Analysis

  • max time kernel
    148s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/06/2024, 04:50

General

  • Target

    8ceecc6102bef8591a9f8d5217675753_JaffaCakes118.html

  • Size

    87KB

  • MD5

    8ceecc6102bef8591a9f8d5217675753

  • SHA1

    e2fd5eef7e65466bdd941cc9119ed4a19974efd1

  • SHA256

    debcf71b890ef4760849633214fbd8b33efb84eaed4cfde2c4282c853497b9d2

  • SHA512

    da7d95d31aa37a99fa73b85f23b4abfbb2d6e0efc2e423822d0b64839aae453b813defa64d2ce52efd98488802ba1f1051100376de0e0175ab973712b3d4cea3

  • SSDEEP

    1536:pWYEBeU0QjLHiyKTbmW7819ZlUqUNYTuNyG:pHEUQHiyKTbyuNp

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 10 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 7 IoCs
  • Suspicious use of FindShellTrayWindow 25 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\8ceecc6102bef8591a9f8d5217675753_JaffaCakes118.html
    1⤵
    • Enumerates system info in registry
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:3772
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7fffe4ac46f8,0x7fffe4ac4708,0x7fffe4ac4718
      2⤵
        PID:1356
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2072,14402507218605232272,362446853459565975,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2080 /prefetch:2
        2⤵
          PID:636
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2072,14402507218605232272,362446853459565975,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2172 /prefetch:3
          2⤵
          • Suspicious behavior: EnumeratesProcesses
          PID:4784
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2072,14402507218605232272,362446853459565975,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2784 /prefetch:8
          2⤵
            PID:3544
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,14402507218605232272,362446853459565975,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3220 /prefetch:1
            2⤵
              PID:3300
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,14402507218605232272,362446853459565975,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3240 /prefetch:1
              2⤵
                PID:4424
              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,14402507218605232272,362446853459565975,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3160 /prefetch:1
                2⤵
                  PID:4428
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2072,14402507218605232272,362446853459565975,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2712 /prefetch:2
                  2⤵
                  • Suspicious behavior: EnumeratesProcesses
                  PID:1564
                • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2072,14402507218605232272,362446853459565975,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1260 /prefetch:8
                  2⤵
                    PID:948
                  • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2072,14402507218605232272,362446853459565975,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1260 /prefetch:8
                    2⤵
                    • Suspicious behavior: EnumeratesProcesses
                    PID:2376
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,14402507218605232272,362446853459565975,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5332 /prefetch:1
                    2⤵
                      PID:1720
                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,14402507218605232272,362446853459565975,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3584 /prefetch:1
                      2⤵
                        PID:1864
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,14402507218605232272,362446853459565975,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4180 /prefetch:1
                        2⤵
                          PID:3508
                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,14402507218605232272,362446853459565975,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5604 /prefetch:1
                          2⤵
                            PID:116
                        • C:\Windows\System32\CompPkgSrv.exe
                          C:\Windows\System32\CompPkgSrv.exe -Embedding
                          1⤵
                            PID:1528
                          • C:\Windows\System32\CompPkgSrv.exe
                            C:\Windows\System32\CompPkgSrv.exe -Embedding
                            1⤵
                              PID:2600

                            Network

                                  MITRE ATT&CK Enterprise v15

                                  Replay Monitor

                                  Loading Replay Monitor...

                                  Downloads

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                    Filesize

                                    152B

                                    MD5

                                    ae54e9db2e89f2c54da8cc0bfcbd26bd

                                    SHA1

                                    a88af6c673609ecbc51a1a60dfbc8577830d2b5d

                                    SHA256

                                    5009d3c953de63cfd14a7d911156c514e179ff07d2b94382d9caac6040cb72af

                                    SHA512

                                    e3b70e5eb7321b9deca6f6a17424a15b9fd5c4008bd3789bd01099fd13cb2f4a2f37fe4b920fb51c50517745b576c1f94df83efd1a7e75949551163985599998

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                    Filesize

                                    152B

                                    MD5

                                    f53207a5ca2ef5c7e976cbb3cb26d870

                                    SHA1

                                    49a8cc44f53da77bb3dfb36fc7676ed54675db43

                                    SHA256

                                    19ab4e3c9da6d9cedda7461efdba9a2085e743513ab89f1dd0fd5a8f9486ad23

                                    SHA512

                                    be734c7e8afda19f445912aef0d78f9941add29baebd4a812bff27f10a1d78b52aeb11c551468c8644443c86e1a2a6b2e4aead3d7f81d39925e3c20406ac1499

