Malware Analysis Report

2025-04-14 02:37

Sample ID 240603-jv9ejshh46
Target 910937ecd450023a373d22baea38816e_JaffaCakes118
SHA256 46af32d736f11e07ccc251f6c892f208b932c6ff5782c63b536ff6671735bc1b
Tags
score
1/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
1/10

SHA256

46af32d736f11e07ccc251f6c892f208b932c6ff5782c63b536ff6671735bc1b

Threat Level: No (potentially) malicious behavior was detected

The file 910937ecd450023a373d22baea38816e_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.

Malicious Activity Summary


Modifies Internet Explorer settings

Suspicious use of FindShellTrayWindow

Suspicious use of SetWindowsHookEx

Suspicious use of WriteProcessMemory

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-03 08:00

Signatures

N/A

Analysis: behavioral2

Detonation Overview

Submitted

2024-06-03 08:00

Reported

2024-06-03 08:03

Platform

win10v2004-20240226-en

Max time kernel

148s

Max time network

154s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\910937ecd450023a373d22baea38816e_JaffaCakes118.html

Signatures

N/A

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\910937ecd450023a373d22baea38816e_JaffaCakes118.html

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --mojo-platform-channel-handle=4988 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=18 --mojo-platform-channel-handle=3404 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=5764 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --mojo-platform-channel-handle=5556 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --mojo-platform-channel-handle=3660 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=22 --mojo-platform-channel-handle=6052 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=23 --mojo-platform-channel-handle=6088 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=24 --mojo-platform-channel-handle=3948 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=25 --mojo-platform-channel-handle=6268 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --mojo-platform-channel-handle=5428 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:8

Network

Country Destination Domain Proto
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 business.bing.com udp
US 13.107.9.158:443 business.bing.com tcp
GB 51.11.108.188:443 nav-edge.smartscreen.microsoft.com tcp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 164.189.21.2.in-addr.arpa udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
BE 2.21.17.194:443 www.microsoft.com tcp
US 8.8.8.8:53 www.konthaiusa.com udp
GB 142.250.187.202:80 fonts.googleapis.com tcp
US 8.8.8.8:53 bzib.nelreports.net udp
US 8.8.8.8:53 bzib.nelreports.net udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
GB 104.91.71.134:443 bzib.nelreports.net tcp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.youtube.com udp
GB 142.250.200.14:443 www.youtube.com tcp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
GB 142.250.200.14:443 www.youtube.com tcp
GB 163.70.151.35:443 www.facebook.com tcp
GB 163.70.151.35:443 www.facebook.com tcp
US 8.8.8.8:53 188.108.11.51.in-addr.arpa udp
US 8.8.8.8:53 158.9.107.13.in-addr.arpa udp
US 8.8.8.8:53 194.17.21.2.in-addr.arpa udp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 134.71.91.104.in-addr.arpa udp
GB 142.250.200.14:443 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
GB 142.250.200.14:443 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 static.xx.fbcdn.net udp
US 8.8.8.8:53 static.xx.fbcdn.net udp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
US 8.8.8.8:53 14.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 35.151.70.163.in-addr.arpa udp
US 8.8.8.8:53 14.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 c.s-microsoft.com udp
US 8.8.8.8:53 c.s-microsoft.com udp
US 8.8.8.8:53 edgestatic.azureedge.net udp
US 8.8.8.8:53 edgestatic.azureedge.net udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
US 13.107.253.64:443 edgestatic.azureedge.net tcp
US 13.107.253.64:443 edgestatic.azureedge.net tcp
US 13.107.253.64:443 edgestatic.azureedge.net tcp
US 8.8.8.8:53 i.ytimg.com udp
US 8.8.8.8:53 i.ytimg.com udp
US 13.107.253.64:443 edgestatic.azureedge.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net udp
GB 216.58.212.246:443 i.ytimg.com tcp
US 8.8.8.8:53 21.151.70.163.in-addr.arpa udp
US 8.8.8.8:53 246.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 99.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 209.205.72.20.in-addr.arpa udp
US 8.8.8.8:53 21.53.126.40.in-addr.arpa udp
US 8.8.8.8:53 0.204.248.87.in-addr.arpa udp
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
US 8.8.8.8:53 nw-umwatson.events.data.microsoft.com udp
US 20.189.173.20:443 nw-umwatson.events.data.microsoft.com tcp
GB 23.44.234.16:80 tcp
US 8.8.8.8:53 20.173.189.20.in-addr.arpa udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 142.250.178.2:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 149.220.183.52.in-addr.arpa udp
US 8.8.8.8:53 2.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 static.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
GB 216.58.213.6:443 static.doubleclick.net tcp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 216.58.212.234:443 jnn-pa.googleapis.com tcp
GB 216.58.212.234:443 jnn-pa.googleapis.com tcp
GB 216.58.212.234:443 jnn-pa.googleapis.com tcp
GB 216.58.212.234:443 jnn-pa.googleapis.com tcp
GB 216.58.212.234:443 jnn-pa.googleapis.com tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 216.58.212.234:443 jnn-pa.googleapis.com udp
US 8.8.8.8:53 6.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 234.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 196.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 1.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 195.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 play.google.com udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 238.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 13.107.253.64:443 edgestatic.azureedge.net tcp
US 13.107.246.64:443 wcpstatic.microsoft.com tcp
US 8.8.8.8:53 157.123.68.40.in-addr.arpa udp
US 8.8.8.8:53 171.39.242.20.in-addr.arpa udp
US 8.8.8.8:53 64.246.107.13.in-addr.arpa udp
US 13.107.253.64:443 edgestatic.azureedge.net tcp
NL 23.62.61.160:443 www.bing.com tcp
US 8.8.8.8:53 160.61.62.23.in-addr.arpa udp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.179.238:443 play.google.com udp
NL 52.142.223.178:80 tcp
US 8.8.8.8:53 13.227.111.52.in-addr.arpa udp
NL 23.62.61.99:443 www.bing.com tcp
US 8.8.8.8:53 99.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 13.179.89.13.in-addr.arpa udp
GB 142.250.178.2:443 googleads.g.doubleclick.net udp

