Analysis

  • max time kernel
    150s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/05/2024, 08:23

General

  • Target

    8016e4914230eda85ad232b320ec42ab_JaffaCakes118.html

  • Size

    158KB

  • MD5

    8016e4914230eda85ad232b320ec42ab

  • SHA1

    0effdea0d6f83c8b520854798e285461e92a84bf

  • SHA256

    6555f693a627f7ba390b7b9dcf1532e7a5a52b073cac452fa0c4e7046ad5a377

  • SHA512

    1e6201b1790d67b3cb89d6e99f54912fa398cd5d0008392265a2b08af0794a1aab732353ab32460249f4e4dfd2e9275527fb94fa4b21ef7c027ca053976649cf

  • SSDEEP

    3072:rFOS13z2UP13G4k5QhLpOatVlRuuF23/fNbYaaLStROcxWUu/v66sbsGon4G59tv:h/73G4k5QhL8atVIfNbYaaLStRfxWUuh

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 10 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 11 IoCs
  • Suspicious use of FindShellTrayWindow 25 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\8016e4914230eda85ad232b320ec42ab_JaffaCakes118.html
    1⤵
    • Enumerates system info in registry
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:1648
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff95ffe46f8,0x7ff95ffe4708,0x7ff95ffe4718
      2⤵
        PID:1064
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2168 /prefetch:2
        2⤵
          PID:3712
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2220 /prefetch:3
          2⤵
          • Suspicious behavior: EnumeratesProcesses
          PID:2516
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2828 /prefetch:8
          2⤵
            PID:2392
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3288 /prefetch:1
            2⤵
              PID:556
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3432 /prefetch:1
              2⤵
                PID:5040
              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4728 /prefetch:1
                2⤵
                  PID:4960
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5072 /prefetch:1
                  2⤵
                    PID:1560
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5436 /prefetch:1
                    2⤵
                      PID:904
                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4660 /prefetch:1
                      2⤵
                        PID:2064
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3312 /prefetch:1
                        2⤵
                          PID:2492
                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7072 /prefetch:1
                          2⤵
                            PID:4736
                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7052 /prefetch:1
                            2⤵
                              PID:4940
                            • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                              "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6328 /prefetch:8
                              2⤵
                                PID:2488
                              • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                                "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6328 /prefetch:8
                                2⤵
                                • Suspicious behavior: EnumeratesProcesses
                                PID:4412
                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4124 /prefetch:1
                                2⤵
                                  PID:3292
                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5444 /prefetch:1
                                  2⤵
                                    PID:4040
                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2068,11307317853569583637,8356040441624429862,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5292 /prefetch:2
                                    2⤵
                                    • Suspicious behavior: EnumeratesProcesses
                                    PID:2340
                                • C:\Windows\System32\CompPkgSrv.exe
                                  C:\Windows\System32\CompPkgSrv.exe -Embedding
                                  1⤵
                                    PID:4592
                                  • C:\Windows\System32\CompPkgSrv.exe
                                    C:\Windows\System32\CompPkgSrv.exe -Embedding
                                    1⤵
                                      PID:3612

                                    Network

                                          MITRE ATT&CK Enterprise v15

                                          Replay Monitor

                                          Loading Replay Monitor...

                                          Downloads

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                            Filesize

                                            152B

                                            MD5

                                            537815e7cc5c694912ac0308147852e4

                                            SHA1

                                            2ccdd9d9dc637db5462fe8119c0df261146c363c

                                            SHA256

                                            b4b69d099507d88abdeff4835e06cc6711e1c47464c963d013cef0a278e52d4f

                                            SHA512

                                            63969a69af057235dbdecddc483ef5ce0058673179a3580c5aa12938c9501513cdb72dd703a06fa7d4fc08d074f17528283338c795334398497c771ecbd1350a

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                            Filesize

                                            152B

                                            MD5

                                            8b167567021ccb1a9fdf073fa9112ef0

                                            SHA1

                                            3baf293fbfaa7c1e7cdacb5f2975737f4ef69898

                                            SHA256

                                            26764cedf35f118b55f30b3a36e0693f9f38290a5b2b6b8b83a00e990ae18513

                                            SHA512

                                            726098001ef1acf1dd154a658752fa27dea32bca8fbb66395c142cb666102e71632adbad1b7e2f717071cd3e3af3867471932a71707f2ae97b989f4be468ab54

