hxxps://waveexecutor[.]com

Analysis

max time kernel
480s
max time network
482s
platform
windows11-21h2_x64
resource
win11-20240709-en
resource tags

arch:x64arch:x86image:win11-20240709-enlocale:en-usos:windows11-21h2-x64system
submitted
10-07-2024 06:40

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://waveexecutor.com

Score

7^/10

Malware Config

Signatures

Executes dropped EXE 5 IoCs

pid	Process
1468	WaveInstaller.exe
1656	WaveBootstrapper.exe
1544	WaveWindows.exe
4328	node.exe
2980	Bloxstrap.exe

Loads dropped DLL 2 IoCs

pid	Process
1656	WaveBootstrapper.exe
1544	WaveWindows.exe

Checks for any installed AV software in registry 1 TTPs 4 IoCs

Security Software Discovery

T1518.001

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-3766757357-1293853516-507035944-1000\Software\KasperskyLab	WaveWindows.exe
Key value queried	\REGISTRY\USER\S-1-5-21-3766757357-1293853516-507035944-1000\Software\KasperskyLab\LastUsername	WaveWindows.exe
Key value queried	\REGISTRY\USER\S-1-5-21-3766757357-1293853516-507035944-1000\Software\KasperskyLab\Session	WaveWindows.exe
Key opened	\REGISTRY\USER\S-1-5-21-3766757357-1293853516-507035944-1000\Software\KasperskyLab	WaveWindows.exe

Legitimate hosting services abused for malware hosting/C2 1 TTPs 6 IoCs

Web Service

T1102

flow	ioc
8	raw.githubusercontent.com
58	raw.githubusercontent.com
70	raw.githubusercontent.com
71	raw.githubusercontent.com
72	raw.githubusercontent.com
73	raw.githubusercontent.com

Drops file in System32 directory 2 IoCs

description	ioc	Process
File created	C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_01cf530faf2f1752\display.PNF	chrome.exe
File created	\??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_01cf530faf2f1752\display.PNF	chrome.exe

Drops file in Windows directory 1 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SystemTemp	chrome.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Checks SCSI registry key(s) 3 TTPs 3 IoCs

SCSI information is often read in order to detect sandboxing environments.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000	taskmgr.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A	taskmgr.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName	taskmgr.exe

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies data under HKEY_USERS 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-3766757357-1293853516-507035944-1000_Classes\Local Settings	taskmgr.exe

NTFS ADS 1 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\WaveInstaller.exe:Zone.Identifier	chrome.exe

Suspicious behavior: EnumeratesProcesses 64 IoCs

pid	Process
4376	chrome.exe
4376	chrome.exe
4068	chrome.exe
4068	chrome.exe
4068	chrome.exe
4068	chrome.exe
1544	WaveWindows.exe
1544	WaveWindows.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2572	msedge.exe
2572	msedge.exe
4572	msedge.exe
4572	msedge.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2860	taskmgr.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 14 IoCs

pid	Process
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
2572	msedge.exe
2572	msedge.exe
2572	msedge.exe
2572	msedge.exe
2572	msedge.exe
2572	msedge.exe
2572	msedge.exe
2572	msedge.exe
2572	msedge.exe
2572	msedge.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe
Token: SeShutdownPrivilege	4376	chrome.exe
Token: SeCreatePagefilePrivilege	4376	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe

Suspicious use of SendNotifyMessage 64 IoCs

pid	Process
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
4376	chrome.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe
2860	taskmgr.exe

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
4328	node.exe
2980	Bloxstrap.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4376 wrote to memory of 2692	4376	chrome.exe	80
PID 4376 wrote to memory of 2692	4376	chrome.exe	80
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 4356	4376	chrome.exe	82
PID 4376 wrote to memory of 8	4376	chrome.exe	83
PID 4376 wrote to memory of 8	4376	chrome.exe	83
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84
PID 4376 wrote to memory of 4892	4376	chrome.exe	84

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://waveexecutor.com
1⤵
- Drops file in Windows directory
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4376
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.106 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9c7f3cc40,0x7ff9c7f3cc4c,0x7ff9c7f3cc58
  2⤵
  PID:2692
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1872,i,13589728181981773461,12330365098608234734,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=1860 /prefetch:2
  2⤵
  PID:4356
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1788,i,13589728181981773461,12330365098608234734,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=2028 /prefetch:3
  2⤵
  PID:8
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2156,i,13589728181981773461,12330365098608234734,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=2408 /prefetch:8
  2⤵
  PID:4892
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3052,i,13589728181981773461,12330365098608234734,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=3124 /prefetch:1
  2⤵
  PID:4516
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3040,i,13589728181981773461,12330365098608234734,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=3152 /prefetch:1
  2⤵
  PID:1204
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4280,i,13589728181981773461,12330365098608234734,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=4092 /prefetch:1
  2⤵
  PID:3764
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4740,i,13589728181981773461,12330365098608234734,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=4708 /prefetch:8
  2⤵
  PID:4396
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=5004,i,13589728181981773461,12330365098608234734,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=5032 /prefetch:1
  2⤵
  PID:4704
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5248,i,13589728181981773461,12330365098608234734,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=5264 /prefetch:8
  2⤵
  PID:4660
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5232,i,13589728181981773461,12330365098608234734,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=5404 /prefetch:8
  2⤵
  PID:4416
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5088,i,13589728181981773461,12330365098608234734,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=5568 /prefetch:8
  2⤵
  - NTFS ADS
  PID:2076
- C:\Users\Admin\Downloads\WaveInstaller.exe
  "C:\Users\Admin\Downloads\WaveInstaller.exe"
  2⤵
  - Executes dropped EXE
  PID:1468
- - C:\Users\Admin\AppData\Local\Wave\WaveBootstrapper.exe
    "C:\Users\Admin\AppData\Local\Wave\WaveBootstrapper.exe"
    3⤵
    - Executes dropped EXE
    - Loads dropped DLL
    PID:1656
  - - C:\Users\Admin\AppData\Local\Wave\WaveWindows.exe
      "C:\Users\Admin\AppData\Local\Wave\WaveWindows.exe"
      4⤵
      Executes dropped EXE
      Loads dropped DLL
      Checks for any installed AV software in registry
      Suspicious behavior: EnumeratesProcesses
      PID:1544
    - - C:\Users\Admin\AppData\Local\Luau Language Server\node.exe
        
        "C:\Users\Admin\AppData\Local\Luau Language Server\node.exe" server --process-id=1544
        5⤵
        Executes dropped EXE
        Suspicious use of SetWindowsHookEx
        
        PID:4328
    - - C:\Users\Admin\AppData\Local\Bloxstrap\Bloxstrap.exe
        
        "C:\Users\Admin\AppData\Local\Bloxstrap\Bloxstrap.exe"
        5⤵
        Executes dropped EXE
        Suspicious use of SetWindowsHookEx
        
        PID:2980
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=4488,i,13589728181981773461,12330365098608234734,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=4984 /prefetch:8
  2⤵
  - Drops file in System32 directory
  - Suspicious behavior: EnumeratesProcesses
  PID:4068

