Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

1

URLScan

urlscan

1

https://drive.google...

windows10-2004-x64

6

Analysis

  • max time kernel
    149s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01/09/2024, 16:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://drive.google.com/drive/folders/1xqFDp-l5TVA_6Ojsn0rt7GqvF5EvWDCi?usp=share_link

Score
6/10
discovery

Malware Config

Signatures

  • Legitimate hosting services abused for malware hosting/C2 1 TTPs 2 IoCs
  • Browser Information Discovery 1 TTPs

    Enumerate browser information.

    discovery
  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Modifies registry class 59 IoCs
  • Suspicious behavior: EnumeratesProcesses 16 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 18 IoCs
  • Suspicious use of FindShellTrayWindow 33 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://drive.google.com/drive/folders/1xqFDp-l5TVA_6Ojsn0rt7GqvF5EvWDCi?usp=share_link
    1⤵
    • Enumerates system info in registry
    • Modifies registry class
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:4884
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffc820e46f8,0x7ffc820e4708,0x7ffc820e4718
      2⤵
        PID:4708
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2104 /prefetch:2
        2⤵
          PID:5108
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2276 /prefetch:3
          2⤵
          • Suspicious behavior: EnumeratesProcesses
          PID:1832
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2860 /prefetch:8
          2⤵
            PID:1200
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3328 /prefetch:1
            2⤵
              PID:216
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3336 /prefetch:1
              2⤵
                PID:3656
              • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5164 /prefetch:8
                2⤵
                  PID:1800
                • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5164 /prefetch:8
                  2⤵
                  • Suspicious behavior: EnumeratesProcesses
                  PID:2956
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5240 /prefetch:1
                  2⤵
                    PID:1844
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=5476 /prefetch:8
                    2⤵
                      PID:1756
                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3400 /prefetch:1
                      2⤵
                        PID:4432
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3448 /prefetch:8
                        2⤵
                        • Suspicious behavior: EnumeratesProcesses
                        PID:4872
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6012 /prefetch:1
                        2⤵
                          PID:3352
                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6000 /prefetch:1
                          2⤵
                            PID:5068
                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5780 /prefetch:1
                            2⤵
                              PID:4552
                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5656 /prefetch:1
                              2⤵
                                PID:4172
                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5600 /prefetch:1
                                2⤵
                                  PID:5876
                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6016 /prefetch:1
                                  2⤵
                                    PID:6132
                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5616 /prefetch:8
                                    2⤵
                                      PID:5176
                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=6352 /prefetch:8
                                      2⤵
                                      • Modifies registry class
                                      • Suspicious behavior: EnumeratesProcesses
                                      PID:5184
                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4148 /prefetch:1
                                      2⤵
                                        PID:5500
                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6052 /prefetch:1
                                        2⤵
                                          PID:5604
                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6320 /prefetch:1
                                          2⤵
                                            PID:5704
                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6076 /prefetch:1
                                            2⤵
                                              PID:5828
                                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6556 /prefetch:8
                                              2⤵
                                                PID:6040
                                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3408 /prefetch:1
                                                2⤵
                                                  PID:3092
                                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6104 /prefetch:1
                                                  2⤵
                                                    PID:2312
                                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2680 /prefetch:1
                                                    2⤵
                                                      PID:3084
                                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4784 /prefetch:1
                                                      2⤵
                                                        PID:5180
                                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6948 /prefetch:8
                                                        2⤵
                                                        • Modifies registry class
                                                        • Suspicious behavior: EnumeratesProcesses
                                                        • Suspicious behavior: GetForegroundWindowSpam
                                                        • Suspicious use of SetWindowsHookEx
                                                        PID:5164
                                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2088,5647604220041640432,9350410681471552292,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5444 /prefetch:2
                                                        2⤵
                                                        • Suspicious behavior: EnumeratesProcesses
                                                        PID:4472
                                                    • C:\Windows\System32\CompPkgSrv.exe
                                                      C:\Windows\System32\CompPkgSrv.exe -Embedding
                                                      1⤵
                                                        PID:4700
                                                      • C:\Windows\System32\CompPkgSrv.exe
                                                        C:\Windows\System32\CompPkgSrv.exe -Embedding
                                                        1⤵
                                                          PID:1984
                                                        • C:\Windows\System32\rundll32.exe
                                                          C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
                                                          1⤵
                                                            PID:5700

                                                          Network

                                                          MITRE ATT&CK Enterprise v15

                                                          Replay Monitor

                                                          Loading Replay Monitor...

