hxxps://minecraft[.]softonic[.]pl/

Analysis

max time kernel
149s
max time network
153s
platform
windows11-21h2_x64
resource
win11-20241007-en
resource tags

arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
submitted
20-11-2024 22:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://minecraft.softonic.pl/

Score

7^/10

defense_evasion discovery motw persistence phishing

Malware Config

Signatures

Executes dropped EXE 23 IoCs

pid	Process
5932	Setup (2).exe
6352	nsvEA1F.tmp
3876	PcAppStore.exe
5144	Watchdog.exe
6116	NW_store.exe
3128	NW_store.exe
2968	NW_store.exe
7016	NW_store.exe
5372	NW_store.exe
6260	NW_store.exe
244	NW_store.exe
4064	PcAppStore.exe
6328	Setup (2).exe
6336	PcAppStore.exe
7000	NW_store.exe
5512	NW_store.exe
924	NW_store.exe
1816	NW_store.exe
7092	NW_store.exe
5828	NW_store.exe
4220	NW_store.exe
6704	nshA149.tmp
5168	PcAppStore.exe

Loads dropped DLL 64 IoCs

pid	Process
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6116	NW_store.exe
6116	NW_store.exe
6116	NW_store.exe
3128	NW_store.exe
2968	NW_store.exe
7016	NW_store.exe
5372	NW_store.exe
5372	NW_store.exe
5372	NW_store.exe
2968	NW_store.exe
2968	NW_store.exe
7016	NW_store.exe
7016	NW_store.exe
2968	NW_store.exe
2968	NW_store.exe
2968	NW_store.exe
2968	NW_store.exe
6260	NW_store.exe
6260	NW_store.exe
6260	NW_store.exe
6260	NW_store.exe
244	NW_store.exe
244	NW_store.exe
244	NW_store.exe
6328	Setup (2).exe
6328	Setup (2).exe
6328	Setup (2).exe
6328	Setup (2).exe
6328	Setup (2).exe
6328	Setup (2).exe
6328	Setup (2).exe
6328	Setup (2).exe
6328	Setup (2).exe
7000	NW_store.exe
7000	NW_store.exe
7000	NW_store.exe
5512	NW_store.exe
924	NW_store.exe
7092	NW_store.exe
7092	NW_store.exe
7092	NW_store.exe
924	NW_store.exe
924	NW_store.exe

Adds Run key to start application 2 TTPs 3 IoCs

persistence

Registry Run Keys / Startup Folder

T1547.001

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-3870231897-2573482396-1083937135-1000\Software\Microsoft\Windows\CurrentVersion\Run\PCAppStore = "\"C:\\Users\\Admin\\PCAppStore\\PCAppStore.exe\" /init default"	nsvEA1F.tmp
Set value (str)	\REGISTRY\USER\S-1-5-21-3870231897-2573482396-1083937135-1000\Software\Microsoft\Windows\CurrentVersion\Run\PcAppStoreUpdater = "\"C:\\Users\\Admin\\PCAppStore\\AutoUpdater.exe\" /i"	nsvEA1F.tmp
Set value (str)	\REGISTRY\USER\S-1-5-21-3870231897-2573482396-1083937135-1000\Software\Microsoft\Windows\CurrentVersion\Run\Watchdog = "\"C:\\Users\\Admin\\PCAppStore\\Watchdog.exe\" /guid=27B06F29-58D3-4FF3-B1FC-F519E4E4F0ECX /rid=20241120220605.441240732375 /ver=fa.1092c"	nsvEA1F.tmp

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Mark of the Web detected: This indicates that the page was originally saved or cloned. 1 IoCs

phishing motw

flow	ioc
162	https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html

Checks system information in the registry 2 TTPs 4 IoCs

System information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer	NW_store.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName	NW_store.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer	NW_store.exe
Key value queried	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName	NW_store.exe

Drops file in Windows directory 2 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SystemTemp	NW_store.exe
File opened for modification	C:\Windows\SystemTemp	NW_store.exe

Subvert Trust Controls: Mark-of-the-Web Bypass 1 TTPs 1 IoCs

When files are downloaded from the Internet, they are tagged with a hidden NTFS Alternate Data Stream (ADS) named Zone.Identifier with a specific value known as the MOTW.

defense_evasion

SIP and Trust Provider Hijacking

T1553.003

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\Setup (2).exe:Zone.Identifier	msedge.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

System Location Discovery: System Language Discovery 1 TTPs 4 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Setup (2).exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	nshA149.tmp
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Setup (2).exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	nsvEA1F.tmp

Enumerates system info in registry 2 TTPs 9 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	NW_store.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	NW_store.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	NW_store.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	NW_store.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	NW_store.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	NW_store.exe

Modifies data under HKEY_USERS 3 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	NW_store.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133766139707009458"	NW_store.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	NW_store.exe

Modifies registry class 5 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-3870231897-2573482396-1083937135-1000\{1EB1C718-EDF1-4365-BD81-29AA0249C9B5}	msedge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3870231897-2573482396-1083937135-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\Content\CachePrefix	BackgroundTransferHost.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3870231897-2573482396-1083937135-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	BackgroundTransferHost.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3870231897-2573482396-1083937135-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\History\CachePrefix = "Visited:"	BackgroundTransferHost.exe
Key created	\REGISTRY\USER\S-1-5-21-3870231897-2573482396-1083937135-1000_Classes\Local Settings\MuiCache	BackgroundTransferHost.exe

NTFS ADS 4 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\Unconfirmed 932920.crdownload:SmartScreen	msedge.exe
File opened for modification	C:\Users\Admin\Downloads\Unconfirmed 409670.crdownload:SmartScreen	msedge.exe
File opened for modification	C:\Users\Admin\Downloads\Unconfirmed 395562.crdownload:SmartScreen	msedge.exe
File opened for modification	C:\Users\Admin\Downloads\Setup (2).exe:Zone.Identifier	msedge.exe

Suspicious behavior: EnumeratesProcesses 64 IoCs

pid	Process
2004	msedge.exe
2004	msedge.exe
2820	msedge.exe
2820	msedge.exe
5480	msedge.exe
5480	msedge.exe
3648	identity_helper.exe
3648	identity_helper.exe
6084	msedge.exe
6084	msedge.exe
5244	msedge.exe
5244	msedge.exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
5932	Setup (2).exe
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
6352	nsvEA1F.tmp
3876	PcAppStore.exe
3876	PcAppStore.exe
3876	PcAppStore.exe
3876	PcAppStore.exe
5144	Watchdog.exe
5144	Watchdog.exe
5144	Watchdog.exe
5144	Watchdog.exe
3876	PcAppStore.exe
3876	PcAppStore.exe
3876	PcAppStore.exe
3876	PcAppStore.exe
3876	PcAppStore.exe
3876	PcAppStore.exe
3128	NW_store.exe
3128	NW_store.exe
3128	NW_store.exe
3128	NW_store.exe
6116	NW_store.exe
6116	NW_store.exe
6116	NW_store.exe
4064	PcAppStore.exe
4064	PcAppStore.exe
4064	PcAppStore.exe
4064	PcAppStore.exe
4856	msedge.exe
4856	msedge.exe
4856	msedge.exe
4856	msedge.exe
6328	Setup (2).exe
6328	Setup (2).exe
6328	Setup (2).exe
6328	Setup (2).exe
6328	Setup (2).exe