C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe"
1⤵
PID:1200

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:3040

C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /0
1⤵
- Checks SCSI registry key(s)
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:2860

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:4876

C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" a -i#7zMap31646:70:7zEvent3202 -seml. -ad -saa -- "Wave"
1⤵
PID:2196

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
PID:2572
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xe0,0x10c,0x7ff9c52c3cb8,0x7ff9c52c3cc8,0x7ff9c52c3cd8
  2⤵
  PID:2484
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1928 /prefetch:2
  2⤵
  PID:4708
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2304 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4572
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2552 /prefetch:8
  2⤵
  PID:4560
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3292 /prefetch:1
  2⤵
  PID:744
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3316 /prefetch:1
  2⤵
  PID:3176
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3776 /prefetch:1
  2⤵
  PID:3816
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3944 /prefetch:1
  2⤵
  PID:3900
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3676 /prefetch:8
  2⤵
  PID:1004
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3480 /prefetch:1
  2⤵
  PID:2360
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5108 /prefetch:1
  2⤵
  PID:4804
- C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4920 /prefetch:8
  2⤵
  PID:1688
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5284 /prefetch:1
  2⤵
  PID:2320
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5072 /prefetch:1
  2⤵
  PID:4648
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4752 /prefetch:1
  2⤵
  PID:4668
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5196 /prefetch:1
  2⤵
  PID:1288
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1916,16403140422387433770,11824629125137701692,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=5992 /prefetch:2
  2⤵
  PID:5376

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3760

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2884

C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" a -i#7zMap17982:70:7zEvent13702 -tzip -sae -- "C:\Users\Admin\AppData\Local\Wave.zip"
1⤵
PID:6108

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

Software Discovery

T1518

Security Software Discovery

T1518.001

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Bloxstrap\Bloxstrap.dll

Filesize
4.3MB

MD5
6546ceb273f079342df5e828a60f551b

SHA1
ede41c27df51c39cd731797c340fcb8feda51ea3

SHA256
e440da74de73212d80da3f27661fcb9436d03d9e8dbbb44c9c148aaf38071ca5

SHA512
f0ea83bf836e93ff7b58582329a05ba183a25c92705fab36f576ec0c20cf687ce16a68e483698bda4215d441dec5916ffbdfa1763fb357e14ab5e0f1ffcaf824

Download Submit
C:\Users\Admin\AppData\Local\Bloxstrap\Bloxstrap.exe

Filesize
249KB

MD5
772c9fecbd0397f6cfb3d866cf3a5d7d

SHA1
6de3355d866d0627a756d0d4e29318e67650dacf

SHA256
2f88ea7e1183d320fb2b7483de2e860da13dc0c0caaf58f41a888528d78c809f

SHA512
82048bd6e50d38a863379a623b8cfda2d1553d8141923acf13f990c7245c833082523633eaa830362a12bfff300da61b3d8b3cccbe038ce2375fdfbd20dbca31

Download Submit
C:\Users\Admin\AppData\Local\Bloxstrap\Bloxstrap.runtimeconfig.json

Filesize
372B

MD5
d94cf983fba9ab1bb8a6cb3ad4a48f50

SHA1
04855d8b7a76b7ec74633043ef9986d4500ca63c

SHA256
1eca0f0c70070aa83bb609e4b749b26dcb4409784326032726394722224a098a

SHA512
09a9667d4f4622817116c8bc27d3d481d5d160380a2e19b8944bdd1271a83f718415ce5e6d66e82e36819e575ec1b55f19c45213e0013b877b8d61e6feb9d998

Download Submit
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

Filesize
64KB

MD5
b5ad5caaaee00cb8cf445427975ae66c

SHA1
dcde6527290a326e048f9c3a85280d3fa71e1e22

SHA256
b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8

SHA512
92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

Download Submit
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

Filesize
4B

MD5
f49655f856acb8884cc0ace29216f511

SHA1
cb0f1f87ec0455ec349aaa950c600475ac7b7b6b

SHA256
7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba

SHA512
599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

Download Submit
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

Filesize
1008B

MD5
d222b77a61527f2c177b0869e7babc24

SHA1
3f23acb984307a4aeba41ebbb70439c97ad1f268

SHA256
80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747

SHA512
d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
720B

MD5
e7a1eae48af9e0973adf8d6a0bf61ded

SHA1
3597c5f14461b43e4c481fd296b6e947741e3598

SHA256
555900a99c54011896f08e66f40b6dbd8665488839afdf4cb059ca0ebb6f5ddd

SHA512
f1d98a76ba64582412156580c5f19b119488a6bbfea68dfd094378f5033e6873475fe72775bb9966ac4b3e18aaaf23a9d2ad0f429a2d8a71a38fea6f71f13a58

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
913430f663c69bed211a022fe0895fb8

SHA1
e5e56f9a2a19cbf818df42200fbd3cc03b75c9fc

SHA256
b4aadd5f0b77565262b386a0ef8f4967835a2d4f044fbd22f69eab2bd1d0f64d

SHA512
9a0bab02d92ff58c09b30e6194c8561c2675811d16fe708e6f391159a886081793be532134a93304ee4ac3533d9a0f226fa13538c65732070d8b4f108c3fd54f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
524B

MD5
aa86d599b76597dd187375c7576d75de

SHA1
a11f950f1ec53c05f88b1a5758267d5c8dcdba1d

SHA256
c594faec0c23dcf40d8293f3f968bd8f26c83c4aff52b8bcdfd915d2a9c5d4e0

SHA512
452ead11367b18934d42ed3082155aa0126f7437618b95a9e9e139a6461f05f9742941492e00cff07642d2ccb72de1016d12fd3f275ad47a4f7867880bc3b4b6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
ceaa2afc3da3581839f965f5f84e5b5f

SHA1
3e644131bc89669b138ebbfd267a3fb36b38772c

SHA256
27f99770f13734ada5eec2b9a0325ba00e11d221a2f418ee034d67b45b6aa61d

SHA512
e0813ab568bdd008e56711b1c51dee8eac6c3418e684dd8a69d6997a2bf5d046523863ee69c77e2e98e7356e0947c7b58be397373e6579e67b8e1e68003d4d11

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
eb7e8afc78c2850a3c13a8e74de6db26

SHA1
bfabbc2d3a977c34931aa419baeb43e24ad74054

SHA256
544306205bfb75124c94d7ed455c547da5bb8c2ff0eececfd563607ed01990f8

SHA512
2e72e5b4eab6223efec7cfa8e57dc268526c908e3e2b759a6992a3e9f9b520555ac3880380ac8bfe8c2c39cb61d0bc767d7ca5229ef4c29946c999dfff2e933c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
99eff839b955b7c2b15445015d532abc

SHA1
d3d0f896a60c783c50bbf86940b728b5746766a2

SHA256
725a2d14bdc56f529046336fc961ed496c99e1e0d9cb2e01473da7cfbce2682c

SHA512
d86dbcf72f4527c8296ee40e4b73634aad9d5992282f1cb290f4ee14b81307f854a3d29d02ba4f0aeb208203302c82e2ea1fcd918453cba4ff231a584fcee184

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
41ba0174c8dc5a2af4efb7818a0cfccd

