Analysis

  • max time kernel
    148s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03-06-2024 07:50

General

  • Target

    https://skenzo.com/sk-privacy.php?sk_ref=EYfZ0e0RPoCr99Eiylj5yY%2BrcmRzKZOPf9yauzZcqahcvFpXgp69a%2Bx8F8eu0PaC

Score
1/10

Malware Config

Signatures

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 10 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 6 IoCs
  • Suspicious use of FindShellTrayWindow 25 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://skenzo.com/sk-privacy.php?sk_ref=EYfZ0e0RPoCr99Eiylj5yY%2BrcmRzKZOPf9yauzZcqahcvFpXgp69a%2Bx8F8eu0PaC
    1⤵
    • Enumerates system info in registry
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:736
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff95fc646f8,0x7ff95fc64708,0x7ff95fc64718
      2⤵
        PID:4920
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2104,7333099602847792635,1255471540693809841,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2148 /prefetch:2
        2⤵
          PID:440
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2104,7333099602847792635,1255471540693809841,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2236 /prefetch:3
          2⤵
          • Suspicious behavior: EnumeratesProcesses
          PID:384
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2104,7333099602847792635,1255471540693809841,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2648 /prefetch:8
          2⤵
            PID:3532
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,7333099602847792635,1255471540693809841,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3284 /prefetch:1
            2⤵
              PID:2728
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,7333099602847792635,1255471540693809841,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3312 /prefetch:1
              2⤵
                PID:208
              • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2104,7333099602847792635,1255471540693809841,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5144 /prefetch:8
                2⤵
                  PID:4512
                • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2104,7333099602847792635,1255471540693809841,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5144 /prefetch:8
                  2⤵
                  • Suspicious behavior: EnumeratesProcesses
                  PID:4900
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,7333099602847792635,1255471540693809841,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5264 /prefetch:1
                  2⤵
                    PID:4084
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,7333099602847792635,1255471540693809841,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5280 /prefetch:1
                    2⤵
                      PID:1352
                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,7333099602847792635,1255471540693809841,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5288 /prefetch:1
                      2⤵
                        PID:3232
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,7333099602847792635,1255471540693809841,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3400 /prefetch:1
                        2⤵
                          PID:1840
                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2104,7333099602847792635,1255471540693809841,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5456 /prefetch:2
                          2⤵
                          • Suspicious behavior: EnumeratesProcesses
                          PID:928
                      • C:\Windows\System32\CompPkgSrv.exe
                        C:\Windows\System32\CompPkgSrv.exe -Embedding
                        1⤵
                          PID:2980
                        • C:\Windows\System32\CompPkgSrv.exe
                          C:\Windows\System32\CompPkgSrv.exe -Embedding
                          1⤵
                            PID:4504

