Analysis Overview
Threat Level: Known bad
The file https://getsolara.dev/ was found to be: Known bad.
Malicious Activity Summary
Looks up external IP address via web service
Browser Information Discovery
Suspicious use of SendNotifyMessage
Enumerates system info in registry
Suspicious use of AdjustPrivilegeToken
Modifies data under HKEY_USERS
Modifies registry class
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of FindShellTrayWindow
Suspicious use of WriteProcessMemory
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-08-23 03:59
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-08-23 03:59
Reported
2024-08-23 04:01
Platform
win10v2004-20240802-en
Max time kernel
149s
Max time network
150s
Command Line
Signatures
Looks up external IP address via web service
| Description | Indicator | Process | Target |
| N/A | api.ipify.org | N/A | N/A |
| N/A | api.ipify.org | N/A | N/A |
| N/A | api.ipify.org | N/A | N/A |
Browser Information Discovery
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133688592406396732" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-4182098368-2521458979-3782681353-1000\{70B8C4CC-5EAC-4447-B0FC-172C40707B61} | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-4182098368-2521458979-3782681353-1000\{F3A2641C-D5A2-47E4-87E2-77ECF45B8726} | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://getsolara.dev/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffe664d46f8,0x7ffe664d4708,0x7ffe664d4718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2096 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2196 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2848 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3252 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3280 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5220 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5220 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5364 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5596 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5332 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5444 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5756 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5892 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6024 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5748 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=5812 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,14086924004490034175,6876137920198885356,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5996 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ffe571ccc40,0x7ffe571ccc4c,0x7ffe571ccc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1928,i,17400977474277695197,300124823985530777,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1920 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2080,i,17400977474277695197,300124823985530777,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2136 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2296,i,17400977474277695197,300124823985530777,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2504 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3172,i,17400977474277695197,300124823985530777,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3184 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3424,i,17400977474277695197,300124823985530777,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3436 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4560,i,17400977474277695197,300124823985530777,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4564 