Analysis

  • max time kernel
    148s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-08-2024 20:03

General

  • Target

    c177ec516d070e9e4918daa4fda0ba7e_JaffaCakes118.html

  • Size

    77KB

  • MD5

    c177ec516d070e9e4918daa4fda0ba7e

  • SHA1

    d8e9d375ded46a0afbb1e7ba83520415ae66f461

  • SHA256

    46f2b6c8e47cc8deca4a0e1b80327e53bf285bbcef0a0d68b07a710e9eac5f66

  • SHA512

    ca18e1e1ed6f657380ceb85d055d1636a6d724666cbbc496a7ec0f661802031759bd2031403b09100a16423581f428fe120f75a440d667cbff82cd32abd30d98

  • SSDEEP

    1536:pwgr8VkeO38eWhy8nIfSQ06hIpu1MeOKaS6cgRrmdB+F:VeO38eWhy8nIfSkhIYMeO/gdB+F

Score
3/10

Malware Config

Signatures

  • Browser Information Discovery 1 TTPs

    Enumerate browser information.

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 10 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 18 IoCs
  • Suspicious use of FindShellTrayWindow 25 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\c177ec516d070e9e4918daa4fda0ba7e_JaffaCakes118.html
    1⤵
    • Enumerates system info in registry
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:2900
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff8931346f8,0x7ff893134708,0x7ff893134718
      2⤵
        PID:2204
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2108 /prefetch:2
        2⤵
          PID:1516
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2240 /prefetch:3
          2⤵
          • Suspicious behavior: EnumeratesProcesses
          PID:2016
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2636 /prefetch:8
          2⤵
            PID:2212
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3240 /prefetch:1
            2⤵
              PID:2064
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3268 /prefetch:1
              2⤵
                PID:3408
              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4768 /prefetch:1
                2⤵
                  PID:2408
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5100 /prefetch:1
                  2⤵
                    PID:2896
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5304 /prefetch:1
                    2⤵
                      PID:2084
                    • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6456 /prefetch:8
                      2⤵
                        PID:1496
                      • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6456 /prefetch:8
                        2⤵
                        • Suspicious behavior: EnumeratesProcesses
                        PID:4308
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6160 /prefetch:1
                        2⤵
                          PID:1676
                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6148 /prefetch:1
                          2⤵
                            PID:4824
                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5392 /prefetch:1
                            2⤵
                              PID:5312
                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5304 /prefetch:1
                              2⤵
                                PID:5320
                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4972 /prefetch:1
                                2⤵
                                  PID:6000
                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3448 /prefetch:1
                                  2⤵
                                    PID:6024
                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3432 /prefetch:1
                                    2⤵
                                      PID:6032
                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4932 /prefetch:1
                                      2⤵
                                        PID:2760
                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5636 /prefetch:1
                                        2⤵
                                          PID:960
                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5064 /prefetch:1
                                          2⤵
                                            PID:5904
                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5308 /prefetch:2
                                            2⤵
                                            • Suspicious behavior: EnumeratesProcesses
                                            PID:5452
                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6516 /prefetch:1
                                            2⤵
                                              PID:5184
                                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6076 /prefetch:1
                                              2⤵
                                                PID:2000
                                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,5796978096663619127,7797976294651135209,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5044 /prefetch:1
                                                2⤵
                                                  PID:492
                                              • C:\Windows\System32\CompPkgSrv.exe
                                                C:\Windows\System32\CompPkgSrv.exe -Embedding
                                                1⤵
                                                  PID:3804
                                                • C:\Windows\System32\CompPkgSrv.exe
                                                  C:\Windows\System32\CompPkgSrv.exe -Embedding
                                                  1⤵
                                                    PID:2264

                                                  Network

                                                  MITRE ATT&CK Enterprise v15

                                                  Replay Monitor

                                                  Loading Replay Monitor...

