2db427a4f864a7e4b7ba8c6c81d57a2b999308b9acb6081d4e2bb60811af00ea

Analysis

max time kernel
2668s
max time network
2672s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
19/09/2024, 00:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Screenshot 2024-08-21 5.48.26 PM.png
Size

228KB
MD5

6ce719d60176ae0e1e6ae38d3ddcc7af
SHA1

295d4b257d4f8c01492d6bcca4c46e474ff0dc77
SHA256

2db427a4f864a7e4b7ba8c6c81d57a2b999308b9acb6081d4e2bb60811af00ea
SHA512

5149b0585b9836e178b88c69ed7995ce5e35aacd2be6abfa4357e0d0634d196bb9e869af57310b14a5b855d752d307dede63402a11482450327b26121407ee1d
SSDEEP

3072:5K9i853bfqV/2Ri3UJb+VTG1lh5IB5+5cbdl5phtMdmtg8xnDZ4U1aHa04gN1nk3:5kbfqIR5Jq6lhaBrdl7fMstHl4raVXI4

Score

3^/10

discovery

Malware Config

Signatures

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Suspicious behavior: EnumeratesProcesses 10 IoCs

pid	Process
3048	msedge.exe
3048	msedge.exe
2620	msedge.exe
2620	msedge.exe
2124	identity_helper.exe
2124	identity_helper.exe
3588	msedge.exe
3588	msedge.exe
3588	msedge.exe
3588	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 30 IoCs

pid	Process
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe

Suspicious use of FindShellTrayWindow 25 IoCs

pid	Process
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe
2620	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2620 wrote to memory of 1880	2620	msedge.exe	92
PID 2620 wrote to memory of 1880	2620	msedge.exe	92
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 4956	2620	msedge.exe	93
PID 2620 wrote to memory of 3048	2620	msedge.exe	94
PID 2620 wrote to memory of 3048	2620	msedge.exe	94
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95
PID 2620 wrote to memory of 4492	2620	msedge.exe	95

C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\Screenshot 2024-08-21 5.48.26 PM.png"
1⤵
PID:1948

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2620
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffc00e946f8,0x7ffc00e94708,0x7ffc00e94718
  2⤵
  PID:1880
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2008 /prefetch:2
  2⤵
  PID:4956
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2320 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3048
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2652 /prefetch:8
  2⤵
  PID:4492
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3368 /prefetch:1
  2⤵
  PID:4636
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3388 /prefetch:1
  2⤵
  PID:1084
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5036 /prefetch:1
  2⤵
  PID:3508
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5016 /prefetch:1
  2⤵
  PID:2676
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3620 /prefetch:8
  2⤵
  PID:2260
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3620 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2124
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3368 /prefetch:1
  2⤵
  PID:1780
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3516 /prefetch:1
  2⤵
  PID:4652
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5044 /prefetch:1
  2⤵
  PID:3960
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4832 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3588
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5268 /prefetch:1
  2⤵
  PID:752
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2256 /prefetch:1
  2⤵
  PID:2512
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5524 /prefetch:1
  2⤵
  PID:3772
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3996 /prefetch:1
  2⤵
  PID:3552
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2120 /prefetch:1
  2⤵
  PID:3456
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5344 /prefetch:1
  2⤵
  PID:732
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4124 /prefetch:1
  2⤵
  PID:4832
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3124 /prefetch:1
  2⤵
  PID:4524
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1368 /prefetch:1
  2⤵
  PID:1948
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6132 /prefetch:1
  2⤵
  PID:3524
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6580 /prefetch:1
  2⤵
  PID:1088
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6356 /prefetch:1
  2⤵
  PID:3544
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7020 /prefetch:1
  2⤵
  PID:736
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5864 /prefetch:1
  2⤵
  PID:2612
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5808 /prefetch:1
  2⤵
  PID:2308
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5792 /prefetch:1
  2⤵
  PID:2196
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6952 /prefetch:1
  2⤵
  PID:2880
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2256 /prefetch:1
  2⤵
  PID:2616
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6856 /prefetch:1
  2⤵
  PID:988
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7136 /prefetch:1
  2⤵
  PID:4632
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3532 /prefetch:1
  2⤵
  PID:1844
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7096 /prefetch:1
  2⤵
  PID:4760
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2028,4865591989667310851,11048613701014182328,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7116 /prefetch:1
  2⤵
  PID:4472

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3140

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2800

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
d7114a6cd851f9bf56cf771c37d664a2

SHA1
769c5d04fd83e583f15ab1ef659de8f883ecab8a

SHA256
d2c75c7d68c474d4b8847b4ba6cfd09fe90717f46dd398c86483d825a66e977e

SHA512
33bdae2305ae98e7c0de576de5a6600bd70a425e7b891d745cba9de992036df1b3d1df9572edb0f89f320e50962d06532dae9491985b6b57fd37d5f46f7a2ff8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
719923124ee00fb57378e0ebcbe894f7

SHA1
cc356a7d27b8b27dc33f21bd4990f286ee13a9f9

SHA256
aa22ab845fa08c786bd3366ec39f733d5be80e9ac933ed115ff048ff30090808

SHA512
a207b6646500d0d504cf70ee10f57948e58dab7f214ad2e7c4af0e7ca23ce1d37c8c745873137e6c55bdcf0f527031a66d9cc54805a0eac3678be6dd497a5bbc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\66d5724e-927e-4b0e-8239-8560a316ada2.tmp