                                                          Downloads

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
                                                            Filesize

                                                            152B

                                                            MD5

                                                            ab8ce148cb7d44f709fb1c460d03e1b0

                                                            SHA1

                                                            44d15744015155f3e74580c93317e12d2cc0f859

                                                            SHA256

                                                            014006a90e43ea9a1903b08b843a5aab8ad3823d22e26e5b113fad5f9fa620ff

                                                            SHA512

                                                            f685423b1eaee18a2a06030b4b2977335f62499c0041c142a92f6e6f846c2b9ce54324b6ae94efbbb303282dcda70e2b1597c748fddc251c0b3122a412c2d7c4

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
                                                            Filesize

                                                            152B

                                                            MD5

                                                            38f59a47b777f2fc52088e96ffb2baaf

                                                            SHA1

                                                            267224482588b41a96d813f6d9e9d924867062db

                                                            SHA256

                                                            13569c5681c71dc42ab57d34879f5a567d7b94afe0e8f6d7c6f6c1314fb0087b

                                                            SHA512

                                                            4657d13e1bb7cdd7e83f5f2562f5598cca12edf839626ae96da43e943b5550fab46a14b9018f1bec90de88cc714f637605531ccda99deb9e537908ddb826113b

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000033
                                                            Filesize

                                                            24KB

                                                            MD5

                                                            c594a826934b9505d591d0f7a7df80b7

                                                            SHA1

                                                            c04b8637e686f71f3fc46a29a86346ba9b04ae18

                                                            SHA256

                                                            e664eef3d68ac6336a28be033165d4780e8a5ab28f0d90df1b148ef86babb610

                                                            SHA512

                                                            04a1dfdb8ee2f5fefa101d5e3ff36e87659fd774e96aa8c5941d3353ccc268a125822cf01533c74839e5f1c54725da9cc437d3d69b88e5bf3f99caccd4d75961

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000034
                                                            Filesize

                                                            211KB

                                                            MD5

                                                            e7226392c938e4e604d2175eb9f43ca1

                                                            SHA1

                                                            2098293f39aa0bcdd62e718f9212d9062fa283ab

                                                            SHA256

                                                            d46ec08b6c29c4ca56cecbf73149cc66ebd902197590fe28cd65dad52a08c4e1

                                                            SHA512

                                                            63a4b99101c790d40a813db9e0d5fde21a64ccaf60a6009ead027920dbbdb52cc262af829e5c4140f3702a559c7ac46efa89622d76d45b4b49a9ce01625ef145

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\temp-index
                                                            Filesize

                                                            3KB

                                                            MD5

                                                            95dc55665e68733d2f275c231592303d

                                                            SHA1

                                                            b9af72fd1b48bdb04e20d7dfb996ee05dc8195fa

                                                            SHA256

                                                            70602d9e8794190873229ace3f745d16d0509caff8c52d7eebb2760d9f1db1b6

                                                            SHA512

                                                            fc2e63e99f5abf8243b0ddb5c55a6726f00f68e36d0e37c8d8130d0b682a93ca18cf2f113bc22f440c6d787020b5226d5d5b8d9b65c60b9a414a1d445fc2d4af

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
                                                            Filesize

