Overview

overview

8

Static

static

1

URLScan

urlscan

1

https://cdn.discorda...

windows10-2004-x64

8

Analysis

  • max time kernel
    175s
  • max time network
    165s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07-09-2024 20:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://cdn.discordapp.com/attachments/1211496069519646770/1282013523924221983/WearItAnyway.dll?ex=66ddcfa2&is=66dc7e22&hm=15587c3eefd0d85aeaa02cd5fc898296af632fd104e08dcd2dfbac07b7d5c4a8&

Score
8/10
discovery

Malware Config

Signatures

  • Downloads MZ/PE file
  • Browser Information Discovery 1 TTPs

    Enumerate browser information.

    discovery
  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Modifies registry class 64 IoCs
  • NTFS ADS 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 14 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 16 IoCs
  • Suspicious use of FindShellTrayWindow 35 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://cdn.discordapp.com/attachments/1211496069519646770/1282013523924221983/WearItAnyway.dll?ex=66ddcfa2&is=66dc7e22&hm=15587c3eefd0d85aeaa02cd5fc898296af632fd104e08dcd2dfbac07b7d5c4a8&
    1⤵
    • Enumerates system info in registry
    • NTFS ADS
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:2340
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffc1a4646f8,0x7ffc1a464708,0x7ffc1a464718
      2⤵
        PID:1612
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2112 /prefetch:2
        2⤵
          PID:3444
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2256 /prefetch:3
          2⤵
          • Suspicious behavior: EnumeratesProcesses
          PID:1164
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2856 /prefetch:8
          2⤵
            PID:4532
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3336 /prefetch:1
            2⤵
              PID:2000
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3480 /prefetch:1
              2⤵
                PID:2248
              • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5224 /prefetch:8
                2⤵
                  PID:1824
                • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5224 /prefetch:8
                  2⤵
                  • Suspicious behavior: EnumeratesProcesses
                  PID:4940
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=5372 /prefetch:8
                  2⤵
                    PID:5004
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4176 /prefetch:1
                    2⤵
                      PID:4288
                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6036 /prefetch:8
                      2⤵
                        PID:4876
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5852 /prefetch:1
                        2⤵
                          PID:1088
                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5748 /prefetch:1
                          2⤵
                            PID:4700
                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5444 /prefetch:8
                            2⤵
                            • Suspicious behavior: EnumeratesProcesses
                            PID:4424
                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5848 /prefetch:1
                            2⤵
                              PID:408
                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6448 /prefetch:1
                              2⤵
                                PID:2816
                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3404 /prefetch:1
                                2⤵
                                  PID:4300
                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5748 /prefetch:1
                                  2⤵
                                    PID:2456
                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6132 /prefetch:1
                                    2⤵
                                      PID:672
                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6308 /prefetch:1
                                      2⤵
                                        PID:4100
                                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6496 /prefetch:1
                                        2⤵
                                          PID:1756
                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5828 /prefetch:8
                                          2⤵
                                          • Modifies registry class
                                          • Suspicious behavior: EnumeratesProcesses
                                          • Suspicious behavior: GetForegroundWindowSpam
                                          • Suspicious use of SetWindowsHookEx
                                          PID:5240
                                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6064 /prefetch:8
                                          2⤵
                                            PID:5376
                                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2168 /prefetch:1
                                            2⤵
                                              PID:5828
                                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2656 /prefetch:1
                                              2⤵
                                                PID:5836
                                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6424 /prefetch:1
                                                2⤵
                                                  PID:5292
                                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6940 /prefetch:1
                                                  2⤵
                                                    PID:5312
                                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4868 /prefetch:2
                                                    2⤵
                                                    • Suspicious behavior: EnumeratesProcesses
                                                    PID:1756
                                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2092,17412891828715590947,10016719872472877795,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=3184 /prefetch:8
                                                    2⤵
                                                      PID:5896
                                                  • C:\Windows\System32\CompPkgSrv.exe
                                                    C:\Windows\System32\CompPkgSrv.exe -Embedding
                                                    1⤵
                                                      PID:4300
                                                    • C:\Windows\System32\CompPkgSrv.exe
                                                      C:\Windows\System32\CompPkgSrv.exe -Embedding
                                                      1⤵
                                                        PID:212

                                                      Network

                                                      MITRE ATT&CK Enterprise v15

                                                      Replay Monitor

                                                      Loading Replay Monitor...

