Malware Analysis Report

2025-04-14 00:39

Sample ID 240530-rkjp5scd69
Target 846f4636b430481a63965c65921207b7_JaffaCakes118
SHA256 8778e55f0680e51220cd0359a32a4606b3061f2c6ba94447d17ff54df67242c3
Tags
score
1/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
1/10

SHA256

8778e55f0680e51220cd0359a32a4606b3061f2c6ba94447d17ff54df67242c3

Threat Level: No (potentially) malicious behavior was detected

The file 846f4636b430481a63965c65921207b7_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.

Malicious Activity Summary


Suspicious use of WriteProcessMemory

Modifies Internet Explorer settings

Suspicious use of FindShellTrayWindow

Suspicious use of SetWindowsHookEx

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-05-30 14:15

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-05-30 14:15

Reported

2024-05-30 14:17

Platform

win7-20240221-en

Max time kernel

128s

Max time network

140s

Command Line

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\846f4636b430481a63965c65921207b7_JaffaCakes118.html

Signatures

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "197" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "197" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\IETld\LowMic C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "492" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "407" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "288" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "288" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10401" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "115" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Toolbar C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10313" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10207" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (data) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10289" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10395" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{02904A71-1E8F-11EF-8A46-EA263619F6CB} = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "121" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10313" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "8303" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "492" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "19566" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "423240372" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10313" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "498" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "18417" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "288" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\InternetRegistry C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "121" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "282" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "498" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DomainSuggestion C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\LowRegistry C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10295" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10289" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "121" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "18423" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "8303" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "498" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10561" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\PageSetup C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\NumberOfSubdomains = "1" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "8303" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "410" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10289" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "0" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10395" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "400" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "492" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "9768" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "0" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Internet Explorer\iexplore.exe N/A

Processes

C:\Program Files\Internet Explorer\iexplore.exe

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\846f4636b430481a63965c65921207b7_JaffaCakes118.html

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2336 CREDAT:275457 /prefetch:2

Network

Country Destination Domain Proto
US 8.8.8.8:53 www.konthaiusa.com udp
GB 216.58.204.74:80 fonts.googleapis.com tcp
GB 216.58.204.74:80 fonts.googleapis.com tcp
US 8.8.8.8:53 www.youtube.com udp
GB 172.217.169.46:80 www.youtube.com tcp
GB 172.217.169.46:80 www.youtube.com tcp
GB 172.217.169.46:443 www.youtube.com tcp
US 8.8.8.8:53 www.facebook.com udp
GB 163.70.151.35:80 www.facebook.com tcp
GB 163.70.151.35:80 www.facebook.com tcp
GB 172.217.169.46:80 www.youtube.com tcp
GB 172.217.169.46:80 www.youtube.com tcp
GB 172.217.169.46:443 www.youtube.com tcp
GB 163.70.151.35:443 www.facebook.com tcp
GB 172.217.169.46:443 www.youtube.com tcp
US 216.239.32.178:80 www.google-analytics.com tcp
US 216.239.32.178:80 www.google-analytics.com tcp
GB 172.217.169.46:443 www.youtube.com tcp
GB 172.217.169.46:443 www.youtube.com tcp
GB 172.217.169.46:443 www.youtube.com tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 static.doubleclick.net udp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 172.217.169.74:443 jnn-pa.googleapis.com tcp
GB 172.217.169.74:443 jnn-pa.googleapis.com tcp
GB 172.217.169.74:443 jnn-pa.googleapis.com tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 i.ytimg.com udp
GB 142.250.200.54:443 i.ytimg.com tcp
GB 142.250.200.54:443 i.ytimg.com tcp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
US 8.8.8.8:53 static.xx.fbcdn.net udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
US 8.8.8.8:53 fe0.google.com udp
GB 172.217.169.74:443 jnn-pa.googleapis.com tcp
GB 172.217.169.74:443 jnn-pa.googleapis.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 204.79.197.200:443 ieonline.microsoft.com tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp

Files

C:\Users\Admin\AppData\Local\Temp\Cab251F.tmp

MD5 ac05d27423a85adc1622c714f2cb6184
SHA1 b0fe2b1abddb97837ea0195be70ab2ff14d43198
SHA256 c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d
SHA512 6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\265C0DEB29181DD1891051371C5F863A_242CEA72AD255CEF17D8B88AD3038326

MD5 d6101ee100c01f7c5b1fd673fa0b0d8b
SHA1 444b5d34172a5c151838af10e30fb4dca5e4d0be
SHA256 3d857ccc5087119ab72d4f5210fa11f769bbd139490c4f1725e4c43cc6e2badf
SHA512 a649ba9f3ea14515ff6717a53a66dc539ab9ada1dd954f7e2983396c4b7dfbef580324725d45953c948b31845473f1f9822140027400cfc159b27d632631f93c

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

MD5 49aebf8cbd62d92ac215b2923fb1b9f5
SHA1 1723be06719828dda65ad804298d0431f6aff976
SHA256 b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f
SHA512 bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

C:\Users\Admin\AppData\Local\Temp\Tar2601.tmp

MD5 4ea6026cf93ec6338144661bf1202cd1
SHA1 a1dec9044f750ad887935a01430bf49322fbdcb7
SHA256 8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8
SHA512 6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8ADCJI8Z\www-player[2].css