Suspicious behavior: GetForegroundWindowSpam 2 IoCs

pid	Process
3876	PcAppStore.exe
6336	PcAppStore.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 64 IoCs

pid	Process
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	6116	NW_store.exe
Token: SeCreatePagefilePrivilege	6116	NW_store.exe
Token: SeShutdownPrivilege	7000	NW_store.exe
Token: SeCreatePagefilePrivilege	7000	NW_store.exe
Token: SeShutdownPrivilege	7000	NW_store.exe
Token: SeCreatePagefilePrivilege	7000	NW_store.exe
Token: SeShutdownPrivilege	7000	NW_store.exe
Token: SeCreatePagefilePrivilege	7000	NW_store.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
3876	PcAppStore.exe
3876	PcAppStore.exe
3876	PcAppStore.exe
6116	NW_store.exe
6116	NW_store.exe
6116	NW_store.exe
6116	NW_store.exe

Suspicious use of SendNotifyMessage 23 IoCs

pid	Process
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
2820	msedge.exe
3876	PcAppStore.exe
3876	PcAppStore.exe
3876	PcAppStore.exe
3876	PcAppStore.exe
6336	PcAppStore.exe
6336	PcAppStore.exe
6336	PcAppStore.exe

Suspicious use of SetWindowsHookEx 7 IoCs

pid	Process
3876	PcAppStore.exe
2820	msedge.exe
2820	msedge.exe
3876	PcAppStore.exe
6336	PcAppStore.exe
2820	msedge.exe
2820	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2820 wrote to memory of 5008	2820	msedge.exe	77
PID 2820 wrote to memory of 5008	2820	msedge.exe	77
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 1344	2820	msedge.exe	78
PID 2820 wrote to memory of 2004	2820	msedge.exe	79
PID 2820 wrote to memory of 2004	2820	msedge.exe	79
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80
PID 2820 wrote to memory of 4240	2820	msedge.exe	80

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument https://minecraft.softonic.pl/
1⤵
- Enumerates system info in registry
- NTFS ADS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2820
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffaca9b3cb8,0x7ffaca9b3cc8,0x7ffaca9b3cd8
  2⤵
  PID:5008
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1920 /prefetch:2
  2⤵
  PID:1344
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2432 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2004
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2856 /prefetch:8
  2⤵
  PID:4240
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3224 /prefetch:1
  2⤵
  PID:4636
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3236 /prefetch:1
  2⤵
  PID:2380
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4036 /prefetch:1
  2⤵
  PID:2472
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5368 /prefetch:1
  2⤵
  PID:4124
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5212 /prefetch:1
  2⤵
  PID:4772
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5700 /prefetch:1
  2⤵
  PID:708
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5940 /prefetch:1
  2⤵
  PID:1988
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6352 /prefetch:1
  2⤵
  PID:4900
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6468 /prefetch:1
  2⤵
  PID:2432
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6632 /prefetch:1
  2⤵
  PID:4616
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6864 /prefetch:1
  2⤵
  PID:1608
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6452 /prefetch:1
  2⤵
  PID:2264
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7212 /prefetch:1
  2⤵
  PID:3020
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7220 /prefetch:1
  2⤵
  PID:3628
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7516 /prefetch:1
  2⤵
  PID:1272
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8008 /prefetch:1
  2⤵
  PID:5024
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7032 /prefetch:1
  2⤵
  PID:2892
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8032 /prefetch:1
  2⤵
  PID:1536
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7912 /prefetch:1
  2⤵
  PID:2548
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8548 /prefetch:1
  2⤵
  PID:5040
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8736 /prefetch:1
  2⤵
  PID:2812
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6460 /prefetch:1
  2⤵
  PID:5316
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6764 /prefetch:1
  2⤵
  PID:5324
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8688 /prefetch:1
  2⤵
  PID:5400
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=9468 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:5480
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7452 /prefetch:1
  2⤵
  PID:5260
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7404 /prefetch:1
  2⤵
  PID:5396
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9148 /prefetch:1
  2⤵
  PID:5844
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9220 /prefetch:1
  2⤵
  PID:4176
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5168 /prefetch:1
  2⤵
  PID:1584
- C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7916 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3648
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4556 /prefetch:1
  2⤵
  PID:2084
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4784 /prefetch:1
  2⤵
  PID:1304
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6488 /prefetch:1
  2⤵
  PID:848
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5640 /prefetch:1
  2⤵
  PID:6036
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6088 /prefetch:1
  2⤵
  PID:5408
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5884 /prefetch:1
  2⤵
  PID:5412
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6152 /prefetch:1
  2⤵
  PID:5424
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9424 /prefetch:1
  2⤵
  PID:5432
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6072 /prefetch:1
  2⤵
  PID:5440
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7288 /prefetch:1
  2⤵
  PID:2468
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7588 /prefetch:1
  2⤵
  PID:2548
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9240 /prefetch:1
  2⤵
  PID:2172
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9432 /prefetch:1
  2⤵
  PID:2264
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7412 /prefetch:1
  2⤵
  PID:6124
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9324 /prefetch:1
  2⤵
  PID:4824
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9000 /prefetch:1
  2⤵
  PID:1472
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8796 /prefetch:1
  2⤵
  PID:5660
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9436 /prefetch:1
  2⤵
  PID:5800
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7872 /prefetch:1
  2⤵
  PID:5240
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9536 /prefetch:1
  2⤵
  PID:3020
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7348 /prefetch:1
  2⤵
  PID:240
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8836 /prefetch:1
  2⤵
  PID:3440
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4984 /prefetch:1
  2⤵
  PID:5992
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5536 /prefetch:1
  2⤵
  PID:5236
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6316 /prefetch:1
  2⤵
  PID:5880
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6400 /prefetch:1
  2⤵
  PID:5868
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5160 /prefetch:1
  2⤵
  PID:5856
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9032 /prefetch:1
  2⤵
  PID:5840
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8244 /prefetch:1
  2⤵
  PID:5892
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5472 /prefetch:1
  2⤵
  PID:3464
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5104 /prefetch:1
  2⤵
  PID:5784
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=2004 /prefetch:8
  2⤵
  PID:6076
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=6340 /prefetch:8
  2⤵
  - Modifies registry class
  - Suspicious behavior: EnumeratesProcesses
  PID:6084
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5540 /prefetch:1
  2⤵
  PID:1164
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6636 /prefetch:1
  2⤵
  PID:2140
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5492 /prefetch:1
  2⤵
  PID:5768
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6412 /prefetch:1
  2⤵
  PID:3440
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5660 /prefetch:1
  2⤵
  PID:4100
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6220 /prefetch:1
  2⤵
  PID:564
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6296 /prefetch:1
  2⤵
  PID:916
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4584 /prefetch:1
  2⤵
  PID:5628
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9356 /prefetch:1
  2⤵
  PID:4704
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8516 /prefetch:1
  2⤵
  PID:488
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8360 /prefetch:1
  2⤵
  PID:2428
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8792 /prefetch:1
  2⤵
  PID:5372
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2000 /prefetch:1
  2⤵
  PID:5296
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5872 /prefetch:1
  2⤵
  PID:4968
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7204 /prefetch:1
  2⤵
  PID:4880
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8104 /prefetch:1
  2⤵
  PID:2176
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6280 /prefetch:1
  2⤵
  PID:3168
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8556 /prefetch:1
  2⤵
  PID:6124
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5644 /prefetch:1
  2⤵
  PID:5000
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8100 /prefetch:1
  2⤵
  PID:3396
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8604 /prefetch:1
  2⤵
  PID:5648
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7692 /prefetch:1
  2⤵
  PID:6052
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7516 /prefetch:1
  2⤵
  PID:2276
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4796 /prefetch:1
  2⤵
  PID:1164
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8840 /prefetch:1
  2⤵
  PID:6132
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9324 /prefetch:1
  2⤵
  PID:2088
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7040 /prefetch:1
  2⤵
  PID:1884
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8208 /prefetch:1
  2⤵
  PID:2544
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9160 /prefetch:1
  2⤵
  PID:4816
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5780 /prefetch:1
  2⤵
  PID:5508
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8916 /prefetch:1
  2⤵
  PID:1124
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7080 /prefetch:1
  2⤵
  PID:5128
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4764 /prefetch:1
  2⤵
  PID:928
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9300 /prefetch:1
  2⤵
  PID:2428
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6552 /prefetch:1
  2⤵
  PID:5896
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=105 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7780 /prefetch:1
  2⤵
  PID:5644
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6888 /prefetch:1
  2⤵
  PID:3544
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=107 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9316 /prefetch:1
  2⤵
  PID:5968
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=108 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7996 /prefetch:1
  2⤵
  PID:4732
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=109 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6356 /prefetch:1
  2⤵
  PID:3760
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=110 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5632 /prefetch:1
  2⤵
  PID:4692
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=111 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5416 /prefetch:1
  2⤵
  PID:1980
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=112 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7284 /prefetch:1
  2⤵
  PID:4792
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=113 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9096 /prefetch:1
  2⤵
  PID:5500
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=114 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3840 /prefetch:1
  2⤵
  PID:776
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=115 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6436 /prefetch:1
  2⤵
  PID:2184
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=116 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5292 /prefetch:1
  2⤵
  PID:3464
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=117 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9972 /prefetch:1
  2⤵
  PID:5736
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=118 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10004 /prefetch:1
  2⤵
  PID:1440
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=119 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8756 /prefetch:1
  2⤵
  PID:4124
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=120 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10284 /prefetch:1
  2⤵
  PID:1336
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=121 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10572 /prefetch:1
  2⤵
  PID:4668
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=122 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10580 /prefetch:1
  2⤵
  PID:848
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=123 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10556 /prefetch:1
  2⤵
  PID:4568
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=124 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5624 /prefetch:1
  2⤵
  PID:5892
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=125 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11104 /prefetch:1
  2⤵
  PID:5260
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=127 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8848 /prefetch:1
  2⤵
  PID:6604
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=10732 /prefetch:8
  2⤵
  PID:6740
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=10332 /prefetch:8
  2⤵
  PID:6748
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=8540 /prefetch:8
  2⤵
  PID:6996
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=131 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9200 /prefetch:1
  2⤵
  PID:6208
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=132 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8396 /prefetch:1
  2⤵
  PID:5980
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=133 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4564 /prefetch:1
  2⤵
  PID:6020
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=135 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8800 /prefetch:1
  2⤵
  PID:4540
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=9248 /prefetch:8
  2⤵
  - Subvert Trust Controls: Mark-of-the-Web Bypass
  - NTFS ADS
  - Suspicious behavior: EnumeratesProcesses
  PID:5244
- C:\Users\Admin\Downloads\Setup (2).exe
  "C:\Users\Admin\Downloads\Setup (2).exe"
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - System Location Discovery: System Language Discovery
  - Suspicious behavior: EnumeratesProcesses
  PID:5932
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" https://pcapp.store/installing.php?guid=27B06F29-58D3-4FF3-B1FC-F519E4E4F0ECX&winver=22000&version=fa.1092c&nocache=20241120220540.900&_fcid=1732140315194841
    3⤵
    PID:6664
  - - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x120,0x124,0x128,0xfc,0x12c,0x7ffaca9b3cb8,0x7ffaca9b3cc8,0x7ffaca9b3cd8
      4⤵
      PID:6744
- - C:\Users\Admin\AppData\Local\Temp\nsvEA1F.tmp
    "C:\Users\Admin\AppData\Local\Temp\nsvEA1F.tmp" /internal 1732140315194841 /force
    3⤵
    - Executes dropped EXE
    - Loads dropped DLL
    - Adds Run key to start application
    - System Location Discovery: System Language Discovery
    - Suspicious behavior: EnumeratesProcesses
    PID:6352
  - - C:\Users\Admin\PCAppStore\PcAppStore.exe
      "C:\Users\Admin\PCAppStore\PcAppStore.exe" /init default
      4⤵
      Executes dropped EXE
      Suspicious behavior: EnumeratesProcesses
      Suspicious behavior: GetForegroundWindowSpam
      Suspicious use of FindShellTrayWindow
      Suspicious use of SendNotifyMessage
      Suspicious use of SetWindowsHookEx
      PID:3876
    - - C:\Users\Admin\PCAppStore\nwjs\NW_store.exe
        