SHA1
111e1b722b3d8428ea050d78d63e2f6d1c7be43a

SHA256
c7b912a11f11e9edb0d7810f55ad1ef7430299a41cff88fb9a7418da9dd742a1

SHA512
359df6bc90748b0365f3551747a39b7e75bd45bf38a88b4f05bc4df908bc3925cb4b766feccd6165ff0b2ba9a39a4a9dbc83b3220392685be6fc4d5f01a41774

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
1d0ba3cc007017da14b9b2c3dfa004c0

SHA1
adee417657baebddc7096c5265b40359ad9bbb8f

SHA256
e6cb51c632f1fc11d1fc242e80ac1efb137a4a404e477ba53280d169eeb2226f

SHA512
bef2664dba316d3a6fa82eb2cc5f6bb7ee84b29ed1d07a7e6a9be5b8bd2390b977cad6bc7deea51923f4af034c302344d1dd8c0987f966bd13708722d01d9096

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
669897f5521a969edefa285278277676

SHA1
e4f5b286d1fcfdf8639484b5f97aae1f89e9506b

SHA256
98c902ef318a7fd87df1286993d3273357daecd21a0a9473510e9b2115f7ba27

SHA512
22ce6830c14bb3f9706c45f8d5c64c61626548b4bdcb3ad64c6da4c8917eee1e02983b62020f2390993fc6e3ef5d88555c90f11608e738f498d9c80d3d881248

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
a01dcd933bed5a925d185285c3d69eef

SHA1
3494582bfb32e7b0b2e36915360d57bd85cfe67d

SHA256
22b1350d8c427e6d54ab6079604a244b18195857a28cffd364ad0e063bc10293

SHA512
b46466c0b4117800faf6a80b7f0b65de858baeec7d39f0126a74230ebfcf5426f4f12ad0bad4270aa7ecab085b3594c72d8acad69e6c0085a1ae435bb49de8f1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
616c307db9239c0916fc810336bf3125

SHA1
52824dcceb5d5982df0c4079f0ecbc678b2f02fe

SHA256
398e2906992db3ccff4e572abf2fd239e25c25724d1885cffd154617c36c6828

SHA512
34f1a80448a7ea7596aa88c934c561e5ce64a83ed910aaf7e80e06f9648dfb692967557f441cc07d7cd508e436e5246d66e102faf4c783f60628dacb0ddc3134

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
38889023f37400e004a329523ea4bfe6

SHA1
188599d7aefccfa74d2ed8984b685184e3c2192f

SHA256
641698c3137db1e0f41ff115e7984d24023065885f5ea16ad7f07653123629c9

SHA512
d6dc14a8f1494af11c3f2f3296e8ecc4fae53ab156bae2b8ce7aff9d451aedd78d60404762a08e97a905e092881db8b8f001ee0620f0b6f8342f4c94159cf355

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
8474ff52f5aa4f77d83b08d8100a74e0

SHA1
bd6822f2372ec4ae15966c786c4266ab4da6a96c

SHA256
590db8c6469d38be71cd1559e27a65c8069c1acd2eef767506b8c26374c4ef05

SHA512
d9f1b6cc390f2a5443beaa13c079e337957b8cb2ca5cd35e29826dc4bdcbe51fc04fc63c71e5eb6cf486157bb3c9baa0b2b9c9099d78eddf17a91a48d5588281

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
47e40ec85f5238b8623c387a175afb08

SHA1
c27f87558e645b1f2f42dd238ffaa62bf253fc54

SHA256
9d9b51513bd9c12c0839518ec0c1d31d557d1d95a97f275ed216edf955459977

SHA512
e5a28d1dab573fb8a03eaa4a0fc320a548f3ca21a48f5866d9dfe6888169284f5148e98c98e4f92179a48f2b129ef9200feca66aad8535e11cd3a865c1de550b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
e38ec680d6980b168f46ab029a0101aa

SHA1
e2e2e4df3fddc4897a68ec06042fdb98c5256be3

SHA256
6780a32ae2e7b36ddbab00bd6d95a80928512483234a2489f61b6c4ab7089fb1

SHA512
2b11317dc987d4100bbaea236864804ba813bfd44431ec005665c44255804b80fcb08d4ccebbd5c8bee5a930e356053a3775ead5b4f5f0f726c4ee00822fbe97

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
1ce2a7458e327a1cc19a536f76b4fbf2

SHA1
cab35867478a0046933e192a1ec0e34e62517bd6

SHA256
1d06ca5f08cb68d26972a04245fbcb0eb76c191ca0ab85d1cfa18dc767adeecd

SHA512
eb25ef849ecba9281ad4f6c9801adfcb5980bb6a381d9e393aaae11014e534cc7a8e8c3436ed49ddbcc1aba2012e5a0ae258d77ab434a7365ced42c38ec25a35

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
303926c57ceafd697ba9e9ad9f68fe72

SHA1
3319fd556fcb4bf1ae90b3789b341b14f51cc7f1

SHA256
f169f78f6e9f631ccca3867777de002da144eee8c062e7c5b5813295b12096dd

SHA512
0ef1eae789b767751e1ac34e01fc73571edd446756d04886f0176111aec0ea76bbd8b96f0d5c361cc2e93fd5571f3e53847781246f543c33c72016aaafadf384

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
2716b822a93628bae10032911ffb3e7e

SHA1
7173f325d2c31fe7b975d017435cce086eec10c8

SHA256
5f778c7cc94c5939b96b08c1d5e57909db33326245255b75a80081c238eeca64

SHA512
66a4477b18d86bf81dc799c86c0d8405e2db1cfbbe26284810cdb28e7c4902608db3fffb1290bf4a69756406fae0c245ab78a5eed0db8632a003d8cb791eea07

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
e89328262bb17cf1dc6ad9f485788b11

SHA1
2dd75ef86dac0b07a19d4a912d920bc0370362e8

SHA256
08f5bb2d36cda9d8ed2c4b3f7869f4f4c2b9dff1f4ea15ec55901a256998363d

SHA512
5abed76ebbdfa7dbdd0ae4007a95164c63a56fa3ccf277d72854f7e6bd1835131d050a1896dfaf71ee75b143ee7279a1cdfec035535cdbfe743095874bd151d8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
e3af66450ccca44dbdc97b9db5b844da

SHA1
ea6198302593c5e9b5a5bdc424125703d8e5e835

SHA256
1ac7757f7c22608e2052e35d9dfd0493a96cad520c7ee43525f6aa7b4dd32d05

SHA512
bfc07295a1702da524b993926641d19b4a49a687dadacae6c5313f58fcd932d63998681ed1402a4a02376f1795e857405cbd017e496a7845fec92149f9205f20

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
77978298f30a9bc17ac7429ff7a796d3

SHA1
e68ab99266915b6371eb881f0874e5770e417930

SHA256
d24498e36e3766b65831805731de93c85e5133a80bda38d570a9ddb3276cba77

SHA512
013f83ddb34e2087a4d09dda48d040d56756d22b986315c15aea3d80c5c830a0b342177d3c348afa0624a82322f445df0822a621c675fd399ffe985165e34a6e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
329aee6cfa6628d08514042aa8abeafa