                          Network

                          • flag-us
                            DNS
                            skenzo.com
                            msedge.exe
                            Remote address:
                            8.8.8.8:53
                            Request
                            skenzo.com
                            IN A
                            Response
                            skenzo.com
                            IN A
                            199.79.60.210
                          • flag-us
                            GET
                            https://skenzo.com/sk-privacy.php?sk_ref=EYfZ0e0RPoCr99Eiylj5yY%2BrcmRzKZOPf9yauzZcqahcvFpXgp69a%2Bx8F8eu0PaC
                            msedge.exe
                            Remote address:
                            199.79.60.210:443
                            Request
                            GET /sk-privacy.php?sk_ref=EYfZ0e0RPoCr99Eiylj5yY%2BrcmRzKZOPf9yauzZcqahcvFpXgp69a%2Bx8F8eu0PaC HTTP/1.1
                            Host: skenzo.com
                            Connection: keep-alive
                            sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
                            sec-ch-ua-mobile: ?0
                            DNT: 1
                            Upgrade-Insecure-Requests: 1
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
                            Sec-Fetch-Site: none
                            Sec-Fetch-Mode: navigate
                            Sec-Fetch-User: ?1
                            Sec-Fetch-Dest: document
                            Accept-Encoding: gzip, deflate, br
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 200 OK
                            Date: Mon, 03 Jun 2024 07:50:38 GMT
                            Server: Apache/2.4.29 (Debian)
                            Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
                            Referrer-Policy: same-origin
                            Cache-Control: max-age=0, public
                            Expires: Mon, 03 Jun 2024 07:50:38 GMT
                            Vary: Accept-Encoding
                            Content-Encoding: gzip
                            X-FRAME-OPTIONS: SAMEORIGIN
                            Content-Length: 9287
                            Keep-Alive: timeout=5, max=128
                            Connection: Keep-Alive
                            Content-Type: text/html; charset=UTF-8
                          • flag-us
                            GET
                            https://skenzo.com/js/cmpheader.js
                            msedge.exe
                            Remote address:
                            199.79.60.210:443
                            Request
                            GET /js/cmpheader.js HTTP/1.1
                            Host: skenzo.com
                            Connection: keep-alive
                            sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
                            DNT: 1
                            sec-ch-ua-mobile: ?0
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            Accept: */*
                            Sec-Fetch-Site: same-origin
                            Sec-Fetch-Mode: no-cors
                            Sec-Fetch-Dest: script
                            Referer: https://skenzo.com/sk-privacy.php?sk_ref=EYfZ0e0RPoCr99Eiylj5yY%2BrcmRzKZOPf9yauzZcqahcvFpXgp69a%2Bx8F8eu0PaC
                            Accept-Encoding: gzip, deflate, br
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 200 OK
                            Date: Mon, 03 Jun 2024 07:50:38 GMT
                            Server: Apache/2.4.29 (Debian)
                            Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
                            Referrer-Policy: same-origin
                            Last-Modified: Fri, 10 Nov 2023 05:05:42 GMT
                            ETag: "25cc-609c545a6915b-gzip"
                            Accept-Ranges: bytes
                            Cache-Control: max-age=31536000, public
                            Expires: Tue, 03 Jun 2025 07:50:38 GMT
                            Vary: Accept-Encoding
                            Content-Encoding: gzip
                            X-FRAME-OPTIONS: SAMEORIGIN
                            Content-Length: 3029
                            Keep-Alive: timeout=5, max=127
                            Connection: Keep-Alive
                            Content-Type: application/javascript
                          • flag-us
                            GET
                            https://skenzo.com/images/skenzo-email.png
                            msedge.exe
                            Remote address:
                            199.79.60.210:443
                            Request
                            GET /images/skenzo-email.png HTTP/1.1
                            Host: skenzo.com
                            Connection: keep-alive
                            sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
                            DNT: 1
                            sec-ch-ua-mobile: ?0
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Sec-Fetch-Site: same-origin
                            Sec-Fetch-Mode: no-cors
                            Sec-Fetch-Dest: image
                            Referer: https://skenzo.com/sk-privacy.php?sk_ref=EYfZ0e0RPoCr99Eiylj5yY%2BrcmRzKZOPf9yauzZcqahcvFpXgp69a%2Bx8F8eu0PaC
                            Accept-Encoding: gzip, deflate, br
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 200 OK
                            Date: Mon, 03 Jun 2024 07:50:38 GMT
                            Server: Apache/2.4.29 (Debian)
                            Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
                            Referrer-Policy: same-origin
                            Last-Modified: Fri, 25 Sep 2020 09:27:19 GMT
                            ETag: "7b4-5b01fec60977f"
                            Accept-Ranges: bytes
                            Content-Length: 1972
                            Cache-Control: max-age=2592000, public
                            Expires: Wed, 03 Jul 2024 07:50:38 GMT
                            X-FRAME-OPTIONS: SAMEORIGIN
                            Keep-Alive: timeout=5, max=126
                            Connection: Keep-Alive
                            Content-Type: image/png
                          • flag-us
                            GET
                            https://skenzo.com/js/cmpclbk.js
                            msedge.exe
                            Remote address:
                            199.79.60.210:443
                            Request
                            GET /js/cmpclbk.js HTTP/1.1
                            Host: skenzo.com
                            Connection: keep-alive
                            sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
                            DNT: 1
                            sec-ch-ua-mobile: ?0
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            Accept: */*
                            Sec-Fetch-Site: same-origin
                            Sec-Fetch-Mode: no-cors
                            Sec-Fetch-Dest: script
                            Referer: https://skenzo.com/sk-privacy.php?sk_ref=EYfZ0e0RPoCr99Eiylj5yY%2BrcmRzKZOPf9yauzZcqahcvFpXgp69a%2Bx8F8eu0PaC
                            Accept-Encoding: gzip, deflate, br
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 200 OK
                            Date: Mon, 03 Jun 2024 07:50:38 GMT
