hxxps://github[.]com/Da2dalus/The-MALWARE-Repo

Resubmissions

09-07-2024 20:30

240709-y97xlatgqk 10

Analysis

max time kernel
36s
max time network
41s
platform
windows10-1703_x64
resource
win10-20240611-en
resource tags

arch:x64arch:x86image:win10-20240611-enlocale:en-usos:windows10-1703-x64system
submitted
09-07-2024 20:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://github.com/Da2dalus/The-MALWARE-Repo

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 6 IoCs

Processes:

MicrosoftEdge.exeMicrosoftEdgeCP.exeMicrosoftEdgeCP.exeMicrosoftEdgeCP.exeMicrosoftEdgeCP.exe

description	ioc	process
File created	C:\Windows\rescache\_merged\3720402701\1568373884.pri	MicrosoftEdge.exe
File created	C:\Windows\rescache\_merged\3720402701\1568373884.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\1568373884.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\1568373884.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\1568373884.pri	MicrosoftEdgeCP.exe
File opened for modification	C:\Windows\Debug\ESE.TXT	MicrosoftEdge.exe

Modifies Internet Explorer settings 1 TTPs 2 IoCs

adware spyware

Modify Registry

T1112

Processes:

MicrosoftEdgeCP.exebrowser_broker.exe

description	ioc	process
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000\Software\Microsoft\Internet Explorer\Main	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000\Software\Microsoft\Internet Explorer\Main	browser_broker.exe

Modifies registry class 64 IoCs

Processes:

MicrosoftEdgeCP.exeMicrosoftEdgeCP.exeMicrosoftEdge.exeMicrosoftEdgeCP.exeMicrosoftEdgeCP.exeMicrosoftEdgeCP.exeMicrosoftEdgeCP.exe

description	ioc	process
Set value (data)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\SignaturePolicy = 06000000	MicrosoftEdgeCP.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\PendingRecovery\Active = "1"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Explorer\Main	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\ACGStatus\DynamicCodePolicy = 00000000	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DataStore	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\SignaturePolicy = 06000000	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\IECompatVersionLow = "395205405"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\LowMic	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\Active\{B2E2AF8E-9E5E-4255-9747-E8C5E9BE3C16} = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\VendorId = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DataStore\OneTimeCleanup = "1"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Internet Settings\PrivacyAdvanced = "0"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\CIStatus\CIPolicyState = "0"	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\SignaturePolicy = 06000000	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\Active	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\CIStatus\CIPolicyState = "0"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\ACGStatus\ACGPolicyState = "6"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\CIStatus	MicrosoftEdgeCP.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\Content\CachePrefix	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\History	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\CIPolicyState = "0"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\CVListXMLVersionLow = "395205405"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ServiceUI	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\DXFeatureLevel = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\IECompatVersionLow = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\DeviceId = "0"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ServiceUI\IsSignedIn = "0"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = 10680b073fd2da01	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DummyPath	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-SubSysId = "0"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FavOrder	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\AdapterInfo = "vendorId=\"0x10de\",deviceID=\"0x8c\",subSysID=\"0x0\",revision=\"0x0\",version=\"10.0.15063.0\"hypervisor=\"No Hypervisor (No SLAT)\""	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\SignaturePolicy = 06000000	MicrosoftEdgeCP.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Content\CachePrefix	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = 018b5e023fd2da01	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = b36095023fd2da01	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\VersionHigh = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\VersionLow = "0"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\HistoryJournalCertificate	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\CIPolicyState = "0"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FavOrder\SyncIEFirstTimeFullScan = "1"	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = 449baf023fd2da01	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy\Extensions	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FavOrder\TreeView = "1"	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\CVListXMLVersionLow = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\CVListXMLVersionHigh = "0"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\Extensible Cache	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Protected - It is a violation of Windows Policy to modify	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-Revision = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\CIPolicyState = "0"	MicrosoftEdgeCP.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Internet Settings\Cache\History\CachePrefix = "Visited:"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\SubSysId = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1453213197-474736321-1741884505-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus\ACGPolicyState = "8"	MicrosoftEdgeCP.exe

Suspicious behavior: MapViewOfSection 6 IoCs

Processes:

MicrosoftEdgeCP.exe

pid process

784 MicrosoftEdgeCP.exe
784 MicrosoftEdgeCP.exe
784 MicrosoftEdgeCP.exe
784 MicrosoftEdgeCP.exe
784 MicrosoftEdgeCP.exe
784 MicrosoftEdgeCP.exe

pid	process
784	MicrosoftEdgeCP.exe
784	MicrosoftEdgeCP.exe
784	MicrosoftEdgeCP.exe
784	MicrosoftEdgeCP.exe
784	MicrosoftEdgeCP.exe
784	MicrosoftEdgeCP.exe

Suspicious use of AdjustPrivilegeToken 4 IoCs

Processes:

MicrosoftEdgeCP.exe

description	pid	process
Token: SeDebugPrivilege	1824	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	1824	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	1824	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	1824	MicrosoftEdgeCP.exe

