Analysis Overview
SHA256
46af32d736f11e07ccc251f6c892f208b932c6ff5782c63b536ff6671735bc1b
Threat Level: No (potentially) malicious behavior was detected
The file 910937ecd450023a373d22baea38816e_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
Modifies Internet Explorer settings
Suspicious use of FindShellTrayWindow
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-03 08:00
Signatures
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-03 08:00
Reported
2024-06-03 08:03
Platform
win10v2004-20240226-en
Max time kernel
148s
Max time network
154s
Command Line
Signatures
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\910937ecd450023a373d22baea38816e_JaffaCakes118.html
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --mojo-platform-channel-handle=4988 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=18 --mojo-platform-channel-handle=3404 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=5764 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --mojo-platform-channel-handle=5556 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --mojo-platform-channel-handle=3660 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=22 --mojo-platform-channel-handle=6052 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=23 --mojo-platform-channel-handle=6088 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=24 --mojo-platform-channel-handle=3948 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=25 --mojo-platform-channel-handle=6268 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --mojo-platform-channel-handle=5428 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:8
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | nav-edge.smartscreen.microsoft.com | udp |
| US | 8.8.8.8:53 | nav-edge.smartscreen.microsoft.com | udp |
| US | 8.8.8.8:53 | business.bing.com | udp |
| US | 8.8.8.8:53 | business.bing.com | udp |
| US | 13.107.9.158:443 | business.bing.com | tcp |
| GB | 51.11.108.188:443 | nav-edge.smartscreen.microsoft.com | tcp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | 164.189.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| BE | 2.21.17.194:443 | www.microsoft.com | tcp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| GB | 142.250.187.202:80 | fonts.googleapis.com | tcp |
| US | 8.8.8.8:53 | bzib.nelreports.net | udp |
| US | 8.8.8.8:53 | bzib.nelreports.net | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| GB | 104.91.71.134:443 | bzib.nelreports.net | tcp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| GB | 142.250.200.14:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| GB | 142.250.200.14:443 | www.youtube.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| US | 8.8.8.8:53 | 188.108.11.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 158.9.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.17.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.71.91.104.in-addr.arpa | udp |
| GB | 142.250.200.14:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| GB | 142.250.200.14:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | static.xx.fbcdn.net | udp |
| US | 8.8.8.8:53 | static.xx.fbcdn.net | udp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| US | 8.8.8.8:53 | 14.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.151.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | c.s-microsoft.com | udp |
| US | 8.8.8.8:53 | c.s-microsoft.com | udp |
| US | 8.8.8.8:53 | edgestatic.azureedge.net | udp |
| US | 8.8.8.8:53 | edgestatic.azureedge.net | udp |
| US | 8.8.8.8:53 | scontent.xx.fbcdn.net | udp |
| US | 8.8.8.8:53 | scontent.xx.fbcdn.net | udp |
| US | 13.107.253.64:443 | edgestatic.azureedge.net | tcp |
| US | 13.107.253.64:443 | edgestatic.azureedge.net | tcp |
| US | 13.107.253.64:443 | edgestatic.azureedge.net | tcp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| US | 13.107.253.64:443 | edgestatic.azureedge.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | udp |
| GB | 216.58.212.246:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | 21.151.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 246.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 209.205.72.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.53.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 0.204.248.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | nw-umwatson.events.data.microsoft.com | udp |
| US | 20.189.173.20:443 | nw-umwatson.events.data.microsoft.com | tcp |