Filesize
5KB

MD5
a627dbc32e818d6f0d8714ea6a5d350f

SHA1
2bcb48c65615d017cfd6aa7fa0a7f99b94eb68d7

SHA256
ca643c256dee1e5e6870c5499819e91a553f43abc6bfd22f4feaa73dbb0319ff

SHA512
f7075e28b148440ea1e1536f01406e83b751db5c00ea0e8f9bda2a11ab86bd03c86b3a5519c92b80786488019a106afc502bcea714936b103e0d071701d423f2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002

Filesize
62KB

MD5
c3c0eb5e044497577bec91b5970f6d30

SHA1
d833f81cf21f68d43ba64a6c28892945adc317a6

SHA256
eb48be34490ec9c4f9402b882166cd82cd317b51b2a49aae75cdf9ee035035eb

SHA512
83d3545a4ed9eed2d25f98c4c9f100ae0ac5e4bc8828dccadee38553b7633bb63222132df8ec09d32eb37d960accb76e7aab5719fc08cc0a4ef07b053f30cf38

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003

Filesize
67KB

MD5
929b1f88aa0b766609e4ca5b9770dc24

SHA1
c1f16f77e4f4aecc80dadd25ea15ed10936cc901

SHA256
965eaf004d31e79f7849b404d0b8827323f9fe75b05fe73b1226ccc4deea4074

SHA512
fe8d6b94d537ee9cae30de946886bf7893d3755c37dd1662baf1f61e04f47fa66e070210c990c4a956bde70380b7ce11c05ad39f9cbd3ea55b129bb1f573fa07

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004

Filesize
19KB

MD5
2e86a72f4e82614cd4842950d2e0a716

SHA1
d7b4ee0c9af735d098bff474632fc2c0113e0b9c

SHA256
c1334e604dbbffdf38e9e2f359938569afe25f7150d1c39c293469c1ee4f7b6f

SHA512
7a5fd3e3e89c5f8afca33b2d02e5440934e5186b9fa6367436e8d20ad42b211579225e73e3a685e5e763fa3f907fc4632b9425e8bd6d6f07c5c986b6556d47b1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005

Filesize
63KB

MD5
710d7637cc7e21b62fd3efe6aba1fd27

SHA1
8645d6b137064c7b38e10c736724e17787db6cf3

SHA256
c0997474b99524325dfedb5c020436e7ea9f9c9a1a759ed6daf7bdd4890bdc2b

SHA512
19aa77bed3c441228789cf8f931ca6194cc8d4bc7bb85d892faf5eaeda67d22c8c3b066f8ceda8169177da95a1fe111bd3436ceeaf4c784bd2bf96617f4d0c44

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d

Filesize
19KB

MD5
7adcaf0493b4b1e28604e8898b9aab25

SHA1
436cdd113ee7e38bf5c68ce7f8c0b39d74435092

SHA256
c92b02fcd1fe84317c6948b4ecea2a8bf2a76bede9bbecdefdb01d04e3ada892

SHA512
90666fe5ad107443645e2a5518be33635c6b9191490e1a4df65abb651ef43dd3c79d598081eb988a3584664a140a9586efac3dcc6a2ea15d20c7ab9e3b76fc54

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000010

Filesize
147KB

MD5
a9c3bc8364f391ad93064a29fc990b3c

SHA1
3fb6473f5931595e66ee97a8ab77d1028144f66a

SHA256
eaa7abaff67f8614a4412734d9bf41ccb17f5dd9fc43f7323ba68f563fb23938

SHA512
e575ea3c5f57306156f05dea0fcb80964ab54b06d5f098a7521a8a2c98d58431542e310b9ac6cd85196b093ee081e7a2f0ece002e1d2ecc546a8f75ce18c2d7d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000012

Filesize
46KB

MD5
064efd0e4a91ca790b87beb55b975222

SHA1
4728d1cafbb40a75ffc3a4781d6590330d88b08b

SHA256
120f0848b4389277546913cc5c3b902a166c4f8f4431c9182f22dfdccb478554

SHA512
deda5b6db9d8135cd5d35a23043146219339415e42a2c4029b6204891041f22cfb737882b109fed99181284a2eb5cd1e5eda3724921961004fcff7b909bb679c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000013

Filesize
99KB

MD5
e47788695cdf8352b068c8cf294ea705

SHA1
e3a7ffc3854630bf9087df5801dbc78207251f3f

SHA256
6951caa967052f2366eb03b4be7be7047b6d6ec2d9e0c4ca75c91648ab67c8c0

SHA512
f18bb7a61ce77d9ddd1105769cea9d0e94d6adf1b9f304cb6e2db32066d4f6cdf16edd6a263b8b8628bb6a5d683c9db55de67cbba8cbdb2c00486020f117ebcc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000014

Filesize
297KB

MD5
9be42feda1bbde0028713b94d5eb3054

SHA1
da4b286c36f54aae947be9ef68f13b0e334c89a9

SHA256
f00d4b29f4f19814710d610b8a697c3d2592edf721eba889406463c0117ced26

SHA512
eeae0a53ea9474cf2d1b9096520f63d5d8ae5edb1efffe789d1be3e4be6187b19d2802077f22dd7653805f3671d4e958169697887a2e5064a01a4d1eadd9e56d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000018

Filesize
141KB

MD5
b7d405adc05bca191c2ba2b76d8a0c1d

SHA1
c5eafeeca9a6476f26e011f7632a23519a250bb2

SHA256
2bfa432059d41df66128bfdffac54a0d00c76eb750b38e72b44c74b15fb4ce05

SHA512
f02b1a47bebfa7c061e03681c1659132f4a67113031d0c9830821575d4c359addb1c6878e55a6f245df34645ca1694dc07d34163db1c37d64955cc2104df5ec1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001b

