Analysis

  • max time kernel
    145s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    31/05/2024, 22:24

General

  • Target

    889014c5ecda209cd79793487a23f27c_JaffaCakes118.html

  • Size

    77KB

  • MD5

    889014c5ecda209cd79793487a23f27c

  • SHA1

    3a22cd5ca15c7505e94dbd25f1cf7e71fba351e2

  • SHA256

    8f5dee70b4220e88e14e535679847e82bf9b94a46acdce084f1e27483606acc3

  • SHA512

    0f3d88a8e0b6eea1c508c806626518e24fdbd83d24636d782b831d303adceff3bf0c13eae3a7c6f3fd01c2877dbad68f03ba1c480dc56cf0b4444be85dcb5e8a

  • SSDEEP

    1536:Nwgr8VkeO3AeWxajyRBIHSe06hIpu1MmOKaS6cgRreRByE:ZeO3AeWAjyRBIHSihIYMmO/URByE

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 10 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 15 IoCs
  • Suspicious use of FindShellTrayWindow 25 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\889014c5ecda209cd79793487a23f27c_JaffaCakes118.html
    1⤵
    • Enumerates system info in registry
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:1824
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffa54ff46f8,0x7ffa54ff4708,0x7ffa54ff4718
      2⤵
        PID:1012
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2092 /prefetch:2
        2⤵
          PID:4176
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2152 /prefetch:3
          2⤵
          • Suspicious behavior: EnumeratesProcesses
          PID:4276
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2700 /prefetch:8
          2⤵
            PID:3688
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3176 /prefetch:1
            2⤵
              PID:3616
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3228 /prefetch:1
              2⤵
                PID:1744
              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4712 /prefetch:1
                2⤵
                  PID:3096
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4928 /prefetch:1
                  2⤵
                    PID:1448
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5056 /prefetch:1
                    2⤵
                      PID:4680
                    • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6428 /prefetch:8
                      2⤵
                        PID:2256
                      • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6428 /prefetch:8
                        2⤵
                        • Suspicious behavior: EnumeratesProcesses
                        PID:1468
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4908 /prefetch:1
                        2⤵
                          PID:116
                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5584 /prefetch:1
                          2⤵
                            PID:4780
                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4164 /prefetch:1
                            2⤵
                              PID:5192
                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5700 /prefetch:1
                              2⤵
                                PID:5200
                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5248 /prefetch:1
                                2⤵
                                  PID:5852
                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3160 /prefetch:1
                                  2⤵
                                    PID:5860
                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3152 /prefetch:1
                                    2⤵
                                      PID:5868
                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6132 /prefetch:1
                                      2⤵
                                        PID:5148
                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6644 /prefetch:1
                                        2⤵
                                          PID:5040
                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6620 /prefetch:1
                                          2⤵
                                            PID:5764
                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2088,2323040729103608436,15143716014032349878,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5836 /prefetch:2
                                            2⤵
                                            • Suspicious behavior: EnumeratesProcesses
                                            PID:1280
                                        • C:\Windows\System32\CompPkgSrv.exe
                                          C:\Windows\System32\CompPkgSrv.exe -Embedding
                                          1⤵
                                            PID:2192
                                          • C:\Windows\System32\CompPkgSrv.exe
                                            C:\Windows\System32\CompPkgSrv.exe -Embedding
                                            1⤵
                                              PID:2008

                                            Network

                                                  MITRE ATT&CK Enterprise v15

                                                  Replay Monitor

                                                  Loading Replay Monitor...