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

MicrosoftEdge.exeMicrosoftEdgeCP.exeMicrosoftEdgeCP.exe

pid process

316 MicrosoftEdge.exe
784 MicrosoftEdgeCP.exe
1824 MicrosoftEdgeCP.exe
784 MicrosoftEdgeCP.exe

pid	process
316	MicrosoftEdge.exe
784	MicrosoftEdgeCP.exe
1824	MicrosoftEdgeCP.exe
784	MicrosoftEdgeCP.exe

Suspicious use of WriteProcessMemory 6 IoCs

Processes:

MicrosoftEdgeCP.exe

description	pid	process	target process
PID 784 wrote to memory of 3628	784	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 784 wrote to memory of 3628	784	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 784 wrote to memory of 3628	784	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 784 wrote to memory of 3628	784	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 784 wrote to memory of 3628	784	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe
PID 784 wrote to memory of 3628	784	MicrosoftEdgeCP.exe	MicrosoftEdgeCP.exe

C:\Windows\system32\LaunchWinApp.exe
"C:\Windows\system32\LaunchWinApp.exe" "https://github.com/Da2dalus/The-MALWARE-Repo"
1⤵
PID:3364

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:316

C:\Windows\system32\browser_broker.exe
C:\Windows\system32\browser_broker.exe -Embedding
1⤵
- Modifies Internet Explorer settings
PID:1036

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Modifies registry class
- Suspicious behavior: MapViewOfSection
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:784

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies Internet Explorer settings
- Modifies registry class
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of SetWindowsHookEx
PID:1824

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:5036

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k netsvcs -s wlidsvc
1⤵
PID:660

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:5020

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Modifies registry class
PID:2560

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:3628

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776

Filesize
471B

MD5
4204ca80518b9de4f8f97d951c6b6dc8

SHA1
fa7de132ef945f7423ec676270c5b3078ac2ae93

SHA256
48bf246ab682f595cb2115962bcfa52bd9e86e9089ac3b964f438db74ec663e7

SHA512
04dc64ec4a6dbe196d8794a465002af62d8ae444ae9e9e630904b5d45c649e07e9ac0c04fc4f98e4d919b1141b8a26fbafdfacc064ffecba803e5a5d45937c68

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776

Filesize
404B

MD5
c74f9ae4dfa36c7d65ad1a2f7205b804

SHA1
19b5d36a6b5d12dd1ebab2edf707ca753e7499b0

SHA256
2593c7d8f5e41b6d438b7216cb0eee75598b5ceea479542d0839b7b1d95e2292

SHA512
648b4340c1dc48914f8f3411324f42fc391019cd4a8edb075ed5e67e6e5c1336a60b9d9c2a0006570ea65d6e7ed25e6344d62fe9925bea099fa4a5eb6a963337

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\BU0KRETY\edgecompatviewlist[1].xml

Filesize
74KB

MD5
d4fc49dc14f63895d997fa4940f24378

SHA1
3efb1437a7c5e46034147cbbc8db017c69d02c31

SHA256
853d2f4eb81c9fdcea2ee079f6faf98214b111b77cdf68709b38989d123890f1

SHA512
cc60d79b4afe5007634ac21dc4bc92081880be4c0d798a1735b63b27e936c02f399964f744dc73711987f01e8a1064b02a4867dd6cac27538e5fbe275cc61e0a

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\The-MALWARE-Repo[1].htm

Filesize
291KB

MD5
95050aee6850e120bc37bb9c8783cb8a

SHA1
f4f9cd0d4ac99aedb6feb47c8f367b6bb52b2d86

SHA256
eef1c957ef69c02555c9c19ac9806753410e1ec4f8d456344dfa7927f8bb5331

SHA512
d689c2c46bd34ad67ccfa080d6f25974037b7c455f63375846c630ccf7041660f78970a90ea92ec2530cef6d9cd59b43a58bb3b64d41efc81b8c5d05f0c88e88

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-467754-558672090412[1].js

Filesize
16KB

MD5
51d26b90081eba291504c74233dfd33a

SHA1
e804a3dbe5f2db09cb5338b40e271e9c37d4ceec

SHA256
62c61a8fd1469036ea59177ae73f7cba8fb252f36c224c03360fea37bf7b4947

SHA512
55867209041269992de588fcf949ed4296b0d076bbb0820fb71fefa2d1de5f1b5cd8eb8b969c3ab8bf5c7580630be35d413446f7bb2e96e2427628fa693c9068

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_onfocus_ts-app_ass-421cec-c23296086e0e[1].js

Filesize
14KB

MD5
0e830621a54dc48b91a56eaa9052ff3d

SHA1
13b979eee1d21d56aad06bc07fa6c38c86a64a91

SHA256
822b96c899889536d8f8a189294ff5fe4d792477e2805f439ea0f1d06258141e

SHA512
c23296086e0e1adfecd5f6817a37ee249fd72fd7df42c450824b1ef2ad488936a011d76eff43a6dafef11622db47dd9761b881f440b2414c6e2bea44edd1f035

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\app_assets_modules_github_blob-anchor_ts-app_assets_modules_github_filter-sort_ts-app_assets_-6deafe-ba6b1a674c75[1].js

Filesize
5KB

MD5
114ca4c9ddab3146c9398d3fd35fd2a9

SHA1
7f86d7127e1bc7db1713738b3c5397a973a244ac

SHA256
e801703a62346b71465ee6d4d363fbde675a9a0d4f9a761c13d9c5fb55975c31

SHA512
ba6b1a674c755e1092d411da3361a1acba2e9398460394c7ab3e64a806fcc3c03bfb6331db53e191a7b2b929a693602ef43cb73aa71db24065a76025df10faa9