Filesize
71KB

MD5
dfd189f105f14a305a4e668882dfad2e

SHA1
f5875344081b0c6c5b59e07dd40200ffd1703c3d

SHA256
0e77bf0caf2c0091180cafdbe4d8466c9e619e8a2878c3afece9bb31b8fa116c

SHA512
935c674b5a3e664db05c576c4b8f8f7ec5a5c22bc759d1ec9db338b099bcb945c2c2fd72cfb29e890c7ef55072af384b6bab0f588b9d4ac29f730a56e1e8f33d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001f

Filesize
96KB

MD5
dc131113894217b5031000575d9de002

SHA1
f96348260751ea78b1d23e9557db297290bdaf28

SHA256
d612f1212b452af07f1a5defb2b672e76a91f7139e7499fa48bb9b2b985c22d6

SHA512
0aa4420c7b7dcc70238371f9d21d521d0673caf4c1883eeb2d3254c5a1dad941f4569f418350ffc61e93303466c504179b90ba0acf008250dc9c2c6ddf6f850b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002b

Filesize
103KB

MD5
75db5319e7e87c587019a5df08d7272c

SHA1
92b30527304b5dc80f45e997e0b1ac4c70110a18

SHA256
1b498b959e5b7decbf9185803591d25bc1fbf83e798372ed30d32d5c79d82ff6

SHA512
4e556d80b52ddbadddf9287f6cdaef0d12113d0fa4a07728fd67767b97806eba5fa0f82711f71e76ee2875192d7618a9b6c277ceb6d69a30f76ca8e3ebb74aa1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000031

Filesize
148KB

MD5
116d28f484bbe79dcfb66565e0811fb7

SHA1
8f54fdec6622307349262083478a4a845cd53242

SHA256
c9b3c3015e5c08dc28f5384bc0503dbdbe9c21566ddb4da3a12ed3d747d6cf79

SHA512
ccc6b2954b42e6c4e69dc3346ab78cae969cf45b885d71ad14ca3ee7184dae147e0b33161b087a70c0298d497bfa5dd4da340134f9c75ca65aa545b2efdad2f4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003a

Filesize
383KB

MD5
1dcaa009b30a2cfd07889c9dea51da6b

SHA1
94ed41317afd52d4d32d781870257b3fa162fc42

SHA256
5bd5781fbab7916d1555ce8204cbcd03d6cf05d2f7b7e84d671841497c142fd1

SHA512
35f3e1822a95eb63a29dd85927c90d51ad3d723e218246d787dbcfee7dd1b36cd99df4d0eb9dadbbd578b3ba0632a80c8a4affefbc89bfd41e765aa71ccc96f5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000041

Filesize
19KB

MD5
df2e94133f614aadc4296aa704a959c6

SHA1
a50ad0671730500f3ab185ef7fe5d824e5616aa6

SHA256
c55fd77b539b8df749edfd52654e043847c04537472d772b5cbedeadc29ea8c7

SHA512
d8f179a6cc269150e1626aeb738050ebebf78f6f878b722cf215a2832f344d9c01f88992e5063d27b2ee573a720e13fccb8699b0145f5c27e3a8dc7b847dffde

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000086

Filesize
18KB

MD5
a53953fd03f4af25584382f2e5993095

SHA1
57a03735e77814c9ecda6cddd152ea58e36d09eb

SHA256
db07348dbab3070bd65612493f04be97e6f2acd535d6c7950304d7182067a2eb

SHA512
d547f541b9a460406d9110b3594e0a804186e676c0c3f3d7510b93879890baa976e14aac3e76832f889dbe7a6cf06758b6fae22049f28fa1a55c690ea681bbc1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000095

Filesize
19KB

MD5
c0b35b92359c4a121dcd30cdf3bb74ed

SHA1
a9c7cb1383be8909767eb87160b27557b6ecc567

SHA256
d03a3efd2db3a884fe38abff1184ce1defd1f8f529bfa108300c369152ed7794

SHA512
52ba12e3a75c91112a747987b3f1715c142fd88bff7437521ae284881916dec78612a761913e840b842652321aebe852ffd78e50c6ea6532e5f41c7c3474d06e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
dca382f44eb7c82d5cffda3f50758f57

SHA1
924488282128f5c87e5190208ea117a40817bd67

SHA256
7788752115cb319c97a3aac9694fdfc30364bc0400de4d910c44bbfabfaf5f10

SHA512
e0215fafb65ebb4508cd2b54ab6f82e3adbd5fb7f3def99d3fb8275f7014de43337784e4dedafedb0c75107059a0495cc1565cd318e67a188af1f6e3915ffdd9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
4ac900e5b1b78a48c8053180706e3506

SHA1
58b9b9e12fc3c7835d24075161936374ec8940ab

SHA256
9bcdd2944910c037328f15557173e9f75677912a8b8b98d3b5795f6ebabb2f39

SHA512
3039315b8e584b2cc3ce1c2f109a9be55ad875cddf82c0d5b267359e058818214c03f9db6b981f6616194814fb942cfe53a57166e367efdaddee484d3ac2eb16

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
ce3c669228fcf3c327fbb041ff6d9400