MD5 6e076abc1095221e4e3e21dbd9d1db4f
SHA1 e908cc0f7829aea16b42d8fec6aad567c41f587d
SHA256 c7e69ec7e436426c5edb45bb5fdd943623f987ecfdb86413528b596e5b0888e9
SHA512 3ceb46ea8e5d5abca4a1a053f20b38ac6d6c9ee60594da54122f4ff09422495261dc9356d0ed0c240ba44324c37bde120a90655b2ea40556280df674ab44fe2a

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8ADCJI8Z\www-embed-player[1].js

MD5 d2056f8d081fbfffcab81d61ea45b151
SHA1 710243082f40626f64943ad3b656400f444d7130
SHA256 49fa9b168cc8bbc037cf4498e31c355509e9b438b0d19fcf750b1c5fbd1efcaa
SHA512 530ca2c291c44d3d2b5869b0ae661ac047748a5cab50de280a2c8dbd26b52cdd71a906b3730e8a849debece542eb919462a8407ef2410acf28c57d2b6068cc14

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8ADCJI8Z\base[2].js

MD5 c278c2c073c8f274a781212b9d66c608
SHA1 9d0647e70936dde8b2f26d51823de1e2de809aa8
SHA256 9438676ab31d649b3efa96236e8bd367c16104bbc20632cb333ac98d717d5a9c
SHA512 e79fe476bf4af071586f14782eeb3db4bd7e2b06562bd160752b3e1f6f796ccf2fdb3016cc2333f3b390ffec47d8e001eafa5e30a07a11a9ef7b96b3e556f0c3

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 c1ddea3ef6bbef3e7060a1a9ad89e4c5
SHA1 35e3224fcbd3e1af306f2b6a2c6bbea9b0867966
SHA256 b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db
SHA512 6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4JZQ5QLK\ad_status[1].js

MD5 1fa71744db23d0f8df9cce6719defcb7
SHA1 e4be9b7136697942a036f97cf26ebaf703ad2067
SHA256 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
SHA512 17fa262901b608368eb4b70910da67e1f11b9cfb2c9dc81844f55bee1db3ec11f704d81ab20f2dda973378f9c0df56eaad8111f34b92e4161a4d194ba902f82f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 9e9a185af79e151c112121835112e73f
SHA1 6b4107a69a6f438d947370dd668df605eb429b37
SHA256 d7f912019c8c63d5cfaf0de7162e71b6132c094bfc5cd4a3e5c8c8dd59c07742
SHA512 e30423cd289224a1a9205102f5eea6ef4f1284d3637b27863fd9354b7cb91ef981782f3e1e304729c99e764841319cb56266ed5d63eef2050cfe6f38d4edcc14

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

MD5 ac89a852c2aaa3d389b2d2dd312ad367
SHA1 8f421dd6493c61dbda6b839e2debb7b50a20c930
SHA256 0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45
SHA512 c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 21556dd7fc9f237b7d7177b37abe5127
SHA1 fd4c260bcc569158899381d82f7e98dda6bfc117
SHA256 0541fc4e19480bf7a7c3efc2e9d7373bae5dd76d37c74810c254598e77db0333
SHA512 3f60359c389ebd0d473dbe7c09d15c941ba95a9562b801509c95c9773df925e113050f796790f677199db98e861ff2d09761f255263698e008e880a8fca0d5ed

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 f7ce7b515773b804ce1b1063c5aaaa29
SHA1 74cc86b05cc142a5da75d743ded9cbbcd69d8faf
SHA256 c9e5337784acdcdba7f1dff54ba54a586f8669cc5daccb66fead4759ac8b974f
SHA512 0cce66da57aa590955378d12b73480a5381390fad15392565ec316531efd5b6e144e8a717d99f01bd9182c3499ced84203a3c1f8d5510370661e818927668a65

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8ADCJI8Z\KFOmCnqEu92Fr1Mu4mxM[1].woff

MD5 bafb105baeb22d965c70fe52ba6b49d9
SHA1 934014cc9bbe5883542be756b3146c05844b254f
SHA256 1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed
SHA512 85a91773b0283e3b2400c773527542228478cc1b9e8ad8ea62435d705e98702a40bedf26cb5b0900dd8fecc79f802b8c1839184e787d9416886dbc73dff22a64

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8ADCJI8Z\KFOlCnqEu92Fr1MmEU9fBBc-[1].woff

MD5 de8b7431b74642e830af4d4f4b513ec9
SHA1 f549f1fe8a0b86ef3fbdcb8d508440aff84c385c
SHA256 3bfe46bb1ca35b205306c5ec664e99e4a816f48a417b6b42e77a1f43f0bc4e7a
SHA512 57d3d4de3816307ed954b796c13bfa34af22a46a2fea310df90e966301350ae8adac62bcd2abf7d7768e6bdcbb3dfc5069378a728436173d07abfa483c1025ac

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9ZQLLOZN\7JiwK7VGSOtB3mis6Wh6LBhcYaqHwc1q3D0jHC--mMI[1].js

MD5 3afb3e09d43c2e4acb2638dfffedc834
SHA1 797c21faaa3d66834cb863203ef18c541be4bf5c
SHA256 ec98b02bb54648eb41de68ace9687a2c185c61aa87c1cd6adc3d231c2fbe98c2
SHA512 0473ce95bfdf89f62bd68e97ee8027e565f187037a8c83db1bed3b5a7507a8dba93a7133ae907936a95fa5afce90bd2ceb80304c976cfacdbdfa17778d410511