        .\nwjs\NW_store.exe .\ui\.
        5⤵
        Executes dropped EXE
        Loads dropped DLL
        Checks system information in the registry
        Drops file in Windows directory
        Enumerates system info in registry
        Modifies data under HKEY_USERS
        Suspicious behavior: EnumeratesProcesses
        Suspicious use of AdjustPrivilegeToken
        Suspicious use of FindShellTrayWindow
        
        PID:6116
      - C:\Users\Admin\PCAppStore\nwjs\NW_store.exe
        
        C:\Users\Admin\PCAppStore\nwjs\NW_store.exe --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\pc_app_store\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\pc_app_store\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\pc_app_store\User Data" --annotation=plat=Win64 --annotation=prod=pc_app_store --annotation=ver=0.1.0 --initial-client-data=0x26c,0x270,0x274,0x250,0x278,0x7ffab70ba960,0x7ffab70ba970,0x7ffab70ba980
        6⤵
        Executes dropped EXE
        Loads dropped DLL
        Suspicious behavior: EnumeratesProcesses
        
        PID:3128
      - C:\Users\Admin\PCAppStore\nwjs\NW_store.exe
        
        "C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=gpu-process --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --start-stack-profiler --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=1872 --field-trial-handle=1876,i,14100136715666251023,5591944830513274505,262144 --variations-seed-version /prefetch:2
        6⤵
        Executes dropped EXE
        Loads dropped DLL
        
        PID:2968
      - C:\Users\Admin\PCAppStore\nwjs\NW_store.exe
        
        "C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --start-stack-profiler --mojo-platform-channel-handle=1916 --field-trial-handle=1876,i,14100136715666251023,5591944830513274505,262144 --variations-seed-version /prefetch:3
        6⤵
        Executes dropped EXE
        Loads dropped DLL
        
        PID:7016
      - C:\Users\Admin\PCAppStore\nwjs\NW_store.exe
        
        "C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --mojo-platform-channel-handle=2232 --field-trial-handle=1876,i,14100136715666251023,5591944830513274505,262144 --variations-seed-version /prefetch:8
        6⤵
        Executes dropped EXE
        Loads dropped DLL
        