SHA1
b115225f8c356da4ba85b05bad041b5129f2b145

SHA256
dfb0d796a39c9de3568511707d5181b0b777ea8cdb0326d0b1a5058cdd7bb0e0

SHA512
9b6815e7c6e3aab0045f0c75ec9c96d07fb580394f3b61d9f570d660e93716cac2655e76479945547f4fbad0bfc47cb1327dbdfc5b5a4d8a7faa4c56e738c766

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
9da232e1e444e603e39501895ff222b8

SHA1
a0a1095b23a9ea6b12ffb6d420eb0db7a939da55

SHA256
333f12801a65d83231828d688acebb94411eca3988d2e786a30156b9cd827dc8

SHA512
955bdbb21cdca1c9dd53d8c06dd53231ba8f19a854f3a747d9276ef13e944692a63cbfc0dc23f9f8d1f5d7e2e2fc13d234cb8e62b51a56eb8b7238a4560158b1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_www.epicgames.com_0.indexeddb.leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
2KB

MD5
bd781a24d2bcaf062a5a4a3344a464c6

SHA1
07bb6d0759d4703e800489dab5916d496a9f4181

SHA256
00bda06bddecf0bc49b07355a57685d929bbe0e2da7d44dfab43f2c2943b1a61

SHA512
00dc721f7a7ccc3f37002a79c6f47872382c5fc9fa233ef2b88c1b19bdaf55fe4317ef1cb995e37fb834f100d49520a9de8c021b0ffae221871a41a8b2ae7cfd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
2KB

MD5
597ea0552e263ab9a780e451dfbda995

SHA1
7b6eec26aecda0e320d115e2839afb6a679fe5b8

SHA256
1ed26e8735559befe88306f7e85522beea711eaaf79bf5225d71df76f44a6e23

SHA512
af95be245dcf91137b31357f86bc58252025efab2fc880a2d28afcb6e7c5a706d4b682448474e28c8182a6043208afbecb98a7d0a1f878f92f2b1f8c41409f7f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
2KB

MD5
8a098f1995d25da2944af501e0539ba3

SHA1
21a60cd6282a04ea59a55f64af819d01ab2c24b7

SHA256
102595be69d6b0a5da1e71cf9cffff261521e0475b68704faf0f347fdb17e84b

SHA512
c3b78a6fb8737efeadb111604123f2a8f63f0c4ff651984709c66ef51f38ed5a65987ade192ebb62d477dfab22eb9a4598ddf0d2cc8654fd974d5f0a5a4f92c9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
2KB

MD5
1a043d43bcbdd6af88c8083ba00401c8

SHA1
6447643bc71561a8306e380f95509038df5be302

SHA256
d247aa59f45625ac66660baa491b3bc021f19147f40e10856d3770977e1b87a0

SHA512
15eefe8a64962649ee189188c86d5aa6c9290e214db1dbb5091090b2cfbfe81f3e71dbfd8a71e7c794a5d931a8f332e0682fb5c6acf9505dd7208ffd3610ab49

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
2KB

MD5
e52e70045ca0c576640cc8a7d7b6a021

SHA1
1cb95991e91758e71456d72f80e807fbcba9a9f8

SHA256
f3d427c2b0400571feca1ecff758956c846307a7a1c57e027240efa6617004d7

SHA512
a3163aa0a58a89a2a4d4cdaba772ef03f86edad4559fc0020240dd9e9e8f60261668f0885f1c0a7935e2a419f34dbb422525615b446f29b9d4b945640d2f62d7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
2KB

MD5
36505ce7056d991ffa7ddf703e61a000

SHA1
3c7ef6200e01211984ab53011eed228c1a730a2d

SHA256
90db2ecaa85d97991a19f8e405f77dd020b8f9a36d98a0155f3a685a653c7ada

SHA512
d07184abf7f5a28b7c522f80625aa4ed4c2477fd8da572a7ac88118e1f9c25683b014c481942838d8a91281922041def20c45fcd0c4243631b31c1ff757bc800

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
2KB

MD5
c776ee4797da87776a80c39e603d6198

SHA1
3ecff263b6382f6330f8fc988bb844dca393a88c

SHA256
9dc0b7ced2b195c1f81b71e5bf1581bb88c7fb30b4b70eb90f0d877c580fe883

SHA512
b8084c5047cda364517e23ab163b9b13ce58915ddeb0b21440b2a08add521a17a253a8b449b12fed2b18711577e5d7f440814344df554435e4ca2ddb17a0d0ae

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
0b3b9b47b6644ececb1f54eb966860ac

SHA1
e65ce942e3f0eaf5af972def129af1184f477826

SHA256
77d88353ba16225182f601cf6e5c9a66519060b28c6acbba87f096b7fe62d433

SHA512
a69eed1c1f8629ef3cd9455c033feb4ac8c2fa7985537d2333e61e6a8a52a2a752fb48bcff0f86211ed6bd5ae87ff0e0e300d5a8e0f24072bfa33949731e0f6a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
8e34291410b7e7ac5c3525c0ef10763c

SHA1
2cc8aaac6429f483f7058445d96c86bdd96e7d02

SHA256
ca89f822b99bb2c16da690956ba2475cc1def0d44b6be7b09689dd7a52584b79

SHA512
74920948527154822dbcf8fac8a8f22d80b26766782373eaa3cb9b5d68beb51d2c9cbea428afac2b7d7394be4fe788c69ac35759d2d34c755f8dffa27b0c927a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
067eaaae2f1dd8c047e5dc45e0884799