                            Server: Apache/2.4.29 (Debian)
                            Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
                            Referrer-Policy: same-origin
                            Last-Modified: Wed, 01 Nov 2023 09:24:15 GMT
                            ETag: "2a8-60913d5bdb5b8-gzip"
                            Accept-Ranges: bytes
                            Cache-Control: max-age=31536000, public
                            Expires: Tue, 03 Jun 2025 07:50:38 GMT
                            Vary: Accept-Encoding
                            Content-Encoding: gzip
                            X-FRAME-OPTIONS: SAMEORIGIN
                            Content-Length: 341
                            Keep-Alive: timeout=5, max=125
                            Connection: Keep-Alive
                            Content-Type: application/javascript
                          • flag-us
                            GET
                            https://skenzo.com/favicon.ico
                            msedge.exe
                            Remote address:
                            199.79.60.210:443
                            Request
                            GET /favicon.ico HTTP/1.1
                            Host: skenzo.com
                            Connection: keep-alive
                            sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
                            DNT: 1
                            sec-ch-ua-mobile: ?0
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Sec-Fetch-Site: same-origin
                            Sec-Fetch-Mode: no-cors
                            Sec-Fetch-Dest: image
                            Referer: https://skenzo.com/sk-privacy.php?sk_ref=EYfZ0e0RPoCr99Eiylj5yY%2BrcmRzKZOPf9yauzZcqahcvFpXgp69a%2Bx8F8eu0PaC
                            Accept-Encoding: gzip, deflate, br
                            Accept-Language: en-US,en;q=0.9
                            Cookie: __cmpcc=1; __cmpcccx69022=aBP_ppotAAgAzACAAuBYEAAA
                            Response
                            HTTP/1.1 404 Not Found
                            Date: Mon, 03 Jun 2024 07:50:39 GMT
                            Server: Apache/2.4.29 (Debian)
                            Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
                            Referrer-Policy: same-origin
                            Content-Length: 10
                            Keep-Alive: timeout=5, max=124
                            Connection: Keep-Alive
                            Content-Type: text/html; charset=iso-8859-1
                          • flag-us
                            DNS
                            228.249.119.40.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            228.249.119.40.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            68.32.126.40.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            68.32.126.40.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            210.60.79.199.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            210.60.79.199.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            210.60.79.199.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            210.60.79.199.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            210.60.79.199.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            210.60.79.199.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            144.107.17.2.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            144.107.17.2.in-addr.arpa
                            IN PTR
                            Response
                            144.107.17.2.in-addr.arpa
                            IN PTR
                            a2-17-107-144deploystaticakamaitechnologiescom
                          • flag-us
                            DNS
                            c.delivery.consentmanager.net
                            msedge.exe
                            Remote address:
                            8.8.8.8:53
                            Request
                            c.delivery.consentmanager.net
                            IN A
                            Response
                            c.delivery.consentmanager.net
                            IN A
                            87.230.98.76
                          • flag-us
                            DNS
                            cdn.consentmanager.net
                            msedge.exe
                            Remote address:
                            8.8.8.8:53
                            Request
                            cdn.consentmanager.net
                            IN A
                            Response
                            cdn.consentmanager.net
                            IN CNAME
                            1376624012.rsc.cdn77.org
                            1376624012.rsc.cdn77.org
                            IN A
                            195.181.164.21
                            1376624012.rsc.cdn77.org
                            IN A
                            89.187.167.3
                          • flag-de
                            GET
                            https://c.delivery.consentmanager.net/delivery/cmp.php?&cdid=3b15bbd221c9f&h=https%3A%2F%2Fskenzo.com%2Fsk-privacy.php%3Fsk_ref%3DEYfZ0e0RPoCr99Eiylj5yY%252BrcmRzKZOPf9yauzZcqahcvFpXgp69a%252Bx8F8eu0PaC&&l=en&o=1717401040754
                            msedge.exe
                            Remote address:
                            87.230.98.76:443
                            Request
                            GET /delivery/cmp.php?&cdid=3b15bbd221c9f&h=https%3A%2F%2Fskenzo.com%2Fsk-privacy.php%3Fsk_ref%3DEYfZ0e0RPoCr99Eiylj5yY%252BrcmRzKZOPf9yauzZcqahcvFpXgp69a%252Bx8F8eu0PaC&&l=en&o=1717401040754 HTTP/1.1
                            Host: c.delivery.consentmanager.net
                            Connection: keep-alive
                            sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
                            DNT: 1
                            sec-ch-ua-mobile: ?0
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            Accept: */*
                            Sec-Fetch-Site: cross-site
                            Sec-Fetch-Mode: no-cors
                            Sec-Fetch-Dest: script
                            Accept-Encoding: gzip, deflate, br
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 200 OK
                            date: Mon, 03 Jun 2024 07:50:42 GMT
                            cache-control: no-store, no-cache, must-revalidate
                            edge-control: no-store, no-cache, must-revalidate
                            expires: Thu, 01 Dec 1994 16:00:00 GMT
                            pragma: no-cache
                            access-control-allow-origin: *
                            x-xss-protection: 0
                            last-modified: Mon, 03 Jun 2024 07:50:42 GMT
                            transfer-encoding: chunked
                            content-type: text/javascript; charset=utf-8
                            vary: Accept-Encoding
                            content-encoding: gzip
                          • flag-de
                            GET
                            https://c.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=1&id=69022&o=1717401042&h=https%3A%2F%2Fskenzo.com%2Fsk-privacy.php%3Fsk_ref%3DEYfZ0e0RPoCr99Eiylj5yY%252BrcmRzKZOPf9yauzZcqahcvFpXgp69a%252Bx8F8eu0PaC&&l=en&odw=0&dlt=1&l=en
                            msedge.exe