SHA1
975a7357e769aafe110753fb9bd68dea1cc4679f

SHA256
be604a6be455e3ce766fdbe62df71260f9a2a5da4e792b468d297a4b1f46fd5e

SHA512
906600ccc9b0949416d2885d2dff68f2dc6f329cadbda3edaed6bcf4b2cde8b8c2229efa12cfa4e045446dd9d415d0111b7ee88aa13336bc505a402c6c59cd11

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
96871dfeac24ac080ff916852fbdf61a

SHA1
46c6599629e42bb1d04de086668c2f5bd84f03f7

SHA256
63d2ddeab5cd53a326501b4fc1c387584a576269cf51d2896a9a15202af05903

SHA512
32aad5f048564bffb155eea9916f2edbf6b444f5078eacadb7ea9718615f556241eacb324b1a3b8c0a5a9212b0c0b310a32fcd91507702314dc83027e933cc83

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
1f9737feef508adca872ef5a6db39caf

SHA1
0bb4a06456b316ef52e676f4bcb4a240aabf7d72

SHA256
adf8f437c983d4fc36009344bd84889076f1fe389870336243a94f4a40c3ba7f

SHA512
f12a9a7b9c733694a531339a86eddd62810e79efdb362ad264c9e4708f4eb282e0eda1a5724bb5bfa7a6e86852cd85593f09c1c777954ade09d1d88a20f8f4c8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
b2205a92d61c836b34571aab92322d39

SHA1
bf350edfa17ae9b04c6ea54db77ae1986cf0071e

SHA256
290811985808fc4f9c2d42a06f6e1ac763fa1d822ef0a582f9d3f0755405e3c9

SHA512
d60c5c2a85affd103bcdc68a0e5654c7d59c0c5c652ca51611d5a17e59de5e4cf41bbb530577ad2ae5ee4113b3efad0b1b05a5c82c99a92c35f96dd9431e0957

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
d236dc9eed33082d99fac5ca165520b2

SHA1
0cef5a57c55baf059cd1d7fbbf8f88598cc2ca0b

SHA256
c849ded0e221731f307e3fad697ff799a8e39a5557e50975133c12e228679f9a

SHA512
590aceba912a14a69be4b30edd6c219405fd304be5e25dc1df5fa218f0da6d00821701b4401a9debdd67468890871c5685368178eff447d096295201ec9a80e1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
96248c0018930a7e125aade096dca69c

SHA1
648dd71df2557a9d5f9694d2fedbc631dde990b1

SHA256
1ff94866fe1608ba8c0dd23a7f08f14c1afdd2439b30387c1686cc8ea31db4a5

SHA512
d73670a83ddcd20aa7f959679e3d0fc3404a7420f3f04061e74637bb385c4f7b1c61d74a8a2809a99b0b32faa997915a626c56aec8f8b90be2fd9b1cd6517135

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
e417d8b9d986f139fa254c3a0fb25e0d

SHA1
0d5651460185d9a0d83bb4442900138d36a58985

SHA256
f9755b018b13cb9226bb040d103c7b93ad141facbc95c85509cd3ef656a477c3

SHA512
4f8a792f4e3539a7f95190ec4856bce34d83840be43d4dceb4d4ffbe7b023d58d0304259539e8b78196017678c38eae3523a3ae0f982aa2c376a6ba851ec21c8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
599a3ebf03037b86d62788a24c2bc394

SHA1
949dfdcfc9649671b98e1f9a835cbd0219c758b1

SHA256
85085cdb0f24ab8791913244d6bd2133a650fed5a8cc925799419a4983901ffa

SHA512
4b2586a3541e42fc886f1c2f74deb66526ef33538284cc1ade102ae689d60e3e8e36789bb528f6f3fe79f7b1c0aa0c2e1b131127ea0ff8dec3be9fe5e4947d7b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
fe07e6d1c2d745a8987a43a4a2a403c5

SHA1
b94cfb276aa127432657b9ac2b7e95f2192df202

SHA256
d6247726eed17df71e3138a30f7bb0d441d33f0816a5914004e8994f79e37a1a

SHA512
9d6140322f008be45fb124fb723455cd28c519472852bf586f4a4a88dbc49685c7975243cf59de5d00f052f50309a623100a29d49ea9983ab79136551772b419

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
91a583b1712fd54c64c3a4acd052fead

SHA1
41d716b0be881d3a6474dcef1183efb18df15abe

SHA256
2b4d591b16ff48926706622f076bd18bc6897d393c469267194f1f51427c090b

SHA512
36d5f33db785ab17688656d1aded99604a04334631c06f7e38afc2c183584d32913f05872a27df7586208f1ccc1be72518b27d0c56bf4676ad25bae1fa118586

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
a118f9fd296446dace79ec1f72a3fda0

SHA1
836ee5e1772c0ca0d974debe6b5c22377c407ca3

SHA256
3c2c4c298980f807081059dffff16dcdaf1faea4756bda216354e4dbe19bb767

SHA512
bc8c5fc27b14994007213dc5a7cab4b017d43012869959b977ad7619a520907fb2281104dbc8d6fa18433d3127ff3259e4bcbf0166b73f22cc942c4666c225e6

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
8KB

MD5
3d631cdeed9c03fa576bc0cbb681cc38

SHA1
7e49bff20caaf1ccd564a43178f2d6b14daf26da

SHA256
9d9bc6e695837b7f9186608fb23d9981198c8e3843c63c9f527147a872eb0a83

SHA512
e2215c5fb72e54b9e7e30c8762fdbf8a310b4a4353dcbe7041c91a33d501d5ea82381146207b9ccb50264b4a2dd0b294d452e90597e204e0ac02763257ed3f2f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
92KB

MD5
1f941837f9392b7024bcd2c8ebbcc018

SHA1
8118f15a7625e558978f5dd7e85ab537646c4e57

SHA256
db9f2c1dd56cbd9153e515a11040319a8109435cdebb3c469331d1849c3785f0

SHA512
c3173040043c62b9b5bd8f860a5c0a54301fb6e38e03b7fefe5af304d5634ba0c3f77aea4835678d8967cfddbf056174a7229bd090a4b03fa3fdc7f8319a8485

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
92KB

MD5
f017b83e7066f2e2af2538bd5a4ade41

SHA1
75b991156a0f06f6e93311b8083bcba318f815c9

SHA256
e28c93ee90e9e7e532c177e002b6febe3f8a3278e1c91e5c3b81564447e8fd22

SHA512
39a19960988b7bb2b1d5fcb3acb61268b6709d9e384bc741db4b393dbf409bf8a1ddfe3ec5e9754713d1bdd4a241b36d462a5e0f195da995f87db38f1c73d615

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
92KB

MD5
f28f62da4101594ee77ff6cf9b2cda8d

SHA1
556674248f34a2d444615915bbdc6d69a9b61877

SHA256
5cd1730a6c9242ab943e7a5fa78e181a930beaac6328b5448ec0b9441fdcadbd

SHA512
c8ceda02bfce1a038e5717bec12332514ce169966577f9e89ff9ee6f2430bd7b78761d46996501b9f70d83e8313be0d2b6a82c59897d67d846fffc62dca0379d