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4856,i,17400977474277695197,300124823985530777,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4888 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4692,i,17400977474277695197,300124823985530777,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4716 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4508,i,17400977474277695197,300124823985530777,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4960 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=3440,i,17400977474277695197,300124823985530777,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5172 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=4716,i,17400977474277695197,300124823985530777,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3536 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=5156,i,17400977474277695197,300124823985530777,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4496 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --field-trial-handle=5340,i,17400977474277695197,300124823985530777,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5352 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5356,i,17400977474277695197,300124823985530777,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5396 /prefetch:8
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | getsolara.dev | udp |
| US | 104.21.93.27:443 | getsolara.dev | tcp |
| US | 8.8.8.8:53 | 28.118.140.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 27.93.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 75.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.214.232.199.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | link-hub.net | udp |
| US | 104.21.6.192:443 | link-hub.net | tcp |
| US | 104.21.6.192:443 | link-hub.net | tcp |
| US | 8.8.8.8:53 | linkvertise.com | udp |
| US | 104.22.22.72:443 | linkvertise.com | tcp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| US | 8.8.8.8:53 | 192.6.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.22.22.104.in-addr.arpa | udp |
| GB | 2.18.190.81:80 | apps.identrust.com | tcp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | cdn.exmarketplace.com | udp |
| IT | 95.110.204.9:443 | cdn.exmarketplace.com | tcp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | use.typekit.net | udp |
| US | 8.8.8.8:53 | cdnjs.cloudflare.com | udp |
| US | 8.8.8.8:53 | stackpath.bootstrapcdn.com | udp |
| US | 8.8.8.8:53 | p.typekit.net | udp |
| US | 8.8.8.8:53 | maxst.icons8.com | udp |
| US | 8.8.8.8:53 | js.chargebee.com | udp |
| GB | 88.221.134.115:443 | use.typekit.net | tcp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | tcp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | tcp |
| GB | 88.221.134.122:443 | p.typekit.net | tcp |
| US | 104.18.11.207:443 | stackpath.bootstrapcdn.com | tcp |
| US | 104.18.11.207:443 | stackpath.bootstrapcdn.com | tcp |
| GB | 84.17.50.8:443 | maxst.icons8.com | tcp |
| GB | 18.244.179.5:443 | js.chargebee.com | tcp |
| US | 8.8.8.8:53 | exmarketplace.com | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| GB | 95.100.244.20:443 | contextual.media.net | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| FR | 142.250.179.66:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | publisher.linkvertise.com | udp |
| US | 104.22.22.72:443 | publisher.linkvertise.com | tcp |
| US | 104.22.22.72:443 | publisher.linkvertise.com | tcp |