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\app_assets_modules_github_ref-selector_ts-71e52efb65a6[1].js

Filesize
9KB

MD5
3764a9c011d77e7845245734eeaffb81

SHA1
f5e2be25944681f770ba29e0e3f1a96268d30c1a

SHA256
2a336061d78222d9d4cb9baa7bd337836162b618e1196c23175083c30e9077ed

SHA512
71e52efb65a628487680479b0c42b2f42803c16542e47de4b6d46d768f52a86d3becdd7673a110ed29593d5977882b683b88b9176fe6cace46699e85c912da1f

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\app_assets_modules_github_sticky-scroll-into-view_ts-05b0b933db0c[1].js

Filesize
9KB

MD5
afe489b5948bbee313cb8a8d68e7be25

SHA1
4d080f1a411b0ca8521b72699c176c0ae110396b

SHA256
0af7a10f37c2df2e8b910612e1ef73bf77af32f65baa6cb350d37b8da1fe9f6a

SHA512
05b0b933db0ca709920ff3bab8ef569d7cfe7c9d048d940cafc8981474987ccbcc9cb7095ef51c51877c908ff9ddac23c4f662af8ced94921b3ae2fdac1a1fcc

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\dark-6b1e37da2254[1].css

Filesize
48KB

MD5
96ba1deb375c1c66bb092fa0a1765be1

SHA1
03f188ec52d09882b8403ed57d7aa73a224ddd62

SHA256
d6bc29d6a4e33c7f4da1d4b8060cce6dedf384d7334b71661c277e985ef8c156

SHA512
6b1e37da22544d5626c6f78691a8d8f723c49c95a782f5195f4b00b0e1b9d4408402c25d5915e097ef31273c3c8d06d81d1ba1bb08e12677941b8b1f24d92848

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\element-registry-caa729709eb5[1].js

Filesize
45KB

MD5
4b83fa3c831b16f23716da93cd087fd9

SHA1
82616be418c812a9922fe0f7d67f9fe22a3973d3

SHA256
aabec11e40cde326265ed79b91ea0af7babe938e577a4565c03175b16dc35bbb

SHA512
caa729709eb5d3a7555dab5f511d74606a7e6f9ae9a2d41e41303e0f9f50ea58774757c5b243d80ab9620dc249fb40fff2cbbd06d033d5b40948b539877b6059

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\github-0c7b5281bcc9[1].css

Filesize
124KB

MD5
d93b35eda2f4e99e5555c4cea314c18b

SHA1
1a15f9f64587f5a46a30b532854dc6a5896fcd92

SHA256
92c3d2d683bc4cdc52cf25451b52341558bbf6665c9c326aad3d3c2ea0eb9372

SHA512
0c7b5281bcc906111ee12a6f34797663bbe3924ed4ff2cd28e0e73d7e2a810377c86a3f5ab7385b2d14ec435b95d3def93cbe0fca0e91a600dd18c30522ad85b

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\github-elements-2bf55f40b550[1].js

Filesize
34KB

MD5
96a295f94c3e50c18f37ac9999de0829

SHA1
98ee0cccc2cfd0b0e082df7a896ed6339257d88b

SHA256
5706da4f6372c9724d4ec6a8ca148ee2638f591c1b1aa93258321b6146573e87

SHA512
2bf55f40b550c54a6ed1f86ce4d3c6a7d59a7d0574dfcb52b2e414cd6426e763dee1be374f61bfd6b3a007b260dd9a774fe0da3621d35011680bfebefee48589

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\light-efd2f2257c96[1].css

Filesize
48KB

MD5
b8473fdb0f4749de99341662aec850f2

SHA1
f593c957a26528558217837aead34cf718d27443

SHA256
8aabc55d211fc93acb563c9cf30732577212a998196f73b067f9795c8d1ef72b

SHA512
efd2f2257c96c12eba6da741c677030ac63c34a925846080ec606e5a974706726479bd5babea6dd0ac7e8e421704263787986fb07a9c384994cf403bf8bc3dee

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\notifications-global-c65a9d55f5bb[1].js

Filesize
11KB

MD5
24117c534c03df6eb1479776a3973d75

SHA1
00311f7cd47a97b7749921f16d471b2e55f38a34

SHA256
9f9f50703d0026fa337595b85c9f69dd37b5fa8fed6d7bb09baa0182f4430403

SHA512
c65a9d55f5bbdddb5938cae3c5dfdbb06af03c41d46f177e40f6bf94e154dc04e6c781b3f94cefd2d3bb4d8a5aeb717864b5d110a6d3edbd6fcdaf982f165a2a

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\primer-61560ce103d3[1].css

Filesize
333KB

MD5
b63465c413507e26ce54c310a3e81e03

SHA1
30c9cdba12c188bdce1a34c13208f3cba3e92dea

SHA256
029c7bef0b2978a1be61d7d391a7e2aa5c9107f036de4b119f5bb6a0065f2226

SHA512
61560ce103d3f85f9b3b05343e8ec64617b939023e299c39309e47fdc7571983778f24de93ab2edeedaf095a648d7a2b14e473d8b8cbb89d783054d9738d4ec7