        PID:5372
      - C:\Users\Admin\PCAppStore\nwjs\NW_store.exe
        
        "C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --nwjs --extension-process --no-appcompat-clear --no-sandbox --file-url-path-alias="/gen=C:\Users\Admin\PCAppStore\nwjs\gen" --no-zygote --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3020 --field-trial-handle=1876,i,14100136715666251023,5591944830513274505,262144 --variations-seed-version /prefetch:2
        6⤵
        Executes dropped EXE
        Loads dropped DLL
        
        PID:6260
      - C:\Users\Admin\PCAppStore\nwjs\NW_store.exe
        
        "C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --mojo-platform-channel-handle=4164 --field-trial-handle=1876,i,14100136715666251023,5591944830513274505,262144 --variations-seed-version /prefetch:8
        6⤵
        Executes dropped EXE
        Loads dropped DLL
        
        PID:244
  - - C:\Users\Admin\PCAppStore\Watchdog.exe
      "C:\Users\Admin\PCAppStore\Watchdog.exe" /guid=27B06F29-58D3-4FF3-B1FC-F519E4E4F0ECX /rid=20241120220605.441240732375 /ver=fa.1092c
      4⤵
      Executes dropped EXE
      Suspicious behavior: EnumeratesProcesses
      PID:5144
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=137 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8932 /prefetch:1
  2⤵
  PID:6836
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=9404 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4856
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,9642829856797924518,12367568469131827927,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=139 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1708 /prefetch:1
  2⤵
  PID:6588

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:132

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2556

C:\Windows\system32\BackgroundTransferHost.exe
"BackgroundTransferHost.exe" -ServerName:BackgroundTransferHost.13
1⤵
- Modifies registry class
PID:3220

C:\Users\Admin\PCAppStore\PcAppStore.exe
"C:\Users\Admin\PCAppStore\PcAppStore.exe" /init default showM
1⤵
- Executes dropped EXE
- Suspicious behavior: EnumeratesProcesses
PID:4064

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
1⤵
PID:1852

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:4896

C:\Users\Admin\Downloads\Setup (2).exe
"C:\Users\Admin\Downloads\Setup (2).exe"
1⤵
- Executes dropped EXE
- Loads dropped DLL
- System Location Discovery: System Language Discovery
- Suspicious behavior: EnumeratesProcesses
PID:6328
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://pcapp.store/installing.php?guid=27B06F29-58D3-4FF3-B1FC-F519E4E4F0ECX&winver=22000&version=fa.1092c&nocache=20241120220627.652&_fcid=1732140315194841
  2⤵
  PID:560
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffaca9b3cb8,0x7ffaca9b3cc8,0x7ffaca9b3cd8
    3⤵
    PID:3396
- C:\Users\Admin\AppData\Local\Temp\nshA149.tmp
  "C:\Users\Admin\AppData\Local\Temp\nshA149.tmp" /internal 1732140315194841 /force
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:6704

C:\Users\Admin\PCAppStore\PcAppStore.exe
"C:\Users\Admin\PCAppStore\PcAppStore.exe" /init default showM
1⤵
- Executes dropped EXE
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:6336
- C:\Users\Admin\PCAppStore\nwjs\NW_store.exe
  .\nwjs\NW_store.exe .\ui\.
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - Checks system information in the registry
  - Drops file in Windows directory
  - Enumerates system info in registry
  - Modifies data under HKEY_USERS
  - Suspicious use of AdjustPrivilegeToken
  PID:7000
- - C:\Users\Admin\PCAppStore\nwjs\NW_store.exe
    C:\Users\Admin\PCAppStore\nwjs\NW_store.exe --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\pc_app_store\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\pc_app_store\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\pc_app_store\User Data" --annotation=plat=Win64 --annotation=prod=pc_app_store --annotation=ver=0.1.0 --initial-client-data=0x248,0x24c,0x250,0x244,0x254,0x7ffab70ba960,0x7ffab70ba970,0x7ffab70ba980
    3⤵
    - Executes dropped EXE
    - Loads dropped DLL
    PID:5512
- - C:\Users\Admin\PCAppStore\nwjs\NW_store.exe
    "C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=gpu-process --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --start-stack-profiler --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=2000 --field-trial-handle=2004,i,15209900334244538301,16281387060952733651,262144 --variations-seed-version /prefetch:2
    3⤵
    - Executes dropped EXE
    PID:1816
- - C:\Users\Admin\PCAppStore\nwjs\NW_store.exe
    "C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --start-stack-profiler --mojo-platform-channel-handle=2012 --field-trial-handle=2004,i,15209900334244538301,16281387060952733651,262144 --variations-seed-version /prefetch:3
    3⤵
    - Executes dropped EXE
    - Loads dropped DLL
    PID:924
- - C:\Users\Admin\PCAppStore\nwjs\NW_store.exe
    "C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --mojo-platform-channel-handle=2252 --field-trial-handle=2004,i,15209900334244538301,16281387060952733651,262144 --variations-seed-version /prefetch:8
    3⤵
    - Executes dropped EXE
    - Loads dropped DLL
    PID:7092
- - C:\Users\Admin\PCAppStore\nwjs\NW_store.exe
    "C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --nwjs --extension-process --no-appcompat-clear --no-sandbox --file-url-path-alias="/gen=C:\Users\Admin\PCAppStore\nwjs\gen" --no-zygote --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3188 --field-trial-handle=2004,i,15209900334244538301,16281387060952733651,262144 --variations-seed-version /prefetch:2
    3⤵
    - Executes dropped EXE
    PID:5828
- - C:\Users\Admin\PCAppStore\nwjs\NW_store.exe
    "C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --mojo-platform-channel-handle=3940 --field-trial-handle=2004,i,15209900334244538301,16281387060952733651,262144 --variations-seed-version /prefetch:8
    3⤵
    - Executes dropped EXE
    PID:4220

C:\Users\Admin\PCAppStore\PcAppStore.exe
"C:\Users\Admin\PCAppStore\PcAppStore.exe" /init default showM
1⤵
- Executes dropped EXE
PID:5168

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

SIP and Trust Provider Hijacking

T1553.003

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416

Filesize
1KB

MD5
55540a230bdab55187a841cfe1aa1545

SHA1
363e4734f757bdeb89868efe94907774a327695e

SHA256
d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

SHA512
c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
3d68c7edc2a288ee58e6629398bb9f7c

SHA1
6c1909dea9321c55cae38b8f16bd9d67822e2e51

SHA256
dfd733ed3cf4fb59f2041f82fdf676973783ffa75b9acca095609c7d4f73587b

SHA512
0eda66a07ec4cdb46b0f27d6c8cc157415d803af610b7430adac19547e121f380b9c6a2840f90fe49eaea9b48fa16079d93833c2bcf4b85e3c401d90d464ad2f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
c03d23a8155753f5a936bd7195e475bc

SHA1
cdf47f410a3ec000e84be83a3216b54331679d63

SHA256
6f5f7996d9b0e131dc2fec84859b7a8597c11a67dd41bdb5a5ef21a46e1ae0ca

SHA512
6ea9a631b454d7e795ec6161e08dbe388699012dbbc9c8cfdf73175a0ecd51204d45cf28a6f1706c8d5f1780666d95e46e4bc27752da9a9d289304f1d97c2f41