| US | 8.8.8.8:53 | 81.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.215.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.204.110.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 115.134.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.134.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.24.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.50.17.84.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 207.11.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.179.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.39.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.244.100.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | euob.bizseasky.com | udp |
| GB | 18.245.253.13:443 | euob.bizseasky.com | tcp |
| US | 8.8.8.8:53 | api.bing.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | lnk.thinksuggest.org | udp |
| US | 13.107.5.80:443 | api.bing.com | tcp |
| FR | 142.250.179.68:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | api.thinksuggest.org | udp |
| DE | 176.9.175.232:443 | api.thinksuggest.org | tcp |
| DE | 176.9.175.232:443 | api.thinksuggest.org | tcp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 8.8.8.8:53 | api.ipify.org | udp |
| US | 172.67.74.152:443 | api.ipify.org | tcp |
| US | 8.8.8.8:53 | www.thinksuggest.org | udp |
| DE | 176.9.175.232:443 | www.thinksuggest.org | tcp |
| US | 8.8.8.8:53 | 13.253.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.5.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.175.9.176.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.74.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.246.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | obseu.bizseasky.com | udp |
| IE | 34.251.101.162:443 | obseu.bizseasky.com | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| US | 8.8.8.8:53 | api.taboola.com | udp |
| US | 51.8.64.151:443 | h.clarity.ms | tcp |
| US | 151.101.65.44:443 | api.taboola.com | tcp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | c.clarity.ms | udp |
| IE | 13.74.129.1:443 | c.clarity.ms | tcp |
| FR | 142.250.179.98:443 | ep1.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| US | 204.79.197.237:443 | c.bing.com | tcp |
| FR | 142.250.179.97:443 | ep2.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 232.168.11.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.101.251.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.65.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.64.8.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.129.74.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.179.250.142.in-addr.arpa | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | cdn.linkvertise.com | udp |
| US | 8.8.8.8:53 | am-api.taboola.com | udp |
| US | 172.67.31.186:443 | cdn.linkvertise.com | tcp |
| US | 172.67.31.186:443 | cdn.linkvertise.com | tcp |
| US | 172.67.31.186:443 | cdn.linkvertise.com | tcp |
| US | 8.8.8.8:53 | images.taboola.com | udp |
| US | 8.8.8.8:53 | img.youtube.com | udp |
| US | 8.8.8.8:53 | imagedelivery.net | udp |
| FR | 142.250.179.78:443 | img.youtube.com | tcp |
| FR | 142.250.179.78:443 | img.youtube.com | tcp |
| FR | 142.250.179.78:443 | img.youtube.com | tcp |
| US | 104.18.2.36:443 | imagedelivery.net | tcp |
| US | 104.18.2.36:443 | imagedelivery.net | tcp |
| US | 104.18.2.36:443 | imagedelivery.net | tcp |
| US | 104.18.2.36:443 | imagedelivery.net | tcp |
| FR | 142.250.179.78:443 | img.youtube.com | tcp |
| US | 8.8.8.8:53 | 186.31.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.2.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.178.250.142.in-addr.arpa | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | 26.165.165.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.23.85.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 147.142.123.92.in-addr.arpa | udp |
| US | 104.18.11.207:443 | stackpath.bootstrapcdn.com | tcp |
| US | 51.8.64.151:443 | h.clarity.ms | tcp |