                            Remote address:
                            87.230.98.76:443
                            Request
                            GET /delivery/cmp.php?__cmpcc=1&id=69022&o=1717401042&h=https%3A%2F%2Fskenzo.com%2Fsk-privacy.php%3Fsk_ref%3DEYfZ0e0RPoCr99Eiylj5yY%252BrcmRzKZOPf9yauzZcqahcvFpXgp69a%252Bx8F8eu0PaC&&l=en&odw=0&dlt=1&l=en HTTP/1.1
                            Host: c.delivery.consentmanager.net
                            Connection: keep-alive
                            sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
                            DNT: 1
                            sec-ch-ua-mobile: ?0
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            Accept: */*
                            Sec-Fetch-Site: cross-site
                            Sec-Fetch-Mode: no-cors
                            Sec-Fetch-Dest: script
                            Accept-Encoding: gzip, deflate, br
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 200 OK
                            date: Mon, 03 Jun 2024 07:50:42 GMT
                            cache-control: no-store, no-cache, must-revalidate
                            edge-control: no-store, no-cache, must-revalidate
                            expires: Thu, 01 Dec 1994 16:00:00 GMT
                            pragma: no-cache
                            access-control-allow-origin: *
                            x-xss-protection: 0
                            last-modified: Mon, 03 Jun 2024 07:50:42 GMT
                            transfer-encoding: chunked
                            content-type: text/javascript; charset=utf-8
                            vary: Accept-Encoding
                            content-encoding: gzip
                          • flag-de
                            GET
                            https://c.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=69022&o=1717401042&h=https%3A%2F%2Fskenzo.com%2Fsk-privacy.php%3Fsk_ref%3DEYfZ0e0RPoCr99Eiylj5yY%252BrcmRzKZOPf9yauzZcqahcvFpXgp69a%252Bx8F8eu0PaC&&l=en&odw=0&dlt=1&l=en
                            msedge.exe
                            Remote address:
                            87.230.98.76:443
                            Request
                            GET /delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=69022&o=1717401042&h=https%3A%2F%2Fskenzo.com%2Fsk-privacy.php%3Fsk_ref%3DEYfZ0e0RPoCr99Eiylj5yY%252BrcmRzKZOPf9yauzZcqahcvFpXgp69a%252Bx8F8eu0PaC&&l=en&odw=0&dlt=1&l=en HTTP/1.1
                            Host: c.delivery.consentmanager.net
                            Connection: keep-alive
                            sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
                            DNT: 1
                            sec-ch-ua-mobile: ?0
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            Accept: */*
                            Sec-Fetch-Site: cross-site
                            Sec-Fetch-Mode: no-cors
                            Sec-Fetch-Dest: script
                            Accept-Encoding: gzip, deflate, br
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 200 OK
                            date: Mon, 03 Jun 2024 07:50:42 GMT
                            cache-control: no-store, no-cache, must-revalidate
                            edge-control: no-store, no-cache, must-revalidate
                            expires: Thu, 01 Dec 1994 16:00:00 GMT
                            pragma: no-cache
                            access-control-allow-origin: *
                            x-xss-protection: 0
                            last-modified: Mon, 03 Jun 2024 07:50:42 GMT
                            transfer-encoding: chunked
                            content-type: text/javascript; charset=utf-8
                            vary: Accept-Encoding
                            content-encoding: gzip
                          • flag-de
                            GET
                            https://c.delivery.consentmanager.net/delivery/info/?id=69022&did=1&cfdid=1&t=pv.d_ncs.d_ancs.d_bncs.d_dnsx&h=https%3A%2F%2Fskenzo.com%2Fsk-privacy.php%3Fsk_ref%3DEYfZ0e0RPoCr99Eiylj5yY%252BrcmRzKZOPf9yauzZcqahcvFpXgp69a%252Bx8F8eu0PaC&o=1717401041336&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=16&dv=28&
                            msedge.exe
                            Remote address:
                            87.230.98.76:443
                            Request
                            GET /delivery/info/?id=69022&did=1&cfdid=1&t=pv.d_ncs.d_ancs.d_bncs.d_dnsx&h=https%3A%2F%2Fskenzo.com%2Fsk-privacy.php%3Fsk_ref%3DEYfZ0e0RPoCr99Eiylj5yY%252BrcmRzKZOPf9yauzZcqahcvFpXgp69a%252Bx8F8eu0PaC&o=1717401041336&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=16&dv=28& HTTP/1.1
                            Host: c.delivery.consentmanager.net
                            Connection: keep-alive
                            sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
                            DNT: 1
                            sec-ch-ua-mobile: ?0
                            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            Sec-Fetch-Site: cross-site
                            Sec-Fetch-Mode: no-cors
                            Sec-Fetch-Dest: image
                            Accept-Encoding: gzip, deflate, br
                            Accept-Language: en-US,en;q=0.9
                            Response
                            HTTP/1.1 200 OK
                            date: Mon, 03 Jun 2024 07:50:42 GMT
                            cache-control: no-store, no-cache, must-revalidate
                            edge-control: no-store, no-cache, must-revalidate
                            expires: Thu, 01 Dec 1994 16:00:00 GMT
                            pragma: no-cache
                            access-control-allow-origin: *
                            x-xss-protection: 0
                            last-modified: Mon, 03 Jun 2024 07:50:42 GMT
                            content-length: 43
                            content-type: image/gif
                          • flag-gb
                            GET
                            https://cdn.consentmanager.net/delivery/js/cmp_en.min.js
                            msedge.exe
                            Remote address:
                            195.181.164.21:443
                            Request
                            GET /delivery/js/cmp_en.min.js HTTP/2.0
                            host: cdn.consentmanager.net
                            sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
                            dnt: 1
                            sec-ch-ua-mobile: ?0
                            user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            accept: */*
                            sec-fetch-site: cross-site
                            sec-fetch-mode: no-cors
                            sec-fetch-dest: script
                            accept-encoding: gzip, deflate, br
                            accept-language: en-US,en;q=0.9
                            Response
                            HTTP/2.0 200
                            date: Mon, 03 Jun 2024 07:50:42 GMT
                            content-type: application/javascript
                            last-modified: Mon, 27 May 2024 08:37:07 GMT
                            etag: W/"692e1-6196b6c27b2c0"
                            cache-control: max-age=86400
                            expires: Wed, 29 May 2024 13:18:53 GMT
                            edge-control: max-age=86400