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001e

                                            Filesize

                                            66KB

                                            MD5

                                            0fe383a7ddb9bbaefc3105b3297f5583

                                            SHA1

                                            f80c9d789f251909c7560bd91a9e1b9a10c26362

                                            SHA256

                                            d7ad4aad4e48174c30ef21fc32c9380659d2c99a5c39680e10ed9752139d8683

                                            SHA512

                                            31de1f59377bc76e5d602d02273867ce750bbbccb7edc8f2803c0188002ecae6752ac3ec31c2108e64b0d871b01e6a8a06711969dc68bd9823303def0e7c1ee4

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                            Filesize

                                            240B

                                            MD5

                                            d0b5ed4cb7b04e64a0129e4b8d4cc096

                                            SHA1

                                            7caa8dd3b1b9fc857a1ad189573486e6112c7ef9

                                            SHA256

                                            84d748692ff3548abffdcaec7184d9ff1ede928f0c322f169a0e6a47cac7d457

                                            SHA512

                                            0ba4a47e628530d6a1f1a3872c1679116f9ee0f92137b44d0407496f57f8237a81a98fdd5fe10a45721a85a138124e23edfea2c9ee126267e4d89981b31c6552

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                            Filesize

                                            144B

                                            MD5

                                            66e96b183e14a2eeecba4a708945f749

                                            SHA1

                                            ac2072e3ebc6667ec8b58a1e7d9274b28f6a9255

                                            SHA256

                                            c87c7c2798fc5c6a0136de0da17302c67cfa2b5e91f74fbc5dd9d7c4d872282c

                                            SHA512

                                            b5ddaca0baacaaf5b705c1c66b801f6c0c9a2aa3456dbb67860381eeb47f7bf8519671c60bdf8955eff3069578697199c942f7b1d9c6aba6d9ac7cdd50292e7e

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                            Filesize

                                            216B

                                            MD5

                                            eab87449082ea5af1552926e90df0a9e

                                            SHA1

                                            25ba6d5b016f2906dce83a1fb6d32008e1c72dd7

                                            SHA256

                                            4f76e1534e290caa27973339493aa075d514646a2302f6343324f3ff37dc3912

                                            SHA512

                                            8eb555ea3ac2568a0b903914e77f40530b7feecca4d0b4d93f80e69516f09a9fdc5aad4207fadc22764ef7e3088a9f20732bf12adcd15bf5ca71eddc3087e555

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                            Filesize

                                            1KB

                                            MD5

                                            0f505bb5e0d6fc04e20c1e8598cb77fb

                                            SHA1

                                            e7d3154e3ad5e3f4ec63545a7d9b71b22591b450

                                            SHA256

                                            50a7161451964f8a35cd4e7411e239715587f3dfa0966f58c8d6265dc8238e9f

                                            SHA512

                                            f715053843264db268c0def53b65019f06e9f600c5bc6b8bda7d5e49e512ba79394a12c578c77a99ca8359448272b8ca15a4b9f9dae0168646ba3a617545fa93

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                            Filesize

                                            1KB

                                            MD5

                                            94de80cd2a86ec1d48573fc7817d9377

                                            SHA1

                                            2feda314550f0557b912278dd5ef6b95fa21839c

                                            SHA256

                                            409697d24cfecbb39527cec7def0e955c01fcd962c6f33fec27e1e522a347900

                                            SHA512

                                            5cf4a6b876a3a6595207bf606d2589710fcc7d846a0a1f95ea9d1f3213b7d9fe682c8ab7f7906d5fbe762cf1d2f1a3135f0f726b6a541e1e12c525c72c710089

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                            Filesize

                                            7KB

                                            MD5

                                            18b0e9aad578dc5602aad8ecaead1127

                                            SHA1

                                            0264f20352d355ae3fd307f13a142d0b04886517

                                            SHA256

                                            7c74a10a2a6f2058ab833618187b45489351e6a3c23bfe547a0f1b20f368d26c

                                            SHA512

                                            42242320c704368dd26bd942b6a620771e2c529f930cdcf796e98ccceab1291f9d52d25cfd160ba4159b2078de363c083e235d107b5409ab43c4312453ed3e0c

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                            Filesize