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 30084655edeeda7d6e3b7e60046a515f
SHA1 0371dfcb309fa8abe23d3c341a2be3acb63c7525
SHA256 88c6081fd3bebedbc6031ec354c84ba9cbf433cc76c246b2bf85a83037ab1f14
SHA512 18052e52813b6d2b7a6d42e680985819ea6f8ec0e693c23fc1847c4822aef97cbe2f9091ec2d04a6405672dbf6ed985dddb2588b47b85776adb1383e20870749

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9ZQLLOZN\embed[3].js

MD5 d1b947a8f9279cc9711618d2c8a35b67
SHA1 cc26a3ed8a96cfe7108b56a9e688bd1e3416da47
SHA256 ce693c69e2d9af01f3e2ebd8740af63f06b8031a55aa965ad6d4ae995b98a0d1
SHA512 9eace3e49f4192cd507b9736083a308e3083c3a976270b7372830543d12f53df8a3f49db6a932877b02db9ea34985b564629ca8b1c95d62420f28a3d68c75fe0

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4JZQ5QLK\remote[1].js

MD5 069a01af38a663b6b1533fe6e771a2a7
SHA1 5f8d31e9d10db3f795af3f2abc61c59d8be880bf
SHA256 14bb94a26a7a59eb8381768f570bdd03ea644a35802842552e2366739df72093
SHA512 07618813ba83a81051efc37563729fe65c555033193b3505a2a018e54a0c55cecfc879bfb4c7299875550b9adcb3326377504134f3e32761179b23fb54ae0c86

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 eaa691f1cbd3d31b3e29d019affa5e23
SHA1 e9544a977bf84f4000bd2098d7ade6944308db17
SHA256 1a755442b4a8260c80208ad8c004a3b2bf770e579217b59eb57b424f69aa6368
SHA512 13d26f5ca95dd932514b7e9d0f28c3ff78c8ec6bee590b60dd053a43af03dcd688f1dfcbe801c3e3bce20d373ef706cf1d8fa7df86e7c0732ceed4f25a3b056b

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 15b6732ada574de612a0b70406a165b0
SHA1 7e98377b393818b9da21a3ac0f27eb316fc7d000
SHA256 767f57374d83adf232e069e80fe5bc6aa7009958084debd706ae2b3f18da3719
SHA512 a5da026bfe5b850ed65731d896d5f92e178bd74b7a4633bfdfa5320c90ea9aa22e9e7d20f35da2871fbdec392906f61c615b9fefbf4d21948689ba5ccd131830

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 2ff1f3c51e4b0e33efa08181c46b9a99
SHA1 e3438800552f5443e348e5d1eca79f956c81600d
SHA256 3fb1e5c90abce7dec65dfac63e6ff3b429e47be9e8095c2ebd5a375e7ca89a88
SHA512 d536cbee9dbb648a3bdf33b11bd7d425f0647b40d26b76d4a1cd2f678151dbbc57cba83b06a78a73b22602b8fe3011cdebf52a7a6e9a18fe505f0a6bebadc9cc

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 0a7f661ecaabf66677308bda9273b67e
SHA1 ab23ae71a3028a4ad22fd782e47d2398ff542247
SHA256 81ac42199b1afa59d371f098e2b2358a0570f7d3789edc65a93aa0127972592d
SHA512 0d1455b76dac20e9a06b31212dd1c424e1f37e7492e81de93da2f4cdfffac86b750642a1f3a1d846d06df3f7cb9b67aaa782a555c79d63f0c113691c0e4ac0ab

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 2c9ea68092188705a705707bb4ca21d2
SHA1 4ad801e2c221906c8a8e9ae5751365ae87a2e8ab
SHA256 70920dd9c3dd00e96486590bd00651b1f80f8a25cf35245f79a7b556dbc6e895
SHA512 4e758ec6e88d3b3f4042c1d2f833a43a9d8422b1fc158b83f282f6e88e4edf74351a8489146fd55e0101005bb76581bc2d05fc7de16d65cb451bb1c87ba6fc95

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 fd1733fe7c685d7b13f9042bc7e3b37c
SHA1 68a4603d60be82f3bc3c34c0a8605b5326364655
SHA256 13ebe14f5ca452860ec66ad9c131ad3122cdf3c17bafdcac4b84e9ffb0b9d8c2
SHA512 65473619e8425dfb460b965b7576d74c5716f40352463d526e9225087bc74a8023d7255e7ed38d7ce54ceecaa6658a444166f5b1fa2f34ca3d87696d038b0666

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 f195a45104f6f6a0d34d82a486eddcc0
SHA1 30de172d9c5415b588f39d3aad1336e766afcddd
SHA256 9b320000773c5597fbdaad54fe01244b86a8658010b98aef80d8b5f1365dd1cb
SHA512 0998e08676747bfdc29e9006a0b15ab41d1269b2827053ae26f6b82be0dbd91ae3d639e094fa383aa23be311a32544fb12810e5b57bbf21e24c12ec5e9292ea4

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 6b7f6901ef62af5bd568179c9dfada6e
SHA1 b96ea94fffb3e0fb917a289c5a0ae51cfee2013c
SHA256 3e5f42733ff1ee2def98099220e4dbb653d7f9c01403d92b693b1294a68d13f3
SHA512 ad90d97df97dcdde631f23125f1393dcd97c20f7f372641e228f66e39bf5b6d27076869617e81804fc73804b46ff603da60a041041b73a4f18ed9cad4aee0e1f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 60a2b31478620de70377843a976f97f8
SHA1 24f1242a99aecb18200ae2283409099c04ae7984
SHA256 765ff4e8e9b44b771c2db660aadb8e0b72b352ebfa9f5b8dcd634b8869b138b7
SHA512 26efbb2c943c19fb9dd6d8f84cb544052e39de8c603fd809cc0497e0fa9611315bd62ee7ed54b2c599ce8129c4474cbe269e38cbfbc91a61e1dc02c7eb6467ca