Files

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-03 08:00

Reported

2024-06-03 08:03

Platform

win7-20240215-en

Max time kernel

149s

Max time network

150s

Command Line

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\910937ecd450023a373d22baea38816e_JaffaCakes118.html

Signatures

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "6" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "121" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "407" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "492" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "7347" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "16456" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Zoom C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "498" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "7429" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "7347" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "0" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "0" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "16456" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "498" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\GPU C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{5B0A17B1-217F-11EF-AF73-469E18234AA3} = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "6" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "8969" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10321" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "8765" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "423563502" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "6" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "8969" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "492" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "410" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "3966" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "3884" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "7429" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "9518" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "115" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "197" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "8877" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\SearchScopes C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "121" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10321" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\PageSetup C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "410" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "410" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000003d6543e90ffbb742adae82834bb06bc40000000002000000000010660000000100002000000016df090a0bfd1041021861d460f0dc1b512e78b789394630b70667ebbc5b12b2000000000e8000000002000020000000dd1d95cd8e04b9197a9beb409381f95f9da606a8ab561f84625177c1be789ce320000000e0a31406039a669036bba84130f44156c0e57fdc9e48911b35fb169ef401ac7140000000b11889f8c252750d3c9003bbcec1ad5d7a7727f26e83ddf0eb3e6eb31f474762ddf7d7849d8a6e35cb503aba8dd3a26983d42dec8cec2d6c3ef52862affb0a72 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "0" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "3966" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "9518" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "197" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "16456" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\InternetRegistry C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "8765" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "9518" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (data) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = e000d6348cb5da01 C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "115" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10321" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Internet Explorer\iexplore.exe N/A

Processes

C:\Program Files\Internet Explorer\iexplore.exe

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\910937ecd450023a373d22baea38816e_JaffaCakes118.html

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2740 CREDAT:275457 /prefetch:2

Network

Country Destination Domain Proto
US 8.8.8.8:53 www.konthaiusa.com udp
GB 142.250.187.202:80 fonts.googleapis.com tcp
GB 142.250.187.202:80 fonts.googleapis.com tcp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.facebook.com udp
GB 142.250.200.14:80 www.youtube.com tcp
GB 142.250.200.14:80 www.youtube.com tcp
GB 163.70.151.35:80 www.facebook.com tcp
GB 163.70.151.35:80 www.facebook.com tcp
GB 142.250.200.14:80 www.youtube.com tcp
GB 142.250.200.14:80 www.youtube.com tcp
GB 142.250.200.14:80 www.youtube.com tcp
GB 142.250.200.14:443 www.youtube.com tcp
GB 163.70.151.35:443 www.facebook.com tcp
GB 142.250.200.14:443 www.youtube.com tcp
GB 142.250.200.14:443 www.youtube.com tcp
GB 142.250.200.14:443 www.youtube.com tcp
GB 142.250.200.14:443 www.youtube.com tcp
GB 216.58.213.14:80 www.google-analytics.com tcp
GB 216.58.213.14:80 www.google-analytics.com tcp
GB 142.250.200.14:443 www.youtube.com tcp
US 8.8.8.8:53 static.xx.fbcdn.net udp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 172.217.16.234:443 jnn-pa.googleapis.com tcp
GB 172.217.16.234:443 jnn-pa.googleapis.com tcp
GB 172.217.16.234:443 jnn-pa.googleapis.com tcp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 i.ytimg.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
GB 216.58.212.246:443 i.ytimg.com tcp
GB 216.58.212.246:443 i.ytimg.com tcp
GB 172.217.16.234:443 jnn-pa.googleapis.com tcp
GB 172.217.16.234:443 jnn-pa.googleapis.com tcp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
US 8.8.8.8:53 fe0.google.com udp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 204.79.197.200:443 ieonline.microsoft.com tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp

Files

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

MD5 2a267c8371f84045236028d9d98b0988
SHA1 689e34bfc1f5b0d068c4ee62baca3e32f2a8e2f8
SHA256 3e6148f5d2f700962e4ca856d369cf61329d27095aab4081997a69c337194f4a
SHA512 7da74e5c2144e31887d70c62f623a0271b33153f0be825828f006ecec9fcb7d1f006249171b2b6746953cec27ce3ef159f980919e2b7ac996ae64d2519938e5c

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

MD5 49aebf8cbd62d92ac215b2923fb1b9f5
SHA1 1723be06719828dda65ad804298d0431f6aff976
SHA256 b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f
SHA512 bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

MD5 ac89a852c2aaa3d389b2d2dd312ad367
SHA1 8f421dd6493c61dbda6b839e2debb7b50a20c930
SHA256 0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45
SHA512 c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 b93e72c0e2160eb3c08f9e66cacedf49
SHA1 df3053ba56b27e08d92e438e73d18a7018bccca0
SHA256 baabc84fa000427fdc5dda12f52676ad1013e78ac1fe7524608781a816314279
SHA512 1baabd207e1fe5cc0dc585cd7b9259914ef370b04d333d12a75036eee257bf53793373351c5ae9bf3f40a57b7f5e3fe39abaec1ee539cbca47e8f2fbcead7b17

C:\Users\Admin\AppData\Local\Temp\Tar18F5.tmp

MD5 4ea6026cf93ec6338144661bf1202cd1
SHA1 a1dec9044f750ad887935a01430bf49322fbdcb7
SHA256 8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8
SHA512 6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\www-embed-player[1].js

MD5 d2056f8d081fbfffcab81d61ea45b151
SHA1 710243082f40626f64943ad3b656400f444d7130
SHA256 49fa9b168cc8bbc037cf4498e31c355509e9b438b0d19fcf750b1c5fbd1efcaa
SHA512 530ca2c291c44d3d2b5869b0ae661ac047748a5cab50de280a2c8dbd26b52cdd71a906b3730e8a849debece542eb919462a8407ef2410acf28c57d2b6068cc14

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\base[1].js

MD5 9178a954abcce420219864651c7787b2
SHA1 f874d3e998441ba6439cfd7e89514facde08cff4
SHA256 40cc1692dd4d8e1c8ed29593ee222240494b872b734c0e31da4628014da7346d
SHA512 927bf88499cdd64ce32f3780a0cfa88b14fdfbeac6a237454dcc43ee5d56b04754a40dbcba402519637ba1a3b0f948a597260a74ddb0b316698a41559d8e1cd3

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\KFOlCnqEu92Fr1MmEU9fBBc-[1].woff

MD5 de8b7431b74642e830af4d4f4b513ec9
SHA1 f549f1fe8a0b86ef3fbdcb8d508440aff84c385c
SHA256 3bfe46bb1ca35b205306c5ec664e99e4a816f48a417b6b42e77a1f43f0bc4e7a
SHA512 57d3d4de3816307ed954b796c13bfa34af22a46a2fea310df90e966301350ae8adac62bcd2abf7d7768e6bdcbb3dfc5069378a728436173d07abfa483c1025ac

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\KFOmCnqEu92Fr1Mu4mxM[1].woff

MD5 bafb105baeb22d965c70fe52ba6b49d9
SHA1 934014cc9bbe5883542be756b3146c05844b254f
SHA256 1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed
SHA512 85a91773b0283e3b2400c773527542228478cc1b9e8ad8ea62435d705e98702a40bedf26cb5b0900dd8fecc79f802b8c1839184e787d9416886dbc73dff22a64

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 c1ddea3ef6bbef3e7060a1a9ad89e4c5
SHA1 35e3224fcbd3e1af306f2b6a2c6bbea9b0867966
SHA256 b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db
SHA512 6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F2DDCD2B5F37625B82E81F4976CEE400_434205A76CE72E9356C6165EEA1227C2

MD5 f74326049ac4e12445935e11da913059
SHA1 f57b5618313f91b6be31f9d7d3259c48d990dccb
SHA256 a5851f99f4daeb530d44726649ff8592e9acdcfc8a78b412dbf39a58fc862adc
SHA512 73c56e04fe81e43d3e9f1b437d4da8b8c45ee6c4179911e8ec26a933eeb4972ac06b090ec7e89cd4b478f17a425fcb2eaedc50f178e2f94220d2f54e8a3a7ff6

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 fdcbefd22f8156baa0dba5af399be01d
SHA1 38e2d1bacb68eadbc1bdc0af8ddf384f421d5622
SHA256 c11c6df13b401ae5eaf72284cca1f315e167e56f76f398b64e7c40bf4ac09cf9
SHA512 f85e33e63edcf1fd08632b234594a288eec63b934e8a5d5dc3b7621163a95b73f675fb82247d83e5e433cd20affc000f98eb94055ffc0c42e3bd136dda449383