                                                  Downloads

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                                    Filesize

                                                    152B

                                                    MD5

                                                    a8e767fd33edd97d306efb6905f93252

                                                    SHA1

                                                    a6f80ace2b57599f64b0ae3c7381f34e9456f9d3

                                                    SHA256

                                                    c8077a9fc79e2691ef321d556c4ce9933ca0570f2bbaa32fa32999dfd5f908bb

                                                    SHA512

                                                    07b748582fe222795bce74919aa06e9a09025c14493edb6f3b1f112d9a97ac2225fe0904cac9adf2a62c98c42f7877076e409803014f0afd395f4cc8be207241

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                                    Filesize

                                                    152B

                                                    MD5

                                                    439b5e04ca18c7fb02cf406e6eb24167

                                                    SHA1

                                                    e0c5bb6216903934726e3570b7d63295b9d28987

                                                    SHA256

                                                    247d0658695a1eb44924a32363906e37e9864ba742fe35362a71f3a520ad2654

                                                    SHA512

                                                    d0241e397060eebd4535197de4f1ae925aa88ae413a3a9ded6e856b356c4324dfd45dddfef9a536f04e4a258e8fe5dc1586d92d1d56b649f75ded8eddeb1f3e2

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000001

                                                    Filesize

                                                    71KB

                                                    MD5

                                                    da52e38c98b0f2047abeb07609608ab5

                                                    SHA1

                                                    da1210caff36df73e49a0c271ff7d573c2d20d02

                                                    SHA256

                                                    726a2ef49785eaecce64e98fcb3490c40db06d6a205455784f3267a5b4b7c34b

                                                    SHA512

                                                    35adf36acd8e1c65f040663d7a064f642a6db5e0b7978241db8a9b4eb52b8ae71cef4e7bb1b4a0d85e4af1f7240d6d52e5a07f512e5e90504e063e51376b5f5b

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002

                                                    Filesize

                                                    61KB

                                                    MD5

                                                    468446a7240461af44b59ebb2047c231

                                                    SHA1

                                                    47b7c525dc91bece99df0c414960b9490b986ba8

                                                    SHA256

                                                    ae1a0126552472d1e1347ceb8027ed725db3b93fcbc0b39745a92412cc1641a6

                                                    SHA512

                                                    ac8cdf824112a3d25248e58f05495b458038d9388ba7e46e1ea8f6933cae23f044f4e532b74b13f52812bfaf602ca12ec152e44ce95266abe7cd6bd66b4a70b8

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003

                                                    Filesize

                                                    20KB

                                                    MD5

                                                    cdc9f19a52e87121bdff5faad76470dc

                                                    SHA1

                                                    61786f32243b3384fb8bd1f460070465d32ad556

                                                    SHA256

                                                    fb5b531776f398b46eda13ed3ccddeece8fc54653f27b93fec45290a31cd840f

                                                    SHA512

                                                    d80755833280d63ee7c894510ba25d1ef4ec55757798126bb0a2880b9d0f90489c0d5f5765d90673ee7d6670931be05d38c42929b938aab3d6f643e5cfa0fa3c

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005

                                                    Filesize

                                                    34KB

                                                    MD5

                                                    318ae59c9b73c8000970c69c490509af

                                                    SHA1

                                                    af2868769ec742a0e550aed7359e632efdb49c6e

                                                    SHA256

                                                    756855a223f61dc2fac4f8f120f988a6dc516a3c75418fb8bc47909cd7fbc2f9

                                                    SHA512

                                                    b868471c3f90d08b1bc12d1120397e7aba1f5f01690bf0c05bb556472352af70d6dc199f11ef3d6e4c5a88685c6815837bf00d24053fa79add7bcf049d9a1b7c

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006

                                                    Filesize

                                                    22KB

                                                    MD5

                                                    ad3471c2308c3852505f7ef83eed8fd0

                                                    SHA1

                                                    bb82fd7b4a4ed98cdffa29863af03cac35ead9d5

                                                    SHA256

                                                    bedab0f69fc8f61444bb832b00dc66f09c3c7882a3bd392d6a53a5d3a4c0ddda

                                                    SHA512

                                                    b8a38c293eca57aa5cc1d2a562e8097bc69c29eeb62d393630236cdec21e2c18d77b27d85a4dd93b14f24c55adb8e6603296cda9361de0dc21cbe87ee740d945