| US | 8.8.8.8:53 | o1051356.ingest.sentry.io | udp |
| GB | 88.221.134.115:443 | use.typekit.net | tcp |
| US | 34.120.195.249:443 | o1051356.ingest.sentry.io | tcp |
| US | 8.8.8.8:53 | 249.195.120.34.in-addr.arpa | udp |
| FR | 142.250.179.68:443 | www.google.com | tcp |
| FR | 142.250.179.98:443 | ep1.adtrafficquality.google | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| US | 34.120.195.249:443 | o1051356.ingest.sentry.io | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 142.250.179.68:443 | www.google.com | tcp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 227.74.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 42.215.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| FR | 172.217.18.206:443 | clients2.google.com | udp |
| US | 8.8.8.8:53 | 206.18.217.172.in-addr.arpa | udp |
| US | 104.21.93.27:443 | getsolara.dev | tcp |
| US | 104.21.93.27:443 | getsolara.dev | tcp |
| US | 8.8.8.8:53 | 48.229.111.52.in-addr.arpa | udp |
| US | 104.21.93.27:443 | getsolara.dev | udp |
| US | 104.21.6.192:443 | link-hub.net | tcp |
| US | 104.21.6.192:443 | link-hub.net | tcp |
| US | 104.22.22.72:443 | cdn.linkvertise.com | tcp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | tcp |
| IT | 95.110.204.9:443 | cdn.exmarketplace.com | tcp |
| US | 8.8.8.8:53 | use.typekit.net | udp |
| US | 104.22.22.72:443 | cdn.linkvertise.com | udp |
| US | 8.8.8.8:53 | maxst.icons8.com | udp |
| US | 8.8.8.8:53 | p.typekit.net | udp |
| US | 8.8.8.8:53 | js.chargebee.com | udp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | tcp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | tcp |
| US | 104.18.11.207:443 | stackpath.bootstrapcdn.com | tcp |
| US | 104.18.11.207:443 | stackpath.bootstrapcdn.com | tcp |
| GB | 2.16.170.115:443 | use.typekit.net | tcp |
| GB | 89.187.167.38:443 | maxst.icons8.com | tcp |
| GB | 18.244.179.83:443 | js.chargebee.com | tcp |
| GB | 2.16.170.51:443 | p.typekit.net | tcp |
| US | 8.8.8.8:53 | 115.170.16.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 38.167.187.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 83.179.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 51.170.16.2.in-addr.arpa | udp |
| FR | 142.250.179.66:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| GB | 95.100.244.20:443 | contextual.media.net | tcp |
| US | 104.22.22.72:443 | cdn.linkvertise.com | tcp |
| US | 8.8.8.8:53 | euob.bizseasky.com | udp |
| US | 104.22.22.72:443 | cdn.linkvertise.com | tcp |
| GB | 18.245.253.13:443 | euob.bizseasky.com | tcp |
| FR | 142.250.179.68:443 | www.google.com | tcp |
| US | 13.107.5.80:443 | api.bing.com | tcp |
| DE | 176.9.175.232:443 | www.thinksuggest.org | tcp |
| DE | 176.9.175.232:443 | www.thinksuggest.org | tcp |
| US | 8.8.8.8:53 | www.thinksuggest.org | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 172.67.74.152:443 | api.ipify.org | tcp |
| DE | 176.9.175.232:443 | www.thinksuggest.org | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| FR | 172.217.20.170:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | obseu.bizseasky.com | udp |
| IE | 34.251.101.162:443 | obseu.bizseasky.com | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| FR | 172.217.20.170:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | api.taboola.com | udp |
| US | 151.101.1.44:443 | api.taboola.com | tcp |
| US | 104.22.22.72:443 | cdn.linkvertise.com | udp |
| FR | 142.250.179.98:443 | ep1.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | c.clarity.ms | udp |
| IE | 13.74.129.1:443 | c.clarity.ms | tcp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| US | 51.8.64.151:443 | h.clarity.ms | tcp |