| GB | 23.44.234.16:80 | tcp | |
| US | 8.8.8.8:53 | 20.173.189.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.178.2:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 149.220.183.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| GB | 216.58.213.6:443 | static.doubleclick.net | tcp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| GB | 216.58.212.234:443 | jnn-pa.googleapis.com | tcp |
| GB | 216.58.212.234:443 | jnn-pa.googleapis.com | tcp |
| GB | 216.58.212.234:443 | jnn-pa.googleapis.com | tcp |
| GB | 216.58.212.234:443 | jnn-pa.googleapis.com | tcp |
| GB | 216.58.212.234:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.180.1:443 | yt3.ggpht.com | tcp |
| GB | 216.58.212.234:443 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 6.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 142.250.179.238:443 | play.google.com | tcp |
| GB | 142.250.179.238:443 | play.google.com | tcp |
| GB | 142.250.179.238:443 | play.google.com | udp |
| US | 8.8.8.8:53 | 238.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | wcpstatic.microsoft.com | udp |
| US | 8.8.8.8:53 | wcpstatic.microsoft.com | udp |
| US | 13.107.253.64:443 | edgestatic.azureedge.net | tcp |
| US | 13.107.246.64:443 | wcpstatic.microsoft.com | tcp |
| US | 8.8.8.8:53 | 157.123.68.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.39.242.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.246.107.13.in-addr.arpa | udp |
| US | 13.107.253.64:443 | edgestatic.azureedge.net | tcp |
| NL | 23.62.61.160:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 160.61.62.23.in-addr.arpa | udp |
| GB | 142.250.179.238:443 | play.google.com | tcp |
| GB | 142.250.179.238:443 | play.google.com | udp |
| NL | 52.142.223.178:80 | tcp | |
| US | 8.8.8.8:53 | 13.227.111.52.in-addr.arpa | udp |
| NL | 23.62.61.99:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 99.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.179.89.13.in-addr.arpa | udp |
| GB | 142.250.178.2:443 | googleads.g.doubleclick.net | udp |
Files
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-03 08:00
Reported
2024-06-03 08:03
Platform
win7-20240215-en
Max time kernel
149s
Max time network
150s
Command Line
Signatures
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "6" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "121" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "407" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "492" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "7347" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "16456" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Zoom | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "498" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "7429" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "7347" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "0" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "0" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "16456" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "498" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\GPU | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{5B0A17B1-217F-11EF-AF73-469E18234AA3} = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "6" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "8969" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10321" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "8765" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "423563502" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "6" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "8969" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "492" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "410" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "3966" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "3884" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "7429" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "9518" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "115" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "197" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "8877" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\SearchScopes | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "121" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10321" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\PageSetup | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "410" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "410" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000003d6543e90ffbb742adae82834bb06bc40000000002000000000010660000000100002000000016df090a0bfd1041021861d460f0dc1b512e78b789394630b70667ebbc5b12b2000000000e8000000002000020000000dd1d95cd8e04b9197a9beb409381f95f9da606a8ab561f84625177c1be789ce320000000e0a31406039a669036bba84130f44156c0e57fdc9e48911b35fb169ef401ac7140000000b11889f8c252750d3c9003bbcec1ad5d7a7727f26e83ddf0eb3e6eb31f474762ddf7d7849d8a6e35cb503aba8dd3a26983d42dec8cec2d6c3ef52862affb0a72 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "0" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "3966" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "9518" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "197" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "16456" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\InternetRegistry | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "8765" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "9518" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = e000d6348cb5da01 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "115" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10321" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
Suspicious use of FindShellTrayWindow
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
Suspicious use of WriteProcessMemory
| Description | Indicator | Process | Target |
| PID 2740 wrote to memory of 1540 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 2740 wrote to memory of 1540 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 2740 wrote to memory of 1540 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
| PID 2740 wrote to memory of 1540 | N/A | C:\Program Files\Internet Explorer\iexplore.exe | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE |
Processes
C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\910937ecd450023a373d22baea38816e_JaffaCakes118.html
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2740 CREDAT:275457 /prefetch:2
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | www.konthaiusa.com | udp |
| GB | 142.250.187.202:80 | fonts.googleapis.com | tcp |
| GB | 142.250.187.202:80 | fonts.googleapis.com | tcp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| GB | 142.250.200.14:80 | www.youtube.com | tcp |
| GB | 142.250.200.14:80 | www.youtube.com | tcp |
| GB | 163.70.151.35:80 | www.facebook.com | tcp |
| GB | 163.70.151.35:80 | www.facebook.com | tcp |
| GB | 142.250.200.14:80 | www.youtube.com | tcp |
| GB | 142.250.200.14:80 | www.youtube.com | tcp |
| GB | 142.250.200.14:80 | www.youtube.com | tcp |
| GB | 142.250.200.14:443 | www.youtube.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| GB | 142.250.200.14:443 | www.youtube.com | tcp |
| GB | 142.250.200.14:443 | www.youtube.com | tcp |
| GB | 142.250.200.14:443 | www.youtube.com | tcp |
| GB | 142.250.200.14:443 | www.youtube.com | tcp |
| GB | 216.58.213.14:80 | www.google-analytics.com | tcp |
| GB | 216.58.213.14:80 | www.google-analytics.com | tcp |
| GB | 142.250.200.14:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | static.xx.fbcdn.net | udp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | static.xx.fbcdn.net | tcp |
| US | 8.8.8.8:53 | scontent.xx.fbcdn.net | udp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| GB | 163.70.151.21:443 | scontent.xx.fbcdn.net | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 216.58.213.6:443 | static.doubleclick.net | tcp |
| GB | 216.58.213.6:443 | static.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 172.217.16.234:443 | jnn-pa.googleapis.com | tcp |
| GB | 172.217.16.234:443 | jnn-pa.googleapis.com | tcp |
| GB | 172.217.16.234:443 | jnn-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 216.58.212.246:443 | i.ytimg.com | tcp |
| GB | 216.58.212.246:443 | i.ytimg.com | tcp |
| GB | 172.217.16.234:443 | jnn-pa.googleapis.com | tcp |
| GB | 172.217.16.234:443 | jnn-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| GB | 142.250.180.1:443 | yt3.ggpht.com | tcp |
| GB | 142.250.180.1:443 | yt3.ggpht.com | tcp |
| US | 8.8.8.8:53 | fe0.google.com | udp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | tcp |
Files
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
| MD5 | 2a267c8371f84045236028d9d98b0988 |
| SHA1 | 689e34bfc1f5b0d068c4ee62baca3e32f2a8e2f8 |
| SHA256 | 3e6148f5d2f700962e4ca856d369cf61329d27095aab4081997a69c337194f4a |