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\primer-primitives-8500c2c7ce5f[1].css

Filesize
8KB

MD5
e9c08b9ba681ad6606bd18f264e73ef6

SHA1
04d1e96739d82e07587f10bd2d953c8e70b93d9d

SHA256
b08c9718118f5b814e632ac3dc0d8e009e5dc2913df183f0ed322e6817e997df

SHA512
8500c2c7ce5fdad5fa01aa92156964108335c704a127ce290d201395009914c814ac6e08a467e45d1ca0fc75b2269b7f09a6d437939d91c9513c659a80cf472e

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\repository-7247b57543b3[1].css

Filesize
29KB

MD5
bfa00aec8ff741ce867de0296244ccf5

SHA1
fd59dc7ebf94af2aa56b025955fad2cbae9fe3a0

SHA256
ef3bc926d6cc94fe776744ce16c2adefdc2e61ee37be03972eed19b5bf332a74

SHA512
7247b57543b3ebd9f46dace09672f6091da69bdd6e99a46f2191e3c8fa889588f3237d05f7ea6d2025203b1adcbb941a536c8876ba3b9bec9b97a0a792577aac

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_stack-68835d-59206c834a41[1].js

Filesize
22KB

MD5
abf8524a6c1a2fc5f65a74a2521cfbad

SHA1
d4838895bafd2811e6a4a26e2ea6803a47deaf5c

SHA256
2af5ea5aa242790fded3a159d028a9f851c3a8890e3edc18510c418a78aa926a

SHA512
59206c834a4132ef80c94a3df56d7439d7586b4b0eb4c592cc91e52c2d458d4cd85951335e424f88268b8cc7479de0d1e0a6300a7b16424e566ccf412fa3fc32

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\vendors-node_modules_color-convert_index_js-cdd1e82b3795[1].js

Filesize
12KB

MD5
87c46393d70d0708f35f0a6ebfc12ae8

SHA1
ece46c81959bf53bfe6b47b7fadcd897fb701f1c

SHA256
61a2b49283bb67e9efad2108e5afadddd7f6fcc9677842529de7560a2f840a1a

SHA512
cdd1e82b3795fb1404a063acabc4a4d6439aa10c772614c4b5dbb46bebd7297b63326bfaf0bc92475496522ec14e71d6f031c76e5aefb62793efe97a6869a4f9

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-06ff531-2ea61fcc9a71[1].js

Filesize
11KB

MD5
c59673d413609f36559412bd12b5776f

SHA1
7cd5f0a997f4d154400dacbfcab376395009f690

SHA256
eaeb0852cbcffaef96c7a00b0080169f4aa752f0f1d5cafcdf6177e2d0698c5b

SHA512
2ea61fcc9a716eb3452f0b6d6531d0c724f69aa55a032af882eaae96f7f59bd26f028f1832f1aa65bc6fe90612acbf145249cf83b285399e8e4da7fc4c9ff5d2

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hydro-analytics-client_-7901e7-f8af173502c4[1].js

Filesize
15KB

MD5
f880a66bbddaefee7bb74d03f6454060

SHA1
14d6960ea36ac6ea5e433556aa0db32bce7f2b82

SHA256
0008ba68147094be42c824138791393c9418d4208bd21d43951dbbcb139ca570

SHA512
f8af173502c4e2ae96ad4ec9092f0023b39bc81f69bf95f52c30b5bb7b39e58ec71a07ddc2710d8b75718a581557956fb0da96ba4165aee04c8a030557ca7280

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-b7d8f4-6e6f83bcc978[1].js

Filesize
18KB

MD5
c51750a26a33cf80e50f4a3d0aeb6892

SHA1
e98129a8f85a2630c649dc239a94d87eaf04ae4a

SHA256
9ea40b58c32c154e2cb17834f70f7bf8c6049bac1dcf640bbda8a8ba1e0f7670

SHA512
6e6f83bcc9782b534fb50f26d877fe691ced39bf579844a5f4667460de9d723d918d312f7f1454f29ab63bb9263f5364339f3022c8c33b8c7ce816e869f15eb7

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-38ef9cb819da[1].js

Filesize
5KB

MD5
aa4c52e8fac146ce10e31582ba0c7919

SHA1
2d613743a9eff7a2fe85ef30cfcc952e77545f02

SHA256
b77aa63c182b0f68b05072941d4f6cdcb6935cff8c70128e799e014de8887c35

SHA512
38ef9cb819da19c331e96f19c1d75e8e34b13499c39964f41b8a9ccea0fab4a211c09e11d35919e2a4e49ec1a503f710aa85314df1a9302c0bd8eaf70def4c27

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_textarea-autosi-9e0349-7c78ee755ad3[1].js

Filesize
31KB

MD5
732cd9c6c7f52671f1624fc217dc4977

SHA1
ac41db2f8a9f5c7b1fe92a55d92df974022e31f5

SHA256
3c6724b93fd62f64bc48be487bdff98fcce880a50cd2ef427bda2533d754475d

SHA512
7c78ee755ad3f4805b7a27395bdbeac8c66cd77cd40d65ea95f4179500f0ba25d96ded539475c671160d73a60aa20f2a87cef38098800c08cffc02de3c1ed7bb

