6c7e9a278da8cd726c7da7a5db462ebe436496d59
SHA512f552bab6ce721c39d04a62d52ccb9d360387b45011a271807c7c677c45458ad0acd77c5f618a3172dddf0dec7d555f78e6d3b6217becbc97d28d62763f26da13
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\YAMNA6LF\primer-fa3434a1ba0a[1].css
Filesize330KB
MD59d810cbc96c21361d02f677103a34e7d
SHA1cd540740f4c7a135d65bbd9e30b265252f877e12
SHA256273e68d7232307185309cc38ab390b80fa30e8f6c09675349fc10d6c2d9b2ae0
SHA512fa3434a1ba0a7d83b4ad5753c0f59371ce5092f12dbd6ddf9d2cf31716e21ffb5fb10d4ff2a1be7cf1734b1c9ca0050dd7d7803cab44b452c4d2a193abc0692b
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\YAMNA6LF\primer-primitives-4cbeaa0795ef[1].css
Filesize7KB
MD5f78dad1c29b12057a61e4031fd6cd307
SHA136953db7f8d8ef34aedf6d6a608287f1b93586f5
SHA2566b4f34714b5e626392f944037b222b232adb545d407f96136d31934f685a0a5d
SHA5124cbeaa0795eff125cd72798ad6d5db8682a910a200d54aa52dcfd3e8334f62a59eb4a2d7eec3158756bc196e66559f7e08a7282e7c507902b26891a6ce3eff09
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\A66A8DB907BADC9D16AD67B2FBFFDD5C
Filesize281B
MD59ffbd977ef296f7332ba12076d9a2623
SHA1c087ba1bf1e288136cf5baf62935079bbac5c947
SHA256976df051972ae59fd1c92d3032be7fdbd4fc1660f61c83079044fdc6cae2970a
SHA512e0581030aab12526181fc2aa6eb53335466be0cdf88eb378503fc25f57818d109976145ab1c575fd1dbe900608c0490f8264683ed26528b29532d255dd477e87
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25
Filesize1KB
MD529fba829e51d351380b2d06fb58593b0
SHA1c629a7e872a366d9b625ae5d0b7bd43fa52e79bb
SHA256ac0ab66007dfbb74a2a17294f21acd13f3eafe9b1654c28bd31a9ba549c4f98a
SHA512b517e9d346763e340d5a81567ae7bbf202c24d8a229f51bb2cd26789b1e6972b284589dce542447f22e150ea3516226764cb8530a03f95a922d9c022af512df6
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\D0E1C4B6144E7ECAB3F020E4A19EFC29_B5F77004C894173A10E3A199871D2D90
Filesize979B
MD518a1f140623e21ec4b37490a7a021f78
SHA1e958fa0815360968f60abca23432fe17af3b407e
SHA256356a6f6647021463249be49c7f3c28346f62f0b001fa151c8839cd2f3736060b
SHA512eae7006a5504ca343e4aa8173c86eb4db213f09e0bc2d6715ca1a65fd4c5a9f124560125c4e208691707be8ccf3e85e12e626e01303fbf741bd1788e8d2f82b4
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\E2C6CBAF0AF08CF203BA74BF0D0AB6D5_49536AB5156BDD74EFF881D01C36A419
Filesize471B
MD53093dff837ff85e9eeb11ca4b06fae3e
SHA1b804395cf2e437483be813d2c87975e1c1a5b0f9
SHA256bdfa223944dfd71fd785379dbedf679dc184b131d3fac31278822e192824cd0a
SHA5127b96da474044dc742079531461e53c46aacb762477320559d7cde38f4aa79d0662c946d48be81b4ff56ea33b36f677641e8074388a11085e9b0c81379856ca72
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\EAF8AA29A62AB29E614331747385D816_F9E4DC0B9D5C777357D7DB8DEF51118A
Filesize314B
MD50eb6c4f3fe929870a37642b8e2ae657f
SHA127783905e8b1fcc840fe93b3da0652f0156e3301