| FR | 142.250.179.97:443 | ep2.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 13.107.21.237:443 | c.bing.com | tcp |
| US | 8.8.8.8:53 | 170.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.21.107.13.in-addr.arpa | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | am-api.taboola.com | udp |
| US | 172.67.31.186:443 | cdn.linkvertise.com | tcp |
| US | 172.67.31.186:443 | cdn.linkvertise.com | tcp |
| US | 8.8.8.8:53 | images.taboola.com | udp |
| FR | 142.250.179.78:443 | img.youtube.com | tcp |
| FR | 142.250.179.78:443 | img.youtube.com | tcp |
| FR | 142.250.179.78:443 | img.youtube.com | tcp |
| US | 104.18.2.36:443 | imagedelivery.net | tcp |
| US | 104.18.2.36:443 | imagedelivery.net | tcp |
| US | 104.18.2.36:443 | imagedelivery.net | tcp |
| US | 104.18.2.36:443 | imagedelivery.net | tcp |
| US | 151.101.193.44:443 | images.taboola.com | tcp |
| FR | 142.250.179.78:443 | img.youtube.com | tcp |
| US | 8.8.8.8:53 | 44.193.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.156.103.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 104.18.11.207:443 | stackpath.bootstrapcdn.com | udp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | udp |
| US | 34.120.195.249:443 | o1051356.ingest.sentry.io | tcp |
| GB | 2.16.170.115:443 | use.typekit.net | tcp |
| FR | 142.250.179.68:443 | www.google.com | tcp |
| FR | 142.250.179.98:443 | ep1.adtrafficquality.google | udp |
Files
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 983cbc1f706a155d63496ebc4d66515e |
| SHA1 | 223d0071718b80cad9239e58c5e8e64df6e2a2fe |
| SHA256 | cc34b8f8e3f4bfe4c9a227d88f56ea2dd276ca3ac81df622ff5e9a8ec46b951c |
| SHA512 | d9cf2ca46d9379902730c81e615a3eb694873ffd535c6bb3ded2dc97cdbbfb71051ab11a07754ed6f610f04285605b702b5a48a6cfda3ee3287230c41c9c45cd |
\??\pipe\LOCAL\crashpad_2924_UHEVFFAMJBJBGITO
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 111c361619c017b5d09a13a56938bd54 |
| SHA1 | e02b363a8ceb95751623f25025a9299a2c931e07 |
| SHA256 | d7be4042a1e3511b0dbf0ab5c493245e4ac314440a4ae0732813db01a21ef8bc |
| SHA512 | fc16a4ad0b56899b82d05114d7b0ca8ee610cdba6ff0b6a67dea44faf17b3105109335359b78c0a59c9011a13152744a7f5d4f6a5b66ea519df750ef03f622b2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 47eb90ca9bfce2a0ec4d8c1a9bbc81a3 |
| SHA1 | d819a30dc519a5207872b819f4171adf1b65f716 |
| SHA256 | 4373381293c43dd3c87af4dc37aa03d66380e745f1480f27cf33f457dff28e3d |
| SHA512 | b7df716dc1350a30451e7aa297df2d86de5df5634b7985be4d2faebcba25b925ae58d8e7cf08c32a45d29aec4e0b8b016ba9fe4c3301fc72cec43267f023a91c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 6752a1d65b201c13b62ea44016eb221f |
| SHA1 | 58ecf154d01a62233ed7fb494ace3c3d4ffce08b |
| SHA256 | 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd |
| SHA512 | 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | c43a8f48bd6c83e86b32462dd8141612 |
| SHA1 | b09a8dd4725b9d2eddb4b07d88733dabc9207e88 |
| SHA256 | 01ba82e1d9eb10dc56bb8cf84098a09a17d69568680ee1ba3a8b200db3683cf9 |
| SHA512 | 852305398371ea7a180664effa1dec14051de9fdcbaae89a45621bd6efd36da3143d859c3e58748467d8d88b7c2b2c0c6031c31bc277bd7e39829b4c1951c94b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3486c0ac744a150e74d5074d0648aeec |
| SHA1 | 242391a142020058432cc0d35518da770bc91d3e |
| SHA256 | bee2bdaebc14a7676d865919753d35d95de1263ec6c9b032382868b3d28e7d56 |
| SHA512 | 006037369f90a936eb59e9348adeec01d41cb659213e3cee144ac4038eed0d9e2cb8c03424b6cdf98f966b572ef09e76edbe2dc97d7d3250991750fe060f4234 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 87db69adb9b61ac2ed157ed33317f5cb |
| SHA1 | 0bfb60c6c00ebc0d470a9017777e6d7a8e8f6629 |
| SHA256 | fa99a74b05396d385cb1496a0e3fb321f6a24993b1312fd47572e1805087bb54 |