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-880ac2bbb719[1].js

Filesize
9KB

MD5
6fee5ae66b3515a659af0ef1e63104ef

SHA1
2b3cb4839002d6ec44ae230968bfe3ba30fa5e00

SHA256
0c05a71ebe46d680af577222bdea67e723372a350cdc0dfb0d4f1c0b4d3e7b58

SHA512
880ac2bbb719b7dae39e8de2da4d712fe8abe809aed99d81f01c988b484bb36d1844cc287e6439f2b2b2d47150dda8051bbefe71d4116ec1b1060f9758ac62c7

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-e53a3f-dae7d2c92a46[1].js

Filesize
22KB

MD5
6f639b2ce4b512cf68d047bd88fffaa0

SHA1
b4c873f0cb1ee4d458c71f8187af63d7973e849c

SHA256
ee195b06d5755c58c0b0036215e396f5b9c04886a86b94587c14d00814526cad

SHA512
dae7d2c92a46aa196f1fa90052ba722baf412e26f0074c266b225921d315f1ef79dabdfd1c34dfa5d4b42b55517b9a47b6d9911f2cff746dec896bdbb3287c2b

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\vendors-node_modules_github_session-resume_dist_index_js-node_modules_primer_behaviors_dist_e-da6ec6-77ce2f267f4e[1].js

Filesize
8KB

MD5
4c374dbb8b51ca2a17089f1cbe0d81af

SHA1
16780554210360605236977d3220e017ef6af907

SHA256
a2fe57f312a0e894c2ac18814d3d96185e35248ff0807578f32132134c9b333b

SHA512
77ce2f267f4eb27e280615a84be951e6deefeeff796cf216dcef3366c68b03e609df7b2fc6e437c6ef3e626f80ee9469b9dd4a2f9a6606be2878d71980f8aa1d

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-1cea0f5eff45[1].js

Filesize
75KB

MD5
da12b1c4b7ef43005058dc23dc1c9241

SHA1
ead4a499250e02d02de785d57e9c9ef0a5479246

SHA256
e5fb7f565280a04a61ee0cb172345c19f4e3fce199cdf6ba8c7d7a8d1485bf53

SHA512
1cea0f5eff456dd50d0ba331c24b25c3e46cac17f8486fff1d504dfb4b08de97b1c9e0f20c9f97f5a2e2d252096cefd77ddb5876d8d941b7e4e23cc1947d84df

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\vendors-node_modules_lit-html_lit-html_js-cc7cb714ead5[1].js

Filesize
15KB

MD5
044ea6b19bdb237ca2c2911dd285d4f1

SHA1
9451d4ebea616500153220d7efa137cae5520087

SHA256
a6d419935f6f293c3fd5b543ef57c5cb3b22ebedee6b1cda1b9ca45e36667c0b

SHA512
cc7cb714ead55b9a08ad75ab729ce084785a6287a782dc6f10aecd0af788c0070519a84c3fc5f197cfd99ba66891d988488920fc1e225f6e0245600870dd9aab

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\vendors-node_modules_primer_behaviors_dist_esm_dimensions_js-node_modules_github_jtml_lib_index_js-b1947a1d4855[1].js

Filesize
8KB

MD5
9df3b614049471137f614271f8e15f99

SHA1
d85e313268cc2ef1788b1a8482a2d0cf8d1e4005

SHA256
51f1f221edf00dd3df759a4dfbdb1da5710234f20c31f31e3b164f0aa9e2358d

SHA512
b1947a1d4855f3022c3bf10b14b5cb764e72259550236e9c88903f78c558824107c651dc080a33ca768eb47be448a8ccf54e345755067a555147b93ef55938d7

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\BP6PAIHB\vendors-node_modules_scroll-anchoring_dist_scroll-anchoring_esm_js-node_modules_github_hotkey-1a1d91-56e858031112[1].js

Filesize
12KB

MD5
474d1df4fddae937059ccd657f65ea93

SHA1
dbfb37d0db3a3d6025ffc8404c5cb273da35e0d8

SHA256
b14e682fcf653dba8f3ecc7093b38c6e3279c24efa9d604286b521ad622bf07e

SHA512
56e858031112bb52548d959ff05d1885a1b4d79143d1a3c8e8837c93eb314f2ce44954e5a33d957b81cb792a4a4fa5adf7d90b1b39722440678157305b79fc35

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\G1588626\app_assets_modules_github_onfocus_ts-ui_packages_trusted-types-policies_policy_ts-ui_packages-6fe316-a333c9366581[1].js

Filesize
9KB

MD5
7f44ad75dd64c95d1b70825d0e8232c0

SHA1
f86ebfe75f58e7fcaade57bb179e66d35ce524d4

SHA256
64de864d635ff46d693b1dc32ba04376e2071e024dce1ded59aec03ad705c501

SHA512
a333c9366581d856b040aa83f96bc6cdde49debe371f935afde676fa68b3a7c205ac00eb56587b60ef838a662b304440d35668ea8c64fa5f44e2a25c949799a1

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\G1588626\vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_details-d-ed9a97-dfdebffa4a55[1].js