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 9ad05889af5a4d1154321f66d7167fd8
SHA1 fc058733b173d616bcb6f44d57f0d2ccf1e029b6
SHA256 557557877c1cc0ce152688a336c04e6d4f467cc6650ea6033a21a3d730b8d0b9
SHA512 98da6ef241adad23013066c176c85519693bf8f1acf1a300a2c72ff4e765169b08fefcb3b506010b1f31fbad236f9bddb0700addb785a7876370042a3248438a

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 8b412f828f14eb661875c1b7cd3ad297
SHA1 e1b15ead0dbf4208a8d533c23957753a6dc27bca
SHA256 5a9debcb6c5cf19bbb3364c7f6f70140b8e39a9bbe8e46d7fc35366ba8fd1786
SHA512 006b96c7fa236f2b72858f697f0918489548d3b4cdae58a44a5e7fa9a58e620b68792c0efd29b720d5fe015963b2f6cc1d8f792365022eef30e7190796973e6f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 0e6d05d0d0c22f3a0cf6c7607908a2e5
SHA1 03dda0d34875e30d6528af3dc77760fde5597d5f
SHA256 133a704b2d978cf3425ec86d530aca793967834dced4741cc630edbd9ee6395c
SHA512 868d58100f2ee139656872b3f0a9d28676a968ee00a3476f82557065af0afe8010a6d15a5881cefbc490af81669e2d5dc91e7104f34df1c80aedee25535f98f9

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\902LKC6A\embed[1].js

MD5 322e970509e24ab233b6c326a9339623
SHA1 10e2ea809ae638d5f32385d05c569922ab19bc17
SHA256 99cbd012a57f19a3fc1b412866ba13d6b9de2a5bb22449dcbf14ec0a88937000
SHA512 8f8bdc9418feed04e6fc7415e9e57f0934a6b136b1a763e0e39f67efa47e004a8c3385105a1c1dd9fa48ada83ac5a2a93940f20a99d6d16722ae903c93d9817c

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OOWQLMJV\ad_status[1].js

MD5 1fa71744db23d0f8df9cce6719defcb7
SHA1 e4be9b7136697942a036f97cf26ebaf703ad2067
SHA256 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
SHA512 17fa262901b608368eb4b70910da67e1f11b9cfb2c9dc81844f55bee1db3ec11f704d81ab20f2dda973378f9c0df56eaad8111f34b92e4161a4d194ba902f82f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 55f1006da5c4c9f764b52731b1f7bcf9
SHA1 a853103ee22e276bbf3e04f20f831d76b66acc02
SHA256 324d39c2bdc508b375577426c1e9773fdddd6516c7e3506ee9859d28f432ae08
SHA512 55d8786bf8be4a5c9dfaed5319e6249db79669ca617699f0354da291352e3021c9f7b9e69b45bb58943bd88b65f369fbbbc6f621302bc3fc8c5acb118ddb4659

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 c65422c6c6cf6b3853a0a256d0a5b166
SHA1 f1857ce3910e0b1881aa8a3d067ae5a905c47d7f
SHA256 530456c6d9a7cab9a480e4d328d24e3723db02b93fa50c843f13ed51146ebcca
SHA512 840d1bb8eac2a0d7015c975fe80405a13d0deb4fcf027b3e673fc26cf8f1b6803f685322204c6c641fc8f6923a471d84ab633617a491ef76c03e7c2a7c8b4b5b

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 078a231c4407a3061aa1b3677671be99
SHA1 9f4c2b6bc99484c1b0c3ff128bf644090a0b00cc
SHA256 e5ffc768f54845a4f707d33ba80a6c6d01b6ea1001df3871e5fefac2b7656e2c
SHA512 b349437bbe3412cabd701400644c158fffa6033b99e6c971052f7c35ba5c991bd40416c88b14cbe99dd62dc661038f11063826a03ed3cb104484914e5bf8ec10

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 f26d5ed0322c9bf39a58cc450099228d
SHA1 f460ca4077d92c553ffa1e4092ac35608031cefb
SHA256 02894142e0cc88b2313942c6041e6875c2a49e9e4f7164f97b37b555810c74fe
SHA512 93fa536f3964ed321439d8d69b7b3eceb0e31f5a7abd77f1535834a6617263eeb268f02a0f06d96534afbea461aadb4798c5c944e6063ed2a61c0c46a5c8ecff

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 7ce077a009aa6cd02d5c556a3e18ced6
SHA1 d83b4bf71365712ea511d627677dbbb1526ef736
SHA256 ed3da64aa53665548b0668f72d15b0983b2daf7a5674fe97e91d1ca6085185d7
SHA512 99df0ce41f07a3ba0046c1ebd6a1895a96293c691c0bfab427a75de12812ae478fbd77bfbfe5dfcbbcc7890d1bbdb9d29d1d5ee93781b017b82cfca19adf4a97