                                                            1008B

                                                            MD5

                                                            4d05991040d48c16915bb07aa996e92b

                                                            SHA1

                                                            178bd843919f1e4c3d49b2afab9332e11887353a

                                                            SHA256

                                                            1697a84fab356b80d0b7c92f3c847fd0ea0148e3672d16eaf05ed73826d2bcf8

                                                            SHA512

                                                            a51451e63ad3c591b3d380547bc6aeb3eabb498141d347925b8829ae98ebfc71c68b65204dba152a7c4e2be12dbb02dc66792755be7581aa33825d3da128f794

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
                                                            Filesize

                                                            3KB

                                                            MD5

                                                            212c264cd64e6e698ff8d6f72b866f9f

                                                            SHA1

                                                            1bf3d531364cf0f1624ae38ecc8cbb5ab0a68632

                                                            SHA256

                                                            162fed74ba62403c4a14a93b891eee193f7aea4ffaf3c86e8fc80dc8e4ca1dfd

                                                            SHA512

                                                            0fd18ae26b51369d2295e866ad76cfbb852b28f7cdafc8f0f28e9ec92d1c266b4ba5e3db925b71c6c68474ae7ebdaa32b2d8aae0f003f0842b867be964a98e2b

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
                                                            Filesize

                                                            3KB

                                                            MD5

                                                            16779c2c1fabfc264a8d2039c2d46663

                                                            SHA1

                                                            ab1fc721b96b84a82f52e735693a27e264710c96

                                                            SHA256

                                                            9506d46d87e26ef80bcb63d5a25a4dbd64ddcef287c5a69345c7a4ce9a4c0685

                                                            SHA512

                                                            b379367c044cf185909f4429e6b8b4245b1c84045d8c64358b852a8e578056ab6cd53813b8250c9ac6f73627f744fc580493e684e4fe4fbba8b7d091778453f0

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                                            Filesize

                                                            5KB

                                                            MD5

                                                            5ddc2fb6fce7be15c8228a46c5870ece

                                                            SHA1

                                                            e1c6ee8d3380e3fda68b56c4c4efd3f8c14bf47b

                                                            SHA256

                                                            46a155bae47665a1f68d659b94d62d49fe7d17385787e14a9df8d580235f3650

                                                            SHA512

                                                            81561e0e7776812b967b9d61e6e128097d4b45674208bf047410daf5b7f1d69dc1a325770de6783acd8adfd564574848951921ed928c6c3d6b54a3f8fd18379a

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                                            Filesize

                                                            4KB

                                                            MD5

                                                            e86b8e1d94bd7cc55a2b4961412c9652

                                                            SHA1

                                                            990e415bef39dcc1106163cd3271d9261e145e67

                                                            SHA256

                                                            a60b8429e3f3c9b6cdfad39c5d0b3bec00dd2bd9c885123285c95cff7ea0010b

                                                            SHA512

                                                            91d14a2032caa5191468e961d6003a27239a3a2fdfc131e95817982b92fb79ec159f1c8c4af4b07a25a906395c937d453c6c11bc9f9bbf91f97319c65bb109e8

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                            Filesize

                                                            5KB

                                                            MD5

                                                            cb2b21c7be08888f4269ef0fa978b966

                                                            SHA1

                                                            91b2e5bc4f8094bcfd272e0c53e76e5ea3214993

                                                            SHA256

                                                            b63c1b081e8d45d6400da2f919327c3c036acfcad6b5ce6237ae23b597b0f34e

                                                            SHA512

                                                            ef0540dd5ef273470496657c7c702ccb28fd7cbbf97b95be9b764d85db5341bbb51f7d8ca2ee7ca003355548362128973ca54b199c44d2235a90082a805b426c

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                            Filesize

                                                            6KB

                                                            MD5

                                                            4de3348cce8a001f35260d67ab575c8a

                                                            SHA1

                                                            d6eb9315b74543d205ffa1c0a121c239742f4946

                                                            SHA256

                                                            0217307e29419137051dda274a1bf8c5be2833c7c6f5a84b29efe372e8103c9a

                                                            SHA512

                                                            6b4d7b208301be90eb84bbf2b06bbd50f11f113705f09dfa3c50ce3f3325fa527cc528a20e40cddb476dd448db451f7edbe83438bee78391101a330d6ea07e7c