Download Submit
C:\Users\Admin\AppData\Local\Luau Language Server\server\index.js

Filesize
6.1MB

MD5
6b1cad741d0b6374435f7e1faa93b5e7

SHA1
7b1957e63c10f4422421245e4dc64074455fd62a

SHA256
6f17add2a8c8c2d9f592adb65d88e08558e25c15cedd82e3f013c8146b5d840f

SHA512
a662fc83536eff797b8d59e2fb4a2fb7cd903be8fc4137de8470b341312534326383bb3af58991628f15f93e3bdd57621622d9d9b634fb5e6e03d4aa06977253

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
575466f58c7d9d3224035d23f102d140

SHA1
2fce4082fa83534b3ddc91e42fb242baee4afa1c

SHA256
9da0e657652daa1ef86af7c3db62b0af9cce372a5f765c98c68479922ccf1923

SHA512
06503e718fe967076dd8a061b57debdc663b9616b005f8567099a84fc7184880633079335d622c243918efc3356b40e683708fb0583084abeed7db6168a212ab

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
f1d33f465a73554cd1c183cbcd0a28a2

SHA1
f5c16fc4edff600cb307f762d950500aa29a1e8b

SHA256
22d8c228cdcfd3e05431d7377748014035a3488ad3a0d4aecc334e724245a1f9

SHA512
7cc94f77f3943143ee86eabbfddcb110ce52c6ff0975842e3a3d06072f51f2c48914ee61f24484a539888ad19a7e6a1becfb029485cd5984bc736434a63cee95

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\90a4fc55-3b37-47a8-9e17-39daea4c7639.tmp

Filesize
5KB

MD5
d4b0203499b49a74ccc46d667d99c01f

SHA1
d428b5e39affd582c7d33e3ae731eed940226a54

SHA256
8d1255f6545ac2f12570283576c3db1d5073be99bdf09d9eea3e06bde706a5f7

SHA512
74134eb64c497340b14c1e1aedf503624d7dbdfbb063d0e59841d1b1f41be030be330bc290a6461a4d35cdc51d4f3fc8050a9ff210f0ede62d2b157985855673

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
288B

MD5
d66ba33a300363368bded143e8921dcf

SHA1
a4de200b754efb899be18cfd631a0b55f6e2670b

SHA256
6692fdc70cbb1a058b5067417fa55573e10f17a1cc7e314f769007bfec5783b4

SHA512
e36982c227b2191dec4d7c4383fb97bca3817cdf9397d9648dae3983a0ab82cceb0562fc06df8f3aa749e64d9b0fabae36fe2e6562d4d340ac372605f31318d3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
387B

MD5
be85dd7e4209817ad69c4ab75b73a828

SHA1
e12c9185e662b6edc9c549c84235dfcb6ee4abbd

SHA256
60bd468523184c0ae15f90026a25d41b4fa44ac579d07d99f015a64589d40889

SHA512
7ce3d0f9c14490e15333e0f0c7a8a889a67ab44a8743e8c3dffcd26ed9c62ec5790aab06c9c00b503b6b5dc1176bf57d296b953633333943b903f692ed39d543

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
64d830fcd412f0a727c167203c47efb3

SHA1
3d051b5a07209154a2e6bd55b40161ae3d49ee65

SHA256
60f458affe4c21c4f53d252b27585f6dcfabdd9be7b98330ff4a603e5c3c3a04

SHA512
ab191503a065602e41de6d2d4b2614369d4512b8cc6750d766809a287ced5249542153c5cb0784e981be4c776f59398f05de3fa3398039843ecf248cb52fe383

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
4d5a6a35f5f9f5fbc1dc8d9c0eabe200

SHA1
278668049ac9dd77f61a10790f91985cb4ef4c1d

SHA256
54677d5b728fcfba7f85fd97f9f369140ebe6000b75a2b5f3f569c001597132f

SHA512
5a0ef851bd74b30b4c38b547f01a8ee1850c8e17e7ca6ef7bb3bc7768b73f8017553458ac994714007bb9b52b541018443080dcffe1b7446cd442da75414cb20

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
cbf9a81d221d6e74323e3a8159cfec20

SHA1
dd2dbf1c32f5323bb5fb1ad145ac84a523375dbb

SHA256
5a318046fc6dadd952d0dc92c4aabd78bed3aa622d310a8007f3d437a0b6f580

SHA512
0e518b2a4b8214971075c43c2ed728229bf86f7631427af336f4e917dd75dbb7fca8ab2c6dbba167e83d620e6a5f80c332eb2884980244e015f4a18b4c6bdeaa

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
370B

MD5
287aa486249acb18b1d3ecf6f3875f38

SHA1
0ec66f417cfa339b8d62fa887acca2d3b1071d70

SHA256
53c545173cab71bf7caaaf34b4f6b28e75c90a0459595665fc996c6efbb52bc7

SHA512
c311e8c4300014b4dc3d686c738ac124e2b0b592ec71e722b5c76e441258e234af37b7a3a7708c3e8140ae57ec8eaf1bee3374947f48314204bd4da59f1494f0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5d09e6.TMP

Filesize
370B

MD5
7dca718d9fab264214b249a24b1daf55

SHA1
90000c742f86415fd2f519f645fd17fae4a7f5e5

SHA256
facc277ce5bc760bdf9dff3dfc167be35cf627a27e018cc3d4404ce11afb0aef

SHA512
c53bf799a7c3707560f928d5c33faba5800df3c5bb2be20857be020f3b1ee45f6efe5e0762589397ca238891401be939514a56190c133fb4a932143fb9358972

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
206702161f94c5cd39fadd03f4014d98

SHA1
bd8bfc144fb5326d21bd1531523d9fb50e1b600a

SHA256
1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

SHA512
0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
35db38f7e6a20f576377670ccf6d052e

SHA1
d50cddd9fc8a4d65d662af6ce2b98de6c4fb4efb

SHA256
4cc097f91a2cfd8fd14ff243f1e83de7c50a52a0544e45bc5fccc68e2d3ebc88

SHA512
d212fd5740691b7e1ae4fe87a2e558659e3d6bce49abe8271c972b0bcabae219e3752396c36f9ee29d7008618d2f73a825acbba37fff734263fbd469c80353e3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
a73390ae1a6d47737be5cb4e70256d8f

SHA1
9fdb3bd52b6fefa4052c3c058d69cd10a0cca1ca

SHA256
ffc4e32a66be9dca6df4850ac496aaf657998b6988479baca908578fde13bba9

SHA512
7fd668e9ac175fd91602aacddc5e7851a2225f27ef7cc8466ca994d7f9357599b423ed40f5d48684570ffd8af6538b2051accddd00cf9928af7dd0e5f7d4141b

Download Submit
C:\Users\Admin\AppData\Local\Wave\CefSharp.BrowserSubprocess.Core.dll

Filesize
915KB

MD5
100c32f77e68a2ce962e1a28997567ea

SHA1
a80a1f4019b8d44df6b5833fb0c51b929fa79843

SHA256
c0b9e29b240d8328f2f9a29ca0298ca4d967a926f3174a3442c3730c00d5a926

SHA512
f95530ef439fa5c4e3bc02db249b6a76e9d56849816ead83c9cd9bcd49d3443ccb88651d829165c98a67af40b3ef02b922971114f29c5c735e662ca35c0fb6ed