SHA1
9f2ef9ee5dd9e1964b8bc4e27b45802ffa947b38

SHA256
8c6cd4d6ecac7423aaccb82d7d2b64cff57c536d37230382ef8e092f91e17402

SHA512
2d6f0440bfaaaecbb3a62f036c7e8df85cfc487f68e7d49256ba78910c33f5c96bbea48b52593bd09085941613ca67f3512f70bdb4e599af5014b455704fd99c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
31b490a0fa46d2c30afe61624ed6e38d

SHA1
78f9902a2e2f54c823265c6f475c690dc9e1ca3c

SHA256
c5c6d08ce2ffbb05710560c313ae6639a4212b610fd623fea97b39a97cb44edf

SHA512
d0110fb6628ed026ba1f841fc8c4ade01006c1fd641c3255d951e359fffc962741394a844d62b2225b5090332f14cf41aa5b438e7e7a2d69aa585cdd5d1b1d64

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
efd0577802dd9760a6018015380925ca

SHA1
89489b053c2e846bdb9b7e36b99c69b0db519d96

SHA256
ec9409c76d14421cdb8f60c43f719b41689867bb916cff49b40d26592ff4ad6d

SHA512
074cc23811ddc8dd8c9bd97433858f402312ec8aa2f78480a0101488604f74e9b7f0e04c237e5e33e0d86903ee37e84d24f5e5cbdca3b234cd91399ae590c4c6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
cb2263c6917617c535559f89acaba52d

SHA1
0d13d52ac46d33444f734abbf44a3bdf16ee881b

SHA256
acd74a7dc28dda8a24929c3e324c3395effe637cfb397b41a7378f7dc1bfd657

SHA512
0bb883f3b6a566a3647e8cbeb6edfa46c9c55d045a3889d9e1327de10dbb205c88b9333c30729b8d72efe2f60e3adfb31b33b7b1f2694c720255ddbebc9feaca

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
aa9720726aae8dd3e24709ab19df23ee

SHA1
a8832b84476bc79be113f4b651b26e5eb8bbaf07

SHA256
af8cdb6cdea4ae7957c2170aab79a84f8e164c3b9c4b84ed16f99e6551d76e71

SHA512
f37974d5b336bc0a01c0f73c9861f5bea9878b37a4c40002187b8cb6d48b5f6a6bef6ce97f3ba7587f9f7947c0949d25222253a7561eac126e644741cf8281a2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
42295d80fe192cbe18440c90a4f35cd2

SHA1
49515a443b28133bc5ecbd568e2c88c89ea13aa4

SHA256
fede2c88eddce0ab91fa4a538ab20c289fb39ce1896458924f9170571c544105

SHA512
28367f2c8889c49020ade5647f8050fa69b345a848251995551437c8b4055bc1f8c4ce95c3e0697a922052dcdfb3606ed0542e06c4f7e83af3af20172a64c5a7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
9cb34bd47f4660672624b4c3ee816111

SHA1
5a48a2fcde03a08282a11f834b4efd05dbf20137

SHA256
e962f546f151aec7724f361dce9f2aa63600d32c1f4494f41832c5eb7c2d048e

SHA512
ae6bedd34fc8f08cd499085d2f380a7535c242ccc8494530a74205169bc0836b9df9ceaa5bb030efb2ade623870532c146069f220f86efaf92b3ecdab14ddfe8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
c31ad1f24278162c018473a772e888c2

SHA1
f49d41d0ff8860297a88ad1fb01704f12febfe4b

SHA256
d857c78628aa7411df015cb2139d688eea8d8ed1730cdb35fdeb2b872308a6ee

SHA512
c118868c355d07052c40d1ac479682a7067d27b9410fd4b7985e0683b829f520366964977c0261c62df61ae8a003e5384bb11565b395f75d430ba21bb6910ed1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\e60030e2e5440743857a39cacd108634434c91f1\0a471ff7-7655-4506-9859-c2966b86191b\index-dir\the-real-index

Filesize
144B

MD5
86de78594811d4bb5623a5807c9fc695

SHA1
a9ae9bfb2c1def8733f5dc5ebb84d9d9a76ca076

SHA256
4fe0e1e664eedcf7e703862b4ffdf30446e45282e74399f192468fb9920a6aae

SHA512
6b847fc6d66fe0ba1e44b5578b4fdcd6790a9a126ba6693bd4d76b34238d8fc1f605b1b25f0e909fadb464ab0906417eae7f3773bf7917ede434e08247ff0180

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\e60030e2e5440743857a39cacd108634434c91f1\0a471ff7-7655-4506-9859-c2966b86191b\index-dir\the-real-index

Filesize
144B

MD5
35fba4282a9b87a66cb2db66c92978fe

SHA1
193e1f5dda4a759d6afdb5a8a61bc119c4b1cce5

SHA256
1f89506cbf4b8a8a5d70b20d0bc36e6b31888174b297af16ba6fdd35bd732241

SHA512
7cb219c23f37b65ee5dea524a43592bd05ea937be46e8e503cc29f9b733c61a1e6030510cb2b375bf65efb9d1c0d2ba38c1e7c4a06fc8dd4ca4b370a03d95b31

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\e60030e2e5440743857a39cacd108634434c91f1\0a471ff7-7655-4506-9859-c2966b86191b\index-dir\the-real-index~RFe5c7bb0.TMP