| SHA512 | 7da74e5c2144e31887d70c62f623a0271b33153f0be825828f006ecec9fcb7d1f006249171b2b6746953cec27ce3ef159f980919e2b7ac996ae64d2519938e5c |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
| MD5 | 49aebf8cbd62d92ac215b2923fb1b9f5 |
| SHA1 | 1723be06719828dda65ad804298d0431f6aff976 |
| SHA256 | b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f |
| SHA512 | bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
| MD5 | ac89a852c2aaa3d389b2d2dd312ad367 |
| SHA1 | 8f421dd6493c61dbda6b839e2debb7b50a20c930 |
| SHA256 | 0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45 |
| SHA512 | c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | b93e72c0e2160eb3c08f9e66cacedf49 |
| SHA1 | df3053ba56b27e08d92e438e73d18a7018bccca0 |
| SHA256 | baabc84fa000427fdc5dda12f52676ad1013e78ac1fe7524608781a816314279 |
| SHA512 | 1baabd207e1fe5cc0dc585cd7b9259914ef370b04d333d12a75036eee257bf53793373351c5ae9bf3f40a57b7f5e3fe39abaec1ee539cbca47e8f2fbcead7b17 |
C:\Users\Admin\AppData\Local\Temp\Tar18F5.tmp
| MD5 | 4ea6026cf93ec6338144661bf1202cd1 |
| SHA1 | a1dec9044f750ad887935a01430bf49322fbdcb7 |
| SHA256 | 8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8 |
| SHA512 | 6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\www-embed-player[1].js
| MD5 | d2056f8d081fbfffcab81d61ea45b151 |
| SHA1 | 710243082f40626f64943ad3b656400f444d7130 |
| SHA256 | 49fa9b168cc8bbc037cf4498e31c355509e9b438b0d19fcf750b1c5fbd1efcaa |
| SHA512 | 530ca2c291c44d3d2b5869b0ae661ac047748a5cab50de280a2c8dbd26b52cdd71a906b3730e8a849debece542eb919462a8407ef2410acf28c57d2b6068cc14 |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\base[1].js
| MD5 | 9178a954abcce420219864651c7787b2 |
| SHA1 | f874d3e998441ba6439cfd7e89514facde08cff4 |
| SHA256 | 40cc1692dd4d8e1c8ed29593ee222240494b872b734c0e31da4628014da7346d |
| SHA512 | 927bf88499cdd64ce32f3780a0cfa88b14fdfbeac6a237454dcc43ee5d56b04754a40dbcba402519637ba1a3b0f948a597260a74ddb0b316698a41559d8e1cd3 |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\KFOlCnqEu92Fr1MmEU9fBBc-[1].woff
| MD5 | de8b7431b74642e830af4d4f4b513ec9 |
| SHA1 | f549f1fe8a0b86ef3fbdcb8d508440aff84c385c |
| SHA256 | 3bfe46bb1ca35b205306c5ec664e99e4a816f48a417b6b42e77a1f43f0bc4e7a |
| SHA512 | 57d3d4de3816307ed954b796c13bfa34af22a46a2fea310df90e966301350ae8adac62bcd2abf7d7768e6bdcbb3dfc5069378a728436173d07abfa483c1025ac |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\KFOmCnqEu92Fr1Mu4mxM[1].woff
| MD5 | bafb105baeb22d965c70fe52ba6b49d9 |
| SHA1 | 934014cc9bbe5883542be756b3146c05844b254f |
| SHA256 | 1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed |
| SHA512 | 85a91773b0283e3b2400c773527542228478cc1b9e8ad8ea62435d705e98702a40bedf26cb5b0900dd8fecc79f802b8c1839184e787d9416886dbc73dff22a64 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | c1ddea3ef6bbef3e7060a1a9ad89e4c5 |
| SHA1 | 35e3224fcbd3e1af306f2b6a2c6bbea9b0867966 |
| SHA256 | b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db |
| SHA512 | 6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F2DDCD2B5F37625B82E81F4976CEE400_434205A76CE72E9356C6165EEA1227C2
| MD5 | f74326049ac4e12445935e11da913059 |
| SHA1 | f57b5618313f91b6be31f9d7d3259c48d990dccb |
| SHA256 | a5851f99f4daeb530d44726649ff8592e9acdcfc8a78b412dbf39a58fc862adc |
| SHA512 | 73c56e04fe81e43d3e9f1b437d4da8b8c45ee6c4179911e8ec26a933eeb4972ac06b090ec7e89cd4b478f17a425fcb2eaedc50f178e2f94220d2f54e8a3a7ff6 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | fdcbefd22f8156baa0dba5af399be01d |
| SHA1 | 38e2d1bacb68eadbc1bdc0af8ddf384f421d5622 |
| SHA256 | c11c6df13b401ae5eaf72284cca1f315e167e56f76f398b64e7c40bf4ac09cf9 |
| SHA512 | f85e33e63edcf1fd08632b234594a288eec63b934e8a5d5dc3b7621163a95b73f675fb82247d83e5e433cd20affc000f98eb94055ffc0c42e3bd136dda449383 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 9ad05889af5a4d1154321f66d7167fd8 |
| SHA1 | fc058733b173d616bcb6f44d57f0d2ccf1e029b6 |
| SHA256 | 557557877c1cc0ce152688a336c04e6d4f467cc6650ea6033a21a3d730b8d0b9 |
| SHA512 | 98da6ef241adad23013066c176c85519693bf8f1acf1a300a2c72ff4e765169b08fefcb3b506010b1f31fbad236f9bddb0700addb785a7876370042a3248438a |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 8b412f828f14eb661875c1b7cd3ad297 |
| SHA1 | e1b15ead0dbf4208a8d533c23957753a6dc27bca |
| SHA256 | 5a9debcb6c5cf19bbb3364c7f6f70140b8e39a9bbe8e46d7fc35366ba8fd1786 |
| SHA512 | 006b96c7fa236f2b72858f697f0918489548d3b4cdae58a44a5e7fa9a58e620b68792c0efd29b720d5fe015963b2f6cc1d8f792365022eef30e7190796973e6f |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 0e6d05d0d0c22f3a0cf6c7607908a2e5 |