Filesize
17KB

MD5
7f7fcca1fd0f56ab89999252b6cb18a0

SHA1
b21807ff01108922f3990051dda323ecc72cc025

SHA256
59baacdb269857c460ed582447a4ed222c995a5908af7c211c50b6373d9f9ede

SHA512
dfdebffa4a55e1535ff9c5203bda1729dc09837727e1479b8d6b1b7e27d14514cf4a3ad6f928a97a05e9d013077faa5aa882f27542f065d0c1a486918a1690e2

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\G1588626\vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-15cdfa-fdfdefb25b02[1].js

Filesize
114KB

MD5
f60ccf25f6309b63eeb611241cd30c75

SHA1
9995b3f19ed9484ef239031f84666892196cce84

SHA256
04e8bc67195d948ab806240e48ee9e0aedb2a9c90ff2fb95c1db92ec57bea989

SHA512
fdfdefb25b0249471b670155cd5b453f04842556c18600e93f633f5eb3489b2724cbea5535ddbb0cedf2a2202651261c30b235783a11e3f1104bcae118fb7dcf

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\G1588626\vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_delegated-events_dist_in-af795d-767d6f041dd5[1].js

Filesize
25KB

MD5
de4d5fcedda4c7e9d1103ed8385f25d4

SHA1
0b1a2b1b13023498b0dcd3e09f936e78398ef5c3

SHA256
ff0630f9abd44806e2cce086553bb5af64ae04ab2d7e11790f7a38ecce308ba0

SHA512
767d6f041dd57c16c6bf9db5cb582c53ca7e035fd1a9941d4826023fb12391272bcdba2e4febe539045ee17d29c1d5f2055a99b2fcfb9ad7ee79ec6f888ee756

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\G1588626\vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_smoothscroll-polyfill_di-75db2e-e091a6d939e9[1].js

Filesize
13KB

MD5
2658fa77142d9a38479a85ac41a84cd9

SHA1
417a3064a34999df6f67518c7aa080e63b7104dc

SHA256
3f9c752182a74f07c7bb37f01119db83f14577a530d19f3899bcb4a448d838a9

SHA512
e091a6d939e958655867ceb841eaef2a88066134a1cf9e6bf948166b3d6dcbfd055be57219c4c653ac09319960312b0b0e632163cf43f07a68f54301f3addac1

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\G1588626\vendors-node_modules_github_text-expander-element_dist_index_js-b2135edb5ced[1].js

Filesize
11KB

MD5
3f5c04894f0202a67ec6f0354c1f9acd

SHA1
6a6bf35008b0121bb5806e68bd5f87b20ba72f17

SHA256
0dd1ec9da83fce11b3bfecf9aed67d4f33f7a1d4bd3f04dd1ed941f3b4c8b3fa

SHA512
b2135edb5cedb3b45ffb96906170b242918156621c0d13000d18ccffcd2f20c2f1e2827b391cbe89f499745b748ae99bc51b972b4234ba739624caa4d2e33862

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\G1588626\vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-4ac41d0a76fd[1].js

Filesize
9KB

MD5
4e684fa742abc9befc4748e8a4680586

SHA1
25129f277cfd66774a3c47db8b22c19b364bdc25

SHA256
97652a00703643a49de00ea59316fd488cf72429b599a62d7cfae464f7bf5a96

SHA512
4ac41d0a76fde41832af2c742d4a063ecea83aafd5233ec46f82938fd5ba06aebc0a69fe241df477fcdf08b1a8e6d6f02e0a42669a351ea50b3056ebc8eefc9d

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TYAA4AZZ\app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-2939a5dbf29b[1].js

Filesize
11KB

MD5
c1fc95c86f0dedcbbf72d913ef5244df

SHA1
3b1c54d3ed785e839acaffae3b1a13e0a4987d8e

SHA256
5082eb9c294ab4c64e4967c643cd4135f0d184eb5c99c8898cdaf916e50bd87a

SHA512
2939a5dbf29b1aeb15cba258980a448c75755c7d34a3753ebd7f29d3a30c2c60a518ac875b9c84303939005581171b6c9baed627b3c9e83c0a374c537b135eb4

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TYAA4AZZ\app_assets_modules_github_updatable-content_ts-d2ede1b572c4[1].js

Filesize
20KB

MD5
fb8568feefef598ab8c3722bbaa1b499

SHA1
9cf45bbcd1558315d5b277afe8dcd7a6c8e5b538

SHA256
ecad0a5db36a0f50bae0fb4afabec537d9bd998b8e7c9d5c974f91871f56fe52

SHA512
d2ede1b572c43ae8c0ef122e759f391e704c8975506dd31b23b8414524d85efa739e22db09221bbbdf8a825dc86fc36f64ef695e17fc06782fb77e200309626e

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TYAA4AZZ\code-68246ade0881[1].css

Filesize
31KB

MD5
fe41b1cb8984b058bfd6c43611979fc3

SHA1
616c5338047325851951b95d62697c7704fbeb84

SHA256
6bd08573fa902e0e9cbf42b593301403596ab6159cb3d2e079f6899ae67caed4

SHA512
68246ade0881d2a4402015f6106d495e4cb4810f692639c3f19cff896a2bdbbfa7ba467ae09e4d2931495ef91cd935db30fafe04d53837b03841259ddb44d727