SHA2565b1fb5e196684c65d2fd7b16ec8092e1e8c246c05edf2f45c0df993d4517aa2c
SHA512164623e612c85ba5a807b935a6ae6230d077e615dc7ed102c8f6e25e389ef63d3cc0da8f6066de9477675fe80328622cec8fac98382ec909d878f4454476398f
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\A66A8DB907BADC9D16AD67B2FBFFDD5C
Filesize480B
MD553ea9a1b03db8a5ef02fc81d117cc594
SHA1fe61b0cc611c6a31c62ed0ba4d9ca07be40acfdb
SHA256b1513a1139a25d0d52ead376366cd9ff8e6f88e9dfdb6272a2b3803bb36edeab
SHA5128c17c007f6aac616b2af01e6302122ebfdca08aefb94a453d4443576cf08cee50b48ddb51b9afbfb7ea8e64d8d80039e76c73cf930332a36a26ba13ae6b21de0
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25
Filesize482B
MD5929c61947d42ad39f4b8b9275167e638
SHA1fcc1e326830d87d9a3b5bc8e7bc0d91e5efcbb74
SHA2568cb3ec0fe06c897bbb4d07520303e8c65a2162aa8d0916fba6db6c1d23b99bfe
SHA5128947e366e582bd5cbd318734027ef43dbe26c9062fdd890c112be17bbc789d6bd32289f24b43a96a16aeab7aa2b6866865af555237cd8c09fd364452080401d3
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\D0E1C4B6144E7ECAB3F020E4A19EFC29_B5F77004C894173A10E3A199871D2D90
Filesize480B
MD524fbcbba58afa1151a285eae547e70c8
SHA1ae5b4140563ca881b9d7ba5d4da558dbf467641c
SHA256053698bb26779da6977ec9413b2d86d773622c1438d79c931a279fbb176ee19f
SHA5121e778ef7f2aa5c5047c89d37e2b75a9148d0decfc3b4954d6a21837538608eac4bee514a25465498a47306af124a8ec74d0a49413def988013fd34c86d244af3
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\E2C6CBAF0AF08CF203BA74BF0D0AB6D5_49536AB5156BDD74EFF881D01C36A419
Filesize412B
MD58dbd5618d1618ce9b9bf2d5849122f17
SHA1e330c3a8a2276dae3f877f8bd4609ec7a8ceae27
SHA2566f7f33057fb6aaaf791856fd25bc3d2bd56c7543d5a594effaf6b5bfecb91c4b
SHA512ce7c82bfb91344ab8eba40089461e841e855b0fa59594ee38b16fed723459cfff89d31429856f68981b6712d1262056882ea7f10882b0c5778d363b345d320aa
-
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\EAF8AA29A62AB29E614331747385D816_F9E4DC0B9D5C777357D7DB8DEF51118A
Filesize404B
MD5018787f7acef8908af2cac6815f09c8f
SHA1c4dd988a0dde6589f89113aa67a95ab5305873f0
SHA256fb0d1b4c6851566549d42f553e2a89cefb9a0db8256d01a7682539707da8e23b
SHA5125c17b8a61127cc77697f5b98e71c554bf46115df474929118a73ef56a2b3732d805c54f9bb02a84870fdd96fe625243d1c0a9398a158fadc1800de0cefd53936
-
Filesize
22KB
MD580648b43d233468718d717d10187b68d
SHA1a1736e8f0e408ce705722ce097d1adb24ebffc45
SHA2568ab9a39457507e405ade5ef9d723e0f89bc46d8d8b33d354b00d95847f098380
SHA512eec0ac7e7abcf87b3f0f4522b0dd95c658327afb866ceecff3c9ff0812a521201d729dd71d43f3ac46536f8435d4a49ac157b6282077c7c1940a6668f3b3aea9
-
Filesize
6KB
MD501e21456e8000bab92907eec3b3aeea9
SHA139b34fe438352f7b095e24c89968fca48b8ce11c
SHA25635ad0403fdef3fce3ef5cd311c72fef2a95a317297a53c02735cda4bd6e0c74f
SHA5129d5153450e8fe3f51f20472bae4a2ab2fed43fad61a89b04a70325559f6ffed935dd72212671cc6cfc0288458d359bc71567f0d9af8e5770d696adc5bdadd7ec