| SHA1 | 03dda0d34875e30d6528af3dc77760fde5597d5f |
| SHA256 | 133a704b2d978cf3425ec86d530aca793967834dced4741cc630edbd9ee6395c |
| SHA512 | 868d58100f2ee139656872b3f0a9d28676a968ee00a3476f82557065af0afe8010a6d15a5881cefbc490af81669e2d5dc91e7104f34df1c80aedee25535f98f9 |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\902LKC6A\embed[1].js
| MD5 | 322e970509e24ab233b6c326a9339623 |
| SHA1 | 10e2ea809ae638d5f32385d05c569922ab19bc17 |
| SHA256 | 99cbd012a57f19a3fc1b412866ba13d6b9de2a5bb22449dcbf14ec0a88937000 |
| SHA512 | 8f8bdc9418feed04e6fc7415e9e57f0934a6b136b1a763e0e39f67efa47e004a8c3385105a1c1dd9fa48ada83ac5a2a93940f20a99d6d16722ae903c93d9817c |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OOWQLMJV\ad_status[1].js
| MD5 | 1fa71744db23d0f8df9cce6719defcb7 |
| SHA1 | e4be9b7136697942a036f97cf26ebaf703ad2067 |
| SHA256 | eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9 |
| SHA512 | 17fa262901b608368eb4b70910da67e1f11b9cfb2c9dc81844f55bee1db3ec11f704d81ab20f2dda973378f9c0df56eaad8111f34b92e4161a4d194ba902f82f |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 55f1006da5c4c9f764b52731b1f7bcf9 |
| SHA1 | a853103ee22e276bbf3e04f20f831d76b66acc02 |
| SHA256 | 324d39c2bdc508b375577426c1e9773fdddd6516c7e3506ee9859d28f432ae08 |
| SHA512 | 55d8786bf8be4a5c9dfaed5319e6249db79669ca617699f0354da291352e3021c9f7b9e69b45bb58943bd88b65f369fbbbc6f621302bc3fc8c5acb118ddb4659 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | c65422c6c6cf6b3853a0a256d0a5b166 |
| SHA1 | f1857ce3910e0b1881aa8a3d067ae5a905c47d7f |
| SHA256 | 530456c6d9a7cab9a480e4d328d24e3723db02b93fa50c843f13ed51146ebcca |
| SHA512 | 840d1bb8eac2a0d7015c975fe80405a13d0deb4fcf027b3e673fc26cf8f1b6803f685322204c6c641fc8f6923a471d84ab633617a491ef76c03e7c2a7c8b4b5b |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 078a231c4407a3061aa1b3677671be99 |
| SHA1 | 9f4c2b6bc99484c1b0c3ff128bf644090a0b00cc |
| SHA256 | e5ffc768f54845a4f707d33ba80a6c6d01b6ea1001df3871e5fefac2b7656e2c |
| SHA512 | b349437bbe3412cabd701400644c158fffa6033b99e6c971052f7c35ba5c991bd40416c88b14cbe99dd62dc661038f11063826a03ed3cb104484914e5bf8ec10 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | f26d5ed0322c9bf39a58cc450099228d |
| SHA1 | f460ca4077d92c553ffa1e4092ac35608031cefb |
| SHA256 | 02894142e0cc88b2313942c6041e6875c2a49e9e4f7164f97b37b555810c74fe |
| SHA512 | 93fa536f3964ed321439d8d69b7b3eceb0e31f5a7abd77f1535834a6617263eeb268f02a0f06d96534afbea461aadb4798c5c944e6063ed2a61c0c46a5c8ecff |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 7ce077a009aa6cd02d5c556a3e18ced6 |
| SHA1 | d83b4bf71365712ea511d627677dbbb1526ef736 |
| SHA256 | ed3da64aa53665548b0668f72d15b0983b2daf7a5674fe97e91d1ca6085185d7 |
| SHA512 | 99df0ce41f07a3ba0046c1ebd6a1895a96293c691c0bfab427a75de12812ae478fbd77bfbfe5dfcbbcc7890d1bbdb9d29d1d5ee93781b017b82cfca19adf4a97 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 9e4d47c1adec8fce01eb9bf2c1521f63 |
| SHA1 | 9bb101211135d239bd19a4169fe46c2ce6a24263 |
| SHA256 | a3f02510be445f036a01767bf7d6331cae11da90f609b21e183b3d14934f7a2e |
| SHA512 | 64f2a468e6d12e1d2fd5416d3ad0f3a2d0efc576b8348adac6ceb50aaf69748c834f0af25716d8c2268c8c83998ae9f23e76d87665f45cd6573e961f31c1395f |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 79130f36c088714e108dcec041e80eea |
| SHA1 | 95c3bbf9a1fd34083da1f5f2028d2c5fefb1fd81 |
| SHA256 | 6cdd090fdaec5bb3e83a1d922fcecb0ce7ad490440ae9b162dc6440916dcdee9 |
| SHA512 | 4eb19cdc5b2c5b37238a7cac6fca87f40bcccba0e7248b5c2d9af47cb2a9c1a970617da5b3146e3ef194c0ad21785272f76911c1beac7ff8e5fb704bb5e103df |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | e04833356c518a48adbaba8f50ead21c |
| SHA1 | 0dd923856b307ed7fc6032c8b6f16c42e9a926be |
| SHA256 | 48fdeae9a8867292146acdcbde61d8cdf8a8de3e82d9eca0d74f2ae9fa3cbb32 |
| SHA512 | 8d13f326c1dd70f05684fd133696cf95d5764074c1b8e1d6f6b781232da13b7327eea8afd870bb713df3f09b4aeb98a9d5975e92a1bb778f989c19c970d40619 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 9a5ac3e3d6f9234607b23e589b78b8c4 |
| SHA1 | 9f48347c0f19fb6394946ecf1eeb9e1a6be087eb |
| SHA256 | 910980d9559c8efff91993e145d4f3c0bcd011c65c37f73df3682e400316447b |
| SHA512 | 1015641eafb7bc3099ce52b23a1f086d89987dd1fbceb2ed581a97ac3fec38b174c59488decb021dc1f40ea8c8804a2c3b97766efe6e1386c2d4b4826f218921 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 1728aa4c72899d047ed4df8363540092 |