                                                  Downloads

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                                    Filesize

                                                    152B

                                                    MD5

                                                    ff63763eedb406987ced076e36ec9acf

                                                    SHA1

                                                    16365aa97cd1a115412f8ae436d5d4e9be5f7b5d

                                                    SHA256

                                                    8f460e8b7a67f0c65b7248961a7c71146c9e7a19772b193972b486dbf05b8e4c

                                                    SHA512

                                                    ce90336169c8b2de249d4faea2519bf7c3df48ae9d77cdf471dd5dbd8e8542d47d9348080a098074aa63c255890850ee3b80ddb8eef8384919fdca3bb9371d9f

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                                    Filesize

                                                    152B

                                                    MD5

                                                    2783c40400a8912a79cfd383da731086

                                                    SHA1

                                                    001a131fe399c30973089e18358818090ca81789

                                                    SHA256

                                                    331fa67da5f67bbb42794c3aeab8f7819f35347460ffb352ccc914e0373a22c5

                                                    SHA512

                                                    b7c7d3aa966ad39a86aae02479649d74dcbf29d9cb3a7ff8b9b2354ea60704da55f5c0df803fd0a7191170a8e72fdd5eacfa1a739d7a74e390a7b74bdced1685

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000001

                                                    Filesize

                                                    71KB

                                                    MD5

                                                    da52e38c98b0f2047abeb07609608ab5

                                                    SHA1

                                                    da1210caff36df73e49a0c271ff7d573c2d20d02

                                                    SHA256

                                                    726a2ef49785eaecce64e98fcb3490c40db06d6a205455784f3267a5b4b7c34b

                                                    SHA512

                                                    35adf36acd8e1c65f040663d7a064f642a6db5e0b7978241db8a9b4eb52b8ae71cef4e7bb1b4a0d85e4af1f7240d6d52e5a07f512e5e90504e063e51376b5f5b

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002

                                                    Filesize

                                                    33KB

                                                    MD5

                                                    14f9dd38cdffe59be03908f72ecd230e

                                                    SHA1

                                                    fec01cf03f79c39be9a9e7de6a38021c68c5304f

                                                    SHA256

                                                    1d7b50b44b0b035afe34a18fb604f9776861b8060a3fa6d1e1e59648ee81f1e7

                                                    SHA512

                                                    e5df181552119f8de991e19156b3d6b1098d57ded119b3c6fc256d0bea8bbfe287a55f9d5200b719a7fecb01831cc7cd621b7e52c58f13c8611a2356f19c24c4

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003

                                                    Filesize

                                                    232KB

                                                    MD5

                                                    e436a692a06f26c45eca6061e44095ea

                                                    SHA1

                                                    f9a30c981cb03c5bfa2ecad82bd2e450e8b9491b

                                                    SHA256

                                                    7846b5904b602bd64bea1eb4557c03b09dabc580b07f18b8d1567d1345f0a040

                                                    SHA512

                                                    1b09a98336cbc0c8ff0f535a457a3db3cd3902e4a724bb2e56563648ed1a36201dd84e63f45dcea80bb6edfe80a17db388379417386dec76341fb9eadbafa88c

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005

                                                    Filesize

                                                    155KB

                                                    MD5

                                                    83f309bddf741a758a5c1fbbb30de08c

                                                    SHA1

                                                    867379574338d1066ac4885ace54484b27790f21

                                                    SHA256

                                                    d02b00be233253cb48a355f4209a62e1f65b986a6fbf278586132324ca317a7e

                                                    SHA512

                                                    d325ceffa070641743c8567067773791ee1df0f511264f18a53b2160d5f01285091e76cd05ac8f656d905d698d720b9baf9beb48d39f0a02414cbb68c26d549e

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006

                                                    Filesize

                                                    27KB

                                                    MD5

                                                    b0f68294321d79bc9cac62a9e994117f

                                                    SHA1

                                                    b15774a1d78d76d54e783f403db5b75a9d1bbd1a

                                                    SHA256

                                                    a67abc9d09ef920da83577bb0900b0ea4e0b0364dbd008aab0f56295d2135243

                                                    SHA512

                                                    a7dae50cb7b38333539616b449ae73c0c4b5699f3f1ac9660e418891386e8fe68090bb07bc1aa7605600f71e83a410c91b44779ad9c03dfde892d4b2cd02a19b