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 36b6f3d1a4e02137a150a0db4063ad67
SHA1 3add870740931e60ff4e83c08204212eb1ae59a1
SHA256 dc194b5ded82c363aa37d3194d64e3faa74feeef64318436a18d86aa874b325b
SHA512 9171839f9c702e9f64b38c88960dfb43532bf86357dd4708b27f9cc2f770114cc1826e65c664c6573f94cdb9a6683ad2c7be6479579bc5cee547e7de6ebeea6e

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 a7635a920fca04c73e79788f1284e8af
SHA1 54143d244fc8f53dd22d9889064b334b4bb385a7
SHA256 738758f34318ce4bf8c7f3ef0abed75559cafc4370c1c507a67fdb53b86d60eb
SHA512 a97f7d745442a93821e3b6d0e2d073aea58514b6dfdf9240430ddd768d1fe66f005976134426f9ba41d05ea1756ac3ae0b1e28677fac7616003cbe062cd5b556

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 1cede6c26acd71c407a74ae77e6f7d94
SHA1 f4fb53e0ff5ae497b100b536b624698cede160bb
SHA256 ce01b72bf0377d297afbfcea2e3f7623ebb98dae77b7007b21fd875f527bc60e
SHA512 f18ccd34af1737354141c5732ccc6028d1254d15d7b94ec6cb2b7de7c39579a65288a401276a5018e141858fb4e32c8a72029d07170f180d375972dd823f0356

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 1662dd055d474ba944276367b1fafc36
SHA1 26afbae00e1765954e72220a7a162035263f8d24
SHA256 8f6824f569ed96778067fc7a4be9cb167013ba2c3a208f8b1a507821225f441e
SHA512 45eb884644650c4a576351b6477c32748b0534f50765a66683de111b77d2da354eb97629de4e873996581c2ab6f5cb279e68ed51b22ac100a03c510917033ba1

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 e34625b2a1b1e5c303b78af57a098baa
SHA1 f829387b9dcc231885eaaec79a64158596d50313
SHA256 64b459d1aea8ecac7f0b46fc4fb5bfd285f328a396a9c95c7f7aa07e104f0dcd
SHA512 98739342c964e7cd89878a912d03cd8547b0ea1c65e91a6c7ebd34968b25b2a34975a442cdf27d21ff972b6c0cb4bb0580bc05a461d08053920e45da895d5d2f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 29494d92d86dfad91b3dbd74a1c043e6
SHA1 a2b943b10bbb6731ffac22d1d43322a0a89ff802
SHA256 55bf6d863f0360f6b3627c0e4a6c1b64b3a3e4c7aa2e17bfb7fb6fa4938aea14
SHA512 0583150ebc04c4746b60313db924448f3f3bd454f151c0894a812b3e5ee18530478713902dd9025a9108fa349873f720dec0754f45a0aa6388d1798d3160213a

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 9c86ef695f2b614be956d58e59b2da29
SHA1 5e9c33f8f7b1b365244a1b8a315be1bd89a0bbc6
SHA256 1629e78ff7a1585b277e61bda21ef6759bacf03f0d2bb411a64bff2dd7d5ed55
SHA512 1087fadccbed90ce5619efcb25adc7ce858c8a7aa307a8d6338c18ed9bda9ee99a6f5715f394752d37977d2a3a78ae62f57a82dae6bc3ee1b6f5598a39a42d7e

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 617dd101b11d69277a38b8fed561a163
SHA1 9daf7f95b69fd2e5fef1fc828a935ff207776077
SHA256 ae6a237a1f70a6cdef29b03d9f805add20989791492b99f90e0fb491b0a70353
SHA512 bccd79d4aefde707d0109136b824fe591b07afa24645eb7197485f3f2ae4319b5a3067eecaa3077cf7a2afdc2e1d20559adb795690bf9217be23c91a53738d41

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 1275ecbf9a89ac0b76cd3fa9644c41c5
SHA1 813bac94ebda52c7ca248f998abc83aa30785473
SHA256 288b37bf31fa19c32b440d8e19a82ecfe000e4366518a4545d48a940a944a1c4
SHA512 64b693cbf5ae31b0b07d8524a232f1cb6dbeb128be1835b924aa0b098c76e5f1b26cb86dcd443aedc07fdd46a1d0632855d4453f71db114ced55784abfa2abfe

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 5ad9363b078c14a1744e88fa7f00690e
SHA1 64f08ea0f810b578ba3a23e684e80c97fb141f67
SHA256 fa3f15a779e6f1cdca8d2ff3d250d3430e266887860420a206a5d73b10d1c0a8
SHA512 1a252e39a332278eef7c1cdc165da050655fca9cd1bf797ed24818b8931d43b5818db41f60de9fab0afad603adfc009efa8c43f160e23dd7bcd9039b0ecd3055

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 4f3d4a2305db5b82b4f4279c8e75427b
SHA1 5c83ba1a45e25bf004bb2e0c2cc4d39fa32d5b5e
SHA256 c90f75b0d4ae3618353da50c26adb289674441e4117afc108c178a70caa76d3b
SHA512 7f3bf21d1a28b761e68c932b1fc66e0003443cc606b77293111d4fa82c6a226812fc89cfa91939d2daa736e2c7dadcc2afa18ab8f93a8013a968f9f7121f68e8