| SHA1 | c67da992fc07b5b35670165fb8e2db9e0178509b |
| SHA256 | 55750f428f329e2e48e9c17cef797f8103588c0ca326dcaf4fd42eac4738df39 |
| SHA512 | 9a863d758f0165dbcc07280ded9474814aad0200f9c8a20c914b6afe54743f76a3594a4ba9879f664f69c568515f6aa70136c9a6da14aae95f86e82240699dc8 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | cae3c4ab9257baa10604985abb789440 |
| SHA1 | 0713ddc6403c3aa8c08be4a80d6621bd6e9c7ee7 |
| SHA256 | 38c6cdc54386d5447bcd467b010d61a4918f81ef91cff12c94380d2b3243077a |
| SHA512 | bd5c06812b8972783c27723e2d7a83f7e7524c5656c8acb728a8d1449f1e9b53b8ece94e8ce3cb14c82ff58ffbd2acfb360520a7c619f2f77ddbfced1da823bc |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 55a87bffbd7dd88d460583f8e735569a |
| SHA1 | eb457725b74337d4a0547f9ab62a5574b6db8645 |
| SHA256 | e7ce9e4aee5a2e6560faf6341dbeec0252e516fd18ca6868abfef52016657ce3 |
| SHA512 | dad5aacded6bca76118532486553f35afa01a37f62e8da36d54c204bd06703758470377a17cf7e1c29edbd8fd3205c6e290794da10e585d28e749310e75d66c4 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | fc511adc996eb551f830af25539fadac |
| SHA1 | c6235c9da7dd7ca2494ff1ecf4e0d4d79f8e0f81 |
| SHA256 | 3cb471e5630f9cfaffac4e41cd0271262187c3d36391907c45c5c334a944bc32 |
| SHA512 | decc63b1dd2c93b98d674bcbe2e0a22858a494b060acdd80f751bed8b13521b2df1ed88cb82de3929a4b3a9a2d0d96d17dd8b07c6239d8d0b07805479201f192 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 236886be3073d223bbca0f300ebe06e0 |
| SHA1 | 9e4a3fb626fd4b43b2cb91c7ba817e89a3cd6fcd |
| SHA256 | c80bbdea4e3becfd6ccadfc81a2a3926cf529ed73fb0c348cb04a96d63f3f732 |
| SHA512 | 3f91d35792e2aea65645c120037edfc44c70d98b07d5a72aa764a058ddecef7f109631f32855abae4ecd2fd1c306ab3d3e1d7396b8397c4af47cb2d08d7117dc |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 4136623d466a4caf995314ea6eafcba6 |
| SHA1 | c6a1188bb326cfe6d4b6979ee1c67da30eebc031 |
| SHA256 | bee97252f5ec45c7a57ba5575d3dfff5bee34adc7cfd972050141dd4ed43dd3c |
| SHA512 | 1c1d7329f074945c2b3d9246dd55d26c8dbcc6291a90800a8ccdd244615b3b6ca970b11aad8bc6d9c07c97355cf0ec57bce42357749ac8bfdf46fe379d4ca865 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 2213a4575054d30366b6f121e55d0c26 |
| SHA1 | e1b26efeef4359f436e223fd7ae4ffb67ae2afa4 |
| SHA256 | 906466e787bdbabe16e5f4741f68ac5d4d26506f64511257b7d7dfa8d42569cb |
| SHA512 | 23b94da84c544005baa2023c8910930364965fef5e6c3a596898d084c42db5fd2581f27608b45c0dbee5351ee604f5c758e279e289aad67c6259da1582ccfb1c |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | f9cde8b31efb6d2ca942ef53593b0bef |
| SHA1 | 06089f0bb02430d14f269dd2cfb0b40519fae74b |
| SHA256 | 3ca762898dc4e74f508bb6e3be927997bd72dfbf3b5d890ef173d79ec3c58f1c |
| SHA512 | 6c0fa3e4d15a05cbfd758b5d8849c607bca13d1c8cfddd04090a058a48e0d61782e5c61dcf47cf468d4cd8d634e8cf823118875cac81d2bd8890d66cafc76c39 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | cb6b469260bb33b615d2ab330b221dbc |
| SHA1 | 831b53c217cc5a947a68bea2d89f9acaaec83047 |
| SHA256 | 5f0277e8311a93def89b9275efcc204b23527687d583a2f85e8967ff5051eeaa |
| SHA512 | cbf977b3fde4387a07c61fd7cdd661e8bab1ed77189054292e08323c9d8314ce03700b8fa8cc4eed52e6688e8ffa614c2edfd776da48dd521205b493318dbb6c |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | b00870c554f484201cc68211d6f9991b |
| SHA1 | 6acbf7ce57c17e2c80eb0acc08a88990e7819390 |
| SHA256 | 43223c1363987d8fcb32d98da96965843b284b3f1d5ef65ffc0f6abf45add2eb |
| SHA512 | f2299fcf49919ccab9c065cda53aaf6f2f72f7a9a5ce961c9d949d89ce78358eaf345e566b2bade085cf5eeb8f6d1e9fa19dcf8f9bdf6f450e706b356de0a773 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | e927545bfac233677c614724d1063dca |
| SHA1 | 1469b7c8f99c74a799ef33cbb436708c0873475c |
| SHA256 | 346bd960faa310e6bee84afc1264b0441140f04661f33a1bce9cbc15416e1baa |
| SHA512 | c3fca72044198bdab580c326cce1b54e4ca55f3a814bf01ca99896e9f792555bf6b9cff3e708d4a3d3fa9ef0ef3c0a39f69c9b5bd3b883bc4f032823bd8e1d06 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | afb83dce1c8ec50ef6371f97428ea8f4 |
| SHA1 | b37764fd595009cf2408367935effe38fe855c0e |
| SHA256 | 4ee0ecfc975a620442326a8dcbf56cd986df298f0f06828bdaa8d2d5155aaf5c |
| SHA512 | 0c77bbb17bc439ebeeb3b85662a461c45b9ea88bcf066406932e5a0f3d86355cc444dfdb9910b21f13476201680929a75b56a300526ff25f5812a381ad5d5712 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 62a8923b46cf593601e7b2940692f6a4 |
| SHA1 | 02aeb4265ed903f35942035b5033d76c4c4b8895 |
| SHA256 | 7a58ec61944add2dacdae70ec87ad6fdb14b4bc74e4bbb69d075866d1e43da33 |