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000001

Filesize
16KB

MD5
bd17d16b6e95e4eb8911300c70d546f7

SHA1
847036a00e4e390b67f5c22bf7b531179be344d7

SHA256
9f9613a0569536593e3e2f944d220ce9c0f3b5cab393b2785a12d2354227c352

SHA512
f9647d2d7452ce30cf100aeb753e32203a18a1aaef7b45a4bc558397b2a38f63bfcfe174e26300317b7df176155ae4ebaee6bdf0d4289061860eff68236fe1bb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002

Filesize
17KB

MD5
9f2385157e4637a0426a9bf25312627a

SHA1
395b7c1428ee59ebd152d6917494ae39edc460ad

SHA256
6b20ede33b01a5b351c42913c5478fd87bda02c26c07782ba22a1112e16b896b

SHA512
e220fc5181801c0f02bfae8784057f0800ff31ff05e1233bea9d6f95f94b501c2f1215e38590bec76ba00d3ddee29ef41158d60d3bca0613dcc73ea7b58c5e4f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003

Filesize
19KB

MD5
eddc342a812feb4ca6efc082eb7da4a5

SHA1
1d409d099824cc920cd5d2b393eb68a96ff3d958

SHA256
0a2ace519b568ecb023130226d54efe4612bdc4f407e9ae94dd6bf2f57f8829d

SHA512
e28fcab6ef50aa56df642ec03a707bbe4eda7a73e57eb181415e82c8c9df3d0e6889f0324246d1a18a5cf3cfca0ce9eca2f12995cc101b78976f0ee3a27d9116

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004

Filesize
32KB

MD5
7d62f8a1edf0661d82b5e71ff2a82448

SHA1
165f0eada3d7b5ba95cb88e2aac601b18460acd9

SHA256
47612ebe35662f65870543a6226f8393bcdfd15cb43af89d2e05d300324b542d

SHA512
47556b072c59578c5f87c032d125e6758f9e82f7e0f5c8ed8d8c817fe76ed6786435bc73a55ddd11a9bd9a347db78aa26a7dfa3d0fe90e6463683c1910313b52

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005

Filesize
103KB

MD5
c12602b8ebdfd5ea5113f42ee978d526

SHA1
1159db5c354e5c9a73b2e072b3c0c5d02f3ff07b

SHA256
412aad14e7b55e51c4c56a88949c8f5ac81e06bd1d9b23da4378b1d9711a0794

SHA512
00ba76a1f0f08c969a96f4418c158d482eba611fa5984cec234ded9c7a1aa2e9e4dc2a69816c2940783289767212ac729cb7b3ae4cd002f772a5dc5d45bce3db

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006

Filesize
52KB

MD5
94a0a5fdc55da2656bfd731b429bd70c

SHA1
7cb645fbb4920463401c1158ea5caa23c719393d

SHA256
1c82a199cb3143cd5ad83116c89c4b16f05cbaf67aa0cd2313a09a401b6f3e6c

SHA512
504a7efa04c17df146b491c20cc9a173602951e3ddfee1e607a870ac401d133556d831a9a6bd8ddbacc682f414af84fc917947c657ac50d779e90f3428b3eccc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007

Filesize
141KB

MD5
a000fc76daee54e9d2c8a7bf9e8a4c0a

SHA1
4ab07b6609da7625e8c2084843e9066289cd8c40

SHA256
df284c0523a614d4172ce773d9b2fd53ac19c0d34e9f5ae340f0152de8e7d773

SHA512
e210453ad7714e1474768d2f45cd0456f92b835b2f7ab74865eae731343358206ae29f1530c925a4d20e5328c556ff7e9546fc325ed5ecb4fe8a18db54202934

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000008

Filesize
94KB

MD5
0929600ecae8a3c69f106f27416e3c35

SHA1
bb700a6be749077d1995b78ff8aca525b39fd1c8

SHA256
e0b0b665a994764c6b42ab29dbadc81b22f489d47e690dccf2a6f382eda168d2

SHA512
262bc46f1724c9b5f24df09efd802d54354ae38d570f8f353fc7f7d85fe2af3620f0a4b889ae68d0741a5da9b6e4730eb5df4501b902cffb54c9f73fbf486ada

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009

Filesize
42KB

MD5
23d5f558755a9d58eef69b2bfc9a5d99

SHA1
fa43092cb330dff8dc6c572cb8703b92286219f6

SHA256
6e5bec69b1c6424972a7f5481ac57049811f0f196535b707613126c11292c5cf

SHA512
9c56c94d059a27dab9f69c9dfd718382a8eb192b8c0ce91cd6db6ec0769b8756acf9c0956a35561474b87d6278b13fbe88a6e4df6260c278b1ae06e9be55dd6d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a

Filesize
21KB

MD5
5b16bca4a9128467e49716a2eddd0889

SHA1
d3c463b464daa77e9f8dc6c30a97157735e47c17

SHA256
b7f24ec0056725eada57370cad3e265ed40f583be53ebd2e291193c25333cdb2

SHA512
83aed5973b671b25051ad5d11fd528803f01946e29fe8d761ec3fe7a0359ab40b07875cc58fe2b53ff761002f83a696718ba652a5a05e9ff96891f2cc61d5aff

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000b

Filesize
27KB

MD5
dc654d5da1a531fdb3b1bedb619b0182

SHA1
49d3de45bea7c279cf0ffe4cbc43c24779d1877a

SHA256
b395c195a5854253500b3b210e585ec801a47b49ce7b90fa5a9717df387598fa

SHA512
38952929cbf8e103cad50007cb492c93a7feb8d9d1853773883e2771cc97e50d6a514cb6347c912e7945d126a35677cca854ce8542e2210d7e59799238bae8fd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000c

Filesize
151KB

MD5
0f31134987b19699ee4cd0aeb9071eb8

SHA1
fb922e4f7acacaaf82d18ff67f3edbb91f6bc32d

SHA256
06e28481014b8fd1a14aca11b356d3001bad5d467161793b3a13440717313a89

SHA512
02f8aaf584055393c15c291f2dea85f7a9f334df3d468e2b3ead674f3e12c754396b4694dc12e8a6c5ab51f89e47df1319b6682d87eccfadc76676e954a4e1e4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d

Filesize
88KB

MD5
854d609a6a7399d1af3e16e18b0f8a3e

SHA1
dea354b5e8ffaf49166755351c939257deab74ef

SHA256
41212a7d1a8765a4cc40b67df7051d744064f4b880378cb73079269de49f94cb

SHA512
b4b203379abc195b91689d98c56abf3f535a79329b8428c70a9e19d0463e24e93371ea1fd06e8d3c1bdae096011837d32e7aaa469faab7653ebf15678f0c7c87

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000e

Filesize
137KB

MD5
75bb8cf0d0646c3098a0681eec9543b5

SHA1
dcfe7b88ab6fde6ac9d9f2b7f3e07b5106190795

SHA256
b1ad099bb624da25be65c6cf34e4dccbdcae2051157b39b105f8017bd0412d4c

SHA512
d64532b3359105076424c084c4edebdf199e80a4522f2b7e05574c4532ed1000255e82a2851bfb896f35eca454fc82efec9bf3cd85d283e1ebfa9136c5ebd0b4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000f