Download Submit
C:\Users\Admin\AppData\Local\Wave\CefSharp.BrowserSubprocess.exe

Filesize
7KB

MD5
516ff62b2e1f4642caa954c0968719e8

SHA1
e349d0ce82e2109dd0d18416d9cf46e8411b7f15

SHA256
19da58849cec5933860116e60a1e94b08e30d90e0f955768270b47998d612045

SHA512
7aa4a0c87b29c2a84f585a884d8208fc2352a43f2cdb549c100e3b121837ad5f8dadb1101f57d1d3fcb7ebec9d9f22e07dc14239b7d2e2d25793c999becf288b

Download Submit
C:\Users\Admin\AppData\Local\Wave\CefSharp.Core.Runtime.dll

Filesize
1.3MB

MD5
09cba584aa0aae9fc600745567393ef6

SHA1
bbd1f93cb0db9cf9e01071b3bed1b4afd6e31279

SHA256
0babd84d4e7dc2713e7265d5ac25a3c28d412e705870cded6f5c7c550a5bf8d5

SHA512
5f914fa33a63a6d4b46f39c7279687f313728fd5f8437ec592369a2da3256ccff6f325f78ace0e6d3a2c37da1f681058556f7603da13c45b03f2808f779d2aa1

Download Submit
C:\Users\Admin\AppData\Local\Wave\CefSharp.Core.dll

Filesize
898KB

MD5
1bb24b22d9bd996c038d26b600ed18a8

SHA1
c2629a8a26c9c0969501923f84874838087cca2b

SHA256
944b987a0b677d354e24ee15bba65f73b0f051338f576234a975a49493399873

SHA512
38578e0d1a39ccc9851ff80d3a0f5342a34303229e2898c3ca32dad11017d4277720f54b472c2f1a0b73f47d5ba6352aa7be8ae2ed72b3b25a01dd8292591421

Download Submit
C:\Users\Admin\AppData\Local\Wave\CefSharp.Wpf.dll

Filesize
114KB

MD5
ceaf0bad83fac8ce71853cd820e4ed9d

SHA1
4eed686fbba7d4603b596fb8e494b8f452a05886

SHA256
eaced1f76adb8ee756033baee29a47b1f4d4b657ebd105a7e25c8dc4fbc48cba

SHA512
4ed3f83e797eade8f0d1c6b80ce49d18f00daaf5d69421a4920e3cea2e7d78c3622193ca65b6ab1dab14c57e7f893a7b1edb27b83f343ea4df731d80aa21ff82

Download Submit
C:\Users\Admin\AppData\Local\Wave\CefSharp.dll

Filesize
272KB

MD5
9ca06a8f9e5f7239ca225ab810274023

SHA1
e1a219f567a7b7d3af9386df51b14c76e769c044

SHA256
5fd00ae3e83e6ca156647ff6df87b49ffc7cad47c23fe3ae07c067c5adf6f74a

SHA512
430c9bceed5439b987d5bd4840cfe32411ca61594f18597aca1948aa39a22c9d70beadf3bb9b1dd0373f81a94a25dcba17fa8e8c73abf06cba28d0971d5614c5

Download Submit
C:\Users\Admin\AppData\Local\Wave\D3DCOMPILER_47.dll

Filesize
3.9MB

MD5
3b4647bcb9feb591c2c05d1a606ed988

SHA1
b42c59f96fb069fd49009dfd94550a7764e6c97c

SHA256
35773c397036b368c1e75d4e0d62c36d98139ebe74e42c1ff7be71c6b5a19fd7

SHA512
00cd443b36f53985212ac43b44f56c18bf70e25119bbf9c59d05e2358ff45254b957f1ec63fc70fb57b1726fd8f76ccfad8103c67454b817a4f183f9122e3f50

Download Submit
C:\Users\Admin\AppData\Local\Wave\WaveBootstrapper.exe

Filesize
949KB

MD5
8fb51b92d496c6765f7ba44e6d4a8990

SHA1
d3e5a8465622cd5adae05babeb7e34b2b5c777d7

SHA256
ab49d6166a285b747e5f279620ab9cea12f33f7656d732aa75900fcb981a5394

SHA512
20de93a52fff7b092cb9d77bd26944abed5f5cb67146e6d2d70be6a431283b6de52eb37a0e13dc8bc57dcf8be2d5a95b9c11b3b030a3e2f03dd6e4efc23527a6

Download Submit
C:\Users\Admin\AppData\Local\Wave\WaveWindows.exe

Filesize
8.0MB

MD5
b8631bbd78d3935042e47b672c19ccc3

SHA1
cd0ea137f1544a31d2a62aaed157486dce3ecebe

SHA256
9cfda541d595dc20a55df5422001dfb58debd401df3abff21b1eee8ede28451c

SHA512
0c51d6247e39f7851538a5916b24972e845abfe429f0abdc7b532f654b4afe73dc6e1936f1b062da63bfc90273d3cbc297bf6c802e615f3711d0f180c070aa26

Download Submit
C:\Users\Admin\AppData\Local\Wave\bin\Background.mp4

Filesize
4.6MB

MD5
9782180eb68f73030fe24ef6a1735932

SHA1
589827fe098ba048c9f871a28db8eae3e3537ff4

SHA256
3a1cbb800f8f25c2ab703ba8bfdb01e938e4143c3bc0fea8ca734fb5ba779ba7

SHA512
dc768638bae2d6d47d8910252ae64a656d8a6fd88efdf24165ddce51b7afdb4acb3fddd41dfe788737a2cab4fab66174db2f0d2f48bc8669af76d1656bca8be1

Download Submit
C:\Users\Admin\AppData\Local\Wave\bin\lz4.dll

Filesize
117KB

MD5
f7e2f224f8dbe22012c7ff20590b8770

SHA1
99775e038e306a2b5f73f6e7d8d42a5799ace824

SHA256
c62f829bc0f820bca6bf14b380b285a169cd1395df864bbec692f8ca31bc4e70

SHA512
96d2938cd77b48e4efdc7212a92327ac5ce43ad757fcff88eb5cbd3eb2fac1bbcaa2e119881f3cb902c634db8ef16e69146ebfe972ab0ecb2cf3b769e0818f89

Download Submit
C:\Users\Admin\AppData\Local\Wave\bin\wolfssl.dll

Filesize
1.2MB

MD5
a396ee8375252d04da31676fe1b3ff75

SHA1
57aee1e5b69a85d0e0b7d5a103ddb683f0204cce

SHA256
7dc3aeda7518abb376a6932583669e7e1595a656edeae65af1397807322e8a25

SHA512
ff755bed789869a8cc2adc05b7a3b234ef93997b1774cc719d506ce4dd03fcd0ed6d320a13d815e27a21ebdf99f3308ea47a8de6b9a25ca4eaa8fb4045fbb0db