| SHA512 | 4d7afb909f99851bf965e22bddf050baf31bd3321aed2028583c12fee880c868add56a85573e6e110988be33ed67923f3009a0d44264481232d236d457665bc6 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 60f9e00f292fad0e37677f1e567648af |
| SHA1 | bb19439ade6b338231c8d1f509cff2f2f61f4543 |
| SHA256 | 922600728ffbda709cc62ded4947aaca83d4f3ec1823f8056446a8d00116fee5 |
| SHA512 | b7e59e801f353cb61d1a22f76348f7309d1fb27c3f056df4abcf6a3346d598327c1ab8d6eb14a612a4182d68cdd8e1d37fc961582908a5342b6183a48182ead4 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 6d66334c24e6be6e9afc7c2d53202965 |
| SHA1 | 8bfd1a05b7f57a4bffd738f29a79549dceee5291 |
| SHA256 | 5249a429c7d21e72aa5dd0d3ca135675b3445821be632d5702783fac143bbbbd |
| SHA512 | 622157d42c25bffcf71572eeb2655ab9f48bed6ebf7c85346b870575530db1d5360322baf0c9f5e99754440761fe007e68930753c0ed2b77823ed8e4035d25ee |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | c8c137b59e66869e5ad64f492cfffb0b |
| SHA1 | 8f57ae2eb149d860701a441bc087d50c75d48088 |
| SHA256 | 8f8e89c08aba39df64c6bf7d405c3d99f10da23d1555801e44d68262bbd6bf21 |
| SHA512 | c96799b4e788be6f33ec99290f02267a23b9ecdd8d9a1d0fc51fb4c27b24b81847f1b931085f18ab0603fb38ba42acf39853ea4936703e1cdd2e836b16a1ad63 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | 78630a26abac4c7d03607a12cd300df8 |
| SHA1 | ae01aa35dd363b44e67a0bc608106ae51ed111d7 |
| SHA256 | 8840ab169acc2ca996ca392178ad79c94304fd26804f9127e635c36f4d42d4d4 |
| SHA512 | 8184d1bec2712e274dc953496bce65588e4aee06f126347fa7bb7009ae75136094f92959b22dc76e2b14d461f45af66caeac05e68bb12765e83a9a7dc669d548 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | e004b518cc69aaec05284b88f03ceea3 |
| SHA1 | 06100a4f33fe85cdc941bab871a2ab557f6c0cb9 |
| SHA256 | 0f204cbf6d66b2881efb681107aaa263461aaa616892401ad20e77084e885e77 |
| SHA512 | fe6330b3c2e42058f1269e07d52cd0be628e985ebfa6ea149c68ca0c3c486778c1fce04d71bfb8866cad0dcf725d18046b2e0c5311777e9be20ffc1ae019e3fe |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | eff8e82b5fc842e5dca906be1eb9732a |
| SHA1 | 66d477ebffb31dc3e1645afe1e0462046fab3496 |
| SHA256 | 7070b498a6f83a558e9618b814d9ed59b0661d38b4aa43864b66d3a8a4b277d8 |
| SHA512 | d8c4d77f5a96ad7fcf057cac43c40d86a43284982013744559d4ebe7c6c000faa1392714dc7834bc40f783397c6b3fff45c5d87fd0d069069087f141d1ca2cf8 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | a0cd23869e15cf2ccafce76f1a0b0fd0 |
| SHA1 | 5d0583af0432771e3fd10a5e2bd600a4e0e66996 |
| SHA256 | 970f9f551cf82b171b387567818928f90d6057a1533fce36da1425e51d31323c |
| SHA512 | 1194dbaa3686771e5969dcabbe3cff365ac43a88c7c932e9c6f2f0a6abf614918dbad6354ce409b0dff71d0aa2a4d7a603bcd868172c66f8048db1a6cefec644 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | ddda6a309daafd4c07b1807246fdd1f0 |
| SHA1 | 25018155dc4b78d926521afa97d937ae000135dc |
| SHA256 | 120a93ef1c306d319946563319d744ad8d5d54d9c41f198e2ba2ca30e834c09b |
| SHA512 | 4150d166a719e627b6c21fd123f375f63b49e9fdb630882540afbef216a9e37ca481526c0557f9ee9d88f8475bee7eef2f1399e3e428ba1bb34288a91116fbc2 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 3ffa8924b114963c85c9d12075a19754 |
| SHA1 | ff6ba72aa9732cdbe16913b70ad0fc9c3f5786cd |
| SHA256 | 93c7376460b4ef77cfed511a2db6d9910ac652c93ca3a87245314cedc60f3ac5 |
| SHA512 | 2ea956fae9a96099262628c8fdaf75da730e49e939994150bc55b7474d074ee1b13d89ebe610182c0eb2b1c8be940b83611d6e1fdebbd69d1d63505554a0cb01 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 554523d91af8d991cc5d3c5e3eab4a1f |
| SHA1 | de842f37981efb31ce4b36f395bb2a5543bf5393 |
| SHA256 | 6d9646ca2456f03e2b1e5e6348b6bfdd7a7821108babf651110ccc099343db37 |
| SHA512 | 1c4c9d0e6eea034bdae9c97008bc2dad26d3458af0f8aa9d14ba5d751bfbe6940cfad02a29e1289d32229aca8946dec7b1118e765c51b5e6900aace0b3071d06 |
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml
| MD5 | d8d2233c6ce9db20af935b9d216d3fd9 |
| SHA1 | 2e1ea63fef8bd52a57de0b9095e65ef054fa2c95 |
| SHA256 | 57916de8e716ffd652bda75ca04d9a1a82e25fd19978e910480afe2b516ef3d0 |
| SHA512 | b197349fcfc7af3540054fbe10137305c683ec0806a3262483cf79e516fcc6befa11fcf5f1c1e26acdd6fb6dbf3daed2b6122bc3c42fe30762b00c7fb8573f23 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 4608a9faac3b804a65d6a990827650dd |
| SHA1 | 5f9a97e12d527df6fdd16c2cf01715c12a11cecd |
| SHA256 | 4af5edaf08b3c6b08f972a97a0aae85f69aef1f3b6c34c14a68c5b1519cf09d3 |
| SHA512 | 95c8971441141563dbfbf7d7407cf1769b0592a09534ab6fb8fc30fe2d8ef0e93d3d59c1a4400531e5739bf0b1347dea9abf4fa5c1096f8e6e172135165f82d2 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 32c183ab00bc5885fb3bdb72ac97d820 |