                                                      Downloads

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
                                                        Filesize

                                                        152B

                                                        MD5

                                                        d7114a6cd851f9bf56cf771c37d664a2

                                                        SHA1

                                                        769c5d04fd83e583f15ab1ef659de8f883ecab8a

                                                        SHA256

                                                        d2c75c7d68c474d4b8847b4ba6cfd09fe90717f46dd398c86483d825a66e977e

                                                        SHA512

                                                        33bdae2305ae98e7c0de576de5a6600bd70a425e7b891d745cba9de992036df1b3d1df9572edb0f89f320e50962d06532dae9491985b6b57fd37d5f46f7a2ff8

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
                                                        Filesize

                                                        152B

                                                        MD5

                                                        719923124ee00fb57378e0ebcbe894f7

                                                        SHA1

                                                        cc356a7d27b8b27dc33f21bd4990f286ee13a9f9

                                                        SHA256

                                                        aa22ab845fa08c786bd3366ec39f733d5be80e9ac933ed115ff048ff30090808

                                                        SHA512

                                                        a207b6646500d0d504cf70ee10f57948e58dab7f214ad2e7c4af0e7ca23ce1d37c8c745873137e6c55bdcf0f527031a66d9cc54805a0eac3678be6dd497a5bbc

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000014
                                                        Filesize

                                                        24KB

                                                        MD5

                                                        c594a826934b9505d591d0f7a7df80b7

                                                        SHA1

                                                        c04b8637e686f71f3fc46a29a86346ba9b04ae18

                                                        SHA256

                                                        e664eef3d68ac6336a28be033165d4780e8a5ab28f0d90df1b148ef86babb610

                                                        SHA512

                                                        04a1dfdb8ee2f5fefa101d5e3ff36e87659fd774e96aa8c5941d3353ccc268a125822cf01533c74839e5f1c54725da9cc437d3d69b88e5bf3f99caccd4d75961

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000015
                                                        Filesize

                                                        212KB

                                                        MD5

                                                        08ec57068db9971e917b9046f90d0e49

                                                        SHA1

                                                        28b80d73a861f88735d89e301fa98f2ae502e94b

                                                        SHA256

                                                        7a68efe41e5d8408eed6e9d91a7b7b965a3062e4e28eeffeefb8cdba6391f4d1

                                                        SHA512

                                                        b154142173145122bc49ddd7f9530149100f6f3c5fd2f2e7503b13f7b160147b8b876344f6faae5e8616208c51311633df4c578802ac5d34c005bb154e9057cf

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
                                                        Filesize

                                                        2KB

                                                        MD5

                                                        424f0eb7d5f44ac1bd775d93fb43ecd7

                                                        SHA1

                                                        1b4c04daf8817a8291a26243530a39c9cb49d600

                                                        SHA256

                                                        dfc56fc2b7e4ceebbc5cbc9a0a23f49e264d47afae5d048a4ca416e0430b0ce1

                                                        SHA512

                                                        d46305486e508d438aa2fb553b3b096e6219016ee4c5ff631d863c501a2866576fbfdbb38fba863c0c0a311685bae91393acd4b195b924975b524d1cc7f71ee9

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
                                                        Filesize

                                                        2KB

                                                        MD5

                                                        a298f5bcf7c0cf3a2e38d4092296fcdd

                                                        SHA1

                                                        a8219820ba51adafd8718c58e04bad1900b31c16

                                                        SHA256

                                                        a6384ef828aef5aa0f3f63777253698b2e7ea0c30c252734e36693e0e63edfbe

                                                        SHA512

                                                        c8d90a26d15fd19a08f448193bb9049ef0dcbc6bbfb72728d4dda79f1962ec37aca72d54c680e7fad117c86453e27cd9e0b2f2fe27bab763a1eb1a79f75b10a3

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                                        Filesize

                                                        2KB

                                                        MD5

                                                        5112491710d3f42fda684725389ed351

                                                        SHA1

                                                        928649362f89092ab919dd2c0bb59d1d35e297c8

                                                        SHA256

                                                        85317ae97ab9cf88018b49c158836faefb0e90d3a5202e5f14f5187c35f1295a

                                                        SHA512

                                                        6c106218ed4c76eb1a1053732bf8563947d1f0dbb675db349a3282b8d1be6d7f57c4f29685f370e0b4b163f53082ae4d310af136a89d207b17b2db9a5b3f0ab6

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                                        Filesize

                                                        2KB

                                                        MD5

                                                        5458bc0278004637f9215ff4d1344eef

                                                        SHA1

                                                        b66eebafa1c37ee6e68cdbc68ae66dd97d88ca68

                                                        SHA256

                                                        2d6c8ebbd399b9b8fcdf198d67fc2f3096bf919f2b4c325a68a777768f1af345

                                                        SHA512

                                                        72f7e99f103c6cbbe5821119e9f65fa296746805b47ccb6b96e1fb8556c9a95962f44ee2ec7d5f3b9e4058cadbe4afba4c2a633c9429383089160b45a32ab195

