Analysis Overview
SHA256
62bc4ce2e46c9cd08938507b46fee0bb580d69158e0a0a385d8a1be42d750c35
Threat Level: Likely benign
The file Nouveau document texte (2).txt was found to be: Likely benign.
Malicious Activity Summary
Detected potential entity reuse from brand microsoft.
Drops file in Windows directory
Enumerates physical storage devices
Browser Information Discovery
Suspicious use of FindShellTrayWindow
Suspicious behavior: EnumeratesProcesses
Modifies registry class
Modifies data under HKEY_USERS
Suspicious use of WriteProcessMemory
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of SendNotifyMessage
Enumerates system info in registry
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-08-12 17:52
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-08-12 17:52
Reported
2024-08-12 17:55
Platform
win11-20240802-fr
Max time kernel
129s
Max time network
128s
Command Line
Signatures
Detected potential entity reuse from brand microsoft.
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\SystemTemp | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Browser Information Discovery
Enumerates physical storage devices
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133679588007626966" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-2842058299-443432012-2465494467-1000_Classes\Local Settings | C:\Windows\system32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-2842058299-443432012-2465494467-1000\{421CDBCF-A7DD-4FB8-BDE3-296CA89E1E64} | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Processes
C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\Nouveau document texte (2).txt"
C:\Windows\system32\NOTEPAD.EXE
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\Temp\Nouveau document texte (2).txt
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9af90cc40,0x7ff9af90cc4c,0x7ff9af90cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1808,i,3429561470615883696,12811600154863388045,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=1804 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1964,i,3429561470615883696,12811600154863388045,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=2104 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2168,i,3429561470615883696,12811600154863388045,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=2184 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=2964,i,3429561470615883696,12811600154863388045,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=3100 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3108,i,3429561470615883696,12811600154863388045,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=3240 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4364,i,3429561470615883696,12811600154863388045,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=3500 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4536,i,3429561470615883696,12811600154863388045,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=4760 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4788,i,3429561470615883696,12811600154863388045,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=4756 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4708,i,3429561470615883696,12811600154863388045,262144 --variations-seed-version=20240802-050153.822000 --mojo-platform-channel-handle=4996 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff9aeff3cb8,0x7ff9aeff3cc8,0x7ff9aeff3cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1816 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2300 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2548 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3208 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3228 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4796 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4952 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4520 