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a

                                    Filesize

                                    48KB

                                    MD5

                                    63c541481031303056eed255949f002d

                                    SHA1

                                    e6ba8fec21f4e6789076e4678f6327bff58bab99

                                    SHA256

                                    abed17da104188f92c39961f2d0ab6e1291fe52b6e19ac03f34a9ce36260da9b

                                    SHA512

                                    bdeb2b22f64ea25c6f97960a927637856f0f6bb9375a75c9a69a70cdc8a544e1fac24cdde3e4eccc9c31501fcbddee6a3b96f44294916cc848516b6406e7a5b4

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001a

                                    Filesize

                                    71KB

                                    MD5

                                    4448c084e6bff94f33e577d2faffebb5

                                    SHA1

                                    ea666727d443c4a829cdd0896797cc47c57c2156

                                    SHA256

                                    51981e9e6b3ac190e91a0ceb81e0549095188cca45ae59df7a85bacb3259c323

                                    SHA512

                                    ef1c8013b4df5875b42e4d671d6f1ead50e09be0e2a9512c41fd8ecb8f1dde69cdcddd294d1925be362e7aa2bcd06c4e03f2279fac573018714331f35b22c0f6

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002f

                                    Filesize

                                    92KB

                                    MD5

                                    09e30e67ca25aa583c05f19321e8b234

                                    SHA1

                                    1efeacb77f0ef26138c7e20592c292d1dd11fba8

                                    SHA256

                                    d2ac8137cba526264203387c802ff4e853f8e4e832591ca5d8b2efaa0a921ef4

                                    SHA512

                                    be1e87545c2e98291d2e0385e510c62d5ca4e9c6558a49694385800bc7d9764af31f89f26b34ae4ad028ccbccd794d33082bbd17a1455bfb525007571880791f

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000036

                                    Filesize

                                    206KB

                                    MD5

                                    f998b8f6765b4c57936ada0bb2eb4a5a

                                    SHA1

                                    13fb29dc0968838653b8414a125c124023c001df

                                    SHA256

                                    374db366966d7b48782f352c78a0b3670ffec33ed046d931415034d6f93dcfef

                                    SHA512

                                    d340ae61467332f99e4606ef022ff71c9495b9d138a40cc7c58b3206be0d080b25f4e877a811a55f4320db9a7f52e39f88f1aa426ba79fc5e78fc73dacf8c716

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000039

                                    Filesize

                                    56KB

                                    MD5

                                    0ffaa226d575ce6728e4c90148b952f7

                                    SHA1

                                    532eb1fd31843ab68fc36293adf774c24b4dbcb5

                                    SHA256

                                    68a86b3d6d10ce4d8b4cd16e4dad0b76c535f844a92f985de6bdaaf7d6b2f8a4

                                    SHA512

                                    f7bc3ecea5c0e6012463cd6decc67b2b99e9540a73df747523d87ff4df9e36a7902e048b190b9e3881f95628e683d9c6d520d254cf6323d0205ff74bb5b93fbe

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003a

                                    Filesize

                                    55KB

                                    MD5

                                    411224e6a6e1ceed2810d48aee82898b

                                    SHA1

                                    485041fb0264e320500ae13f650eee6450453b18

                                    SHA256

                                    f37b97da617b3ed82acc725af90464da7191b5ad92c7a833c4a769a57943f204

                                    SHA512

                                    2610ea5e4202bd77b972c1a7717b2a2abc41848b2d6c6cbf719d7254d9337d08b96635e03af46f942ce799ba6570167324c21ddac4a53012530d1061d32fc9b7

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1781a43bfad24a04_0

                                    Filesize

                                    269B

                                    MD5

                                    2edb0077a5718296b28981ce95ee946e

                                    SHA1

                                    ad70be23338efe2062500f9b14d20d6a0279a19a

                                    SHA256

                                    d872433cecc5b0d7ca52bf0919536f962fbf94dcfb1691509733d4f223b74a1b

                                    SHA512

                                    915b3668b09c8447e17424414a5d7b360bd9fd4c02ff7fc050e00b9a7224a9ca8953611f40c0c191f76c41c8181238bd4857b59fb6be5caeba6026f78517d3ec