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 9e4d47c1adec8fce01eb9bf2c1521f63
SHA1 9bb101211135d239bd19a4169fe46c2ce6a24263
SHA256 a3f02510be445f036a01767bf7d6331cae11da90f609b21e183b3d14934f7a2e
SHA512 64f2a468e6d12e1d2fd5416d3ad0f3a2d0efc576b8348adac6ceb50aaf69748c834f0af25716d8c2268c8c83998ae9f23e76d87665f45cd6573e961f31c1395f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 79130f36c088714e108dcec041e80eea
SHA1 95c3bbf9a1fd34083da1f5f2028d2c5fefb1fd81
SHA256 6cdd090fdaec5bb3e83a1d922fcecb0ce7ad490440ae9b162dc6440916dcdee9
SHA512 4eb19cdc5b2c5b37238a7cac6fca87f40bcccba0e7248b5c2d9af47cb2a9c1a970617da5b3146e3ef194c0ad21785272f76911c1beac7ff8e5fb704bb5e103df

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 e04833356c518a48adbaba8f50ead21c
SHA1 0dd923856b307ed7fc6032c8b6f16c42e9a926be
SHA256 48fdeae9a8867292146acdcbde61d8cdf8a8de3e82d9eca0d74f2ae9fa3cbb32
SHA512 8d13f326c1dd70f05684fd133696cf95d5764074c1b8e1d6f6b781232da13b7327eea8afd870bb713df3f09b4aeb98a9d5975e92a1bb778f989c19c970d40619

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 9a5ac3e3d6f9234607b23e589b78b8c4
SHA1 9f48347c0f19fb6394946ecf1eeb9e1a6be087eb
SHA256 910980d9559c8efff91993e145d4f3c0bcd011c65c37f73df3682e400316447b
SHA512 1015641eafb7bc3099ce52b23a1f086d89987dd1fbceb2ed581a97ac3fec38b174c59488decb021dc1f40ea8c8804a2c3b97766efe6e1386c2d4b4826f218921

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 1728aa4c72899d047ed4df8363540092
SHA1 c67da992fc07b5b35670165fb8e2db9e0178509b
SHA256 55750f428f329e2e48e9c17cef797f8103588c0ca326dcaf4fd42eac4738df39
SHA512 9a863d758f0165dbcc07280ded9474814aad0200f9c8a20c914b6afe54743f76a3594a4ba9879f664f69c568515f6aa70136c9a6da14aae95f86e82240699dc8

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 cae3c4ab9257baa10604985abb789440
SHA1 0713ddc6403c3aa8c08be4a80d6621bd6e9c7ee7
SHA256 38c6cdc54386d5447bcd467b010d61a4918f81ef91cff12c94380d2b3243077a
SHA512 bd5c06812b8972783c27723e2d7a83f7e7524c5656c8acb728a8d1449f1e9b53b8ece94e8ce3cb14c82ff58ffbd2acfb360520a7c619f2f77ddbfced1da823bc

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 55a87bffbd7dd88d460583f8e735569a
SHA1 eb457725b74337d4a0547f9ab62a5574b6db8645
SHA256 e7ce9e4aee5a2e6560faf6341dbeec0252e516fd18ca6868abfef52016657ce3
SHA512 dad5aacded6bca76118532486553f35afa01a37f62e8da36d54c204bd06703758470377a17cf7e1c29edbd8fd3205c6e290794da10e585d28e749310e75d66c4

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 fc511adc996eb551f830af25539fadac
SHA1 c6235c9da7dd7ca2494ff1ecf4e0d4d79f8e0f81
SHA256 3cb471e5630f9cfaffac4e41cd0271262187c3d36391907c45c5c334a944bc32
SHA512 decc63b1dd2c93b98d674bcbe2e0a22858a494b060acdd80f751bed8b13521b2df1ed88cb82de3929a4b3a9a2d0d96d17dd8b07c6239d8d0b07805479201f192

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 236886be3073d223bbca0f300ebe06e0
SHA1 9e4a3fb626fd4b43b2cb91c7ba817e89a3cd6fcd
SHA256 c80bbdea4e3becfd6ccadfc81a2a3926cf529ed73fb0c348cb04a96d63f3f732
SHA512 3f91d35792e2aea65645c120037edfc44c70d98b07d5a72aa764a058ddecef7f109631f32855abae4ecd2fd1c306ab3d3e1d7396b8397c4af47cb2d08d7117dc

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 4136623d466a4caf995314ea6eafcba6
SHA1 c6a1188bb326cfe6d4b6979ee1c67da30eebc031
SHA256 bee97252f5ec45c7a57ba5575d3dfff5bee34adc7cfd972050141dd4ed43dd3c
SHA512 1c1d7329f074945c2b3d9246dd55d26c8dbcc6291a90800a8ccdd244615b3b6ca970b11aad8bc6d9c07c97355cf0ec57bce42357749ac8bfdf46fe379d4ca865