Download Submit
C:\Users\Admin\AppData\Local\Wave\bin\xxhash.dll

Filesize
45KB

MD5
161bd3d60228dd16c54a927250af3e49

SHA1
463243c3cc2e0bca16f3ced2c3b70c13a0e97fa6

SHA256
ecb5aa2bf0ff355a7b36bb3a991264655e13e0f2c9e88b9dfa39d7fe4c5142a7

SHA512
3716ce34c1e9931007f374685a6588bc355e942872e7a42eaa4c5be9a0fdc93f081a1dc5c3d8fec4a4563dbd556f4d046f7bf3d50840c02d8aa822eaca7a577b

Download Submit
C:\Users\Admin\AppData\Local\Wave\bin\zlib1.dll

Filesize
87KB

MD5
f6fc96cfccdd9958a157546faa4c13a9

SHA1
ae8e4171a0583a761ae4428e5757daeedaf2a157

SHA256
231e29c228652e9d6504e608a1cc53311e762cd4c78deb7c9ef11bc27f13d3da

SHA512
fb983083b5c620616d2547a7903f8ebfd2ad52ed9bdde8264b6e555fb47644c488779d3ade52f5e601dbc31e67f40ea973f41f45af242790dc5d8a91c163c8dc

Download Submit
C:\Users\Admin\AppData\Local\Wave\bin\zstd.dll

Filesize
634KB

MD5
59c9f23830bfb7b4fdc81bbd1e719810

SHA1
e58049c836931a22768ce2e4502b3a856e2ecd18

SHA256
9c37186c40d01e0ed9a42846c66aba449be5fe6c2da18ef6794422b5fa2ff8eb

SHA512
b52f1d0e764159453ddebd70665c3a43c61e963651cf671db8994c74f2dd35dcfc79b2c4d19c5e8d6c8564c824285426c1ec651b02f1956d331447e9405212ff

Download Submit
C:\Users\Admin\AppData\Local\Wave\chrome_100_percent.pak

Filesize
667KB

MD5
ae195e80859781a20414cf5faa52db06

SHA1
b18ecb5ec141415e3a210880e2b3d37470636485

SHA256
9957802c0792e621f76bbdb1c630fbad519922743b5d193294804164babda552

SHA512
c6fef84615fe20d1760ca496c98629feb4e533556724e9631d4282622748e7601225cf19dfb8351f4b540ae3f83785c1bcea6fe8c246cf70388e527654097c1c

Download Submit
C:\Users\Admin\AppData\Local\Wave\chrome_200_percent.pak

Filesize
1.0MB

MD5
1abf6bad0c39d59e541f04162e744224

SHA1
db93c38253338a0b85e431bd4194d9e7bddb22c6

SHA256
01cb663a75f18bb2d0d800640a114f153a34bd8a5f2aa0ed7daa9b32967dc29e

SHA512
945d519221d626421094316f13b818766826b3bedddab0165c041540dddadc93136e32784c0562d26a420cb29479d04d2aa317b8d605cd242e5152bf05af197e

Download Submit
C:\Users\Admin\AppData\Local\Wave\chrome_elf.dll

Filesize
1020KB

MD5
7191d97ce7886a1a93a013e90868db96

SHA1
52dd736cb589dd1def87130893d6b9449a6a36e3

SHA256
32f925f833aa59e3f05322549fc3c326ac6fc604358f4efbf94c59d5c08b8dc6

SHA512
38ebb62c34d466935eabb157197c7c364d4345f22aa3b2641b636196ca1aeaa2152ac75d613ff90817cb94825189612ddd12fb96df29469511a46a7d9620e724

Download Submit
C:\Users\Admin\AppData\Local\Wave\icudtl.dat

Filesize
10.2MB

MD5
74bded81ce10a426df54da39cfa132ff

SHA1
eb26bcc7d24be42bd8cfbded53bd62d605989bbf

SHA256
7bf96c193befbf23514401f8f6568076450ade52dd1595b85e4dfcf3de5f6fb9

SHA512
bd7b7b52d31803b2d4b1fd8cb76481931ed8abb98d779b893d3965231177bdd33386461e1a820b384712013904da094e3cd15ee24a679ddc766132677a8be54a

Download Submit
C:\Users\Admin\AppData\Local\Wave\libEGL.dll

Filesize
359KB

MD5
7dd6b0e4a31d35a0fae5ff425707073c

SHA1
fbd12e9f8e2252c52ce555c2ebbd7f07e62a0140

SHA256
8762d8001fc3ddd90e3129dfea172817e8d09b9936eaae391957de4326c8c906

SHA512
726968df6b83ab5f589276672250d92f532fe2dcea2176e42031a7f1dcecf578b0320cfe2a7d88bb9883ad99387d71c6ebf1e9968272bb5e62850ef09abd2648

Download Submit
C:\Users\Admin\AppData\Local\Wave\libGLESv2.dll

Filesize
6.6MB

MD5
8803db5b167fb5a5f8a8c595c4e4d7c6

SHA1
7fde861151f3bea66c65b6c2487a30728048811a

SHA256
52a58d25a41f4bd31cdb4a0d306217862e04ebf7c1925cc85330054a5523d719

SHA512
2fa9a0eda221982896e41eb387b5e156198615ac1a1fbac0acffd13008919368b41a240df416c1fce2e48c20a14cd7af7cca9fba476ada5e64a0cadde84a44b7

Download Submit
C:\Users\Admin\AppData\Local\Wave\locales\en-US.pak

Filesize
456KB

MD5
4430b1833d56bc8eb1f7dc82bb7f4bc9

SHA1
dc15e6306625f155683326e859d83f846153c547

SHA256
b44ddcfac9df4934007e6c55a3c7f5e7f14c7e5e29f35c81de917fc3b22aabbc

SHA512
faf93bf371b2a88c1b874a5e2c54e4487fd152ad19c2a406a46f55ae75ecd421a779888c2e4c170857b16bfb5d8744bc1815a4732ed50b064b3cbd0c5ffad889

Download Submit
C:\Users\Admin\AppData\Local\Wave\resources.pak

Filesize
8.0MB

MD5
4933d92c99afa246fc59eef010d5c858

SHA1
98d443654e93c73dd317f9f847f71fba3d5b3135

SHA256
62f4674daa15245ee081920b8ee191e72f36ca8fe24f6b986a832f45676915b2

SHA512
a3a69523c8e7310716daeebc06c2ba4fce673eccd1958e824ff179b82f4502d0ec095190179bbb387342e4150f952ea7533182fb6ba90377d17dafba8f4da623

Download Submit
C:\Users\Admin\AppData\Local\Wave\v8_context_snapshot.bin

Filesize
643KB

MD5
28477a60b4fbd51dfef5237245817690

SHA1
b0afd5ea9f9d550124f23c65bc7851ddeffc662f

SHA256
169ea86f544e5cdf2a460675f876a9abb7f56bbe122782e94bb03d624931fc12

SHA512
3520658583bb498d5032a7f7ae77195fd2e5f8ed03c6531e56dee8320d8701102a723766e59f7766ab223f837e65a6d85cf862bb2bef6d2755ce45e672a47b22