                            x-77-nzt: EwwBw7WkDQH3jAQBAAgBuUwKDAFhCAElE8I0AWE
                            x-77-nzt-ray: d09eba0ff8196e73d2755d66ba117606
                            x-77-cache: HIT
                            vary: Accept-Encoding
                            content-encoding: gzip
                            server: CDN77-Turbo
                            x-accel-expires: @1717420742
                            x-accel-date: 1717334342
                            x-cache: HIT
                            x-age: 66700
                            x-77-pop: londonGB
                            x-77-age: 66700
                          • flag-gb
                            GET
                            https://cdn.consentmanager.net/delivery/customdata/bV8xLndfNjkwMjIucl9HRFBSLmxfZW4uZF8yNjUzMy54XzI4LnYucC50XzI2NTMzLnh0XzI4.js
                            msedge.exe
                            Remote address:
                            195.181.164.21:443
                            Request
                            GET /delivery/customdata/bV8xLndfNjkwMjIucl9HRFBSLmxfZW4uZF8yNjUzMy54XzI4LnYucC50XzI2NTMzLnh0XzI4.js HTTP/2.0
                            host: cdn.consentmanager.net
                            sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
                            dnt: 1
                            sec-ch-ua-mobile: ?0
                            user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            accept: */*
                            sec-fetch-site: cross-site
                            sec-fetch-mode: no-cors
                            sec-fetch-dest: script
                            accept-encoding: gzip, deflate, br
                            accept-language: en-US,en;q=0.9
                            Response
                            HTTP/2.0 200
                            date: Mon, 03 Jun 2024 07:50:42 GMT
                            content-type: text/javascript; charset=utf-8
                            access-control-allow-origin: *
                            x-xss-protection: 0
                            expires: Mon, 03 Jun 2024 07:58:37 GMT
                            cache-control: public, max-age=1800
                            edge-control: public, max-age=1800
                            last-modified: Mon, 03 Jun 2024 07:28:37 GMT
                            x-77-nzt: EwwBw7WkDQH3LQUAAAwBuUwKEwGzuAUAAAwBisclxAGzeAcAAA
                            x-77-nzt-ray: d09eba0ff8196e73d2755d662132fb16
                            x-accel-expires: @1717401517
                            x-accel-date: 1717399717
                            x-77-cache: HIT
                            vary: Accept-Encoding
                            content-encoding: gzip
                            x-77-age: 1325
                            server: CDN77-Turbo
                            x-cache: HIT
                            x-age: 1325
                            x-77-pop: londonGB
                          • flag-gb
                            GET
                            https://cdn.consentmanager.net/delivery/recall/logos/69022
                            msedge.exe
                            Remote address:
                            195.181.164.21:443
                            Request
                            GET /delivery/recall/logos/69022 HTTP/2.0
                            host: cdn.consentmanager.net
                            sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
                            dnt: 1
                            sec-ch-ua-mobile: ?0
                            user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
                            accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                            sec-fetch-site: cross-site
                            sec-fetch-mode: no-cors
                            sec-fetch-dest: image
                            accept-encoding: gzip, deflate, br
                            accept-language: en-US,en;q=0.9
                            Response
                            HTTP/2.0 200
                            date: Mon, 03 Jun 2024 07:50:42 GMT
                            content-type: image/svg+xml
                            expires: Mon, 03 Jun 2024 15:48:08 GMT
                            cache-control: public, max-age=86400
                            edge-control: public, max-age=86400
                            edge-control: max-age=2592000
                            x-77-nzt: EwwBw7WkDQH3+dwAAAwBuUwKAQH3oQQAAAwBJRPCNAGTwFEBAA
                            x-77-nzt-ray: d09eba0ff8196e73d2755d6629aca11b
                            x-accel-expires: @1717429688
                            x-accel-date: 1717344473
                            x-77-cache: HIT
                            vary: Accept-Encoding
                            content-encoding: gzip
                            x-77-age: 56569
                            server: CDN77-Turbo
                            x-cache: HIT
                            x-age: 56569
                            x-77-pop: londonGB
                          • flag-us
                            DNS
                            21.164.181.195.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            21.164.181.195.in-addr.arpa
                            IN PTR
                            Response
                            21.164.181.195.in-addr.arpa
                            IN PTR
                            263888592loncdn77com
                          • flag-us
                            DNS
                            76.98.230.87.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            76.98.230.87.in-addr.arpa
                            IN PTR
                            Response
                            76.98.230.87.in-addr.arpa
                            IN PTR
                            ma5050018 psmanagedcom
                          • flag-us
                            DNS
                            104.219.191.52.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            104.219.191.52.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            50.23.12.20.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            50.23.12.20.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            198.187.3.20.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            198.187.3.20.in-addr.arpa
                            IN PTR
                            Response
                          • flag-us
                            DNS
                            203.107.17.2.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            203.107.17.2.in-addr.arpa
                            IN PTR
                            Response
                            203.107.17.2.in-addr.arpa
                            IN PTR
                            a2-17-107-203deploystaticakamaitechnologiescom
                          • flag-us
                            DNS
                            31.243.111.52.in-addr.arpa
                            Remote address:
                            8.8.8.8:53
                            Request
                            31.243.111.52.in-addr.arpa
                            IN PTR
                            Response
                          • 199.79.60.210:443
                            https://skenzo.com/favicon.ico
                            tls, http
                            msedge.exe
                            5.4kB
                            23.4kB
                            23
                            31