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 2213a4575054d30366b6f121e55d0c26
SHA1 e1b26efeef4359f436e223fd7ae4ffb67ae2afa4
SHA256 906466e787bdbabe16e5f4741f68ac5d4d26506f64511257b7d7dfa8d42569cb
SHA512 23b94da84c544005baa2023c8910930364965fef5e6c3a596898d084c42db5fd2581f27608b45c0dbee5351ee604f5c758e279e289aad67c6259da1582ccfb1c

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 f9cde8b31efb6d2ca942ef53593b0bef
SHA1 06089f0bb02430d14f269dd2cfb0b40519fae74b
SHA256 3ca762898dc4e74f508bb6e3be927997bd72dfbf3b5d890ef173d79ec3c58f1c
SHA512 6c0fa3e4d15a05cbfd758b5d8849c607bca13d1c8cfddd04090a058a48e0d61782e5c61dcf47cf468d4cd8d634e8cf823118875cac81d2bd8890d66cafc76c39

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 cb6b469260bb33b615d2ab330b221dbc
SHA1 831b53c217cc5a947a68bea2d89f9acaaec83047
SHA256 5f0277e8311a93def89b9275efcc204b23527687d583a2f85e8967ff5051eeaa
SHA512 cbf977b3fde4387a07c61fd7cdd661e8bab1ed77189054292e08323c9d8314ce03700b8fa8cc4eed52e6688e8ffa614c2edfd776da48dd521205b493318dbb6c

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 b00870c554f484201cc68211d6f9991b
SHA1 6acbf7ce57c17e2c80eb0acc08a88990e7819390
SHA256 43223c1363987d8fcb32d98da96965843b284b3f1d5ef65ffc0f6abf45add2eb
SHA512 f2299fcf49919ccab9c065cda53aaf6f2f72f7a9a5ce961c9d949d89ce78358eaf345e566b2bade085cf5eeb8f6d1e9fa19dcf8f9bdf6f450e706b356de0a773

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 e927545bfac233677c614724d1063dca
SHA1 1469b7c8f99c74a799ef33cbb436708c0873475c
SHA256 346bd960faa310e6bee84afc1264b0441140f04661f33a1bce9cbc15416e1baa
SHA512 c3fca72044198bdab580c326cce1b54e4ca55f3a814bf01ca99896e9f792555bf6b9cff3e708d4a3d3fa9ef0ef3c0a39f69c9b5bd3b883bc4f032823bd8e1d06

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 afb83dce1c8ec50ef6371f97428ea8f4
SHA1 b37764fd595009cf2408367935effe38fe855c0e
SHA256 4ee0ecfc975a620442326a8dcbf56cd986df298f0f06828bdaa8d2d5155aaf5c
SHA512 0c77bbb17bc439ebeeb3b85662a461c45b9ea88bcf066406932e5a0f3d86355cc444dfdb9910b21f13476201680929a75b56a300526ff25f5812a381ad5d5712

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 62a8923b46cf593601e7b2940692f6a4
SHA1 02aeb4265ed903f35942035b5033d76c4c4b8895
SHA256 7a58ec61944add2dacdae70ec87ad6fdb14b4bc74e4bbb69d075866d1e43da33
SHA512 4d7afb909f99851bf965e22bddf050baf31bd3321aed2028583c12fee880c868add56a85573e6e110988be33ed67923f3009a0d44264481232d236d457665bc6

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 60f9e00f292fad0e37677f1e567648af
SHA1 bb19439ade6b338231c8d1f509cff2f2f61f4543
SHA256 922600728ffbda709cc62ded4947aaca83d4f3ec1823f8056446a8d00116fee5
SHA512 b7e59e801f353cb61d1a22f76348f7309d1fb27c3f056df4abcf6a3346d598327c1ab8d6eb14a612a4182d68cdd8e1d37fc961582908a5342b6183a48182ead4

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 6d66334c24e6be6e9afc7c2d53202965
SHA1 8bfd1a05b7f57a4bffd738f29a79549dceee5291
SHA256 5249a429c7d21e72aa5dd0d3ca135675b3445821be632d5702783fac143bbbbd
SHA512 622157d42c25bffcf71572eeb2655ab9f48bed6ebf7c85346b870575530db1d5360322baf0c9f5e99754440761fe007e68930753c0ed2b77823ed8e4035d25ee

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 c8c137b59e66869e5ad64f492cfffb0b
SHA1 8f57ae2eb149d860701a441bc087d50c75d48088
SHA256 8f8e89c08aba39df64c6bf7d405c3d99f10da23d1555801e44d68262bbd6bf21
SHA512 c96799b4e788be6f33ec99290f02267a23b9ecdd8d9a1d0fc51fb4c27b24b81847f1b931085f18ab0603fb38ba42acf39853ea4936703e1cdd2e836b16a1ad63

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 78630a26abac4c7d03607a12cd300df8
SHA1 ae01aa35dd363b44e67a0bc608106ae51ed111d7
SHA256 8840ab169acc2ca996ca392178ad79c94304fd26804f9127e635c36f4d42d4d4
SHA512 8184d1bec2712e274dc953496bce65588e4aee06f126347fa7bb7009ae75136094f92959b22dc76e2b14d461f45af66caeac05e68bb12765e83a9a7dc669d548