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3808 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5352 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5472 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3412 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=3484 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3208 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5320 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5780 /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x00000000000004E0 0x00000000000004C8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5488 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3792 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5168 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6188 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6256 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6060 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6124 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4660 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6124 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5956 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1712,13396294097196689788,5613516721739675579,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=3460 /prefetch:8
Network
| Country | Destination | Domain | Proto |
| NL | 142.250.179.196:443 | www.google.com | udp |
| NL | 142.250.179.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 10.214.58.216.in-addr.arpa | udp |
| NL | 172.217.23.206:443 | clients2.google.com | udp |
| N/A | 224.0.0.251:5353 | udp | |
| NL | 172.217.23.206:443 | clients2.google.com | tcp |
| NL | 172.217.168.202:443 | content-autofill.googleapis.com | tcp |
| US | 142.250.69.3:443 | beacons.gcp.gvt2.com | tcp |
| GB | 92.123.142.154:443 | r.bing.com | tcp |
| GB | 92.123.142.168:443 | r.bing.com | tcp |
| GB | 92.123.142.154:443 | r.bing.com | tcp |
| GB | 92.123.142.154:443 | r.bing.com | tcp |
| GB | 92.123.142.168:443 | r.bing.com | tcp |
| IE | 13.74.129.92:443 | r.g.bing.com | tcp |
| IE | 18.200.52.39:443 | 5350.xg4ken.com | tcp |
| GB | 2.18.108.47:443 | assets-www.xbox.com | tcp |
| GB | 2.18.108.47:443 | assets-www.xbox.com | tcp |
| US | 8.8.8.8:53 | 75.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 92.129.74.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 39.52.200.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 47.108.18.2.in-addr.arpa | udp |
| GB | 2.18.108.47:443 | assets-www.xbox.com | tcp |
| GB | 2.18.108.47:443 | assets-www.xbox.com | tcp |
| GB | 2.18.108.47:443 | assets-www.xbox.com | tcp |
| GB | 2.18.108.47:443 | assets-www.xbox.com | tcp |
| GB | 2.18.108.47:443 | assets-www.xbox.com | tcp |
| GB | 2.18.108.47:443 | assets-www.xbox.com | tcp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | tcp |
| GB | 95.100.245.144:443 | www.microsoft.com | tcp |
| US | 13.107.5.80:443 | services.bingapis.com | tcp |
| GB | 173.222.211.17:443 | mwf-service.akamaized.net | tcp |
| GB | 95.100.245.144:443 | www.microsoft.com | tcp |
| US | 13.107.246.64:443 | acctcdnmsftuswe2.azureedge.net | tcp |
| US | 13.107.246.64:443 | acctcdnmsftuswe2.azureedge.net | tcp |
| US | 13.107.246.64:443 | acctcdnmsftuswe2.azureedge.net | tcp |
| US | 13.107.246.64:443 | acctcdnmsftuswe2.azureedge.net | tcp |
| US | 13.107.246.64:443 | acctcdnmsftuswe2.azureedge.net | tcp |
| US | 13.107.246.64:443 | acctcdnmsftuswe2.azureedge.net | tcp |
| US | 13.107.246.64:443 | acctcdnmsftuswe2.azureedge.net | tcp |
| GB | 2.18.108.226:443 | assets.adobedtm.com | tcp |
| US | 13.107.246.64:443 | acctcdnmsftuswe2.azureedge.net | tcp |
| GB | 95.100.245.144:443 | www.microsoft.com | tcp |
| US | 13.107.246.64:443 | acctcdnmsftuswe2.azureedge.net | tcp |
| GB | 92.123.140.19:443 | catalog.gamepass.com | tcp |