Filesize
84KB

MD5
ecae1b678ab9ee1b695d82219bef251d

SHA1
80e020cc6780dae9dcbba337d2664a7dc6cc0fd1

SHA256
ba917fcd2796c89bbf2b4e38f8d2700fee5404713c58e7c24ffd9d7619117f3c

SHA512
8a161effe91f8859bba9c9c37e59f0787119dbe918265675b2e8e330497f99ba7c0071d6627e3506019104637fb2eda662252d3987200a8d0e4083b0fe71d8d3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000010

Filesize
20KB

MD5
2d32a15964a60e084ca3a11d01a1cf50

SHA1
64072ed8b883a36cdbf0630eaac1aee599927e55

SHA256
26e477c32512b1c5f64aaa1fcfd3c7c0dba1182a439a8784e691e2282afbfb2f

SHA512
db25a7df52af4cb1245e3b0722e55ef0428d7202550fe4d8488022936b82ec144abfd02dbced10ea42c545e5d4237b49b56e1ee604719f2067c36fe813837ccf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000012

Filesize
88KB

MD5
32877c79742ac6b87c0780034ceec937

SHA1
6dc4cce3e8f341b38a2ed9c6ee509d338e14f397

SHA256
877e7871063f5c8c0b708fada04979b1ac453216da1add6761deeb4ff6c69fac

SHA512
c03eda83bf06ce09671596442c3c101c71e1860e3692a31cc09cbf0546cdc108c09204a7369b8d3cd852682e6ef4e4d775f8c9a50f50082b28def2059fc215e1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000013

Filesize
28KB

MD5
9bf86aa2a7e8cc985da018cb55b7b21c

SHA1
f026b41e52d99b6af98441281f3a67920c04d7bc

SHA256
9a7f2916a46cedbeafb830fca9e868253d6c1171cd42882669e4d70ab8f51ae8

SHA512
88fdbcd9df43e4ffd5a5271f3139b1d1ef17873d211b58c62bd42bde4971f2adccc29ffbb65388f66dedfd54c9fce8f57e20fe6781ec5fe561afd935e03456b1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000014

Filesize
43KB

MD5
49c6c2017aae0313785979c3734c8e4e

SHA1
9b5019fe772209480c613918bf8173dcf245c97f

SHA256
5b5869a12179f7bbd951275b641935a69d6c028b485c2ac12c01fd9bf20fe08c

SHA512
e3a69e015c440752744f0bec7b673192ce3d3a7a801c59da5646ee91c7a2dac2a148f1bb8c79027c44d7d809d414bc0847f452548e870e1f175084eecedbfce1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000015

Filesize
123KB

MD5
3f5d1d935f3d2067ba5b85c1ae46739d

SHA1
1aff00243ac7e2bb66088160cbdc326214c8e311

SHA256
36422a9a630235ca1f96ead35a6c426ce43fd0ed1f6e8abbfc1580d94b3b2241

SHA512
e389e4a7a973ed00819b932939770b4c4ce19a7df23f25f55ce1339e8001310cd43e1f058498f409129308682db71d80038384a26bf837be631016aded6c4aa2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000016

Filesize
20KB

MD5
87e8230a9ca3f0c5ccfa56f70276e2f2

SHA1
eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7

SHA256
e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9

SHA512
37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000019

Filesize
215KB

MD5
e579aca9a74ae76669750d8879e16bf3

SHA1
0b8f462b46ec2b2dbaa728bea79d611411bae752

SHA256
6e51c7866705bf0098febfaf05cf4652f96e69ac806c837bfb1199b6e21e6aaf

SHA512
df22f1dff74631bc14433499d1f61609de71e425410067fd08ec193d100b70d98672228906081c309a06bcba03c097ace885240a3ce71e0da4fdb8a022fc9640

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001a

Filesize
20KB

MD5
0fd3b46fd7e5dd422bde5768a83ffdef

SHA1
00bbe47c66179502aba235f9f5c01a0cf2e76051

SHA256
4027d8ff4ab76b54c34765b96344808d7ec72c0d8e1c26060a8a300f2933a72e

SHA512
d63690a50479d19b959ec1e7ec27214a4a53bb2205b9008982ccc68bab93f1cacc7bf788d20476dd9e0d9b12299f66803f5377136da28470dd460c875dbcea2d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001d

Filesize
20KB

MD5
fa4cc25f0f72ac052e9413b46705327a

SHA1
72127f17a73fdeaf1d867ff721f8115e90d82e8b

SHA256
62215bb3463a1bdbeab484739c056495d60f9e6feab8e3974cde6bf69504f05e

SHA512
b33ebe5aad7802e7aadf31bc490bb697a7a941c4ec9a03c211b42bf54403f05dba02fdbe42bd7c28a27e309c868f4d74c060840a4aefdff57ac9c5c2cb66921c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001f

Filesize
62KB

MD5
fdd3922edde39c73dc37b568650e47d2

SHA1
1566ef03ec365d9d7e4ac9fc9cbb4e5609b9b976

SHA256
d464beb2c15b29d24af42a7cf74db9539652dba74de861feb169145b5589a3ad

SHA512
b3c7e48d1bdf62d8436ff428af14155a5c2e834ffec8003e9457fc1458cd77b7474210edbb5f57eb838723844f6139b3c523d3a9d1d4f525aa067bbccb9e146a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000020

Filesize
31KB

MD5
a4da976dde535a4f11ff4c9d57a8a56c

SHA1
fc4c29049db6d81135507dc3736cb638340f55aa

SHA256
6b85680498d0061e6b748f0fd9c904c74eb9f265f7d6ff6b33a37a0656164bf9

SHA512
e3db7eb080a2c927ec3a223d16d818cc76f9da51525a91b8eb3cc9e15106e2939ef6d550121b8cdf76d38c001971662d833d70a269ccf35d36278d25cf42aa18

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000025

Filesize
20KB

MD5
e289d2e9803f4638958b0b5c8145151d

SHA1
01d526196a4814482d2ab7a3725cf8a1ed3d5acf

SHA256
1e3f997dac17c7efebc0c89760d7751fa7d224e20bc8bb91556909392c166563

SHA512
7ce02c1a99198bb9b945107804d29104fbf21042916751f16f9c28c621dff4ffd98ac90331b09d591ff3307cfd109111cdd3c20a3d20acfe080a91f8ec8396ba

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000026

Filesize
41KB

MD5
503766d5e5838b4fcadf8c3f72e43605

SHA1
6c8b2fa17150d77929b7dc183d8363f12ff81f59

SHA256
c53b8a39416067f4d70c21be02ca9c84724b1c525d34e7910482b64d8e301cf9

SHA512
5ead599ae1410a5c0e09ee73d0fdf8e8a75864ab6ce12f0777b2938fd54df62993767249f5121af97aa629d8f7c5eae182214b6f67117476e1e2b9a72f34e0b4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002d

Filesize
112KB

MD5
847c96a0822e917490a98009fc8bb146

SHA1
bbc598965acece9d277642a774356ddc5793a6a1

SHA256
8ad136d3490aba92782034fdc058866c06edfe17001a3e6f788262a4b2260794

SHA512
b483f29f4d149b6e668ad87eabb2dff3243dc62e7a7910ca4a052d668d93c2e14a2002d2a3f74ec6165de1d2dc98b121f0713dcf39231dd567523fbc343268fc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000053