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007

                                                    Filesize

                                                    17KB

                                                    MD5

                                                    9a7dd9a35901af572b85bc2285c31570

                                                    SHA1

                                                    dbcecdc6e62bb59b67d353fbbe581b80fa73f996

                                                    SHA256

                                                    11f3acc6794c6a6ca750e20311a1bd3ba577403a8e4da9f3c126a37979611d33

                                                    SHA512

                                                    ce51affa26857732cd3396b080828f0b72135c08f3292f81bcd97f2969ec2c1c1914f59dc0389a8aa71189b174be97d7562fb5e4bccd9be72b96efeba63453d1

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009

                                                    Filesize

                                                    20KB

                                                    MD5

                                                    564be91cb7ef6cb7320d73790c21b568

                                                    SHA1

                                                    97c0c90fa1194cbbe5c17bff1dded992908df604

                                                    SHA256

                                                    6fbcee96ff03dda5c63564f0ffb9d19b21785809071ef8c06bc51f225daaeb6a

                                                    SHA512

                                                    fe6b743b8fbbefea37eebbfd28b8780dc02a7ef06fa41150b8ba3c74d74de615a0ea0c303f017b50af0b37470a962f7e4e7e9c84d6757fada831a2e841528483

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a

                                                    Filesize

                                                    44KB

                                                    MD5

                                                    23536ccfe05b737ae639fe63ee4cc435

                                                    SHA1

                                                    6d2e9822835dc3e6117a4d2addfc8f241fbdbc82

                                                    SHA256

                                                    6ae9edfc411ede03661a3d910fafddab3d6b313d1f4668dc8c5a84c5ab23a3ce

                                                    SHA512

                                                    f416e36b2322bbebd211fd1ea69c88883f00c7b00f14474a5fcce4a408840c0d1b0304eb8941509a38157d0583485f638959eb7d5b9ae668aa88c1d3eee8dd0d

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d

                                                    Filesize

                                                    33KB

                                                    MD5

                                                    2bfd2896489219c87ae93cf3b5ac0f5a

                                                    SHA1

                                                    9e54b07dda68de17afe049ef05ffc1f54719fe78

                                                    SHA256

                                                    299bcd5f0693ef58b15b135d5cf02ab11ec25f8dcaea2fcd781a2425fcd75749

                                                    SHA512

                                                    695b92350212bd6aa9bd6d4871a53bb2b503ea0110889c1810989f67ef8abca72b02e6995f484839283463d634032b3b478edfdd7129f5c83fb7a1e3d3a53f65

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000e

                                                    Filesize

                                                    19KB

                                                    MD5

                                                    705a3a97313023bc7448dcef07c97ff1

                                                    SHA1

                                                    481144e27554565327b9cf19599fb8f842c27905

                                                    SHA256

                                                    1fba85529f5132b409f3ef2d6f657ac938e1e52ffeff3372b49e1c5f8bf4f89a

                                                    SHA512

                                                    c4a8a3fa12f7187dd9f2b042212be53db35ef974c84791c20d9c61979567accec6911981c008ba12da4e04a0dd66920e47e5694b01431bc7571275ef428cdab7

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                                    Filesize

                                                    264B

                                                    MD5

                                                    053a3794035b18325727adbc5a7423bc

                                                    SHA1

                                                    9f707ccfb08de44f9782abafd76d1c6509fa13f7

                                                    SHA256

                                                    98518fb9aa03aae909d2f6ff0459600b4d26fee2ee9eb44133a919c5a0de3d50

                                                    SHA512

                                                    b42baf6c337eb476f3b63a12a77b2d0be15c2cf330504b00598cb1fe683f6838d64cfe2c951242dff6fe65a7967f3a056dec9f61cf8f02b5fade5ab548bc0072

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                                    Filesize

                                                    360B

                                                    MD5

                                                    0ef84064bb23c16f18a563e1f92813d5

                                                    SHA1

                                                    8a0fe2a5b83e5dc62d0b2d27e68ac1cb1f4f1755

                                                    SHA256

                                                    24514a923963d75faddde5c64082cf3e34e1b33a985c5b6e44d083eb540cea2c

                                                    SHA512

                                                    e73aa52853db6dd58c14b7e4f4dd31319146dda4b2eca0c91e85ba56489eabb9b7a5550bcceb9de13e02ccff152a7f0b4f80d45cf078beb18486946ca18cd10e