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007

                                                    Filesize

                                                    40KB

                                                    MD5

                                                    35e6604bdd797949017ffc5d33b5693a

                                                    SHA1

                                                    e42fe5d6c41475d4c0532cc525f0b988bde7d374

                                                    SHA256

                                                    84a25d88323971afcfb47c27334910516bf75314b2975ef3e60a003d142fd7ce

                                                    SHA512

                                                    3d8d5596960349530d128cedbb45d0daac8f459be5e72cbf4482c8e8521722a19e9bfee8cd13b1e2f01b7a6cd1d7ed9fbca1e5d921f7455c06249c21f5281601

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000008

                                                    Filesize

                                                    17KB

                                                    MD5

                                                    9a7dd9a35901af572b85bc2285c31570

                                                    SHA1

                                                    dbcecdc6e62bb59b67d353fbbe581b80fa73f996

                                                    SHA256

                                                    11f3acc6794c6a6ca750e20311a1bd3ba577403a8e4da9f3c126a37979611d33

                                                    SHA512

                                                    ce51affa26857732cd3396b080828f0b72135c08f3292f81bcd97f2969ec2c1c1914f59dc0389a8aa71189b174be97d7562fb5e4bccd9be72b96efeba63453d1

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009

                                                    Filesize

                                                    34KB

                                                    MD5

                                                    cd05640564742b1a72a818d15873a1c1

                                                    SHA1

                                                    4673e5731f755d45d3899550cc48cb79a40585f7

                                                    SHA256

                                                    0b940c2b7629585e9b218cdd1762c3c79003dd2ac37db8992ecbfb3728359e1d

                                                    SHA512

                                                    b2df34cb210457ed5371085ca2cdfc59c0c1aa291865ff0760805a464f3e6a8ba26e77c5bff1e0ebbcd5973fd85833ab9e71ad2b1a2e2594f7a49c6fd7baa6b9

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d

                                                    Filesize

                                                    23KB

                                                    MD5

                                                    a0423f1305547bb6b8f5a4fb1a9fc2d8

                                                    SHA1

                                                    092dcf1fe57e6bb53821eb754e04188ee70602d5

                                                    SHA256

                                                    6add651cb411ed9ce9a17883c1522920a6ee3b4eb676f5b411e72d1a5e7de6e8

                                                    SHA512

                                                    b8487c60b40d332e562cc5d4fc7c515e3b3c2c82311700b788905754c1376ce6f0da650583545a4691d51f04ec5da0c0204997214d167c85b788d4c85236c4c3

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000e

                                                    Filesize

                                                    23KB

                                                    MD5

                                                    33a83c16527e4531fbfca2631f653674

                                                    SHA1

                                                    87a63514c262ba4bffc52d2ceebb3ca14353507a

                                                    SHA256

                                                    1156bb50a264543f6a9dc8922dd2c65d444c8bb11b3b18be95d5adff840b33b4

                                                    SHA512

                                                    f1dba28d0f81aa0894436ae7b4ba76a2e635f002f666d17d31b8b21500dc2321d7862ca8dcfd22e44aab4d1f33112c076dc95191c889546a40f9c6197cccbda3

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000f

                                                    Filesize

                                                    34KB

                                                    MD5

                                                    c5362e1ccbf0de936e5b3431d1013231

                                                    SHA1

                                                    7ca343a5e92cb2832b07980e5689e8281ada6c1f

                                                    SHA256

                                                    d623276ea41281e2c9f7f9f094f21bebdac9bb5c8d87264f75f66492d1fa9902

                                                    SHA512

                                                    a4b53ccdd0fb74691952f3b1298f426de03b24b9f2df4a107a54a414a09ef34d3c658d1af039212674acc63939cf7c79927a6451059415b9e02a4ae66885d502

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000010

                                                    Filesize

                                                    20KB

                                                    MD5

                                                    a1afe33ce7442502a96deee597945384

                                                    SHA1

                                                    fe34cd78635f5617cf238de6dc746058d6f88899

                                                    SHA256

                                                    f7eeb570c60aff1435db1daf3767c0672634269789870ef91c69b2b90a47edaa

                                                    SHA512

                                                    f8bca21c3fd79d63c8265f5dfcba95419eac697b42efb600e7c33d15dc5d9c3e0d0d360da39e14004facaea4cff4dcfc00d7437979283ce0a2b06916b69b8c80