| SHA512 | a77da666325d62f24fdd300386f811afc02e89a7ac7b3b1843a340a3cce3678e8ca1c72621f290990349c667258107f8f43102315b5c6f5df57285c1e01b8c2c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe57f1e2.TMP
| MD5 | 661760f65468e15dd28c1fd21fb55e6d |
| SHA1 | 207638003735c9b113b1f47bb043cdcdbf4b0b5f |
| SHA256 | 0a5f22651f8fe6179e924a10a444b7c394c56e1ed6015d3fc336198252984c0e |
| SHA512 | 6454c5f69a2d7d7f0df4f066f539561c365bb6b14c466f282a99bf1116b72d757bef0bf03a0e0c68a7538a02a993fc070c52133ca2162c8496017053194f441c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 238f00026090400bd4a8298855840f7c |
| SHA1 | f09e169baea6133ccd857ce01095a5154a240ea0 |
| SHA256 | ba5f4d911916b3a625a260530baacd74004e6238553493961f8685cfde780b28 |
| SHA512 | dca2aca6de30e3a5cce48b292bb6fe5c75c6b0a9838a6c3229a9559a2fd3ddecffb77402d561ca8fba27fb41676b0d9fae2edd60f858aa964ab75c90bb23516a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 5137d7b9a36868ae8998d2bf6e954b62 |
| SHA1 | 1fd30bb3c904ae7ec91ad7ebfe03b0d6fca9073f |
| SHA256 | 8d54c394ccb3989fabf898aa974e323bf4f807041bd3fd265b5cead17578125f |
| SHA512 | 9607f4dcf2d27720c744c38eadd759ea69de0e807b712ceb8eaa664313f37344b024b734137ef8ae0f2c1688598a8f1d0d15a4df6e06885e9759e3665252b8d6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | fd007dd883df1a23694d88c9408a52fc |
| SHA1 | 368e043faeeadedf0ea4a22d99d438527e06824c |
| SHA256 | 00ce7d19cac24907ad9821948962e41468cd2f25497c4738140ed432d13ab894 |
| SHA512 | 65de6b7680eb524e85963cd181fca2f5f59cd6d66e7c5b27ca05af0a9f6213ffbd7e2c579a2c34c192214e0fc745b791898eb0acff68d976682862eb0c561a2f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 16d134f8d9bee00c1f2e80dd90a35543 |
| SHA1 | 3cd88923f2fc0d07ba099c1d603d20d10a282b4c |
| SHA256 | aac8b4cd61f8092e3abdc5e8149b4bf23e79c68b049f5be9e13fcba21d8c1556 |
| SHA512 | 26b9c639d3e7d04d7f522e27459fd8b7bb3f98be3d27262405ded621b586e4d6d48a4236f5160b43ba28bff08ff729a32a4d82955cc2aa47c27d51750f0a8bb7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | a8c5a7e6c1a4f4cb5ba381e3fab34400 |
| SHA1 | a7720c248d4f32bffb5c0de66c1e723834e41309 |
| SHA256 | 0357999afa0834311482069301b5eb20976f5f0b4eb8999cfdc4533044defc8b |
| SHA512 | d06254f6ff8e5816ad21b4389f75988fce2e2f8d1391f94d0cebac1ef7eafe430e4182a7c0c4adefee9c18ee31a24828d06a239a68e0ac677a316a1312a3aacf |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 8a20075848590c3d76e051f6b91fbe95 |
| SHA1 | 56d8b1606e17fe72f59cfd6e73c8d9a57a1aa18b |
| SHA256 | ae0c9bd6240a97689c45c9a0b0b1c4f75f3c758074b06ae4881d25e5037c6737 |
| SHA512 | 59187a970a2fe217aa4d6c882ca2efa5e2413ef5e7b61ce4938b61398302d334417ffbfc0563c6e2a8330805d6db70fb250aa64a242e9cb375d412165d32ee11 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | f3368fee1781297ab530809dce22c7fe |
| SHA1 | dc51b33003c59857f982d118595cc0ae443d074c |
| SHA256 | 8beedd5768ff72977a47bd367f34abf929416cda34c10f6265a7efcc9b335298 |
| SHA512 | a89ffca47b08efbaffbb6df6b52fb576d680448e27c55791a95cb8964c87e61ffe6a9f7c11d3e134f1a06661a5c2c2973db1d06319463ee5aa8efddd20c5e371 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 1da3707167979707b841e7cfbd0913b2 |
| SHA1 | 108ff0c8047950a5e785116bd9ce5a78dc362dfa |
| SHA256 | cffd6d08af3c2c0e52f4cc110cb980f4f425c6046d09d165c402c537efe27438 |
| SHA512 | 446c7a274255b5b94aa0adbcf71e8e0efd6e5c75e44c8a035d8a4aae382e8cbb10bcf2a5b1a8abc5c550d0699e71b97b9c1eaa2348c70aa48c1d2c777a04b610 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | f4c2a714191dce14139244185c060358 |
| SHA1 | 55b2c362cdd778df3b40102acd96fff533c8c327 |
| SHA256 | 116f155b487e424056f6510c0e74df59e2487e80a65052c809b7f36d88a922f7 |