Filesize
48B

MD5
e112321b47961abb3f45ea5bd9e21998

SHA1
0a2e8ae04ff267056bb7b3bb2da43652a1b065a7

SHA256
da36ed4a39366ac96eae7a216cc8f27b99ddcd5d79d7e1f4a2f1b0e41905d85f

SHA512
8f35145156404eef5ee2ff8919577a2ec0ff412c2fd1971525770f6a8c5268a2985ba011ee47c956ade2af11811a1fa9f57efc79fd6caca028db69476675e5b5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\e60030e2e5440743857a39cacd108634434c91f1\a08cd378-93c3-4c8e-9736-c683f7c9c3ba\index-dir\the-real-index

Filesize
48B

MD5
654d27df611a15e69e0979d17c29de5b

SHA1
886aea4a8c1e1155e5aaf56672e218c611581566

SHA256
f71bf00fbccb91cfa0ae1bb8e3b3bd708aacfed17485be4c7f8fcef8c447129a

SHA512
cbb698f0136273645f0364ada37f041792c10bb1b7fe6cf945b31b13fcbb4bc6281bfd0d6b9bd9d9424fbbd60bdae34df438f6978b03cf3a407af2618198121b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\e60030e2e5440743857a39cacd108634434c91f1\a08cd378-93c3-4c8e-9736-c683f7c9c3ba\index-dir\the-real-index~RFe5c7bb0.TMP

Filesize
48B

MD5
88f056838df2d61ecfb118964dc31b49

SHA1
d48b88ff616adc9edc95e7b11b82e4527c890202

SHA256
d5128abe7e5f17032c1b95a0f46d123577dd126a7371aa95550926441001853e

SHA512
3f6bfccdef1d41fee9f703cd19f4741b28a1a791b59a39528c86e9c3bb0f813c98944cb9a2c76dddacf193698b88c923b864f4834ab4a371c7845c9c3022a48f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\e60030e2e5440743857a39cacd108634434c91f1\a08cd378-93c3-4c8e-9736-c683f7c9c3ba\todelete_0cb06590c9c2abdf_0_1

Filesize
8.5MB

MD5
cf968b1cb9b66f53d67e69ab3b6f4abb

SHA1
02223bec8e476a2c072c72b5747675fe5a49cfd2

SHA256
56ad083743dffb6196314d1f4d8048e221f101353df9af0153b8966e64e9852f

SHA512
9d70015b45c5639be51c3a599f63594b0fe3b319b616349c38f1f5f8ab62cf9069ea9d25af26c501fab0c7c2b7a14b5ef853bfdf0a753d0f4d882c13f15a0b05

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\e60030e2e5440743857a39cacd108634434c91f1\a08cd378-93c3-4c8e-9736-c683f7c9c3ba\todelete_67ef2419aede651c_0_1

Filesize
6KB

MD5
4501e9ae9e7e98f3b0a34f61172290e6

SHA1
6e3eee4899960e93c17bca8f7efff66601737558

SHA256
7556996eaaf533c4d83a3a19d7a7c46c0609e5a37f4a0913c36a6f5eb12b85ed

SHA512
f9670a7e5250a649ff0a46bc926b24ad97d8aafb033ea5bbbf173376814662a79888752e6e8cf26d0cb25996c51729280d2374738315bd05d4311a8c7e6077c4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\e60030e2e5440743857a39cacd108634434c91f1\a08cd378-93c3-4c8e-9736-c683f7c9c3ba\todelete_6d4b78f2153916cb_0_1

Filesize
95KB

MD5
7f528b2a67bc9d9def7a2cabdfbfb982

SHA1
ff1484cb83d24a41cfa16ba7c6bb96cd2527d12f

SHA256
26cfc0d2de0f9664c47e6a3b3d9b776830ee71ce8357b3a773f6e89d860d97df

SHA512
cde5ad71dbc1be015f7ef1a733fef89eefa179ac27311a16f4ddeb00016cb233107e1349c881478d039da692f1bced3f56ed0f60eeddf88bd1ee4db91f29ab3d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\e60030e2e5440743857a39cacd108634434c91f1\a08cd378-93c3-4c8e-9736-c683f7c9c3ba\todelete_d5d87ad8de7e3e54_0_1

Filesize
97KB

MD5
9d36dc09ab2f5ac4fb9796a2c63c293b

SHA1
a430e34ca5ce912a77e9761f8f451206943ee1b0

SHA256
2f55ced62eba78130e3664ce175b95d7417ea0b7374d3cef4932fd639104c51c

SHA512
2315bcc6318fac2b9d179d0d639b322b5ce9dbb2ca549c84b8e3e7346db17bdfffd33294a12e00c59d8db7184e6c9c898ee34526a43f598721836889338c3f46

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\e60030e2e5440743857a39cacd108634434c91f1\index.txt

Filesize
151B

MD5
4de23c2ae9e547182f8fd0f9bc14b49a

SHA1
d38fbfcd156542945a3802d62079b96ceda05c90

SHA256
0c2483c61e7ec141a10dbc55af8f9d7ca910b219cd4fce51fb0dad6c82dcc3f7

SHA512
bf88601143decf5837177a0ea78bfe40eec64127d42d6ca59090908944e925853d993d251247bcc7be52c40e1c5c679edbb1b86a87cf313e9258f8c87223171d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\e60030e2e5440743857a39cacd108634434c91f1\index.txt

Filesize
265B

MD5
fd9384a53df4cdb076d97ad248d27a9d

SHA1
e55bf6980c5a3027f3474806a20d4292ac4323a6

SHA256
ee630334285039e67efe265a4ed3d6c4c09a4e7a2c119ca6abb2feb5b684eb85

SHA512
0f4f207bc5476b5035a65ba3467a82a6d87916c1eaab76aa212e1939b2c989b20783ea59bd1c8eb8ea7a02f080c099f92f9525fd711658dd5e570fdb8b406340