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000011

                                                    Filesize

                                                    136KB

                                                    MD5

                                                    4651a4bc4ceaf8d1811aea20ab8584cc

                                                    SHA1

                                                    e9ba2c1e8b5f2391eac8fce3567c920a68391c11

                                                    SHA256

                                                    73cbb0b6d9c83a076751991cf4db53e24f0a83a6124d74d5fd66cc1d830ba138

                                                    SHA512

                                                    0e2552bdeed8ca32fdd2d9d90c1dfac85514ec4f54840778566b9cd37649109487473b1cd234c0195ddd17e127e185f8782914b2e7dac9bb26fb8233bf615fa1

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                                    Filesize

                                                    384B

                                                    MD5

                                                    7a34ecbcaff723b013ba19f85b72384c

                                                    SHA1

                                                    18143551636063cc60cbc35e967e901b652c7711

                                                    SHA256

                                                    faf91e99522bc10a70a81f467255f69e22978043d4023848c755151de4eae5a8

                                                    SHA512

                                                    7eba06f930f07eefe75d3a87832227796f4f76eec2cbbb240239733a36044a6b069761fd8433d336ff940f61d07164b2e667f12ac443c191da7c7dd984145a5c

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                                    Filesize

                                                    264B

                                                    MD5

                                                    7d48552c508ba68624caa62eb09ba906

                                                    SHA1

                                                    2d7ec6d742442de62f573edaa54b8e1c885c4bfc

                                                    SHA256

                                                    688b8b1bbf1dfe902b0225048eae05abb8f89da04204e687fbdd35ef86e5a049

                                                    SHA512

                                                    51278d6fc82ae064e9bf5eef4a6eaa0bf8da572b07473433fbbf327ab0acc261dbd13ea2a535cdb1545f3bca6fc17e6458dccfc125549f98dea90935430bb5d9

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                                    Filesize

                                                    384B

                                                    MD5

                                                    c8109cd8b97d130aa6af5c6845209757

                                                    SHA1

                                                    927d170b594df3ed338591f4c58d9e70add4b58a

                                                    SHA256

                                                    78e892448920ffdd811ec259f5272f3010222e72bf120cc909fd1f09f3772169

                                                    SHA512

                                                    047a31514516d1db17161b8339270ed47eccb81bc8e8b38d58700a15301f96b428fa6dc69b95d9611df413e61fc1f0df78f13ac93d5867554d41813b06291982

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                                    Filesize

                                                    2KB

                                                    MD5

                                                    b3ee9b159a0749fd8e29819d51bc3cad

                                                    SHA1

                                                    e1b4bd638248cb1cc528d61f4f4033de5f567984

                                                    SHA256

                                                    ae332fbc2631249fe864bdf4f990a6092262cd201188a153ef8d6d0db00ee766

                                                    SHA512

                                                    f84e6b77a5e76ba4f67942afabf1f24740eb2f8604d6ce2cbfd62f8ad75368fcbf487fe02efea68d6bb72a23613edd59ca7a7f573c15118731d92419b135f7cf

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                    Filesize

                                                    7KB

                                                    MD5

                                                    2cf89dd20d7e40c99e2e72e5164df2cb

                                                    SHA1

                                                    b3a5c3026c5bf260609b3319ece8fdd4b102feff

                                                    SHA256

                                                    ab018b0f6a211b3a19d60052465d73749b7715704267753b332f7ded80476982

                                                    SHA512

                                                    96ff06621b3e65c8b3fb29a64edb6833216b600a7b36b8c676be9efd62c43286b5441ed2cbbc7b1e1578bc4ea86fc245c0c5ca848f8da10fdb6ba16628555a73

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                    Filesize

                                                    7KB

                                                    MD5

                                                    31d4645752ef8c7889b4570b7c0f6907

                                                    SHA1

                                                    97d9b5865543ccdd4d743489d2e94abb0bd4a2e3

                                                    SHA256

                                                    8f8ab479dbb13644035c3ca8169605334b6827fcba6dae0ff1d8c6be53847d48

                                                    SHA512

                                                    113323d4dcd39db884c9222a67cbe40d069e9214286938930f562cb1c0c1dea56791d648664aea94e829c6720f6ce79c08b9ed8648a7256b8ae98add2c76d1d8

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                    Filesize