| SHA512 | 067ffb6d54217c1cdce9206f425a5f5efd009599d39bb905ca8ffba66c0c61a74f35d9d83d7697704789296c540559c980d69a2f990f5a1a0086301de38279ee |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | e2a9e96d219d9b546ff500e43bd98c53 |
| SHA1 | 0e74da1206a744fd31185d0a704943336cd1fb27 |
| SHA256 | d42db2f86bdaa01fda3d6d7cbe9436e3dc5daeef0676042cae62022266b3c3bc |
| SHA512 | b3e03a8e15e508938ed76b206d8af77a39d155d068fe50c75906e0ca509c4297ddef00011ca1bed31b6069d9688b0b831caf4dd55fac95a037e47f9a7cc3fdd1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 62b93be7865cb9d67a4b104d667dcae3 |
| SHA1 | 7eabe8ea25f66136d9358ca1bd4e3097e9e3db25 |
| SHA256 | 16c9ad5e3a385e2551186fef3e0bff45fb027f131a0142e78ba10ee6da0ae07f |
| SHA512 | 3344ba71ab5712075281177ae073c9d604b17bf46aec8db119e9fafdad8bd03ed97a0fbd3a278e334b3466e4bf1389da2c91f3c5c2acfcbcda1509302891e30c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ea2cb4b5f61f15d2b48072b074e3a046 |
| SHA1 | 4a5d1bdabc0dd96af58c4c7f6de92d4d4dd7bccd |
| SHA256 | 2c754adcd1f236b0972a4f6810e772c4fe5a3df7154c4199e6fc1b94baa64d3f |
| SHA512 | 97c938dd8a13a87e6919982482b6524524a3e77d49787ee76135cbe9334e67ac3b94a4565821155b3473bb8200f22ddc6d038a4f329b16fc19f6750a37a6e92d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007
| MD5 | 1898a7a06369a7333137854159aee5f1 |
| SHA1 | ce97eafa4e14f5dc6e4a529fdb50462706c360d5 |
| SHA256 | f5f7eee5b559e2e38f47728f1a4b55dd6e6a3e7385cb85c07b76b1382fa7469d |
| SHA512 | e2538acabb3e4d7a63c42f7cd2bb706f215fecb1e0feb78e3ada32e10707cecbc358c5ad405bc4be021fdd29c333355fb938136af45efcac9d06e36af9934f6b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f2abfebd4847f510a43289a65ca6469c |
| SHA1 | 94c2b0ec66fce0622fb967a5b5bbdd869d5a7657 |
| SHA256 | fb041e925513519ea0cc7613afeb258fbdbc915d2fb6a64d01dcdcece799ecd6 |
| SHA512 | 6412ed3909b1eff5da3bb42ef6bb3937638bd1d2be0694ff29571b60250bd98625def77261a4779296aeea3907b04f78d9f67f583a96f39c26d06ebeff6b68a3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | 373229a85369641850abfd195135d140 |
| SHA1 | e2bc293f6cc35cdb35cf613211846ddaf4365320 |
| SHA256 | 6c9a6b599dfa1e96ddf29c86fb35252aab95ecdf0bae7bec63a45e4c39043ca1 |
| SHA512 | 67db16fc5a266ceaf85f16148d1077dcb5e9857dfc1af0ff7cb75c4dcfcb497acffef46edf77beba79a64d44bcdbcc19d1db18dfa299b857fe961e599e39d130 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009
| MD5 | 6c9f24607a85011c8fa145f30be632ad |
| SHA1 | 8f130cec0d0a6579fe8d398bc7e62451e7badda0 |
| SHA256 | 7d5a1d5cc0ff324a2faa264a6d1a40115aa945a8d7c71808108da456125dc784 |
| SHA512 | 79ef710010892897b208f4b4c61c043523454ae3bc9a765057ddf0b8e9f702d4a6ee1c13317b1fdf95caeda2b9d9fd182140614eb409b5fc72cbffc6c723b48b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c
| MD5 | 61e4576e6aa91cd435fe92f085fb0a3c |
| SHA1 | fa21a6bad3a461c8f0e27b75913c8f1cbe0b2b62 |
| SHA256 | 78d8aca4e50e6ba58890b68f8c3d6e562ff0b16516a0c3df56be18b69dca6aa9 |
| SHA512 | b250c2940f7ca24b763bfcd4d39d0022d6441bad54c415b9848ef949f8871f219289f044301de03313bf8cfa53bb2797c5590acc1b32889b0641f7a13b710bfe |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013
| MD5 | 24d70f57445760fa446b5b7707c769f5 |
| SHA1 | c68a2ee5ed1d6680bdc62a6c69596571dc90f37f |
| SHA256 | f3963fd42503aae6e325160f2e3b455073679f3b057b87d72043f098b41cbbfe |
| SHA512 | 6a613c37d4ba10a8dfb4317e7c8726dfcc09a5f0a3369dc0aa2a61046f56c3dd40a24ae92ca04c7f113207f39a02a033dd180b45ce0528d2b6c43aa6673c6376 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018
| MD5 | cd2f3074326840d55a3c3ea1e99e83fe |
| SHA1 | 3a2e1d1a93506526ae3ed2b44d584af7771ff8d0 |
| SHA256 | 9ec9f50ac6a5dfdf7ace0a047ab4e86a7f8ff297030f93f9b8b4e27c57fdaa51 |