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 1ae60e00bf869b4f53b76ead3a6ba36e
SHA1 805d8e17eb7754613bc6c1a82105efc3d5fbb174
SHA256 0656d9230431bc917c75f579f4815aa27c2ff9adfbfe67c9868d9bc0d9e1f82b
SHA512 b48d7ecb585aba84efc0cd6d37318fffbb8d0fae97f230e8a0485afe3f1df43ea3c340c8a250d957a20b4b70d012a84a739dfd9b642f0023a1a2a31ea420d16d

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 a80eebd2199c74232a777e8bdcd02baf
SHA1 7fea2fb0079526809c64186993bc1e6e3ea9320d
SHA256 676bef385f1e9df9b980fe0b1d3a91b57a408a9c9daa85fade17ae939a52fb15
SHA512 86b8d7b2b42580ede07623b67f82ab58d7e26bfd7b86589d5c45e05c57d091ec6b6d3e8bce1ec84b7c69c1edd57830403eec31764d77fd770f07e0d2357b27b3

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 fea9e6b6bddd713564512e11e14ccf73
SHA1 b81dcd0473412a8fbc8b8b6e03dd1323677516d2
SHA256 e7e6e3efb3d1a2660e66b0fdcf6a9efed6069b1e893ea02363e6dea2fe34b02c
SHA512 1d0007f6650080a1cb1046a93eecc9ee4010a8afec99d2ef6e5032c7fa4fb33ed05747b0dcab8eabc645595f758a78d05bb4d4e0a580bd901d52871cd4b7fdeb

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 54cf856fe4bd6c6f42fa0c77fd0b3dc8
SHA1 cd1036597139b697d2f82b2cb07148e0d1378804
SHA256 a763468d4c80ead8a8e23265ed3ccf843ec868806f53acf3252bb4e05ac9a096
SHA512 237c57ea5a9be71ffbfeac757820fa3b2f68e3998f1025790a292b59b3c37460c012f34eeac902037ad7cb85929bc23a0321ca27d45c5e62736f490c9093d46a

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 7fbef415ea23745d0ea778cf13484aaa
SHA1 c600449371d5fbd2dce09ca34a2368a601e544c0
SHA256 0cdc4883f958a266fc6165a12182472cd5d0069c0baf111a85d21515c20ae3e4
SHA512 e29be553ea0525345b4b8176f61832b92da23355f9515db565c41bd5b6d93a29ae77ab03db10a30aaed76cf203201514860abf9b4a160b66045efcdeab59cdf4

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 b431fc9bf600df4af236ff439983e250
SHA1 caeb1dd44b65062e0727e5b28ab8c92c415d2700
SHA256 aa57911572999feabb985fbe0c2c99bf76c2c84ef49f83620e4d15efd8fd8a26
SHA512 128d77e764ed8cddbd32d701d25f36a98c6470722eb64d53ed7bc2a46b05f2b71506703b5ef1cbcf8fe5e868fdc730686b378083f9f5facda16330466ebb8340

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 dd30d4fc7eee7f50fee3dc75239dc4c0
SHA1 de9d1c4d2472fe6f2e37a6b653526f31897ec46e
SHA256 dacf29a76da97d560ad050ea91b266fb0a348867a86e58a2c969ef2e53167088
SHA512 1be94c12b8b97bee19e4f82d389660fde6af5e62c927166cd293771a580b3c74c9e04df748d36400da997b2ffa5543b7c0f2e9209bb97bab0687ffc17ce67051

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 271567b1ca90d1efc7892ad739a7e87b
SHA1 603f6f28a3f03c88a8173d4910298550e0babc9e
SHA256 451e59da37ea96e2b109f2fa26c327c7a0a82ec1f74f89ba8019de70173000c8
SHA512 0c9b56544daf93bf9301c5e935677b9c9a9116be4930464367581ef3b5d0a2f9aa9a2c92567647d5c4120232cb3584e271d56fb1460fd6e51319c03bc48bd5af

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 b231088bb942bc8b3e000475f40e667b
SHA1 25d43dc6a4f319472daa5a7d1d30c59214a525b8
SHA256 6fc66083153be6787267a11ff1b6f94f7de97ec8cdbdbb8a3ce230b080e0f902
SHA512 31bcddae3e9634248a35dac414e2c9aafc7f165b24cb8c0ab032aa96a2865960fea249fee39058dd9c3b911af6461b8fa6a87c62fb7de95bbe660794b2b3a29e

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 052db0be71f71a1af77b0883cc6bcfab
SHA1 10ee5c5ca2dbad10ca904da9e83a8ef512a643b9
SHA256 a7a7490f4bfb50f76d6fa34ceafe75c7f7c1ddb5dd1fac56fd401b5ae0d167dc
SHA512 d1dbbc4d88b0eabe2ef9435effed65c402f491356c26ddf7b93031c8864127877716bb4e2b617b14f892305a53ee604ca9ebfef70207d5d31ce53b4f9f14b6a3

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 77f6b9ce789b043f6de8ef41b7e830a6
SHA1 1a0da4b2e1c8e5c1d2ba4fb7d097539a07ba5558
SHA256 5955c2d0673ea32db2a3e4a37fa525b91c5bfa394ebb201080434da76f1698de
SHA512 6bcdd5f3ae7908e100e8264053d14808aeabc02b052cfe3aff01bceebdc074ac0b712c1297a8c940a8d6101ea6470e0e2f4f5c5a35f6457b94597bd4e83c7500