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TYAA4AZZ\environment-041d6b79df7b[1].js

Filesize
13KB

MD5
4f1e5f059913230181e616b3637e103e

SHA1
b3a8226e7014929a8df25c8361947a9af584dfaf

SHA256
77c8c21244586ea66012e0d001094e0a1fff23ab0cfa4d98f0f7ebb11e72e19a

SHA512
041d6b79df7b913ec37a40ac1a580a0f01750c251e553f61e735168c0876f1ae609d0a8093e36460ae9f8a37cf6641a45f48a0963812de8c3729a12648f8f935

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TYAA4AZZ\global-2e88a79ce78c[1].css

Filesize
282KB

MD5
677792abfc51d8a65d5c1f3477e97808

SHA1
de318dc000c0cf8fa12ecf4371e5315ca501ff0e

SHA256
f332b3ce020150041295be581d043dffa815b3531d82f65e4508caf31ca395e8

SHA512
2e88a79ce78c34976c40cbe7f5bfad910ba66805b63905e0d8b6e8f03e6254555a784238a53fa3d4f1ec385955e89d05c5df9ef42b92d8d6ff9a637f9953eece

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TYAA4AZZ\vendors-node_modules_dompurify_dist_purify_js-810e4b1b9abd[1].js

Filesize
20KB

MD5
917054ff94af6b65ef610aa7b541865a

SHA1
ae699adc368c0bddf428d4f17cec479c6d96cd6c

SHA256
3b0d2012948870af14b480bed5535b34c5f7e649a2c9c13234c319fbf8d2d7db

SHA512
810e4b1b9abdcf5f10506f484ad38bc17cae973d1609d2d8d51bb4a8eb8d3c542cacfe6e4b1c31a062238087e216dfe4206064e8c1dc4cb5d961fc8e97a5a1ea

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TYAA4AZZ\vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_clipboard-copy-element_-782ca5-14181f295dc0[1].js

Filesize
8KB

MD5
00bca5d88a27f2016abb0defa427aa2c

SHA1
b43423611b166e0be508f3d5a31678a7da84d216

SHA256
32e943a533af946e453fe4365281698f08957e56087265465cf356d4fe8d09c0

SHA512
14181f295dc0fd7b5276e98dd0d4874a805d55ddced5289491eae9355bc5ca96fec0bfb5f1e9fc70acb46951fabc932fd12b3795e5dfd84f6d7043c390d89549

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TYAA4AZZ\vendors-node_modules_github_selector-observer_dist_index_esm_js-9f960d9b217c[1].js

Filesize
9KB

MD5
683a7fe431bded8fbbf7b5189a1b8209

SHA1
2fb527473877ea06ec6b023690ce933c216c5d07

SHA256
f87c5b59b8f353c8762f2e44e1f82feafab882a96a0fad135dc6fc1555872ab3

SHA512
9f960d9b217c457d467a9510dd9797c4ec9df9a892c0a3e1746b2b87dca8ec191dc901e983bc509bc282004967b6fd588dbff5bf70bc7e20a5ca32bc7f1d772a

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TYAA4AZZ\vendors-node_modules_primer_behaviors_dist_esm_focus-zone_js-03bcda509ec9[1].js

Filesize
8KB

MD5
9c0205fabb4f94dca52960b723fc5109

SHA1
071fef19499834648d03f1b7a8ab9d520d6b1d2d

SHA256
d7c92cb4874d08bc420ab20d970c0ef1c5f26e42cea345cfccf4ab5653ec219e

SHA512
03bcda509ec920f11c1b207daeedfff343652e3ed217ae635460f93400da589c2ebe2c14bd477f8eefd994d088d3e2ca0a3042cc9c484f05b518a95b1af61548

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TYAA4AZZ\vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-878844713bc9[1].js

Filesize
12KB

MD5
84eee0a0d2d52ce4048f2dbdb3589012

SHA1
9723f142ff6ce47f65dfed06d70b68a305a8dbb8

SHA256
bf11813ce0246da52cb3132837619c44d1e837e3eeebbbef12137dd91dfbec7f

SHA512
878844713bc98efc35c1a8041e3a53fa3e2ac9669dddeeeb2962ce6cdd465f84f0d41c3774ac27bd4bffcfbdf4832897e7711dbfd17adfac9d2fab206292c4e7

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\TYAA4AZZ\wp-runtime-fe12a7c1e950[1].js

Filesize
49KB

MD5
77789d05d43ba1a838519935d71b008c

SHA1
d6153ef524e3dea06d2f19d8ed9cce4cc661ef5f

SHA256
b0d0c491d68fbfa28f8059e114a70b03dc2e31c07593b289d8d462761b1eccf8

SHA512
fe12a7c1e950043c92c1366efbf60d68ab7756dad7e32e0ee9a7ee99dd0214621ba9165cdd0883949cc1f5ac6b2bccf419993ec650456a9a17311679c2921b56

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\U2NBUWK5.cookie

Filesize
165B

MD5
f78b1cc69da7b07a67fca2a0005da197

SHA1
9bebd0008b84d06c3072bf107ea45ccb9f4d50ff

SHA256
e0df70e8f7845ee7c66e854cfe6927b2029ba76680d77871c94938a2b8c13dae

SHA512
4d043205d11d243deb6ff1634a070598d367cd0b0e7ed32a814292b13f66140749cc5b91c5e80b0980406ac478dce67471fa2bd7d8b75c8a732f263abff91bde