| US | 20.189.173.4:443 | browser.events.data.microsoft.com | tcp |
| US | 13.107.246.64:443 | acctcdnmsftuswe2.azureedge.net | tcp |
| US | 13.107.246.64:443 | acctcdnmsftuswe2.azureedge.net | tcp |
| US | 20.189.173.4:443 | browser.events.data.microsoft.com | tcp |
| US | 20.189.173.4:443 | browser.events.data.microsoft.com | tcp |
| US | 152.199.21.175:443 | logincdn.msftauth.net | tcp |
| US | 13.107.246.64:443 | acctcdnmsftuswe2.azureedge.net | tcp |
Files
\??\pipe\crashpad_3316_MTCTBWVDZQWPQDPE
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | 2a9f2ae8a77b82a87c1127f1b4f64d39 |
| SHA1 | 9b25c9bbf87c92b61a3bd72de9c334b325071d0f |
| SHA256 | a57b04adfae0788019326dc2fd840d02776bf90074c85d951ebabf0bd22814e2 |
| SHA512 | ae5fe365f098bdb7f12316ee28cec951155b6bfc4d461ba37d9d97125d4087d51116c5fea25ab6c068ea4f8bd12c02a8bd87a6fdc37e802057f5518ea0c6b37d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | b31bfd69243cc45e540c5eb6ddc3f393 |
| SHA1 | 1336864eec5d8e695edd4f8af8f26815fdb1a2f0 |
| SHA256 | 9debaf3428374f37182c9d4bb8c2c21c144ab76344c3a7350c6f12a1247d59c8 |
| SHA512 | d446cde40cd08a7fcb9d5233c88e715ac9da02711a24956b72cdc85979dbaaaf11307e2f8566cea80227d71319b551fe27739a0c1e631ed99a28cf1dffbd31d8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | dbe1b4e027d9324509bb5aa7701942b7 |
| SHA1 | 907579eca44899c7946eaf53faac0ade6944d7ad |
| SHA256 | 081f91c97123885685ee3d5db675f84f2ea8fa72db18180e790d25c8d52bf5d1 |
| SHA512 | 44419b4c9e0e024de13bbf71febce2b289f9e534c645eb829332e6e52f6b9d0efb123f1a64bca0ec27a06c176c32ff45ae90afa1c3b7c7b31ca4629ca5c0fa60 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 22a45bf86d20f048c78e1c1baccdeb74 |
| SHA1 | 1e588e5c854fa1f92d2d258c9a74f5d51b440d5a |
| SHA256 | bd4d362e66394d4d69335b04694645aabd9c7a5c10ca60ce04d91592195b5853 |
| SHA512 | 1136164c6c5ab8e3d71ef79331f4ef6053bcc392d37ba81d51ab1072b017c7bce6dd39e2f42299fddbd37eefe7b6f25992b1f70b294f970250fb882aafc6b1e8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | 9ff703cc535710168aa54381c6d0c5d4 |
| SHA1 | 689e3404c02eafc10f039b3205b5b8b31aba7ec8 |
| SHA256 | 1f3932e0efb1cc1d7ded9b3f3a4a0f64f7260f09b62084d907d6168e6b4290ae |
| SHA512 | 09bd7f656498ac1858873095635ea4cfd784f0964b787c7c600fccf3da9b35e9b8697aeca3503cfc5bfc7657208504cf4fb1378470c08a25850dccd10d68ef26 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001
| MD5 | 48d2860dd3168b6f06a4f27c6791bcaa |
| SHA1 | f5f803efed91cd45a36c3d6acdffaaf0e863bf8c |
| SHA256 | 04d7bf7a6586ef00516bdb3f7b96c65e0b9c6b940f4b145121ed00f6116bbb77 |
| SHA512 | 172da615b5b97a0c17f80ddd8d7406e278cd26afd1eb45a052cde0cb55b92febe49773b1e02cf9e9adca2f34abbaa6d7b83eaad4e08c828ef4bf26f23b95584e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 164ed9e731cb399156e8a28393f31ea1 |
| SHA1 | a449bd87928ac68a9eceda3630f6776568372248 |
| SHA256 | 8a79bea80be4ea3db7c0f0ec27928e9680a74e52d3c0dda7563e1a60262914ee |
| SHA512 | db2b7d88b4dfcda6bd1e71d6c4cafd5452b885b39cf6b3c45a7657a85f4893718710f488c28f58043dcc8ae1e5a1154d53a9d5ba59ec4914dd0c81bed6d147af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a5c3a38f922b44e3dbb9ec82c9ba715c |
| SHA1 | cf4b2778eaf014e7b38f1631eed2c960545de2a2 |
| SHA256 | 3df92618fc6d128f17c314ef44682c97fa97e820b08446b0b9b7abbb613f001d |
| SHA512 | c49b1bb1042403007819e9e43d178e401f1d3238d653165b7f3efe74a7b0b167bd3d700bc285bb3018125c10ddf63dc66a15f961ec5ee6890f436e84ea5ede33 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 9a19d06cee7301217bc45a1ff3be0f67 |
| SHA1 | ef5637d605b22e1455949e950c704d363289fed1 |
| SHA256 | 30a305ce15bbc0e89940ba020e20b98c8b0590390adb4d2c7827ee48ff862f81 |
| SHA512 | 226a30a9ff084fecade9aac2fc453f6af89749c4e5151e003a0009c459acf7b42cc2aa28a59b058d6a1138f11cc6905e8a61bd81c59d88b3d6daa1ea115be180 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 758bd06a9d6ad1e0ce3924becf0f3aec |