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 e004b518cc69aaec05284b88f03ceea3
SHA1 06100a4f33fe85cdc941bab871a2ab557f6c0cb9
SHA256 0f204cbf6d66b2881efb681107aaa263461aaa616892401ad20e77084e885e77
SHA512 fe6330b3c2e42058f1269e07d52cd0be628e985ebfa6ea149c68ca0c3c486778c1fce04d71bfb8866cad0dcf725d18046b2e0c5311777e9be20ffc1ae019e3fe

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 eff8e82b5fc842e5dca906be1eb9732a
SHA1 66d477ebffb31dc3e1645afe1e0462046fab3496
SHA256 7070b498a6f83a558e9618b814d9ed59b0661d38b4aa43864b66d3a8a4b277d8
SHA512 d8c4d77f5a96ad7fcf057cac43c40d86a43284982013744559d4ebe7c6c000faa1392714dc7834bc40f783397c6b3fff45c5d87fd0d069069087f141d1ca2cf8

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 a0cd23869e15cf2ccafce76f1a0b0fd0
SHA1 5d0583af0432771e3fd10a5e2bd600a4e0e66996
SHA256 970f9f551cf82b171b387567818928f90d6057a1533fce36da1425e51d31323c
SHA512 1194dbaa3686771e5969dcabbe3cff365ac43a88c7c932e9c6f2f0a6abf614918dbad6354ce409b0dff71d0aa2a4d7a603bcd868172c66f8048db1a6cefec644

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 ddda6a309daafd4c07b1807246fdd1f0
SHA1 25018155dc4b78d926521afa97d937ae000135dc
SHA256 120a93ef1c306d319946563319d744ad8d5d54d9c41f198e2ba2ca30e834c09b
SHA512 4150d166a719e627b6c21fd123f375f63b49e9fdb630882540afbef216a9e37ca481526c0557f9ee9d88f8475bee7eef2f1399e3e428ba1bb34288a91116fbc2

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 3ffa8924b114963c85c9d12075a19754
SHA1 ff6ba72aa9732cdbe16913b70ad0fc9c3f5786cd
SHA256 93c7376460b4ef77cfed511a2db6d9910ac652c93ca3a87245314cedc60f3ac5
SHA512 2ea956fae9a96099262628c8fdaf75da730e49e939994150bc55b7474d074ee1b13d89ebe610182c0eb2b1c8be940b83611d6e1fdebbd69d1d63505554a0cb01

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 554523d91af8d991cc5d3c5e3eab4a1f
SHA1 de842f37981efb31ce4b36f395bb2a5543bf5393
SHA256 6d9646ca2456f03e2b1e5e6348b6bfdd7a7821108babf651110ccc099343db37
SHA512 1c4c9d0e6eea034bdae9c97008bc2dad26d3458af0f8aa9d14ba5d751bfbe6940cfad02a29e1289d32229aca8946dec7b1118e765c51b5e6900aace0b3071d06

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\MGPKVCXM\www.youtube[1].xml

MD5 d8d2233c6ce9db20af935b9d216d3fd9
SHA1 2e1ea63fef8bd52a57de0b9095e65ef054fa2c95
SHA256 57916de8e716ffd652bda75ca04d9a1a82e25fd19978e910480afe2b516ef3d0
SHA512 b197349fcfc7af3540054fbe10137305c683ec0806a3262483cf79e516fcc6befa11fcf5f1c1e26acdd6fb6dbf3daed2b6122bc3c42fe30762b00c7fb8573f23

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 4608a9faac3b804a65d6a990827650dd
SHA1 5f9a97e12d527df6fdd16c2cf01715c12a11cecd
SHA256 4af5edaf08b3c6b08f972a97a0aae85f69aef1f3b6c34c14a68c5b1519cf09d3
SHA512 95c8971441141563dbfbf7d7407cf1769b0592a09534ab6fb8fc30fe2d8ef0e93d3d59c1a4400531e5739bf0b1347dea9abf4fa5c1096f8e6e172135165f82d2

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 32c183ab00bc5885fb3bdb72ac97d820
SHA1 72aeb5f170a38a21ca98d847c9234845e3acf67f
SHA256 6ab4afd558c22e388d2115c045659391ec777bd9b64e1ac9605e42a45b69d747
SHA512 fe0f0e498dcf3698306dad850e418266d0f6aa9d70bb35a7341614d40cea9e170703da62f7c8ea66c034206a61947a255a498c33ec13eb9372a19f926735348e

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

MD5 a266bb7dcc38a562631361bbf61dd11b
SHA1 3b1efd3a66ea28b16697394703a72ca340a05bd5
SHA256 df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e
SHA512 0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