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\A66A8DB907BADC9D16AD67B2FBFFDD5C

Filesize
281B

MD5
abf50358103f614042cc8c39b58c9e88

SHA1
57ff6fbaed9d94d22cab915131d949c74ee9bf61

SHA256
e7a79f00848ada913d2a976104f13a6db2281e738d10a4e2cae858d262f90116

SHA512
ba47b69225eb8f7f4db11acf64b72029b24900ec20d51e31aabe09bb595e727809b5c221ad881faaeb2a39ab0883c148aa606614a92dfee83200bdac293be09d

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25

Filesize
1KB

MD5
762c2477fb72775d7e2d3e76556a36ec

SHA1
54417cfe770a3d8c7983fd325597cdc70523c8bc

SHA256
61cfc10af156497186a2171d2f2d2a5c80981a9132fca49bfdf3ff0acd27085f

SHA512
e4e620bed5bb9a34f5189c155a35b10111370d6249e1c75c241df61b3a2edfd63cc7172a090f7b03fdf37f9c5eae7adf696e647f74b2ef3c370c3fcaa7b4857d

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\D0E1C4B6144E7ECAB3F020E4A19EFC29_B5F77004C894173A10E3A199871D2D90

Filesize
979B

MD5
59294aff5be3ed6424495b4d53165776

SHA1
9e36fcd8519b7d2d7b81dd0aebc8145d3b395349

SHA256
f5fa388efd78c1d82af37a382df0c437d3358caf1432ff2b047e9ff176803d5d

SHA512
c1234131953ffe5d747ff9decdf43516927c3a31d00d5dac134313abc13f6b67baaf7cbad05283e5e650926034b7ea799151f5e5ba7d3962025357d28547df56

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\A66A8DB907BADC9D16AD67B2FBFFDD5C

Filesize
480B

MD5
db237f7efd536543d3b0aecf1c19353e

SHA1
f5157b818b471225bf11b60e16a6d6613b8ce576

SHA256
e516360cf84d08a10de2bb82f0a2919ebdc4332144eca9a7b45e8febd2906c3d

SHA512
de4b2b8edfc7efc12c8690b62d774471998a689aab3f93dc27ba77938055810e631e3700ea3a678cf48e4cbb8c9874429042a814e03272f5e5cb4ee70b5ff810

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25

Filesize
482B

MD5
77d76e99a81742806b496b2d1239b633

SHA1
9b27ae655ca2cc8522072ef76b6b7bf367c68544

SHA256
963708cebcf268fc4efa4035312be9d763ff14cca4ca41c13c5771c7e2497345

SHA512
0e9929beab0a844e36176858bdaa841cecd1398fd3d49230804b5e9dcc99ba0ff8939371c569b6ec123e79c4fff0f1ec9ef16a3ae79524edb38f33ea8530b7dc

Download Submit
C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\D0E1C4B6144E7ECAB3F020E4A19EFC29_B5F77004C894173A10E3A199871D2D90

Filesize
480B

MD5
4092e09ed3faa073e47d96e03c0f5905

SHA1
2a801a302d8753e897db3d153e53f58802c17094

SHA256
fd8bad1c3bd930e6b8508842f270e46c0fc8cbe9fd0218daf9cf05416c464c20

SHA512
d968a9e1a3587e63f71506486c11e656fe5f01c0976bff66706b8099ddcadbe006d2a4fc4c0c920f63c5adb45ab6ccaebe3b314ff9333f07462a2fd74795f9d7

Download Submit
memory/316-0-0x000001A1AC520000-0x000001A1AC530000-memory.dmp

Filesize
64KB

Download
memory/316-35-0x000001A1AB740000-0x000001A1AB742000-memory.dmp

Filesize
8KB

Download
memory/316-17-0x000001A1AC630000-0x000001A1AC640000-memory.dmp

Filesize
64KB

Download
memory/1824-44-0x0000013819C00000-0x0000013819D00000-memory.dmp

Filesize
1024KB

Download
memory/1824-43-0x0000013819C00000-0x0000013819D00000-memory.dmp

Filesize
1024KB

Download
memory/3628-247-0x00000289E39B0000-0x00000289E39B2000-memory.dmp

Filesize
8KB

Download
memory/3628-251-0x00000289F4250000-0x00000289F4252000-memory.dmp

Filesize
8KB

Download
memory/3628-249-0x00000289F4230000-0x00000289F4232000-memory.dmp

Filesize
8KB

Download
memory/3628-253-0x00000289F4270000-0x00000289F4272000-memory.dmp

Filesize
8KB

Download
memory/3628-255-0x00000289F4330000-0x00000289F4332000-memory.dmp

Filesize
8KB

Download
memory/3628-257-0x00000289F4350000-0x00000289F4352000-memory.dmp

Filesize
8KB

Download
memory/5020-211-0x000001A4D9940000-0x000001A4D9A40000-memory.dmp

Filesize
1024KB

Download
memory/5036-66-0x000001FEE6B00000-0x000001FEE6C00000-memory.dmp

Filesize
1024KB

Download