                            HTTP Request

                            GET https://skenzo.com/sk-privacy.php?sk_ref=EYfZ0e0RPoCr99Eiylj5yY%2BrcmRzKZOPf9yauzZcqahcvFpXgp69a%2Bx8F8eu0PaC

                            HTTP Response

                            200

                            HTTP Request

                            GET https://skenzo.com/js/cmpheader.js

                            HTTP Response

                            200

                            HTTP Request

                            GET https://skenzo.com/images/skenzo-email.png

                            HTTP Response

                            200

                            HTTP Request

                            GET https://skenzo.com/js/cmpclbk.js

                            HTTP Response

                            200

                            HTTP Request

                            GET https://skenzo.com/favicon.ico

                            HTTP Response

                            404
                          • 199.79.60.210:443
                            skenzo.com
                            tls
                            msedge.exe
                            1.7kB
                            1.5kB
                            10
                            10
                          • 199.79.60.210:443
                            skenzo.com
                            tls
                            msedge.exe
                            954 B
                            508 B
                            8
                            8
                          • 199.79.60.210:443
                            skenzo.com
                            tls
                            msedge.exe
                            954 B
                            468 B
                            8
                            7
                          • 87.230.98.76:443
                            https://c.delivery.consentmanager.net/delivery/info/?id=69022&did=1&cfdid=1&t=pv.d_ncs.d_ancs.d_bncs.d_dnsx&h=https%3A%2F%2Fskenzo.com%2Fsk-privacy.php%3Fsk_ref%3DEYfZ0e0RPoCr99Eiylj5yY%252BrcmRzKZOPf9yauzZcqahcvFpXgp69a%252Bx8F8eu0PaC&o=1717401041336&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=16&dv=28&
                            tls, http
                            msedge.exe
                            4.2kB
                            9.4kB
                            14
                            14

                            HTTP Request

                            GET https://c.delivery.consentmanager.net/delivery/cmp.php?&cdid=3b15bbd221c9f&h=https%3A%2F%2Fskenzo.com%2Fsk-privacy.php%3Fsk_ref%3DEYfZ0e0RPoCr99Eiylj5yY%252BrcmRzKZOPf9yauzZcqahcvFpXgp69a%252Bx8F8eu0PaC&&l=en&o=1717401040754

                            HTTP Response

                            200

                            HTTP Request

                            GET https://c.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=1&id=69022&o=1717401042&h=https%3A%2F%2Fskenzo.com%2Fsk-privacy.php%3Fsk_ref%3DEYfZ0e0RPoCr99Eiylj5yY%252BrcmRzKZOPf9yauzZcqahcvFpXgp69a%252Bx8F8eu0PaC&&l=en&odw=0&dlt=1&l=en