MD5 be14d4afc12c1404955d60ad480ba040
SHA1 0fdabacd7f0163b0d54a88b3e6a9d0b3547806af
SHA256 eb1d973d431c74e6337639cb2a0d89285aa1ccb2eaade241e57c7f45ab8eea5c
SHA512 397e50c550a0561e33b91e1cf25977d88ccbecaf046f7b537f5d7a1d888b0946975d50c9ce6084294692ecf84fc359d281cb8379284b5bb8d9d32731321d0609

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 9bbd8aa48844aedf710f971eefb0ee14
SHA1 a6ae1340ff65e7b4dcacb69848d1ccc203e9404a
SHA256 300f60975c5c15bf96f9602e0eaaa599e5ba03b102efeabe11ee2a2fbd85876f
SHA512 630fc16890f4dd1d35d9db714211671bf52e0d169bb111446583d55c46a0cdf89c4c27d9eb927bff7921d2d9e5c7e3aafbbef1138b9574022b0fa4088f2ace15

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 de6132efbc464ce18265cd2541e678c3
SHA1 eb748ec1c549669ab9173d846f7972accfb426f6
SHA256 d2c3d9106c61112402b6a36e422518aed8b2f2906d73d62d2b94c76701679354
SHA512 6b77a57055ef72a2063644d39e99be2406bb1bc873bc96f88dcf1b05b5492d72f3c6aee70d6b2b4ef8b435d9b09e27ff35cb6f7d1769bb8a2945b84bbe776460

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 fb5792931ae6a3ab0dc21859d9f0393d
SHA1 27a46be3a46acf59020ec10cdb8949f8089b3e20
SHA256 ce3f0cb88476c90ec7db26b8e72144f03f968904e6ee1b62b82a7f85ae46e19f
SHA512 4abc5f54cb2c4295c4068aeb2b94fd72acdd39af64da08ca9628c02c32f0154466d5181b805adf3b78633c3637eaab5a944e36cfe7faf6583aafc2ac522cb85e

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 f311802d61994640b2927dca08905ed5
SHA1 5ba6fd9e4fca68a0b0731625a1768b055b0a6b5b
SHA256 50ad759e50ae2f07b1be76a6a87003dcf13937c6252ca50cbed1fc520188e69f
SHA512 543e913c80ccf7620631232bff72604cb623f71b53691fad046331f13b8eafef8c1ff84491d1b36392f4fa2c0ff921028c1b89f605e41ae6e7f4e9ea49f96095

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

MD5 e4a68ac854ac5242460afd72481b2a44
SHA1 df3c24f9bfd666761b268073fe06d1cc8d4f82a4
SHA256 cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f
SHA512 5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 a7ba8f6a93a3956412a56564cba28f55
SHA1 17fc39fac9a7c4ac52ee1af03e2331aa0e6ee2a2
SHA256 b305ce40ec89e99bdc09ae67f777268379ed772763134eb147acda02c33a9b53
SHA512 4462e19b0df3f00eb3cd012949bbe3ae41aaa1427b920e85068781b2dd0fb7f0bb9633f258bb00b4a093dd8ec02f53cf17eb38b21f2d2deb8af54305f6b72fbe

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

MD5 471e65d7d4bce676d06e1a46c905c23b
SHA1 147af89f000784e9a60b5000ebedde10dbaadf18
SHA256 02eec4e172681dae88a7fb7d7d05fd78fd7f7dfd23255acb61ed79e7644c931f
SHA512 9e2c989465d68c1a9ee0733058509343cb9809ecce109c0a2f27c496236e7ecf63d97e2b2e42c94e8e0b8f9c89f2c3ca0c74e03eab92fc27094704aa881ad72e

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 19c76ee8e4d73ff09e08aadbe94e8de9
SHA1 1672527763b95ddaf48c2b4d23f4270efcce28ab
SHA256 22ddcf4cc880c8850ddb07ed27f6c0ff6c3e6aa75fa82eeec60e27c3fa461f4e
SHA512 3004f35cbbca5cb1d83909cf55906ea297d522c27d2629bb723a95d27c32b13d5c8973492a215bd94da7e4ef2055a3a9ed3fa85165a8bf75867422dc0bc8f677

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 6b34bfbeee96f4f3174bbaaf75929e12
SHA1 3ee7ef906af86cef3b4589681426ead41a9edd20
SHA256 4faa9f5933e3c7324508d6c75b31cc89e7174f34ea9d7d9ac1eb8101b26e487b
SHA512 e25e29384fe2a59e0fba7183340f316be698e267c3484e487e159f824621ed36322e53c54973fe622d0ed4b27e48f2ad26e7407eeb7153858b3a0744a5760022

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 4a0c15b841636e5543a7f1aba35cba4d
SHA1 9ac8d5f7cdc08455e56317b8ed3e173255eca735
SHA256 10af073660082a52b148e2533ece0246d5d3ef714372fa50f303d4923f19d311
SHA512 d9ba7173f7bf4d362fb234f505dd52d125507d725e8efc94db450ca94514f13de179f94ca8d6533a01423be2c198aaf43e767bab65531521b8def89c2d047f0e