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                            Filesize

                                                            8KB

                                                            MD5

                                                            b7e5fa9c7717e7e9cd67c1039541c894

                                                            SHA1

                                                            907dff29215c7ac07ec3cc62370f44a174cd14e5

                                                            SHA256

                                                            0263e09a535afa963f089852b9e0998055204ee06a435d4869958b2e882a5bdb

                                                            SHA512

                                                            5a27c42f596dc92ea5191ca4fbbe5d365dcc02547adb10e18ee20196d9fd3ce0401b9cbe28d6739af9e6fe82b9047b64e46170fe434e5783ca369fb69b3774c3

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                            Filesize

                                                            8KB

                                                            MD5

                                                            cca7752dc95c38ff14f7c8b54df42ea9

                                                            SHA1

                                                            c89cb96740c46e2a721855db01ed8671e5c8ecf0

                                                            SHA256

                                                            391f442ed0a59b367490d7ff05b7cf0b615c4753c99dd41793718686874dfa4b

                                                            SHA512

                                                            613dda77d37c58154198cf21423ed9244e21d37f81a8e461cfe8b004f6fb8736da044fd3bb8d5bfa9920b014f349d3de262f4414915c034239d480794f78191e

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                            Filesize

                                                            6KB

                                                            MD5

                                                            da2f4e0bcca62a12bec52d0de315cc2c

                                                            SHA1

                                                            f0ec66b40ed72ed2d80025c98c1c0107b636c930

                                                            SHA256

                                                            a0eab2b39c70823aaa78d69e1c9a97a41af8fb5bcd3ff3eb41f4db05c86b895b

                                                            SHA512

                                                            7ceb6949a65277769624130e0bd9b34c52119ed21caf14c7cc64ec05645f176218119f9c88bba3ac63af99055d3c1523896a4c52d7a302bd16d7302193e95363

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                            Filesize

                                                            6KB

                                                            MD5

                                                            7dcae516f1c8cd729134c09f179c0536

                                                            SHA1

                                                            456d2344a2c88f20a43c916a9780cc59bef94985

                                                            SHA256

                                                            27dd442856b6f8e619ea439e49228f14e62d6f27be40ee5ba9098ce06f46b438

                                                            SHA512

                                                            d368a089d77c74429586f6275ef638d7ddae0e9579d8466a3a62d49a2c6785310173c736fd4f3800cf59a1d9957d917f6fca6875609ca47fae2df8ee71a70338

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
                                                            Filesize

                                                            72B

                                                            MD5

                                                            f5cfdacd5eeb94c3388b76947b66be60

                                                            SHA1

                                                            d4ee71d45e47aa35f89940137d75421ee66665be

                                                            SHA256

                                                            148a3dd7cfdd285eacb0483b1612ce99281bdf78a805b9b1ae6182227b7870ce

                                                            SHA512

                                                            22f7701ee87ee307cb5076c7d99475665cf48598859e3fb23b4c933b917a22bc8e224fe75bf579d5241543f6ae523499d4bdc12b5394d4dc4f2ff8f362a78486

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe58cef3.TMP
                                                            Filesize

                                                            48B

                                                            MD5

                                                            05a052c23fd697b4b6d4fce2c568aed4

                                                            SHA1

                                                            c306e5566701aa4515ef0a90531cb3f212bc28f6

                                                            SHA256

                                                            5e9fd4645ec8968a864bbe63380fdf0762d79f3f811f9a1d08c882dea9a20498

                                                            SHA512

                                                            f9f7bdfb22813a95079369e04f2a3761f883d87420533f7502db2f902bc497073777fac535171c61b0d2be0137ca7514525c7c2b9446c36ac2a48b5852b9b769

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                                            Filesize