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                                    Filesize

                                                    360B

                                                    MD5

                                                    540fdc33c7fb3ed7169475b7e82b1b5e

                                                    SHA1

                                                    4ceb31e83aebbc3bb4d4bde4a0002e26cbbb1926

                                                    SHA256

                                                    89890874687523e2dfd919500ca6605f17dafcf7af39788edf13269efba88b4f

                                                    SHA512

                                                    3f034a00de6611fe2db365f1e9dc1d2cb15c08a6a9b9100c8179043070ef1b8f6210bc95d0a54f2c4f550af222977d5a58d74e8d004391f1c82bb62935b3869b

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                                    Filesize

                                                    2KB

                                                    MD5

                                                    cc84f18fc8a659cd04f9ff0432581480

                                                    SHA1

                                                    87c85c8e699666fa6242702f49992c30d3147007

                                                    SHA256

                                                    e8dba20a0511d62d0624fec1a3dc4f00ee77716c9388afe084a229f79cc98483

                                                    SHA512

                                                    2fbd4a6be5349fedc3c2c20c2077f3bcd5b8ba258ac850f81578f02f382396574a4f61c21cda6532804da4158f83e50082dd42e31b7fdfb2217c8c7f148b2417

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                    Filesize

                                                    5KB

                                                    MD5

                                                    a2a47f0d7f96308bec5deee154bf0e4a

                                                    SHA1

                                                    d5f26ca3bb324477b556e1b347335ac26d4e3604

                                                    SHA256

                                                    bfb4ac0d0ab23a731204350efeb376cc05a08430f498cd07a200134b9713fce4

                                                    SHA512

                                                    31724a117686609170517ccd2906376c654df72fe2f1a9c05f06366fa228b87b2a6cc82b9998de3b63c33a55b4d5e7ec8ffda82cf458c7005025caa7b2a2ba8f

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                    Filesize

                                                    7KB

                                                    MD5

                                                    3f55da3dfcba252e54e106dc766a1773

                                                    SHA1

                                                    c36d4aef3133055f7915fb39e0ecd83de0c8ef9c

                                                    SHA256

                                                    9c44630c823f5487fa7d150bf2e031ff992fa4360ff05a3ff4e1c9ebad84fbcf

                                                    SHA512

                                                    85a26af7354051c8c10279808e3fb384cdb752665b3823a8a928bc0975b3f8844fb31cfdc5e801a2d91e251c3cab27b9cd9db745e5f8e1c90ae2ce019bb487ae

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                    Filesize

                                                    7KB

                                                    MD5

                                                    14e17fde3bf53d687c04470aac888b9d

                                                    SHA1

                                                    cbabb5ef4c09c61df6c4528256145f60481f245d

                                                    SHA256

                                                    95d9a35938decdeb511337fe4ed0b19f7ed73633d0778328ead292b48ca54a42

                                                    SHA512

                                                    f4a4ea7255a71558d83545a9411a814ff8d095cc17c4d4388b25087101e6f1f0814842e120f2d599396c3247622514989da71179f70c2c9516086d995354a3a7

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                    Filesize

                                                    7KB

                                                    MD5

                                                    d76ae461b5348feca266dbcff4dfdbeb

                                                    SHA1

                                                    037d020d03ab6efbc3cef6162ff9d6c96f81346c

                                                    SHA256

                                                    0902f79fb685cd2778fb64d4f4f44e0eb006215636aee57019eb288fe620314b

                                                    SHA512

                                                    a38e5e4c9a9d74d14d07a9675edd607d6fbd53d57a80c02e64d254c231306683a68a2acb8a5efd9803f93b5afeeb58c02a551096d1646067d30adf44b66b6729

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                    Filesize