                            HTTP Response

                            200

                            HTTP Request

                            GET https://c.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=69022&o=1717401042&h=https%3A%2F%2Fskenzo.com%2Fsk-privacy.php%3Fsk_ref%3DEYfZ0e0RPoCr99Eiylj5yY%252BrcmRzKZOPf9yauzZcqahcvFpXgp69a%252Bx8F8eu0PaC&&l=en&odw=0&dlt=1&l=en

                            HTTP Response

                            200

                            HTTP Request

                            GET https://c.delivery.consentmanager.net/delivery/info/?id=69022&did=1&cfdid=1&t=pv.d_ncs.d_ancs.d_bncs.d_dnsx&h=https%3A%2F%2Fskenzo.com%2Fsk-privacy.php%3Fsk_ref%3DEYfZ0e0RPoCr99Eiylj5yY%252BrcmRzKZOPf9yauzZcqahcvFpXgp69a%252Bx8F8eu0PaC&o=1717401041336&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=16&dv=28&

                            HTTP Response

                            200
                          • 195.181.164.21:443
                            https://cdn.consentmanager.net/delivery/recall/logos/69022
                            tls, http2
                            msedge.exe
                            4.3kB
                            121.3kB
                            65
                            103

                            HTTP Request

                            GET https://cdn.consentmanager.net/delivery/js/cmp_en.min.js

                            HTTP Response

                            200

                            HTTP Request

                            GET https://cdn.consentmanager.net/delivery/customdata/bV8xLndfNjkwMjIucl9HRFBSLmxfZW4uZF8yNjUzMy54XzI4LnYucC50XzI2NTMzLnh0XzI4.js

                            HTTP Response

                            200

                            HTTP Request

                            GET https://cdn.consentmanager.net/delivery/recall/logos/69022

                            HTTP Response

                            200
                          • 8.8.8.8:53
                            skenzo.com
                            dns
                            msedge.exe
                            56 B
                            72 B
                            1
                            1

                            DNS Request

                            skenzo.com

                            DNS Response

                            199.79.60.210

                          • 8.8.8.8:53
                            228.249.119.40.in-addr.arpa
                            dns
                            73 B
                            159 B
                            1
                            1

                            DNS Request

                            228.249.119.40.in-addr.arpa

                          • 8.8.8.8:53
                            68.32.126.40.in-addr.arpa
                            dns
                            71 B
                            157 B
                            1
                            1

                            DNS Request

                            68.32.126.40.in-addr.arpa

                          • 8.8.8.8:53
                            210.60.79.199.in-addr.arpa
                            dns
                            216 B
                            216 B
                            3
                            3

                            DNS Request

                            210.60.79.199.in-addr.arpa

                            DNS Request

                            210.60.79.199.in-addr.arpa

                            DNS Request

                            210.60.79.199.in-addr.arpa

                          • 8.8.8.8:53
                            144.107.17.2.in-addr.arpa
                            dns
                            71 B
                            135 B
                            1
                            1

                            DNS Request

                            144.107.17.2.in-addr.arpa

                          • 8.8.8.8:53
                            c.delivery.consentmanager.net
                            dns
                            msedge.exe
                            75 B
                            91 B
                            1
                            1

                            DNS Request

                            c.delivery.consentmanager.net

                            DNS Response

                            87.230.98.76

                          • 8.8.8.8:53
                            cdn.consentmanager.net
                            dns
                            msedge.exe
                            68 B
                            138 B
                            1
                            1

                            DNS Request

                            cdn.consentmanager.net

                            DNS Response

                            195.181.164.21
                            89.187.167.3

                          • 8.8.8.8:53
                            21.164.181.195.in-addr.arpa
                            dns
                            73 B
                            110 B
                            1
                            1

                            DNS Request

                            21.164.181.195.in-addr.arpa

                          • 8.8.8.8:53
                            76.98.230.87.in-addr.arpa
                            dns
                            71 B
                            108 B
                            1
                            1

                            DNS Request

                            76.98.230.87.in-addr.arpa

                          • 224.0.0.251:5353
                            517 B
                            8
                          • 8.8.8.8:53
                            104.219.191.52.in-addr.arpa
                            dns
                            73 B
                            147 B
                            1
                            1

                            DNS Request

                            104.219.191.52.in-addr.arpa

                          • 8.8.8.8:53
                            50.23.12.20.in-addr.arpa
                            dns
                            70 B
                            156 B
                            1
                            1

                            DNS Request

                            50.23.12.20.in-addr.arpa

                          • 8.8.8.8:53
                            198.187.3.20.in-addr.arpa
                            dns
                            71 B
                            157 B
                            1
                            1

                            DNS Request

                            198.187.3.20.in-addr.arpa

                          • 8.8.8.8:53
                            203.107.17.2.in-addr.arpa
                            dns
                            71 B
                            135 B
                            1
                            1

                            DNS Request

                            203.107.17.2.in-addr.arpa

                          • 8.8.8.8:53
                            31.243.111.52.in-addr.arpa
                            dns
                            72 B
                            158 B
                            1
                            1

                            DNS Request

                            31.243.111.52.in-addr.arpa

                          MITRE ATT&CK Enterprise v15

                          Replay Monitor

                          Loading Replay Monitor...