                                                            1KB

                                                            MD5

                                                            400b666d296b3470711f24a56d684bc6

                                                            SHA1

                                                            cbb15436f13e79eb52b00ce1098349a5b7a14b73

                                                            SHA256

                                                            6d125f4ea25bc28b17c0200ac15b37a5f9a7e130279b5f3c5093c429931a05bd

                                                            SHA512

                                                            3c6a21992693866f26190b555989db5a5b700d536cca880156e3394e465ccc54420a62c85a3d9397093236864cbb10b44acaf0afdc7675ed06601ffdfa7da262

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                                            Filesize

                                                            1KB

                                                            MD5

                                                            3ca61fe935b340ab3f8fdeee11edfe62

                                                            SHA1

                                                            3f52b3372724dd7a3236da87e5d375686728e6b9

                                                            SHA256

                                                            06da6b670ebdb327258aeebed6bae390cc0cfb90dca4555b14ea978e00e66256

                                                            SHA512

                                                            7c0d697478db39885c9af7cb4038ba31acd9c07246e19f913c5b3effe425ef967fedbf1199f692a49248bba1dfef257921f0e2ed7250182c1e7c4de8258cbe04

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe57e82d.TMP
                                                            Filesize

                                                            1KB

                                                            MD5

                                                            2fa32b1642fa4a4f2beefa435ba5c5b1

                                                            SHA1

                                                            ea63e9c875f343c6538ea9b1cba0cfc8ceedfa14

                                                            SHA256

                                                            547ffbe5a2e4e909db4ff436c835aebd2063dd95ab2ff0ff7ccadb95522deed3

                                                            SHA512

                                                            bcfd2bc68866d9c314eca0102adee1c4bc469a87682c7a4f2301e626e3dac5a19a414abb6d0d45b2d4d96d35c846dd113b3cc35765b9f9710cb825f70946bf57

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
                                                            Filesize

                                                            16B

                                                            MD5

                                                            6752a1d65b201c13b62ea44016eb221f

                                                            SHA1

                                                            58ecf154d01a62233ed7fb494ace3c3d4ffce08b

                                                            SHA256

                                                            0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

                                                            SHA512

                                                            9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
                                                            Filesize

                                                            11KB

                                                            MD5

                                                            14d76d9dba346af981f5fda3e8006acf

                                                            SHA1

                                                            9fadcaeb584edf510ce15dcac8705f80f82e398e

                                                            SHA256

                                                            bbc3b1c5c670ac986f2637686ff238a02582c3132ce7491742eb66671b1ed158

                                                            SHA512

                                                            9a11b37468c05a01617c466bdefdc865e319972972f11d297f94453e2e130ea0f360be67122c9e17e069def55a7f9f55279d57cf604184f3301ce85a047bc92c

                                                            Download Submit

                                                          • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
                                                            Filesize

                                                            11KB

                                                            MD5

                                                            76c7ee1df0da014aae2d3bb272af3698

                                                            SHA1

                                                            4dbd5b6fb59979b456533b2f36e87299ac0750a2

                                                            SHA256

                                                            f08cdc90a8f16ed89ec670fde1fe7fb2cb448bb5b2e48af402acb867e064d22b

                                                            SHA512

                                                            3c115a1bfeef8e9381b379e104b8e94b3ac71d1045629659c9a31414e3b0884d3613e291b0da144e71d931d966ab5e885fb879b7fefabfb31486156ee3063e48

                                                            Download Submit

                                                          • C:\Users\Admin\Downloads\3 key keyboard software-20240901T162744Z-001.zip
                                                            Filesize

                                                            442KB

                                                            MD5

                                                            3f3048b72e2609a7365ac166be561ff2

                                                            SHA1

                                                            9cc590221f358f982310669eda1bc03a10a5525e

                                                            SHA256

                                                            30fa1cd38f58d3160888c2c940d894f0ba1683f0715066dbb556d9335de49aed

                                                            SHA512

                                                            2a35b90a851fdfc3cf7a1586206ff5de60b978b15da4c68eca34a39fdf4dd52d5b8fcdbe05317c8c511c46ef3ec6b2a26dd875e64b36c4e4da627d6f9c882c7f

                                                            Download Submit