Filesize
22KB

MD5
22f05192980fd3832bd4fd30c9c7d270

SHA1
f53ce22a76ea5b5247a4684d5c106200674b9fea

SHA256
d0d249c20db3a9e212f82e47d4400c6a1125e4d4d1e9df87d7a371dbc0905293

SHA512
7c56d223f9da7ed85761519bf359fe6216b16c9486c531301cf27e16cf0010ad8c4807b25459cbe27a27db6493c2415550ad2ebdee0141ab4fad7da0a3a7530e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000054

Filesize
66KB

MD5
fe4e8db58086971aacd48988e707e6af

SHA1
9487345a127c903cbd54ed0941d43d2a7aebf0bd

SHA256
18c6331bb68dab669c38fd5ed0cddcbab710b17bb9ee89483b4eb61e82fdd308

SHA512
3c3ddf92a58af8b2337ad5a89208a1d2108eead18f10efc5ce1dac79376a214a15692e00295b454af52d0a9bdd2c5ab0dd7ec0b6843f375294e44fde8034a48c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000055

Filesize
103KB

MD5
2286ff4aee7322fcf92159568ab314da

SHA1
90cae77462857c327422b0b9fef0b662c1ce279f

SHA256
bf1b26f1454414300aac26be01537957e86a0e815b4860f1c57eb58c4c252c95

SHA512
837529d8c541710c734508169492bf49a676a045f6da2bae969fbb34a6a8f54d358bf7bf2a2bb8c4c44fc8b9ebe5f509a0b157352a5887ca7ce0fe7ba44b2d7b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000058

Filesize
17KB

MD5
4fd60d7f596b6d84cef0fc9b0f9e8c4c

SHA1
cff5b9ff115b31c61eb8b5f107d7771018693134

SHA256
7b3d794c2e72ff4c4bc2a7563cc9f7adb8b4d250bf00ff128ffae982f4aa2571

SHA512
da99a869d700ba79ab76d729e5c4e987193c285d48f84e0f351d652523ac607e0a1dc612c225b8b8ebca61c1668f1da3acbacb6cb235a8fc37f7db6b1e53634e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005c

Filesize
17KB

MD5
7909108e624bb441107d1cb33586b6d3

SHA1
19ea2497a016cf47af1cbcc2babc6c8c0a968e14

SHA256
29f01061a6912c49322951ae13f0e567006c4256f33dc4eee098d996aa4c3cb8

SHA512
02cfbd98fac8ab133d766e40d6714acd8a772e4b28d3786b303ad44884adfa80f4ec6791c681c2cbaf9ad042fb98f196fe68b6fa4a207a0d0e02d5409fd3fefe

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000061

Filesize
67KB

MD5
672459215c78c87c86cfe4af0efe598f

SHA1
cad4b454aa573f8c199cd63f3eb8b8f9c25f03c3

SHA256
d17075e32e425f00b58b4d38c3b733019d49990bca81e3a9fbe059460f30e6b8

SHA512
eb01a2d53bfb29e8925d9d96c02c245bda9a388c1a6f4415717711f9d0acc3942f9b6dd670b2f66ec5e23ba4a168a5ce1df47df204d690091817e61e86fa05ba

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00008d

Filesize
18KB

MD5
8eff0b8045fd1959e117f85654ae7770

SHA1
227fee13ceb7c410b5c0bb8000258b6643cb6255

SHA256
89978e658e840b927dddb5cb3a835c7d8526ece79933bd9f3096b301fe1a8571

SHA512
2e4fb65caab06f02e341e9ba4fb217d682338881daba3518a0df8df724e0496e1af613db8e2f65b42b9e82703ba58916b5f5abb68c807c78a88577030a6c2058

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00008f

Filesize
185KB

MD5
e81532b43b9b75d4addf45f33f34403d

SHA1
b34dabb64bff7ada9c82cc8cd46f328c8364c715

SHA256
19c26a5e1aea301e1149dc495d84361862a90ebf591b80baa5811a39a0da28a1

SHA512
94881a48d38bfcaf6ee74ece7cbc79ee699fc4496d8b145ea63a98ae75a78e6cedf3a789653e06a8d38b0c65c6b041097e1d111befc30262c7567b2444f6dc2c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00009f

Filesize
47KB

MD5
8e433c0592f77beb6dc527d7b90be120

SHA1
d7402416753ae1bb4cbd4b10d33a0c10517838bd

SHA256
f052ee44c3728dfd23aba8a4567150bc314d23903026fbb6ad089422c2df56af

SHA512
5e90f48b923bb95aeb49691d03dade8825c119b2fa28977ea170c41548900f4e0165e2869f97c7a9380d7ff8ff331a1da855500e5f7b0dfd2b9abd77a386bbf3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\014b077aafc2000d_0

Filesize
259B

MD5
b5e459c3f7aa0fa15a2b9afecd2087d8

SHA1
7f85583e2e79c9a63cc308d67a9f2394404029ae

SHA256
2270e4004d1f62bdf07150fca2f54bfd48f574707c43ff45d5de53b0342af201

SHA512
12f87db62e57200081b554ef2f6348ae3468c10065b8af02e96716a8b72dc23452ac7c6148309fec13f8e8f55b8c2a28b61b0b7dcab166d6cd3176294b9fa639

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\0f9ad6c3055eda05_0

Filesize
878KB

MD5
9a683f766b07f1ae95bcd4da75709daf

SHA1
5acc4e884347d9b7286ed1254f0cf807d9ee1508

SHA256
62a9fa5de644e5961b8a49a4da715132090bfadc31a8bf9c61370c6ba80592b3

SHA512
ec582e1e72184f2c7ed7891bacc7c95d99b7396095866e913d9b67f9674017bfa6107bf2054c5d63ee07798ddb49915eb3a9049d4514758f1aa959193bfaa297

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1d35c18680ef8206_0

Filesize
223B

MD5
4d57f968661bfd8a1e1e8b4c06373972

SHA1
0741307cb1bb44daf6593600debf21a1a08564fd

SHA256
636ae33817ce133ce294bbfc595abdab15c52b40101a80e92e9b0e0683de58b1

SHA512
6f7ec961d33c11a5e7f4f984f53484062ad4170241460711cb44ec1e33aa74058ad77a6f4764a942ab224d0d79d19d67c822e1f69235e0b180cccb8b42acd05d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1d35c18680ef8206_0

Filesize
55KB

MD5
ac45d291572682807e32b442d1102c66

SHA1
c74845b286fe59aacb1f9234cd9e6761af58ee25

SHA256
dc80fa62b93fe9abf6bd4fc5c9f4fea5e51d6ad479b1f6d6ad357d0000ff8ea8

SHA512
4e166decbf1fcc057faafe6cbe8bed8a44be015db7caa057b98de3379d4b07eac9963f9d0e81baf8ddb3ae95df7ea755c4954cd93af38252df6911e1573ca7eb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\242ac74945c24e4e_0

Filesize
228B

MD5
316609eb9e2e992bd6ef528cd657ad57

SHA1
c4e797a4691440bb03bf24700ac76c9c99e7c93b

SHA256
b6870cdc94c27075c6be860d4e7a179b54573c1b10c72976d2a1162af75a0705

SHA512
e0fb2aafc902f2444a97fdd26b3692086b7a4f436b02ec721f79e4c5aa99d9c09d28b570b0b998e93c55a54cceb60dfe7dca03ebf0cd6a1de08d3a3d4613890d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\242ac74945c24e4e_0