                                                    5KB

                                                    MD5

                                                    a60606aaed0dfbd6cb630288108f922e

                                                    SHA1

                                                    388e049d8fbe71d49221d23de4b6dd35e315cdd2

                                                    SHA256

                                                    dfe31b68627c4c947f2de0f19691428a06ccebe98005543ef4aa5821aa768b41

                                                    SHA512

                                                    4a5300cd0e6f3da6c7091cf535d02b33790d9fa68f33a4f5aaf270f2f863ebdbcf2eab26726b3caecfb29f029cb74ef7e7152abe32a3b316253cd31acba965b4

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                                    Filesize

                                                    7KB

                                                    MD5

                                                    4824a019e26b712cffcff08f521d4cb3

                                                    SHA1

                                                    96f41ca2909a4f2ed7f4605de9cf2bc87bdec995

                                                    SHA256

                                                    2fcccd01f81da46f2a6d030ca27fc88e4339b59565fdeed9d6198e7bcc38889e

                                                    SHA512

                                                    2d3f8860366b9e6e7e6fee8cc7418ab459070d1672111413c8a2270285f95b7e74b315aaa7c95b73e6b6af645e6686d1e6aeef2f9005994094e3053d0719d9fd

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

                                                    Filesize

                                                    698B

                                                    MD5

                                                    725199891d2629b5a4d61043742a99e3

                                                    SHA1

                                                    5eae5a1768a3f08417db7bb58364a067efa10c0c

                                                    SHA256

                                                    b22e813e6ee151c5f6f6d2c7f3a8034a2f1da9f4a229c4a7536a2c0b93771117

                                                    SHA512

                                                    b99f5a5c241709a57f662a244aa14ae2b5abff1cfc3a9af535f133f48f8061ea4582c2412f3f96130b8b1c9ef1db89ee04d483f7563b218f15df6c3c564637cf

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

                                                    Filesize

                                                    706B

                                                    MD5

                                                    e2952572a1e01e4403a07071e359e843

                                                    SHA1

                                                    80834bba6f0b744cd456141ef878d2760e9ddd88

                                                    SHA256

                                                    14d1ed42347d2449b7a6578282829c5d102770883048863cbf3c14f13fa43ef9

                                                    SHA512

                                                    a0f38cae3ec819b8c7715a32581993255c6de9aa1c0db8b72e4846d95930ef91e0ceda8247b42969569d94834843b8f10224cf319d63d4e002ccd4c3aa0cf046

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe589e10.TMP

                                                    Filesize

                                                    706B

                                                    MD5

                                                    1a5fbfe3b5202a00dd96a026ca368548

                                                    SHA1

                                                    3bdf5d2116abf61ef806996a7fe4af598a0b375a

                                                    SHA256

                                                    3e92590481a065298a561d7b0685ca4e66b654ca30cc91b4b6dcbabeecd58e39

                                                    SHA512

                                                    edee4e2cbba2262c1f7a1b54c6d58b3579aa0ba57f0918623dbad4e75f2b7d52e3836a700098578d2a195414d55a42ddbf2d24dfb4b199c3db4c9678578c3990

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

                                                    Filesize

                                                    16B

                                                    MD5

                                                    6752a1d65b201c13b62ea44016eb221f

                                                    SHA1

                                                    58ecf154d01a62233ed7fb494ace3c3d4ffce08b

                                                    SHA256

                                                    0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

                                                    SHA512

                                                    9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

                                                  • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

                                                    Filesize

                                                    10KB

                                                    MD5

                                                    c3fa7a6e666bd938a187b3841a97ee33

                                                    SHA1

                                                    7774ec4b327f1c5107ca99be194cd1cc024a0a61

                                                    SHA256

                                                    14dcb5574c86b97a9a17e98d349114d5f163276301bbfb6b5143b8be7e49e337

                                                    SHA512

                                                    39137b125170d3c9071ac2eb146dc0b407c86c8ae826d4db811b6896b5fa9bda9b4a228d201c6c84d526ec4c78087e3001e0c69cea1e17deaf2659f199efdf22

                                                  • \??\pipe\LOCAL\crashpad_2900_OUVJLFTBGXWQVIDH

                                                    MD5

                                                    d41d8cd98f00b204e9800998ecf8427e

                                                    SHA1

                                                    da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                    SHA256

                                                    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                                    SHA512

                                                    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e