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 4b276c7af076894054d2d917f28dcdd8
SHA1 df920b853ac4ee5b82d88fed6f43d9b6c18472aa
SHA256 209d0257d3618a559fd433a0d8bb58133c76237f25c19cb349297afd7c145208
SHA512 0400a6a562ce468be3d7b3d97e86b80e16626b026604a091115067c974641a2344b25643014771f53452490ccaeeb40fb54ce5e8717ebe3be282660f23fc21fa

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 fa6d524e791cf35e4408c0cef5232f75
SHA1 0dba4c339bfdff3fb36023fc592e4a9d5e9d28ee
SHA256 e4edf311dc615991edfb83adbc5ccd3055a58a07138b417cc55cc01d3a2e27dc
SHA512 f66b4cb3cd2ccbd0c6342f6a3f53ec67fa45371f0eb62c10d220c11c38747a0b6a201273ef4ed243ecb4a41e3da10ffb53e0ae326acd48000c1fda66dee061ed

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 8f82b7c7a2756d264bcd8c91666cecf6
SHA1 b9896057fc0a398cc187d753f97805c23a3b3616
SHA256 23664dc05632623df3166a4190a7170c9e205df595c0338f61c37df8b6ee9176
SHA512 e1d82eb296ca067d41367450668013e9867480ff3f5a1e84a9e89fe9199f64248e14330d8cd37d3b3b3db439d780ec46be12053835b710aefef4c7b1f85de022

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 ebe1143bee6477841ac65b2e5af9cfa2
SHA1 4d5d46c8229d70c30dc67f5b019a303535499067
SHA256 3531b9a4209f05a3054d04bdd71b58205f84fbd4e4682499af5d71deac897b28
SHA512 5fab094682fbb00eef003f57152943987ec8961d422fd63786063eba5a9af46661a88015d30df0ef81a055c9c922830c24fae5e3d0ebcedd928a7a0884096e60

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 424738a31bd4f0316d0115a547df0ad1
SHA1 33662ad945f222ffe1a60d05e05980ca83d6b613
SHA256 7328967e9a714f29ecbf443c771d4b5a7a3c590596163ef1b0776787d6094269
SHA512 a04d26246d53269122900f20a39f9464ff13868ac2b3148c5d2e2d6b6f5364e020fe94580c69bab18f58814dc2627bda56af65ac599d4986fde829dcdf1044a1

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 a587c359ffb016b978fb420570835f92
SHA1 1b4bbb422c5635d8ef2e2385fe6c8ee35aa22f43
SHA256 2d8039a317c7102c597c9b4e0d4b1c3903de8c8e397f78aa19134c40ee99980a
SHA512 db0b116ff71d7aeb7b961d0a2063a1f937e3c69218e26620a5ca264423b8525db5f28e030979e3f8bbdfc14663ab491a9ca9c7574e781c4cf41c9a28f1a6e483

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 d8ff1fec30288597193f9437a685c7be
SHA1 90a76da97478179833a468a8aa0291044383849b
SHA256 6ba7cddb208a54427fe8e8299755993a50d117ee3dd280b4247ded2bc39a7991
SHA512 cf55092893261ce8dbbd7b3273919610c4a37d915a6201bad298ba9a5beefc881260097a0da137c4e74d82681e98f1ab44bd6f6efecd7964b77b97270d41d26e

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 6b92fcdad28dac742192d7cc58705c3c
SHA1 29ed2790bb3b0a393a130a6db3d400282f5d22f4
SHA256 24561d496437eed90506359bf2ac5ab7888ca85cbacba336f5e57e242deebdab
SHA512 99cc0a181f86f367442edcf075cf2b4aa58d85f6b41cc39b5ae8e0722d5adabe8414e810295bbc328180a5f45878eb370bfeb562a1eaaa627579a0c05b546115

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 7b69b4cf297f7da08aae2bbf8f1fbad1
SHA1 51a1bc4a1783ac6c202b0fa150b4376c0fc7d333
SHA256 4031701056ee19df54f51d20df4eb6e4472c57633a4d8770b33efe52aea035d5
SHA512 4592cdbc7ad9bc0a02790781d6a5f202b7f361013f5610bff1baeb928b12040ad6c91c0402e5930016e755500e6b72f72590e5208cb875c59b03451617d241c2

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GLSGBV0R\www.youtube[1].xml

MD5 0a9e1348d9a0d9da46fb93b4a7d69958
SHA1 49543c2486296b7cbaddcea2c79bea93fa4d3c7f
SHA256 e8325411fecf948bfffc2fd06934fc4cce6e5d9282408e557d511c937a1f16b3
SHA512 29024aed4cdd5524a9f5ba2af65da2f65dd6d5e3bc1ef67e043f08abc940dc1134d8b2e557d49a74e98b196d42e250307cbdda6d04a74b0897e6b6cce6698587

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 d02165c7546749c98f10203a20ba3e36
SHA1 966b20f72db1d6e3edd541ad83cf3ac76f2215b5
SHA256 d4a5a5b85bf7b2647bde3e685c82a13a09b50c9706984b15f9deb54edbb29802
SHA512 bdf388f6981cae75cd07b0fc75f2bcf784c67b623b2025657c70468c3128942281920fbeafff491a20220f59b114aac9996d6eb4f30aafd4ab85c9b04e6b2b60