| SHA1 | 72aeb5f170a38a21ca98d847c9234845e3acf67f |
| SHA256 | 6ab4afd558c22e388d2115c045659391ec777bd9b64e1ac9605e42a45b69d747 |
| SHA512 | fe0f0e498dcf3698306dad850e418266d0f6aa9d70bb35a7341614d40cea9e170703da62f7c8ea66c034206a61947a255a498c33ec13eb9372a19f926735348e |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
| MD5 | a266bb7dcc38a562631361bbf61dd11b |
| SHA1 | 3b1efd3a66ea28b16697394703a72ca340a05bd5 |
| SHA256 | df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e |
| SHA512 | 0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
| MD5 | be14d4afc12c1404955d60ad480ba040 |
| SHA1 | 0fdabacd7f0163b0d54a88b3e6a9d0b3547806af |
| SHA256 | eb1d973d431c74e6337639cb2a0d89285aa1ccb2eaade241e57c7f45ab8eea5c |
| SHA512 | 397e50c550a0561e33b91e1cf25977d88ccbecaf046f7b537f5d7a1d888b0946975d50c9ce6084294692ecf84fc359d281cb8379284b5bb8d9d32731321d0609 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 9bbd8aa48844aedf710f971eefb0ee14 |
| SHA1 | a6ae1340ff65e7b4dcacb69848d1ccc203e9404a |
| SHA256 | 300f60975c5c15bf96f9602e0eaaa599e5ba03b102efeabe11ee2a2fbd85876f |
| SHA512 | 630fc16890f4dd1d35d9db714211671bf52e0d169bb111446583d55c46a0cdf89c4c27d9eb927bff7921d2d9e5c7e3aafbbef1138b9574022b0fa4088f2ace15 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | de6132efbc464ce18265cd2541e678c3 |
| SHA1 | eb748ec1c549669ab9173d846f7972accfb426f6 |
| SHA256 | d2c3d9106c61112402b6a36e422518aed8b2f2906d73d62d2b94c76701679354 |
| SHA512 | 6b77a57055ef72a2063644d39e99be2406bb1bc873bc96f88dcf1b05b5492d72f3c6aee70d6b2b4ef8b435d9b09e27ff35cb6f7d1769bb8a2945b84bbe776460 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | fb5792931ae6a3ab0dc21859d9f0393d |
| SHA1 | 27a46be3a46acf59020ec10cdb8949f8089b3e20 |
| SHA256 | ce3f0cb88476c90ec7db26b8e72144f03f968904e6ee1b62b82a7f85ae46e19f |
| SHA512 | 4abc5f54cb2c4295c4068aeb2b94fd72acdd39af64da08ca9628c02c32f0154466d5181b805adf3b78633c3637eaab5a944e36cfe7faf6583aafc2ac522cb85e |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | f311802d61994640b2927dca08905ed5 |
| SHA1 | 5ba6fd9e4fca68a0b0731625a1768b055b0a6b5b |
| SHA256 | 50ad759e50ae2f07b1be76a6a87003dcf13937c6252ca50cbed1fc520188e69f |
| SHA512 | 543e913c80ccf7620631232bff72604cb623f71b53691fad046331f13b8eafef8c1ff84491d1b36392f4fa2c0ff921028c1b89f605e41ae6e7f4e9ea49f96095 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
| MD5 | e4a68ac854ac5242460afd72481b2a44 |
| SHA1 | df3c24f9bfd666761b268073fe06d1cc8d4f82a4 |
| SHA256 | cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f |
| SHA512 | 5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | a7ba8f6a93a3956412a56564cba28f55 |
| SHA1 | 17fc39fac9a7c4ac52ee1af03e2331aa0e6ee2a2 |
| SHA256 | b305ce40ec89e99bdc09ae67f777268379ed772763134eb147acda02c33a9b53 |
| SHA512 | 4462e19b0df3f00eb3cd012949bbe3ae41aaa1427b920e85068781b2dd0fb7f0bb9633f258bb00b4a093dd8ec02f53cf17eb38b21f2d2deb8af54305f6b72fbe |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
| MD5 | 471e65d7d4bce676d06e1a46c905c23b |
| SHA1 | 147af89f000784e9a60b5000ebedde10dbaadf18 |
| SHA256 | 02eec4e172681dae88a7fb7d7d05fd78fd7f7dfd23255acb61ed79e7644c931f |
| SHA512 | 9e2c989465d68c1a9ee0733058509343cb9809ecce109c0a2f27c496236e7ecf63d97e2b2e42c94e8e0b8f9c89f2c3ca0c74e03eab92fc27094704aa881ad72e |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 19c76ee8e4d73ff09e08aadbe94e8de9 |
| SHA1 | 1672527763b95ddaf48c2b4d23f4270efcce28ab |
| SHA256 | 22ddcf4cc880c8850ddb07ed27f6c0ff6c3e6aa75fa82eeec60e27c3fa461f4e |
| SHA512 | 3004f35cbbca5cb1d83909cf55906ea297d522c27d2629bb723a95d27c32b13d5c8973492a215bd94da7e4ef2055a3a9ed3fa85165a8bf75867422dc0bc8f677 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 6b34bfbeee96f4f3174bbaaf75929e12 |
| SHA1 | 3ee7ef906af86cef3b4589681426ead41a9edd20 |
| SHA256 | 4faa9f5933e3c7324508d6c75b31cc89e7174f34ea9d7d9ac1eb8101b26e487b |
| SHA512 | e25e29384fe2a59e0fba7183340f316be698e267c3484e487e159f824621ed36322e53c54973fe622d0ed4b27e48f2ad26e7407eeb7153858b3a0744a5760022 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 4a0c15b841636e5543a7f1aba35cba4d |
| SHA1 | 9ac8d5f7cdc08455e56317b8ed3e173255eca735 |
| SHA256 | 10af073660082a52b148e2533ece0246d5d3ef714372fa50f303d4923f19d311 |
| SHA512 | d9ba7173f7bf4d362fb234f505dd52d125507d725e8efc94db450ca94514f13de179f94ca8d6533a01423be2c198aaf43e767bab65531521b8def89c2d047f0e |