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                                        Filesize

                                                        111B

                                                        MD5

                                                        78ef85bc0686dc4ee6313bd7b43e9c11

                                                        SHA1

                                                        0986f6b281a43d715a08c757b46333f0119f98ec

                                                        SHA256

                                                        5930ae6358d4329029ecf1c01ac4152c83289cc410a324c5967d8793bcbd8b2c

                                                        SHA512

                                                        dd103e629aaa3e1a7a38e2661161ef80006a3b80f040b0e27bf0cbb173c6c01e3fd042d6d37c0621038ebff4144939a9a86de2593eca6adf16a638f3ca2f8fba

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                                        Filesize

                                                        111B

                                                        MD5

                                                        285252a2f6327d41eab203dc2f402c67

                                                        SHA1

                                                        acedb7ba5fbc3ce914a8bf386a6f72ca7baa33c6

                                                        SHA256

                                                        5dfc321417fc31359f23320ea68014ebfd793c5bbed55f77dab4180bbd4a2026

                                                        SHA512

                                                        11ce7cb484fee66894e63c31db0d6b7ef66ad0327d4e7e2eb85f3bcc2e836a3a522c68d681e84542e471e54f765e091efe1ee4065641b0299b15613eb32dcc0d

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                                        Filesize

                                                        111B

                                                        MD5

                                                        807419ca9a4734feaf8d8563a003b048

                                                        SHA1

                                                        a723c7d60a65886ffa068711f1e900ccc85922a6

                                                        SHA256

                                                        aa10bf07b0d265bed28f2a475f3564d8ddb5e4d4ffee0ab6f3a0cc564907b631

                                                        SHA512

                                                        f10d496ae75db5ba412bd9f17bf0c7da7632db92a3fabf7f24071e40f5759c6a875ad8f3a72bad149da58b3da3b816077df125d0d9f3544adba68c66353d206c

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                        Filesize

                                                        5KB

                                                        MD5

                                                        482b07a80f6be9a6a82101e7acaa3d90

                                                        SHA1

                                                        a912b4ba994291682dd100637688adbf8b6ef31c

                                                        SHA256

                                                        d0bd94005b2fcf11b73866bdcd717b7398cf72f4550895551ae56453cc5cb926

                                                        SHA512

                                                        361b478b88b5ccd37ec92e105b0f24a43f1818e7946eaf7880d078a477e25fdc2a3cc62715d82406b573ccb5e32e1f424db9d90a4fc396452a0fa75eddf1849d

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                        Filesize

                                                        7KB

                                                        MD5

                                                        6f2e214004ca0b36fc9eb7274989ede6

                                                        SHA1

                                                        39a060de5e36d194af4ae89f4fdbf4200270a609

                                                        SHA256

                                                        57ea584df0ecfc3c95e74ed057a80db82c0e3258a43b249f4f51be4407277530

                                                        SHA512

                                                        b207895cefe88e02332a6365413ed8e43ad47429512dd61b11be6320007f3a50925c119fe89c20c9a8aaa942d668904db2036915954a646a8aefdcc1a77ef5b9

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                        Filesize

                                                        6KB

                                                        MD5

                                                        148cb44b4e22c2619b6f7da40a2bca7e

                                                        SHA1

                                                        66f836057164aea8f0c62d36b4d7001d50251d05

                                                        SHA256

                                                        deb032d7ffb4e830e20cfc5fe3053c54997033b48faffd024a54eb52ea75e791

                                                        SHA512

                                                        297d17ed3f4d067b0264d735304c2f8801cb94dabdbafac843dccb79699354c7b198e777705038299b6ab5c48b603c32c49e5343a3fe8227104fd9698c93ad52

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                                        Filesize

                                                        8KB

                                                        MD5

                                                        51562956df1b3732faaee73f956596be

                                                        SHA1

                                                        c11584c7aa16408df822568a79725c8bbc342b1d

                                                        SHA256

                                                        9f79f5886bc87091d3fa8fdf8391d1c341d0e22daa4fbe5df6dc45bda42fbfb4

                                                        SHA512

                                                        2462ca8bec7b779b3a22a964dabe120ed0d93b53cd13c8b2f8e5addf68805d19ff97ebab07fc1cb4f53e85179e247f94c93b72e93d3d8d1ff2dfbdc1c80e6c13

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
                                                        Filesize