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

MD5 485150a4db3117688ef435789ebd35ac
SHA1 c8e2d1e98a89cd777b94110b28d80e6c81335748
SHA256 a0784c1c13ba72613318ec5001c39c037c6726a4af868e453c3892d387a3ad4e
SHA512 a8f346cfd498792e41f4db1e2423fad48db306678bfec211c3433aa0d5681012a79e1f3adb6195f8d6c9f38ef7e22ed3f9ab5d8b6a9b67c415d9269cc248f270

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

MD5 a266bb7dcc38a562631361bbf61dd11b
SHA1 3b1efd3a66ea28b16697394703a72ca340a05bd5
SHA256 df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e
SHA512 0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 b2fe49b1a15917811732181956923b79
SHA1 a85cecc48cdec05e7a7488cf1a49a6d5d94f1f9c
SHA256 826f235255f84b024d588411b2678800c5d5f459aba07403f8c1cc37a660a981
SHA512 39cfb50d9b765f6839caddd30a78d08f09aac2ef95c3017947dc33ea944099f485c63f1b168dffe7141d8bac23ed7a85dab4d0830a2f5859fe76f1d9e7206f69

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 37d4abd1c8740b6f995a3a769815e762
SHA1 ea571179641c47860f874f2c88821675468dcfaf
SHA256 ae443b7576a6a39e7ab408f67d47b6efab92fe6fd71fedcabb5838b7fd8bbfa1
SHA512 f2b5a1d2665652e693c06e71883fd2a476a095c26f3894ee978a5f76c94096bb5bdd0c1aef34f099eefdef7b43b470b7a904b84d507bbd53e45ccf8abad19aaf

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 60183acc0cb7d2c525832626226081c7
SHA1 9f9efbcf7509207188572f257155e3d1f00e5eb3
SHA256 783c9b89cf10deb3e40153e142cff5576e390bf3fd810015fb74b1dbe153df82
SHA512 2ff011d128de6964b79a58d0249cdf21cdae497069ed021159a299a97c01f3686de0d505bd047a3eec42b360527c366ff08050c88dcce0100f14709b411d2ffd

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 4a9dfedffd74248ac1d60ca069dd72df
SHA1 339403b5f142a168febfcf5f17e14a370138bbeb
SHA256 269ca4d0782bb979b5fb79bbcf8bb7cd500c603a836f3d08d19837f8c380bad2
SHA512 c73cd9b23944a51ef09cf4a3a855ca791f2fb3835073ffdd494009ce636fc055d6f0a08bd8fa0f59235e029335ef7e9917fb6994e951bbee4c5844bce4285504

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 ec464de29ff819d1004b2967d22fd10f
SHA1 16ca2d7a1e9d0e7ac0eff5627ccff1b22204e68c
SHA256 0bf2548e46ea64718a14076e70140297387c2e74f3440a34dbff389305484b13
SHA512 dbf33ef60b5fea2e7572decdf79d7152c0c8d664f4869e14dd5b5f96210f264f8092cb9a499b739c9fdb76ee52cec3a95718172449663d1f8e5ba3ebdc58fa40

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 d5b13d6c8510e295e9cd8fb6a4b6e43e
SHA1 367d79387120192143f5aae42422521d25757ae2
SHA256 5a94bd5b638b425785416b0d162ac37b9dd2e15d7159b9a114d69e8f713cb604
SHA512 be191c76372b2d18b057b431adecb7424f51c0d5f5434d7a90116540109e471e82047571175bd4cacd266540cb23dbfc21a7f17ada66dbccffb53399d0b91ba2

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

MD5 5f43ec721c2f1dd6b97393c0ce355417
SHA1 6c63123675cb4dda165b6e25e4f3d272c2d64487
SHA256 86245a0bebff56911a402616f738f8e89003a2424e4e4df395ad8b1c9c27f20d
SHA512 86fb8c0e9828843e2517a8a3a59b654caac5903f7a89cae9035aae437a7ca40b241ecbbd0f52ff532e34f14ba8127de25eab112c4e1158e2a1657d704f8758a8

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

MD5 e4a68ac854ac5242460afd72481b2a44
SHA1 df3c24f9bfd666761b268073fe06d1cc8d4f82a4
SHA256 cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f
SHA512 5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 01bef7642f1a63ac6da0a3620e6d8d54
SHA1 22d441cffadb5a850749da62fa6b348d583c0bb1
SHA256 6281ce8584efce724320d425926efcc50ecc921c8720ef70e8c544e383c4f688
SHA512 340e29de5e5f657627a95014a41fe2948678b20a92860c3e165b61ec14409956578c9526a9b2326753f2ddfd90aef0e7c6b9303a8e06522d0952fd89184ae07e

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 25401414bd904d5096e744203f284887
SHA1 932a8cae18cb032bb1f0e2ce943f0d3f69512aed
SHA256 68fa514155afdc0afe3a113dbb6783f3dbdcffc353cf41115e5b1a966bc1bd06
SHA512 da2fceba773ef0a0ba374af4b2988962be19cdcfc7f319a2380cc6843ab36ad4e3bcf1e6f018e57302d0456db29e4c377c3c513df42a3db0f74b94c796063bc8