                                            5KB

                                            MD5

                                            c35eaabedbd0a0e708b3f38cae0e3a46

                                            SHA1

                                            49badb325b33b87ab0872b79266cd41b215d0c18

                                            SHA256

                                            5af0b4f164d030ff2b57bfd4c59dbc0b618bc07e28cda07c0645849b42428c47

                                            SHA512

                                            8c5481a07115d2d3655ea004bea8a77a3b9b4263bfc3d7d6f007be6b11a19b156c32a6b8dd09dfdbbb63bd38366ad27623727af3b8fed3722a5b99c28dd1ca0d

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                            Filesize

                                            7KB

                                            MD5

                                            4408beb48d68b1311033cd3bf9b2031b

                                            SHA1

                                            d90d2b9bb958a284dbd8c96e312cec773af4fd30

                                            SHA256

                                            98aec8d5085e991b37174a18073dda3b8a619105b9452376c2e41c0ce9e574ac

                                            SHA512

                                            d690ef81388314eb3789edc08d343fc5be7353cc0e4f23ee9dfa1ebf216b7271a4e55a0faf1087b302c49a319aac228a1a271946d86bad30dcda418419f0a685

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                            Filesize

                                            7KB

                                            MD5

                                            ff696e0317990eb07d323e6f1d55bd3e

                                            SHA1

                                            7bf0abb95429b4565ecbec6a4cbc29c92878d8b8

                                            SHA256

                                            d3192a651803deb89dcc7aa6be0386c34299ab4af1ecb9f40ee1d2a74f0b2513

                                            SHA512

                                            7c4c4b68554d6bfffe0283effbf20d2835e40e0939d017752ab1622fc207aa64397ad0f5c38fd7ff3905be9eeb8d079c7597be8e4220c002cdc320167928ee65

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                            Filesize

                                            6KB

                                            MD5

                                            238d376e191654df0437872b5b8f586c

                                            SHA1

                                            ea78b79a23bac009c4e3580346a04c031851581f

                                            SHA256

                                            077cb19dc4b3037175584926840b7482c52d61339b967f8842d7802c5de09808

                                            SHA512

                                            bb03d23b8f2fa3f0bf62b156de08337e8300f11c5330a363ccd31fef4e1c82fe95c591d1360ab80b020f876b2ef5f726b473e7424c24650601639645b651e19f

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

                                            Filesize

                                            705B

                                            MD5

                                            b2807b4c259b58cb842f246a291f257d

                                            SHA1

                                            41c8fd310fd53964b7c5603971336815975ad9ed

                                            SHA256

                                            3548e8f6620cc1073a22b8c3491cf9f8ceb79a3a1afd087a0fb447c220141c0c

                                            SHA512

                                            d327dc07d71d1776687e4b5f6beacbcd58329bf983b51f710c299b03960dcde60199c2192b18ad52a97c60fbb782f53707a579364a0a826d3d83de814f2be2e6

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe57b844.TMP

                                            Filesize

                                            370B

                                            MD5

                                            4caac684883a6821c3dcbb9f9e271199

                                            SHA1

                                            665e397a8aa4b41239fd9f59e8b6693a01c5c920

                                            SHA256

                                            75318e9a72d4e99fd388d003cde1aa36e3b607bb753389760365057af6251f5f

                                            SHA512

                                            a53c802e89d8fdb7e309901ae22eaa8053f93262fdba46b81d060fd16ed6ced7a6bbe3191df1e21a8ed241cd19ae4907b0861ad00df663ff01cfa8ff9aedb889

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

                                            Filesize

                                            16B

                                            MD5

                                            6752a1d65b201c13b62ea44016eb221f

                                            SHA1

                                            58ecf154d01a62233ed7fb494ace3c3d4ffce08b

                                            SHA256

                                            0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

                                            SHA512

                                            9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

                                            Filesize

                                            10KB

                                            MD5

                                            e753fd8c67ae002449b0ee341c232086

                                            SHA1

                                            3724e244980a27b9a014edd41734ae26b4ddfe85

                                            SHA256

                                            1721695d66e88218349c6b132c90274700ec9be64d54884b9daf9089bc61bff1

                                            SHA512

                                            578bdaae009bb74dc0db6a0c0204c728bd790199544c7564287a7eac6f013575ca329681c73b44028c55cf4aa515fb3fe895b5e2f72f58e648e0717afec30e75