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\e60030e2e5440743857a39cacd108634434c91f1\index.txt

Filesize
258B

MD5
ae292ea034d4702170a2cccbb76775c7

SHA1
cccf459eee2d8439e124d839c16273e99e3be29d

SHA256
22fc4c2d32ace0665824a3149a9d82383ccf68d9bea9a2a9aa5ade70f0ff56e7

SHA512
ad8a0a289e79b982fb16bf8baf90ef107b63fbfd5cbcb071d77f23acafdf461cd89548dc6ee8c358cc7896b6f3544d985390e20495f45c94032ac9a63b018e2b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\e60030e2e5440743857a39cacd108634434c91f1\index.txt

Filesize
258B

MD5
3bf8b04502a07990cb66cb7759fd4478

SHA1
bee8ce95c5d5a8aba26a8a56d1d5fb26216ee5d4

SHA256
ae369b7668fb356187a790be7c170fa26b85fe081630dce0509f3a5ae9e04052

SHA512
b8deb63b450d7ca7e1ab395672b7f0c1591a2131982be8606e24e2055ab00db3e1819306a26281442e76a9b304133bd9d9c89b43a50e347984158f251f055d37

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_0

Filesize
7KB

MD5
44da0b984e9552c6d80d30c568180012

SHA1
f57bd8b3cb7c9783b6457941ea2ac0af1c16f1ef

SHA256
6202f57b4ede21eaf74a08be0bfb9794d6ad5fec4ab21be20cb915d970917134

SHA512
dc425a529e7fc270b63602a3c098fa3826bc0fe7675606aa4940586f35d3570a9b9b13205ce3f5ed889353ff32f0cc88051e0c33d252663ba1228343c1d02ff3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_0

Filesize
2KB

MD5
cbe7a4e668522c9bd86bf06d300c6460

SHA1
869ec45cb590e3dfc6a0ece29b3299d636de851f

SHA256
181385d95238b7cdfbc8d84d182a5e11480ff33adead427d03f38f2dfbdf6e96

SHA512
0fd814ae1c45c34a3a0cab787699c2bc5fcb3e0e5207e2134beca77d6b0bcdd84e25f9d9a882596e9189772900bc95afa67263a09e355440daba7d2f80d049af

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\ba23d8ecda68de77_0

Filesize
6KB

MD5
dcb5f9f82ae62620c42300188e8d9f88

SHA1
239302a9f6d8cf6cbb4892104e9d589677ad3ac6

SHA256
9d34f4f3a21b812a6375e2679499cd616e3e0a04c600d939bc5e0d1a883edf12

SHA512
76e1407aee687c1db7d6e5cf37c3dddb0a2e22d93955622cc6c8d7306be5b1f0fc8e62e42133d8afdb46e3c2cfbeeb6661f57aeae1d10cb25683e23f43d384cb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\f1cdccba37924bda_0

Filesize
7KB

MD5
16b08eab414c78f540ab215abb319c7f

SHA1
976d51923be38f883d22feaed4f5586fa3d19dd5

SHA256
a66ffd981dc170c46950cd37c14ab497290aec8126237556d42acab408824910

SHA512
a642822640a36d97c6310c228e0993d918b951b6ab01fa7c34fc74e016c6dc0bbd2d5ce8f1dbe6928cf9ac6085ace8feab4e46f7da5e4f1cad92ee93e48904ac

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
144B

MD5
eeb3092859ad79306c16270d1e58d081

SHA1
f0ae9311b4409f8b40f6b1070427fb3305357714

SHA256
140a031b9cb244b4a802326818ecb1f2890272c42a2f607db8b34f560db570eb

SHA512
38024a7191555e8c0624343eb30d037c02d09e44a7e939f0cc5a260a99c1510d724e11e8146ae40ad1c3295331f0ee1cd97038ca28177e3da2b820a26ece3631

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5c78e1.TMP

Filesize
48B

MD5
d62120c73ce836558ff07b453463a3d4

SHA1
55789ac0f3b2865a2965dc80ee2489685fc441b7

SHA256
7a346ee4c84b71b42865f36e690aa34e3d9649a91973d7e10854d720be5a20f4

SHA512
959d8f485e4e00251c806570980fc68c740747a420fad0b045eb134f3a37e800470db18b8a434ded71fb808555553107918f91a87aa1ff854cfebf255efd1584

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
2KB

MD5
d730c7ff66225da3306754649c7f9287

SHA1
2fdd50d75e72fa9795a5afcbcea5efbc8d7581ec

SHA256
64f2286c2e67f889db2292b615d5a7232f8b6d44dd5565993c11feb456734603

SHA512
54767444c50afb5f01877f3907c8a5366dc97d872ab106b87ad470293c124a007e7678562dd8263ae6be0ed2045d2744c0f28ccc281cc2c7318ac340f90ac0f8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
677e26ff2c4d67797157691a1e4db74d

SHA1
1652f115ecfb1bb0546c295283ee80a641e9b7bb

SHA256
be52078397b6460373393609155cc881ca0a3ea5b87b09b731011d787949a0b5

SHA512
37834d5ac007e4cef0e1fbf81f11b16d092c7d6e570ff685b5439795e58a2c75af01fd590793ea69c0b695a5dfe94311153f40a8ead669c9d374cafc5ccbfdb7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
3KB