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\798d1749b4eac2e9_0

                                    Filesize

                                    272B

                                    MD5

                                    47139b3c25f028ba640dbfea6d7791b7

                                    SHA1

                                    9047075ba37dea5c32f8ee8d17b0815820812ed2

                                    SHA256

                                    d9489bbf104fd34b4cde07363e92b9a2f6082b924f9150dd32f21c8ab358b5fa

                                    SHA512

                                    88d2bcb06c816443193fc28f3e44133119dfde9bc154d8e3d1352a2040006130595c6edeef87d235d785d4009d6902bcb109ee13afe823a04e8fb1113fcef586

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7d614df08fd49bf4_0

                                    Filesize

                                    290KB

                                    MD5

                                    2d237559c873dc79d0e6beddbd53b4c0

                                    SHA1

                                    92fcc8a2e42dad9d568cd72b8f2092a93292b162

                                    SHA256

                                    3fb6561582ddaabe4babeb77d9440446d95587c57920e3ddefeaf27e6bad7ced

                                    SHA512

                                    b866ed94fbcf6e20e18679162d172be0e8c826dbf4f1a9ab4f69e363490bfbd674d1e0ea22e27994df8fc2c373eea6e2b288887eb9853181cb4172586d4b1d19

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8b21908d52b04d6d_0

                                    Filesize

                                    316KB

                                    MD5

                                    5bb6a8a535565190b32d25569827e54a

                                    SHA1

                                    bc17262762a64e2f219fceda4d3f2a9f799bd841

                                    SHA256

                                    a77075c5288a3c41c4217a709226b8ae4b3ef2506ffb529c2949d398c31d97f6

                                    SHA512

                                    577a963fd14808fa8bf6a403591c2b4b6598e6b97e10564ad3debefd910716952008cb2df3f8cb565135bd142acef30abfa0a07e577f37515ad97bdfae529f56

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\95a14c257c32ead8_0

                                    Filesize

                                    274B

                                    MD5

                                    65be2fb9cd97e0a365b3318f4fa01e90

                                    SHA1

                                    def84c93c835095749abd42ed95ddbb7b72ab172

                                    SHA256

                                    4cebb5f90802be79694a3232555b602d8ce1a7df691bc5f6883e7632927d8cb1

                                    SHA512

                                    a452979e925c54e519da1548153fc0f1721797775a8e05794ba682a648154f7f8306e3c4b2cf85cdc4aec3bffa4dae02bd92c143a9ea06b55577fbd56dd69f06

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9c5e787d71194659_0

                                    Filesize

                                    306B

                                    MD5

                                    1beb39bccf6c827ed6d9691b1575fd8b

                                    SHA1

                                    7f4792f569912b93b995d402024823ec03c7be94

                                    SHA256

                                    e5469f195470a0e25592710f49a2703016f5861436837c353906088ae50803f3

                                    SHA512

                                    a53e35357b7a89040ec422a1cb8728e33c2cf75d467b2a0b3c250565aa440d08dc124c521296dc6bfdf46c08c8cee86cc5ab96e63d78e860eb98b9f541161a17

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b34d71b275d46893_0

                                    Filesize

                                    177KB

                                    MD5

                                    42fa18836f9b8a8b5b33a5866537eb57

                                    SHA1

                                    c6094006df423730c53a49aef9b352754dfd8a72

                                    SHA256

                                    08973011096a750e43828001a1e8c48f0733f4ff3c30d4dcf5091a20e3ffe0e4

                                    SHA512

                                    b92c9cb15335f9d610d6aeb04619ce3d525a1c42f685a51371faafbea29c56912e82e33cd35a89911792d91f5e09c81636af2c3273f2d18ab7a5bfe39a442c9a

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b5b5170019abe271_0

                                    Filesize

                                    395KB

                                    MD5

                                    f6266b5c28de4f35697713360aca13a9

                                    SHA1

                                    b10cd53438888dabe27385f4cff38f9ac4193f5a

                                    SHA256

                                    79f07ef9ece4e3fb03c89f2eaf1783fd48fe462daafdab54f0987acd7b375603

                                    SHA512

                                    fc1a186bd26840112250bf79951a3ce2773c1f703ce0e75af49848cd5f8c2e36c5ef565634dcdb36e936072c40eb61385cf52df1e986ff39144a5025d3038320

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                    Filesize

                                    456B

                                    MD5

                                    c2a0ad61c8d8d9bdb61d624d723700c0

                                    SHA1

                                    334e13af1f439f9daa1c484ed16901f37a18dbc1

                                    SHA256

                                    07b12ae41c533731352150b1fdec303e41a438df04f43e749e5a8d8e928e803d

                                    SHA512

                                    2a01cbaf2c04b052a1a95e58bdcca9d00854f63bac4ffb4f5f540163f53230a6ab12213b9a5c02a3523cb1b263dabfaa755b38f630309538cab6b77cb395bca0