Download Submit
C:\Users\Admin\AppData\Local\Wave\vk_swiftshader.dll

Filesize
4.4MB

MD5
0ec149455727ace9acc09b3ba2c3a2b2

SHA1
6eeb990876cef6a34115b67f3190255db589f723

SHA256
e2d8ef53897e864b5b66bc73606681c99461798a9f4c1e13ca5cef7bc774d7fd

SHA512
c8eaa598c9439b1f2375fdac1f58896853510bddbd640707b9142c0d3793836120b28d7c2bd0407f0d5656dd19f14b312f37b7ac0165c9cc8b4c1a0f2af62531

Download Submit
C:\Users\Admin\Desktop\Wave.lnk

Filesize
1KB

MD5
4ff21d599056a7fc174ecd3f8cfa6c69

SHA1
561db13e3229a00e76de63a863104131007f34c7

SHA256
4b8e6ffaa707a106dc7f451e9168cf1b8fd948e2f2dc498e5a3ce7645fe12e7b

SHA512
dad778ae839f2cd0dbf1d8acb75c0bb894428e85e0e40d3b0c908c8a69253f24a8b1f52dcb992a148e946eccad6a6a595d1d58c1b7fbdffcd169a58f27c64224

Download Submit
C:\Users\Admin\Downloads\789b558c-709a-4ccf-a11b-f51b15bb9e38.tmp

Filesize
2.3MB

MD5
8ad8b6593c91d7960dad476d6d4af34f

SHA1
0a95f110c8264cde7768a3fd76db5687fda830ea

SHA256
43e6ae7e38488e95741b1cad60843e7ce49419889285433eb4e697c175a153ab

SHA512
09b522da0958f8b173e97b31b6c7141cb67de5d30db9ff71bc6e61ca9a97c09bff6b17d6eaa03c840500996aad25b3419391af64de1c59e98ff6a8eac636b686

Download Submit
C:\Users\Admin\Downloads\WaveInstaller.exe:Zone.Identifier

Filesize
26B

MD5
fbccf14d504b7b2dbcb5a5bda75bd93b

SHA1
d59fc84cdd5217c6cf74785703655f78da6b582b

SHA256
eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913

SHA512
aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98

Download Submit
memory/1468-200-0x00000000744E0000-0x0000000074C91000-memory.dmp

Filesize
7.7MB

Download
memory/1468-212-0x00000000744EE000-0x00000000744EF000-memory.dmp

Filesize
4KB

Download
memory/1468-195-0x00000000057A0000-0x0000000005822000-memory.dmp

Filesize
520KB

Download
memory/1468-196-0x00000000055D0000-0x00000000055D8000-memory.dmp

Filesize
32KB

Download
memory/1468-197-0x00000000055E0000-0x00000000055E8000-memory.dmp

Filesize
32KB

Download
memory/1468-199-0x000000000A260000-0x000000000A26E000-memory.dmp

Filesize
56KB

Download
memory/1468-198-0x000000000A290000-0x000000000A2C8000-memory.dmp

Filesize
224KB

Download
memory/1468-258-0x00000000013B0000-0x0000000001422000-memory.dmp

Filesize
456KB

Download
memory/1468-193-0x00000000744E0000-0x0000000074C91000-memory.dmp

Filesize
7.7MB

Download
memory/1468-192-0x0000000000910000-0x0000000000B5A000-memory.dmp

Filesize
2.3MB

Download
memory/1468-201-0x00000000744E0000-0x0000000074C91000-memory.dmp

Filesize
7.7MB

Download
memory/1468-194-0x00000000056F0000-0x00000000057A2000-memory.dmp

Filesize
712KB

Download
memory/1468-213-0x00000000744E0000-0x0000000074C91000-memory.dmp

Filesize
7.7MB

Download
memory/1468-214-0x00000000744E0000-0x0000000074C91000-memory.dmp

Filesize
7.7MB

Download
memory/1468-215-0x00000000744E0000-0x0000000074C91000-memory.dmp

Filesize
7.7MB

Download
memory/1468-254-0x000000000B0E0000-0x000000000B176000-memory.dmp

Filesize
600KB

Download
memory/1468-255-0x00000000012C0000-0x00000000012E6000-memory.dmp

Filesize
152KB

Download
memory/1468-191-0x00000000744EE000-0x00000000744EF000-memory.dmp

Filesize
4KB

Download
memory/1468-510-0x00000000744E0000-0x0000000074C91000-memory.dmp

Filesize
7.7MB

Download
memory/1468-256-0x0000000001300000-0x0000000001308000-memory.dmp

Filesize
32KB

Download
memory/1468-259-0x0000000001360000-0x000000000136A000-memory.dmp

Filesize
40KB

Download
memory/1468-260-0x0000000001380000-0x000000000138A000-memory.dmp

Filesize
40KB

Download
memory/1544-536-0x00000000099D0000-0x0000000009A82000-memory.dmp

Filesize
712KB

Download
memory/1544-543-0x000000000B590000-0x000000000B8E7000-memory.dmp

Filesize
3.3MB

Download
memory/1544-542-0x000000000AE10000-0x000000000AE32000-memory.dmp

Filesize
136KB

Download
memory/1544-531-0x0000000005CB0000-0x0000000005D50000-memory.dmp

Filesize
640KB

Download
memory/1544-530-0x0000000005BF0000-0x0000000005CA2000-memory.dmp

Filesize
712KB

Download
memory/1544-520-0x00000000009C0000-0x00000000011C2000-memory.dmp

Filesize
8.0MB

Download
memory/1656-508-0x0000000000D90000-0x0000000000E82000-memory.dmp

Filesize
968KB

Download
memory/1656-513-0x0000000009BB0000-0x0000000009BBA000-memory.dmp

Filesize
40KB

Download
memory/1656-512-0x0000000009B70000-0x0000000009B86000-memory.dmp

Filesize
88KB

Download
memory/1656-514-0x0000000009C50000-0x0000000009C6E000-memory.dmp

Filesize
120KB

Download
memory/1656-511-0x0000000008E50000-0x0000000008F54000-memory.dmp

Filesize
1.0MB

Download
memory/2860-586-0x0000021D940F0000-0x0000021D940F1000-memory.dmp

Filesize
4KB

Download
memory/2860-591-0x0000021D940F0000-0x0000021D940F1000-memory.dmp

Filesize
4KB

Download
memory/2860-584-0x0000021D940F0000-0x0000021D940F1000-memory.dmp

Filesize
4KB

Download
memory/2860-585-0x0000021D940F0000-0x0000021D940F1000-memory.dmp

Filesize
4KB

Download
memory/2860-590-0x0000021D940F0000-0x0000021D940F1000-memory.dmp

Filesize
4KB

Download
memory/2860-592-0x0000021D940F0000-0x0000021D940F1000-memory.dmp

Filesize
4KB

Download
memory/2860-596-0x0000021D940F0000-0x0000021D940F1000-memory.dmp

Filesize
4KB

Download
memory/2860-595-0x0000021D940F0000-0x0000021D940F1000-memory.dmp

Filesize
4KB

Download
memory/2860-594-0x0000021D940F0000-0x0000021D940F1000-memory.dmp

Filesize
4KB

Download
memory/2860-593-0x0000021D940F0000-0x0000021D940F1000-memory.dmp

Filesize
4KB

Download