                                                    7KB

                                                    MD5

                                                    4b03a25e6f0861d54d3cba0193e60282

                                                    SHA1

                                                    85f9f860b6631f4eb5f0dbb3003f9b93e0244605

                                                    SHA256

                                                    f3d85f0aa1e30b19305935ab3b4044e0c3d272670bc5ef2ed0bca5bae3c5ef32

                                                    SHA512

                                                    923d721dc52f58a00cccd7442f6aa369778feca8a1e24a685355d2c177e739e5a460c6d91ece11f8dd3c25b5d5c8635e71a7c3e2680c27f4e666a21caecae1d8

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                    Filesize

                                                    7KB

                                                    MD5

                                                    fe76ef6f51d4958de522e5d7244344b9

                                                    SHA1

                                                    638df4f0c5459cf08fbd64b1f2e4c5fd390626d6

                                                    SHA256

                                                    618b0d3d89fd48880512976a26fffe4910253ea254d9054b9a420902031e4764

                                                    SHA512

                                                    591d2ffaf26598b19cb2a70b6d9c2d064683564663e3382d70856ed0d57077e32d8cd63a568c1e40e1ca5a0a980abeca626268603f966731d27e812a3406f6c6

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

                                                    Filesize

                                                    705B

                                                    MD5

                                                    e2c58fa6348d766ce71e365cd97c2d31

                                                    SHA1

                                                    6ac49a41ce076ff58e4b72b7d56e01d9a63dd6fe

                                                    SHA256

                                                    20a4bd8165dea8b935784990f838e3a79991f9e0304bb377e3425bd6a6ec7a2d

                                                    SHA512

                                                    5687323e1ec191005f16fc67c860d87fb8f7c92205b8af4bb4e2226c7c9a19df4af73767f7c23196262e078d47be32b59992a4a78a6c857ae518d8c40dc5a4eb

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

                                                    Filesize

                                                    697B

                                                    MD5

                                                    d34978f47a16af448ffef8c149d85a14

                                                    SHA1

                                                    28826e8daddc6af37b4002f6246ba1be62da0417

                                                    SHA256

                                                    117cb4c5cdd7036e16ab62f3dd9c4ebe02e7c81ceafe26b5708980e07ff1fa6f

                                                    SHA512

                                                    c9d5fec52e33602849b729bbd7cdb6a40f65fefc3d315792255d3248f1752815ccd8d644b7b8207676b8ddce36490899df7f68769bf07d472434ced7b8d6ea35

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe58465b.TMP

                                                    Filesize

                                                    705B

                                                    MD5

                                                    b45915ad55f3a6c10b180f615de66ac8

                                                    SHA1

                                                    a6c3c46846db97ae78a3e1a1a5e970367bb75f1e

                                                    SHA256

                                                    4faf843b527d8d38783017894df3364bc7c083d267fece90929d2aa145fb9266

                                                    SHA512

                                                    00a2699b232ad1d4fc216aa160a969338ae5a8c988641fc323effe73fc43654d5b5b8b6191f8af5e3d77ff7120d23a4f88ab64e24045d3c9a3492fd5d8996e3a

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

                                                    Filesize

                                                    16B

                                                    MD5

                                                    46295cac801e5d4857d09837238a6394

                                                    SHA1

                                                    44e0fa1b517dbf802b18faf0785eeea6ac51594b

                                                    SHA256

                                                    0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

                                                    SHA512

                                                    8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

                                                    Filesize

                                                    16B

                                                    MD5

                                                    206702161f94c5cd39fadd03f4014d98

                                                    SHA1

                                                    bd8bfc144fb5326d21bd1531523d9fb50e1b600a

                                                    SHA256

                                                    1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

                                                    SHA512

                                                    0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

                                                    Filesize

                                                    11KB

                                                    MD5

                                                    26cb346b5a0faebe07c267a6aa7c98e8

                                                    SHA1

                                                    bb2b69580182f591b9d07db67806cf7bc6f508c7

                                                    SHA256

                                                    be1eeee76b448bd353080faefe389b902a966ad00e731e2762a52e33c01eb65c

                                                    SHA512

                                                    1ce4b061f14a3c0dd2053e910f527c9a0b3d21ff332f739a7b0c4059674547cf59369722b74c32420dde8b302fce2f5f0fcae658ce06b1b81de27e15f4609edc