                          Downloads

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                            Filesize

                            152B

                            MD5

                            537815e7cc5c694912ac0308147852e4

                            SHA1

                            2ccdd9d9dc637db5462fe8119c0df261146c363c

                            SHA256

                            b4b69d099507d88abdeff4835e06cc6711e1c47464c963d013cef0a278e52d4f

                            SHA512

                            63969a69af057235dbdecddc483ef5ce0058673179a3580c5aa12938c9501513cdb72dd703a06fa7d4fc08d074f17528283338c795334398497c771ecbd1350a

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                            Filesize

                            152B

                            MD5

                            8b167567021ccb1a9fdf073fa9112ef0

                            SHA1

                            3baf293fbfaa7c1e7cdacb5f2975737f4ef69898

                            SHA256

                            26764cedf35f118b55f30b3a36e0693f9f38290a5b2b6b8b83a00e990ae18513

                            SHA512

                            726098001ef1acf1dd154a658752fa27dea32bca8fbb66395c142cb666102e71632adbad1b7e2f717071cd3e3af3867471932a71707f2ae97b989f4be468ab54

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                            Filesize

                            192B

                            MD5

                            bb5cc0205da9e073785a405e14f9a791

                            SHA1

                            765ed7a7ccfbc064d67856823ed45fe0271efddc

                            SHA256

                            e2d9fe15715f964abc9f5b94f2545d7e089b4bee67e3eddca8f58e297ca63676

                            SHA512

                            0642556383ba0781916b76354146a0f6b26755cbed1cf84ffa8b096bcee699a3ae81167bb9ad1fda2a16cc1f936e53d6322c36e42eceb3ed5c3599323f93539b

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                            Filesize

                            190B

                            MD5

                            35170c47efd42f0e6a06743fd36ded70

                            SHA1

                            6561d3352f30bca9248e5ce1abbcc74623030a31

                            SHA256

                            50c651b08640e10692e74343c27ec7e39ae3f0eb760907d2ccf16219a7db5193

                            SHA512

                            6c41beb4f871a74be831ea869a9044942706a4dbd123ecb0498d57f56e4162d599280072eb58789f371bc392eeec9ac3276dadf5db2e09479673494b742c9805

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                            Filesize

                            5KB

                            MD5

                            a17555f3b132cc7b9641351a3ae2c62f

                            SHA1

                            53829bcf49a58a5187eab26544f5f94cdd88f6a3

                            SHA256

                            68bf04350895d106213d21fffab3b4b429fcf9defa3a9b3586941bd0a42032da

                            SHA512

                            78e543e28d9f1fad7d7fff68f604562eaac6fb5f35c38051d911f6e4ba1a179a5d6feeccac00308ac7dc5d8d8f6b93cfcfe2f654b876a6f09c8cc1434cd341a4

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                            Filesize

                            6KB

                            MD5

                            1a3c2fff88e90e5c16d38ec86adc6442

                            SHA1

                            55b0676be0dba27579fd2f3e7948bc3ae3fc44d1

                            SHA256

                            7e894e903ec0acafee1347d63fe6971f54562e3cf4aab79178c5aef0ec31c4e7

                            SHA512

                            31e2f4888bbdaa8fa52332c4fc054fc497f252476f01cc92a098557bccdc12e68c122db77f1ffd126af306900a8af58257bee0c1d6b03ad5d97641b233af9aee

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

                            Filesize

                            16B

                            MD5

                            6752a1d65b201c13b62ea44016eb221f

                            SHA1

                            58ecf154d01a62233ed7fb494ace3c3d4ffce08b

                            SHA256

                            0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

                            SHA512

                            9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

                            Filesize

                            10KB

                            MD5

                            777bff45b90601629f562df03ceabdce

                            SHA1

                            5ba010bed989ab7dbf305601b743e3d354a25ab6

                            SHA256

                            01538183e9f6ffe5d0f744cb259a6c8e8f263d4ee1834c6b4644c3b413ce31fd

                            SHA512

                            48fdb641634ca1b1999f7b96cf24141e799e97e21c63a103dc034fcb2303d77b10dad4d75401ebe9796ce222edd13d01da5f7b8d95ae99d9da51848bf5eac897

                          We care about your privacy.

                          This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.