| SHA512 | 0685f7e50451e87f8d7d47f3373d653f7d6163ffa8ccd143a85b179d2c5c51cf494e8b5f7e561436c35bfb8ffb9304f0c49962a8bf7065830f0cc95281f4ae6a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a
| MD5 | a6ad24daf242e845b5d55268bd5d1f9e |
| SHA1 | dfd157ac56810ef2b816480bde8d5557665261e1 |
| SHA256 | 8598c88986c155a9f89ba7a6a426f98fb2a8e6ec1cb3dd06ad75a33c7a9518e9 |
| SHA512 | c623261c1bea860b09efd48f0b623a39a18e483d6620c3ef03bf993467db0c3ce40905c568ac63be03162916f60a6e3447aa75aeaac1b97387d4cde29f463f57 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3089ef498d9e7782c34dd610f8c029f8 |
| SHA1 | 9dadcb510769d6f5e99c3bfc84cd33ac030595ed |
| SHA256 | 29e95310cd94177d8486da650bf1b06a61c6760fce8597a2dc120c88eb6b656c |
| SHA512 | 40ce83ddf571fe0d1df05ac1b9066f8e8ec20d611c5d9cea6a023eda1c107b6bdde302231eb350c37c796a9d05be0a4cd0fd76b727a61b284056455f7269b3e4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | df35414b1517558ff926fbbff0b21d89 |
| SHA1 | 1dae375501e9ee3b14e5528f7621d60ecb1c6a25 |
| SHA256 | 7032c216dcd0d71a0ac3c2116d368fafc8fc2722fa5ed5139be3d67f59921d5b |
| SHA512 | 57f4f6c5a341b3959c30727f516ea4c4e92c7fcccf07f691023c53bbd36ef62f03638cf639b7cb3734e049f552282cc20e96906e33050863c9333cf889a2c125 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019
| MD5 | 97a3bed6457d042c94c28ed74ec2d887 |
| SHA1 | 02ce7a6171fb1261fde13a8c7cbb58992e9d5299 |
| SHA256 | ae56cf83207570afbb8a6ab7cbc4128b37f859cb6f55661e69e97a3314c02f67 |
| SHA512 | 6c8cf955ec73ad9d97bbb36c7ce723bfa58c9aef849aa775ee64ce15afa70afb40e8cd45989dadec420d2e8edda9ec0f05cc76a0602df0b6c4e5d45de0f4ce7a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014
| MD5 | 9069dca4a5ae9c0c682d16da917f5f4b |
| SHA1 | d13260a56cac2824d0f0063e3640ee8f95cd8d3f |
| SHA256 | e4993de7ecfd6db613d9af685aeb3d5b37d61903f989e9cef429176272129aa2 |
| SHA512 | 41edbd0e779deb1be4133b16dc3d533c2b0e385ae40d23bc729cc6b236cef8bee0c5144d2cbd8213b7043d656e9f2664d759d19ec2b04b13240512682d625bde |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 72bfca5059066deddd991b454279a9d4 |
| SHA1 | c23f1a1e1a39934634e7dc8e4caaa447bf34ce15 |
| SHA256 | dcda6af2df4b0ab6dd9939ef8634858c44490817950d37062dfe5b518cc6fdc4 |
| SHA512 | 6de9ea305d1e216f360d535c8b86ac6b1217b1ef1862ca3751039345293c8a03538224f8d3d1113197d516b4516c4d6146e4aaa3bf67c192a052e3969fd60c7c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 9d2710792e4a019f5c6464e95ec8095a |
| SHA1 | 47998601bc07487c95fcbcb86409fd535ef182bd |
| SHA256 | 1eba7ef6862218b785efd4be391cdeb4aa5640110286c52367ddb8ce62c5b5d5 |
| SHA512 | 335a974f678a645eb3cc8f3a17cf133a7a0d0a887ecd7e5ccabcac691a38f4b7c6bee94315b5b3622cfcfaf43489ce1d9e478f910a0184d2d633d15bf7de7adc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | de6c4bb9f651465a3a40be7cbbe1f848 |
| SHA1 | 954402f8d991fcfb81b798b171ccbbc9684f2689 |
| SHA256 | 3f6ed4a86f50d42fc8e18f94c7f6a0cd7b676c2f2cf9dd161f241c2f1b0c450f |
| SHA512 | b408b2df6f9ce2e4d99d46e3d369af2696a612a9e0028167edf768d1a266d1418dc20352e967314d5a3cdb548014cc59d1e27e5b82377731c7d9261e3aa1310b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c0b860588c8ab6b7b102c8b08395b5a4 |
| SHA1 | 04bc0611d04becbeac056504a7eeae900de09e72 |
| SHA256 | b92556f061d02aee772aa9b3d3a96b2bf82bc1fe76a6fedddb813759cabe413c |
| SHA512 | 2ab18b5349a3d6b11a1ab31ecaa1f0e101ffcac9fb40497bcb362516abfda6e6c23e9b19cdd766f0d46410ff9c6d982d0d039113b5dab055305695a422df4a1b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 4008d934c4ff78e8e4aa6ea0328ade70 |
| SHA1 | cdc847317694b1f35f1dd8a6aace6702c6857afc |
| SHA256 | 1d7766867e05f30ac59a01df560268af0d89889ce366783ec165a0649e70a926 |
| SHA512 | 0c07e6ffa2d3d36a586ac016eba287a526513e3ef74df0b8daa334b208dc74240b957a24300b3dd3c0a1514f9d1581c2b8386d000a9dbfe30df81f86939ea493 |