| SHA1 | c69a28009a2274f8b0fdb63d6d35ced51e253684 |
| SHA256 | 4eabeb9793ffa4951117c8726a099a49b90a4f718596343c70c7eda930055413 |
| SHA512 | 8aed98caa0f23c14cf0c19c46cf3cedb6929fa1e3a6f52a0b0b9459ddbd0cc86a604e0605eba12053e6987e9be5d5e5625e1855287b33aa0805d8df0a6d5922e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 0db6fd462d7c60e752f5ba8653bb2e75 |
| SHA1 | 07efa3bf38e42c69e5a4e77689d791be32668893 |
| SHA256 | 9ae8e30597ef05a886c2cd984325342f8d7b942686cc69c027854a3e477423bc |
| SHA512 | 84d0ad86b824a4d2f39becf6dbc87b1dcbd7fcba011b4f7baf53f9af47b7880cbb810018304dfdb88129cd683e348348c9fa3a1390ed8f9488ea4bdba28a57b4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6e1b6a635d392277a0a1c4bd9ba650b7 |
| SHA1 | 65adb805a401cec346cfc8986cbc1d143b6360d5 |
| SHA256 | eda34ecf7ae19a7c4a19ed937fc0de56c5e8eb1c2603239f8d7f970f2dddca8d |
| SHA512 | 414d985655e1ea38682ea76412d4aa4ae76e578b11ec96ea532a194df961d20a3a35bf475c9d387eacd1cb1fcd6182ae199dae9d509403aaaa7c02930293009e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 459d3597149247734cf71a4bc81767c1 |
| SHA1 | a67b586a8b942043f7300635ed35602108b136b2 |
| SHA256 | 7f8902b9f22cab7c0cc77437cbd5b1f8e57bac9325e889e19ea7cd18c1a1613e |
| SHA512 | a103d7fb9dc8e4572c775c3ceb9f3e66157f30f0541795c237840689f7bb263792e3e5f3f1b105d8f2c5bc4cfc47970317416d923f80fb892c39aaa63da8986a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 53775004160da8b3215a8ef77033967d |
| SHA1 | 726d61b77de1d701d58b5a3bf1aa5fce67411229 |
| SHA256 | bf72e312d2c4fa4c6b2409bf8dce63f252529c6c26bc751942770c0410004efb |
| SHA512 | cc171ff409b929c39c67e0464020b3443f0b38110b6247659f6343430149e25fd3bdb2118542b0ecf38bcdadaed903291d17ab45cdb0f55daf366327816ddc03 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | f2753472ab7d8c7b61421a147d148fec |
| SHA1 | 077bc73f39181d09219c3d26f6e4368eb0d83770 |
| SHA256 | 762a444f03586774e612d980a08831d1a09d55d16c74b3ce56f2622164a36d92 |
| SHA512 | c67e04309ad3edf29f5ab83ac0c76e7185e2e2940580f4ebe27a6af3ebbbd52ebb6ee261a3e532c6e05aa659c1325c738d13f2f8e27d6ae0693507cf0c2f64fe |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 62273f227bcfbe02e9ed4a48103de8c0 |
| SHA1 | 7f5bd528ace867d646faca0b66173096cc94e383 |
| SHA256 | a542a01126e75be2d0368a5cc8261c6d28c39d73bb683d46f816306afa312f4a |
| SHA512 | ba1a4ccc9490ab2cbedddc86dba80d73f368cedeb80b43a22f5ba1c6ab0f6c59c78bcf6e1f65f43695bda4b37f128c621b5306a281b414150212b0a29a5598ab |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | c068e465b7476d58200f350548feaaf9 |
| SHA1 | bcae710aaf9c7da429a1870bfb536ad7ce334eba |
| SHA256 | a31878018e36243b0651a5d513e76b4215961bba5feed712cf6d3b8506f4ffee |
| SHA512 | 75cd9b72ab6bdc6baca51916b92b32b0103e8f6c6976c49cadab88e2adc4e36b1b4ad1c582aefe18d51b9cea6b3bb1c71cd341d07cb749e999036e4abcad969f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1
| MD5 | 63de72f5c3486825bd67febb5b1ebd89 |
| SHA1 | 61c4b7c60384fad95ba4bb22bc41d6b0dc4d6291 |
| SHA256 | 8ff0532be1086b62331cb92625d99d59dec427c7899fceb8b9d0bc72afc86116 |
| SHA512 | 79e16bf5b2c625b9605e3cfe10b03e976db7373d38c08fdc8a4e3b29f890ba39005ffeee64fc2ccd2032fdba5a57600c9921c5ccbcc3c7bd930db29d95aa3657 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 228fefc98d7fb5b4e27c6abab1de7207 |
| SHA1 | ada493791316e154a906ec2c83c412adf3a7061a |
| SHA256 | 448d09169319374935a249b1fc76bcf2430b4e1436611f3c2f3331b6eafe55a2 |
| SHA512 | fa74f1cc5da8db978a7a5b8c9ebff3cd433660db7e91ce03c44a1d543dd667a51659ba79270d3d783d52b9e45d76d0f9467458df1482ded72ea79c873b2a5e56 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3b99ebed6a524f11eb994f1234600f9a |
| SHA1 | f4669dd1e3358266a41792ffd9e756e25d16e157 |
| SHA256 | d387f642e4c5b4e6bf60c982522bfaebf7f2b531184c1626d834513b66b1dbab |
| SHA512 | 6403fcdc96ab987dd4079d32025309cda4646e5644c4bc957eb3a9161258ed83faa495b6e3ab0cd1d4b0fba5e99656cb18e27aa7c4d0b899724b513742348086 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 026e0c65239e15ba609a874aeac2dc33 |