                                                        72B

                                                        MD5

                                                        51f3d1a00dce91f0560962f9cbe66587

                                                        SHA1

                                                        c45e375c0f2100a4726fe37a9cd860a7245b54b1

                                                        SHA256

                                                        278e787e91e7117f8b76a422834ae29a1a965ed912db574dd42e7ede63db646d

                                                        SHA512

                                                        136eedaf8f2a40ffc09936521333750af1d3d8ab071da5a9a19917e21fabe372ea146bd3e80953bccb2fc3b7eb7161fdfd8211c619c79b7c472f3ae0249b7449

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe587635.TMP
                                                        Filesize

                                                        48B

                                                        MD5

                                                        a1ea5410997cfc397890946b815f7d38

                                                        SHA1

                                                        dc0fca497208c3fac65b389403f3d18d7dc88392

                                                        SHA256

                                                        d92f80ef7fa28ef324a425bbdddb694e7b8b0fc2e296ea9613230ba2d24136e7

                                                        SHA512

                                                        61f559da42f48c48cb2e98f24bc433b2d559427b94c3dd77ab7188d34436d1ecaea1fde2ba9b5264e1f9137776c44906c38b03e3839ab9c7f952dae199d9238a

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                                        Filesize

                                                        868B

                                                        MD5

                                                        6a16e55f2fc9e6a4591c7f123ee6b312

                                                        SHA1

                                                        663784b012ac86cb081585dcd944d41abd3c620e

                                                        SHA256

                                                        dee9ecdc380678fb6b349badead1f99e627c40035bc4fb33b942c8e218a55e7b

                                                        SHA512

                                                        eb8d59265d374bb976463515aeb0b0347b15041f83c32415da8f35a033d245f6ffe5524e05f2f272cdafac585b737b50edf1126487fd895a0ae12e9e79015d8d

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe584820.TMP
                                                        Filesize

                                                        704B

                                                        MD5

                                                        23877136570574d69837cdf255cc952c

                                                        SHA1

                                                        91a2750057cb97a3d9de4666da8d5b79a580a79c

                                                        SHA256

                                                        8a07c728a16cc1e8c4e13e120a6610b8ccd4d933deeae49e98daec1cfc921e3d

                                                        SHA512

                                                        4887836d533053f6c4bb48c15faefa8f5bb7d3898769db3d0a027d37d171984ccc6b39c60938181d723ace99d6775f246f5380d3fd7df2814bd2c0f59276068d

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
                                                        Filesize

                                                        16B

                                                        MD5

                                                        6752a1d65b201c13b62ea44016eb221f

                                                        SHA1

                                                        58ecf154d01a62233ed7fb494ace3c3d4ffce08b

                                                        SHA256

                                                        0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

                                                        SHA512

                                                        9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
                                                        Filesize

                                                        10KB

                                                        MD5

                                                        5fd9fb5016646cff8353375ee5a99a84

                                                        SHA1

                                                        49052c0b5d0f8938591de16ca4f26c2df7d7b49d

                                                        SHA256

                                                        6bdbab17be97dab0dbcd5103e5cde8e9674a2926deff985e5945585d99d64bc2

                                                        SHA512

                                                        880ca20ebc03e7747f7d9d5f4dfe09a4575f05788d8460773a3fec33030b524271b31d1437d40df92c28dbe18b31417875adc70d564b6fe46df6edc861312e85

                                                        Download Submit

                                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
                                                        Filesize

                                                        10KB

                                                        MD5

                                                        44d0471cd1e24defa87ce007f5a2cae4

                                                        SHA1

                                                        df4818456fd43c0f2c748fa78fa7aaeaee7d018c

                                                        SHA256

                                                        97c02c5d7c5db08213772c2b1c2df52da18e5f26d77847956310464250b513af

                                                        SHA512

                                                        8e1d6a02940d799658cc04f384c1152dbf6b3b185f5d67157d49146379e0cf4d65c7f0e475991c4bb3841da9a73dfc01a043e67fb5df1e19d71c0f057b3ba93b

                                                        Download Submit

                                                      • C:\Users\Admin\Downloads\WearItAnyway.dll
                                                        Filesize

                                                        6KB

                                                        MD5

                                                        2955b013c38bb4cd37550f224f0d249c

                                                        SHA1

                                                        df488b049b2018b1be3820ee0320ca1b0675600c

                                                        SHA256

                                                        e102af2b2c17bcc8cbfc11a762c618a491ac6ec5b72f0686c41536844139df19

                                                        SHA512

                                                        89111286c3eea8c85d680451c44c2e59525864197c9e23b2b23bcbb9eb60ddbc174f365140c90fde38d55cc31c255193f7d4955ed8b272d78ff6d1f8951a128c

                                                        Download Submit