MD5
de171bf541f69fbddd581d9b8dc1e355

SHA1
dc7da3d6c689e2d3ae48e444eac2087b01764dfb

SHA256
9769ddc690f6ae4b79ca79958e485028e007df5d0ea3a18fa1a2b94b3add36e4

SHA512
b45a0e401e90d9ff48c2b05f23ce4029c7c04bd92a89ef18248c428f322f6afefea42804041cf86a096c981b632d9cffbb16f0d85431d20707982616b4d2132d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
3KB

MD5
78da51e7622662ba2b769bec66a9c8d6

SHA1
de2fa9bfa6d2105b3a84ce44d14648aa360c5833

SHA256
a644d6fac0fd695c0d36c6d84c8e04fab3c5e88e2cb1308abcbde09413b487ff

SHA512
bcc940e2f6a8a9060711396196329a89b0a82821c3195fc3130328b9c0e52c83fe781c45452102a3e3cca1411a145ce393eb9e1beee07a5b5c23c5d289988e8f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
3KB

MD5
3a7bf5c19915b4ba3c88d0fea84b3a9b

SHA1
e8f522a060089c499a74efa1dba743652a9c8bf8

SHA256
5d9db893a1eec13b7a23517b4950b560fde483540bcc8d00fb2068b1ec24de39

SHA512
04ae37491b88250d164216d1abe9027e609f955194e1a55f00b3254b2f9cc7f643e3b5a90bf4df4563233f22485e53b8deadc89ea04089edfefaf005b51a2190

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
3KB

MD5
7e9bbc791dad6ef474f81038d94d77e7

SHA1
32a67153a9c06111fb0612d77609fbd6ee69ddd2

SHA256
85e4b01625be564a3366364a518ecb375379aae31ee03b135910d047858dbb31

SHA512
f2f5f78a0762818073674f7a371962f5ff3ba392682f802f5b983f909b6606d2a996fa5210bf6d3069311f32ad94bc42218633cbfbe42a57400b1df05da19a94

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
3KB

MD5
42b35fb5b9108c9ff00035c15122fd6e

SHA1
cbfafa72043560df29646436d0336bcac294e9db

SHA256
48461687a7e6478eb4c9c76baade9a34a8049b101d0ffea183c4e985e4bb6c7b

SHA512
d9b83077bdcbcf300677c1964573c6c87fbe726a73db8c5f4e65b81973b71f3620d04f985d519cbf90a8202e2c75900e3113c3bebdd8e5706d126bb314f655a3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
3KB

MD5
f240c8e6f27ef5b9d3d92cbb96c92cba

SHA1
15d405e8854476bec1b7ea30fc6a6d1b1acc7c7b

SHA256
89cbdfee8cbbf3e847d838ddbdc4ee2c3551c670b5f6acdf45a28aad3284fcf2

SHA512
4e53495b5b3a6d5f9b6e8995b597491c24d1b009b531ce6da21962bc4d78068d3438085a913d25033718ac7f74eb8cdaf5b167bf54147fc70ba79d6a02e9ca2d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
2KB

MD5
7e5c086f411a9f132931de3273217cfe

SHA1
e4892319b48699c07f23b4322545c4b9065eed08

SHA256
f1bfa88cbc12b82bf39aaeb6900b0310db0402ec295155e795093e5f9d8b2953

SHA512
7c9b241bc1a4868bd6b0a1591a1017fc1ddbb57959f4b09e5bbfa0e7c4ec2190ebe75584061d91ba315cf117ca4abb1b6aa6ce444ca9456f9d86f37183e92f5c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
3KB

MD5
ec7ea844e3ee401c4ff8f3cb55668d8b

SHA1
b1faf0c6bc3eacc320e1e5e56084259e9c93d854

SHA256
0044e1c226506dead0ef76c85cd8ff3df18b75fea1fbb104bec3eaccf9f7d24f

SHA512
eb0c3cd08afd5d2ea34a81b085ce8abfcc49e9a7a909300d17dec62bc8ddfd4ec00fb0a110938a0653baff9bd78459e3f41a24723bd0540e0c20c8bc7ee27adc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5be8c6.TMP

Filesize
538B

MD5
9efa816ec2fd56535b0843bdc4ec6552

SHA1
b5f9287bb2add3a8c860f7c2984a0467fe9cba85

SHA256
6bf0d02e562a5ca6955c1f865a6013c91cb4480ed89b2e4f93a91b2e2b1d3094

SHA512
0b2421194b49ec51c19de6b23882546f91e471350d992c4d272aa317f600b298cb3b38ebf82f6fdbcaa8b4808c61074e2282269c0d7f5c6790a5b23f5e6bf012

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
7775f32e9386decaad0fd9a4d64477ca

SHA1
0892f5445e5a5836c628bf94734725e8e4d99f2f

SHA256
b70ab83ea850e1c3d39777bb52220459a49ca7eecd867e0277fd91ea511ce3e9

SHA512
84f6db50fad1b5672c84ab5726d3369c494240df8df2e5194a7815b7851c5cda4d26fec57228093549387654017c9549e40a0b5211ea0c2d7995d21c9eca65cd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
fd52b5647a3bc578d7a0840ff36cb748

SHA1
4d520f40509864895aa59ba6126ab753560c0bda

SHA256
f9c9dacb56f6d3e7850856a4c9e195eb97c6e389dd324882016ee6411a9392d5

SHA512
7032513de8c1ee8b09c7ca3881909a801d533cebfd5c59b9d398bcd0a213d8cede91fdf7c50981e2e64de97aff6c79a81c4b7041566604426b0e1deaa15655ca

Download Submit