| SHA1 | a75e1622bc647ab73ab3bb2809872c2730dcf2df |
| SHA256 | 593f20dfb73d2b81a17bfcc1f246848080dfc96898a1a62c5ddca62105ed1292 |
| SHA512 | 9fb7644c87bdd3430700f42137154069badbf2b7a67e5ac6c364382bca8cba95136d460f49279b346703d4b4fd81087e884822a01a2a38901568a3c3e3387569 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | eb5c511f69f2516063afc326bf3442c1 |
| SHA1 | 6903b0c229ccf92fef4e1e839de1b7d42d78b27d |
| SHA256 | 03ac6dcf18d034c273800d4406fc70111239e7971cf43b302704813bc2c9ed28 |
| SHA512 | fe62475dd628d3b44e88a4abd80b7ccc1a2b4ad509c9c1bc43e7e50bf8f25c1f4c1efed6128dd9b39e3872f10fb77b192714bce66e5df4c0165997b8907d5101 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | fe04ce82e1b61f6148a2d2f348037a30 |
| SHA1 | 4a4ca0d5a3d35e184934ebc5edf0a68224301ed1 |
| SHA256 | fb7702c550dea1da7e296c7e8110b98af24340f9a6bc3ba14a8a55a4fc5daba5 |
| SHA512 | e1e47dcebfc62520e803ea4b1490d8a4c123d4cef00cf203b87983857caa3f2e7581205ecece61a4bbcf7a6526f18733b75b3024d17d3396a13920234b970d59 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000023
| MD5 | 0a52184443b2bf0c892ebd2ad3bca359 |
| SHA1 | 79e019c7dc1c993b4673a503630960f959b129fb |
| SHA256 | 1a7841f67826298a6778952a626c8954fc08c29fd94d71e537ee6d13daccf994 |
| SHA512 | 3b32e66bd13dab36dc042d711425943641d92fb9ad970b3889f2c923997f49b07cb21f88814f000e83b076783806a1f01c3a04497ab2b2050e07f9869f4f773e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 6752a1d65b201c13b62ea44016eb221f |
| SHA1 | 58ecf154d01a62233ed7fb494ace3c3d4ffce08b |
| SHA256 | 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd |
| SHA512 | 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 285252a2f6327d41eab203dc2f402c67 |
| SHA1 | acedb7ba5fbc3ce914a8bf386a6f72ca7baa33c6 |
| SHA256 | 5dfc321417fc31359f23320ea68014ebfd793c5bbed55f77dab4180bbd4a2026 |
| SHA512 | 11ce7cb484fee66894e63c31db0d6b7ef66ad0327d4e7e2eb85f3bcc2e836a3a522c68d681e84542e471e54f765e091efe1ee4065641b0299b15613eb32dcc0d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 6a683869598161145849eb379fff660a |
| SHA1 | 29040c2896245bfcf6095b75b62d5024956fbee9 |
| SHA256 | 44f933c5bd9cf212bcf2e4e16fe20eccb52e2c5946511698545aada6223a6448 |
| SHA512 | 05bc705e6498976470c7d68fd4af52be97fe99a4a6ae094230cf6001e3b2e1e217c6b89731a172711ab30d6d364c56f7989403c2156e03b37f95983ab3a62b51 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | c21a902dd2fa4a49ca47cb0205e7dae9 |
| SHA1 | 29a4b482af2aade12ab7baf927b50580b09e887a |
| SHA256 | 2ecb963117d23cfec8133e8f56a03a1f8a6be040322df0c11b9cc5c0e18f9281 |
| SHA512 | e054e251a14872211b747f06ecc5dd873f6461a3f9ae9e174b25413470e757383830184d401ce827fad8193973817d059a435a4075fb3883698e4bdaaf3a9d77 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5914a7.TMP
| MD5 | 4444f266ab3d7f0055b96989c2caf4cb |
| SHA1 | 76829e8bafa2427f7821980f032dbf9bc2a94660 |
| SHA256 | 85ba518e4906df6198b57b41da8a31f491f57f0f4eede19cc5d96bdbd3387cb7 |
| SHA512 | 205c48c59b240bbcff1e6c1af1a9c13edea37eaa39bb61e838c77aa004447f144cadca127675ff683369d82fcd1f646677fb0e88208f883715f3919767bcdd0d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | ae2f6d7e0ab9f60b58611e2bc3b28cdf |
| SHA1 | 1a91e010f51322007264561bd9cc737a84815b01 |
| SHA256 | ea2113a29f7ac6ebfabeb3fac17dcbf9e9bf56465829a60aa5a2c19066f12bd5 |
| SHA512 | 9004d790e6ba223a9fcbb9009f91747f324e5079e27ba8c582ba13ea0237083a8178f1032db86e4551973963cdef3171c762adb903acacfce9fcf2a44c4c6def |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 179b82ebe3f5dbf7a404f5dff5215752 |
| SHA1 | 661692008eb375a029c6065177353c8e22114e49 |
| SHA256 | ea3c4fd0b77afb086713595b18e6776fa641ff80ce7a591df4f9099ef8cdaf55 |
| SHA512 | c0ba113f1435c227ee0abeb44ac74448201cffae55946df49f10a6d3892732abe8ed55fb73c618277c4bdf44018a341dbfff13145d1e363a9d41009c1aa50d81 |