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                    Filesize

                                    2KB

                                    MD5

                                    9a8093f7ca040f7d1eeb8dec109cfcc9

                                    SHA1

                                    f978f2d7f315cd7a1dd1d9ab0c8b6ec09ca52d6e

                                    SHA256

                                    168a303c2adfc2a73b93af35d7a158d000aa07ed80698c456e1bc5a441d3b9a0

                                    SHA512

                                    fdb4f77de1ea9d50779a59f8dcccf232daf5848e94193e07b60522bf021a0ef842438c3e85f03c098d61dddf2062f02a2b7194a7eaa1346db6d0da42b9b1f4b4

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                    Filesize

                                    111B

                                    MD5

                                    285252a2f6327d41eab203dc2f402c67

                                    SHA1

                                    acedb7ba5fbc3ce914a8bf386a6f72ca7baa33c6

                                    SHA256

                                    5dfc321417fc31359f23320ea68014ebfd793c5bbed55f77dab4180bbd4a2026

                                    SHA512

                                    11ce7cb484fee66894e63c31db0d6b7ef66ad0327d4e7e2eb85f3bcc2e836a3a522c68d681e84542e471e54f765e091efe1ee4065641b0299b15613eb32dcc0d

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                    Filesize

                                    2KB

                                    MD5

                                    dd4a872dd7b6f47ed2a6574765baf41b

                                    SHA1

                                    53ef22614fc6f5287b06aa556b5ef86e840231de

                                    SHA256

                                    e9257a5f84f6a76da074ea5928fc5bba964ac63796077c8c03e329049098aeda

                                    SHA512

                                    72b7171d622eb1757b9c1a18189e5e06c241315f81bb69b3c34b3e61b9830f2930cedfba9dfbd73e12370f05f642168f3e4f3da927e6b488805f7398acf76867

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                    Filesize

                                    5KB

                                    MD5

                                    5fae07ad935c8dafc21a0fdfa65a0746

                                    SHA1

                                    babd8b12cf2e9c155873beb5ffa7787a6794c5ce

                                    SHA256

                                    f70e4d03003c638b56c14177baefd923fa81426465ef8edb23f3e19d169ce158

                                    SHA512

                                    d6838864f577e443c86df7c197a70f603a453319a681f3e217027eefdf32380160501e428e33262d538fda6f1702001cf807bbecf664b5c3325a8a2d561a85ee

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                    Filesize

                                    6KB

                                    MD5

                                    cd750350cb568bc30d4d5e1aef0cb2ac

                                    SHA1

                                    682d60fe8b4206e4db9740bb08c486c70215fc1d

                                    SHA256

                                    29dbfa142932e96747ce55278548f7372bc0b9d293268dd6d2227fc47920514b

                                    SHA512

                                    e59e565a19b8c5e23cd8d53b844dcf7344c6e3bdb7a7e4ec9d03352ebd21ada5c78bc4afcfa591e20cead16d515dc6ac219f0aedaceae10a1f88c1061bf7b48c

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                    Filesize

                                    6KB

                                    MD5

                                    8287dc10cd88a235b943761293a62d2d

                                    SHA1

                                    31d01e05abad988ead1e0f7b928b3bedf32fcb5d

                                    SHA256

                                    ea2071273d91e627a772d0a560d165e4f13a814c391dc3231794b4370e230edd

                                    SHA512

                                    09881df7dbbbda4b64cad9cb1e2c57e16a34eeccff625005689d137bb259d11853401377e69391e0f1cc939e55f21c9b0539415cdd05bf7fd663b6262e2d31cc

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

                                    Filesize

                                    16B

                                    MD5

                                    6752a1d65b201c13b62ea44016eb221f

                                    SHA1

                                    58ecf154d01a62233ed7fb494ace3c3d4ffce08b

                                    SHA256

                                    0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

                                    SHA512

                                    9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

                                    Filesize

                                    10KB

                                    MD5

                                    8614e13d9a476c2c6357162320b59e95

                                    SHA1

                                    346e0de5ea423b4d1f5db7f330c69fd78a70d778

                                    SHA256

                                    f87d4f6b46dd12eedc45e6c36800572809dd227ad1a9a472b7ae22920c3c0903

                                    SHA512

                                    8f84161d1179e382588a61f34057350cdc06345c3a01eacb6de4072e5af55fe1b028367e1f69f4370de2cb85ad3c466a79f40ffc9ca8f392f7546aaad6a5cdc4