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 fab0cfb0ac1f151bbd8dbcf927031d63
SHA1 8164030ee90b4b9f9e11fadf60a6969655acafc2
SHA256 d616f3f5551ae83f94f2f38b1ccd0ccc9e23749ad4c46457e09861d6d8dd9ac9
SHA512 12540f08c09d401a52398a423fb9d013e1895d25b08cecb8be3483e0c50af7dfa440c7268428e682fd571d2fccb5cb7cc8d20b784c28e22091aa1eb6f043a505

Analysis: behavioral2

Detonation Overview

Submitted

2024-05-30 14:15

Reported

2024-05-30 14:17

Platform

win10v2004-20240226-en

Max time kernel

149s

Max time network

155s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\846f4636b430481a63965c65921207b7_JaffaCakes118.html

Signatures

N/A

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\846f4636b430481a63965c65921207b7_JaffaCakes118.html

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --mojo-platform-channel-handle=5704 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=18 --mojo-platform-channel-handle=2812 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=5360 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --mojo-platform-channel-handle=3676 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --mojo-platform-channel-handle=5844 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=22 --mojo-platform-channel-handle=4028 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=23 --mojo-platform-channel-handle=6004 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=24 --mojo-platform-channel-handle=6116 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=25 --mojo-platform-channel-handle=6244 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --mojo-platform-channel-handle=5836 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:8

Network

Country Destination Domain Proto
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 13.107.6.158:443 business.bing.com tcp
GB 51.140.242.104:443 nav-edge.smartscreen.microsoft.com tcp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.microsoft.com udp
BE 2.21.17.194:443 www.microsoft.com tcp
US 8.8.8.8:53 bzib.nelreports.net udp
US 8.8.8.8:53 bzib.nelreports.net udp
NL 2.18.121.29:443 bzib.nelreports.net tcp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
GB 216.58.204.74:80 fonts.googleapis.com tcp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 56.94.73.104.in-addr.arpa udp
US 8.8.8.8:53 158.6.107.13.in-addr.arpa udp
US 8.8.8.8:53 104.242.140.51.in-addr.arpa udp
US 8.8.8.8:53 194.17.21.2.in-addr.arpa udp
US 8.8.8.8:53 74.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 29.121.18.2.in-addr.arpa udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
GB 172.217.169.46:443 www.youtube.com tcp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
GB 172.217.169.46:443 www.youtube.com tcp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
GB 163.70.151.35:443 www.facebook.com tcp
GB 163.70.151.35:443 www.facebook.com tcp
US 8.8.8.8:53 183.142.211.20.in-addr.arpa udp
US 8.8.8.8:53 46.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 35.151.70.163.in-addr.arpa udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
GB 172.217.169.46:443 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
GB 172.217.169.46:443 www.youtube.com udp
US 8.8.8.8:53 14.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 i.ytimg.com udp
US 8.8.8.8:53 i.ytimg.com udp
US 8.8.8.8:53 i.ytimg.com udp
US 8.8.8.8:53 i.ytimg.com udp
US 8.8.8.8:53 99.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 203.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 84.177.190.20.in-addr.arpa udp
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
US 20.231.121.79:80 tcp
US 8.8.8.8:53 nw-umwatson.events.data.microsoft.com udp
US 20.189.173.20:443 nw-umwatson.events.data.microsoft.com tcp
US 8.8.8.8:53 20.173.189.20.in-addr.arpa udp
US 8.8.8.8:53 228.249.119.40.in-addr.arpa udp
GB 142.250.200.54:443 i.ytimg.com tcp
US 8.8.8.8:53 static.xx.fbcdn.net udp
US 8.8.8.8:53 static.xx.fbcdn.net udp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
US 8.8.8.8:53 54.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 142.250.200.34:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
GB 163.70.151.21:443 scontent.xx.fbcdn.net udp
US 8.8.8.8:53 edgestatic.azureedge.net udp
US 8.8.8.8:53 edgestatic.azureedge.net udp
US 8.8.8.8:53 c.s-microsoft.com udp
US 8.8.8.8:53 c.s-microsoft.com udp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 8.8.8.8:53 21.151.70.163.in-addr.arpa udp
US 8.8.8.8:53 34.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 static.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
GB 216.58.213.6:443 static.doubleclick.net tcp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 172.217.169.42:443 jnn-pa.googleapis.com tcp
GB 172.217.169.42:443 jnn-pa.googleapis.com tcp
GB 172.217.169.42:443 jnn-pa.googleapis.com tcp
GB 172.217.169.42:443 jnn-pa.googleapis.com tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 172.217.169.42:443 jnn-pa.googleapis.com udp
US 8.8.8.8:53 6.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 196.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 42.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 1.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 play.google.com udp
US 8.8.8.8:53 play.google.com udp
GB 172.217.169.46:443 play.google.com tcp
GB 172.217.169.46:443 play.google.com tcp
GB 142.250.200.54:443 i.ytimg.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 195.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 13.107.253.64:443 wcpstatic.microsoft.com tcp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 86.23.85.13.in-addr.arpa udp
US 8.8.8.8:53 64.253.107.13.in-addr.arpa udp
US 8.8.8.8:53 171.39.242.20.in-addr.arpa udp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
BE 2.17.107.104:443 www.bing.com tcp
US 8.8.8.8:53 104.107.17.2.in-addr.arpa udp
GB 172.217.169.46:443 play.google.com udp
US 8.8.8.8:53 144.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 14.227.111.52.in-addr.arpa udp
BE 2.17.107.129:443 www.bing.com tcp
US 8.8.8.8:53 9.179.89.13.in-addr.arpa udp
GB 142.250.200.34:443 googleads.g.doubleclick.net udp

Files

N/A