Filesize
276B

MD5
5bc37005916dea832f488122dab29902

SHA1
e8a0f5d1e59bb947396c7bccb5a5d63cb3fdc31c

SHA256
6b3bdf65e90694dc0b44007a8ec13f9b3435cbdcbab2e90c00041fdb11665b2b

SHA512
ed1ebb948fa531dfc4f0d474276dcdcc3aff935411e77ac2469d1c141d88fa8d3f69473b362681590b6a47b56280e3a28a01530d798e3f0316899cf7cf8709df

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\364f3b93a32eda6c_0

Filesize
267B

MD5
14fc19f58ac91e7b7fced76e9fae7282

SHA1
b397d2fc62c28c331bcef18ccca846f33d0b48e6

SHA256
00c9f18e40bf8ac140d786b3315931db1c24fc9940564fcdb29fdb8c7e5fcdb4

SHA512
f6831a71dbb89d3ab67d0d7c40d36bfdc1b019db3dea1b1d5b632e843363ecae02fb2f092969b1be5ba5e4e792f5951b814de672389bcfe3d494271bb2b082fd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3af159712067fc81_0

Filesize
560KB

MD5
58aac2abf1f0bfb9847d7bfb9005f095

SHA1
bb3bde4095de7b8ca5725b6e334fae13f1fb4ec9

SHA256
1a8cbbc2ac962a0a66de294e3c366e71d7dfd3b9c85511a20109939e6ebe1ce3

SHA512
f6bc7b40228b1b3c33bda97a745cbf0613f4c181f3945d8572e4d537c976773c901ac5930e929c8c138422c07798d0157dbfd1565fe86986bc7207d3ddd12abd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3c733423b78bf972_0

Filesize
250B

MD5
ddf4d418cff01b09156ac6957c169a6e

SHA1
b922a994eaa15b2fcd3a6aa411ff44f0e2df4498

SHA256
853ccf9d940133ad442469df1b883f02156bb697f9e2f9ae895a6bfbc5fabf16

SHA512
7a116dbfbeaaeaea93f534ece31acf3edba0a4d2c0f25cdf21904cc5e90c892717bbd208801dc950a5e4cad5cc57d0d397001f0aee4d9fb0e5ac7340a22812a9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3ebda8fd0cb83802_0

Filesize
355KB

MD5
b35f260e6d0c19238e756ad40412f17d

SHA1
a06d0967ed4a272694eb0910a36d17a18b75608a

SHA256
361595e99ff3a7b352398d615494e70175b95f6775e3fe652996f426a0584a5a

SHA512
8f513ef063e905d3f79291a84b335ee4cc73bc822b60a64fc2a1982e425939e132a4a6b8f571b48de122042b93b4c050af2d8541ff70e415a710457b6da760cc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\45841f134be29273_0

Filesize
295B

MD5
138ef0cb5c715530d415767aebe6b747

SHA1
8ccc96d18e16f08747c3e9dbbd4fa4697aea3bf3

SHA256
3c9eccdda902f913a94eb2de07b08b839bd05dd1e49371eff7192a0aeab3b345

SHA512
7c71698d2862342d23b44ad745ee6947b3afa07c73e60ee2fa8aa51eab9f87c3ebe9bdf3c7833fc252d1cb0a43973d493e95dd55abff72f7938eda7efe4faa71

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\48b2e865ded2a922_0

Filesize
421KB

MD5
c88114073a456f7ee85fd6af165e1faa

SHA1
341798a459247baa7149d2678cfdb7cccf0c2bda

SHA256
49e336c87a26212b6ce60851c23350ecbc09ae35eab45e8874f31b3aba74b6ee

SHA512
7e31ffbdedcc46004a8cd184678e0654d7554862c595a64180e8d64e18d9a8b13bd56078b55beff89952df87ce5327bd59e612a90039630d02bbc09639118caf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\4a9df8cb40b69df4_0

Filesize
72KB

MD5
7e12a595f18169e08159d5ef23ae48dd

SHA1
bd1a4a0af5fd6d1d9be0d216748484b2d8bd64b7

SHA256
37362b878f72845816fc4d050c70683f95431b17f18d0841787232c488bcfc1a

SHA512
54c17aad82147d370de83168ca1491797bd0ab9e68b787d8d7be43b6e00f764ab0d9c791237a8855499cad8d98e4e558a77b9d20bc7edd2bfe9f049c2a2fa8ef

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\4b4bfcdbca80cfd9_0

Filesize
289B

MD5
e9a9d865c20be8b95fc14c2060ed01d4

SHA1
822adf3e2fe4fb23ec71c585de39a1a5b55c02b4

SHA256
25addf316b8c3aaf9ba9f24f0bdba56cf22e0ea11b27294eb1207624ead649d2

SHA512
84e6ef5cb18a0db352040971846fb462b357f020a8b559013ab783eda376e5f6ffd9f63caed1197588584fe3607d2768470fd2f7dec6d2cc2e3fb011093256f8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\516fe7e782217ef3_0

Filesize
305B

MD5
446e5571530ec41befa2f134da86f507

SHA1
fb46f8a5964ade147fd0fb1777b4f713cf04cc13

SHA256
31cdb19a58364d9dd620ed8ab238e5c219f5b843233c9074f89f02e538d9f441

SHA512
14e93d4009a3bde5f5be5214833d09dda08c96474760394b0bd53fbc6d92aec657ea7c96816552999494353d6a684e1fadf3f86b77e76188a1169b732f0a6ca7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5ab2c9ac0c031594_0

Filesize
15KB

MD5
324186501fc9a2f8f682d617310cfe52

SHA1
592c89331fd8251a23c6d774ac1571cb9ce7c0c8

SHA256
fe0fa38bbf4433847eb665f47b0c2d42f3f5260e92c27ad8ec7182c4be622d75

SHA512
a7b8afd0564375a5af3b4113623693916e794dc612c188da5fe5b9bf31198b0b7f4302ee159f5be55cbc343e2ecb1ce4d343f1265a6b794d8701bad43b090c23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6a6a67358b6498d8_0

Filesize
249B

MD5
1933c78d6f120dbd6d21743a8a1e9eea

SHA1
31b54aa175be95c14e4ed94a6fb5e34338987c90

SHA256
a110628745bd91c452fd1c289f19f4c404c51bd5d2af2f0e44af3ab56f605fb8

SHA512
2c66919965208493adc44ecd9c8b60f21c9e265e802cc821a28ea2b68b66c8cbc540ee91ac2fac6dbe7601c5d0910fb92ce4e435ef0e5b3b1e9fb1d8ee4efbda

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6b3385de0c77f820_0

Filesize
427KB

MD5
35ab26bbe824108840096387d1a6bcaa

SHA1
8034a0321c643111f7b4f76f63896704421944d2

SHA256
5a211bc37113fe5e7714fed6830eb8f067fd5bd1cf93b68bf283b88c73397069

SHA512
3f45d0492325743265b16165206627fb84aa41ca1089b6699c68775d8f99c5051eec4050ca040dbd5d1af0d04f4cfb8e8fd4e6696e281c92bdaa2d3d0a4fb586

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6dcc7d53c30a832d_0

Filesize
305B

MD5
4b0d50dc4b752d94f813e3797cc89c16

SHA1
fc2df02188dce126c3d6f8684dff8f800e504cab

SHA256
68dc141a9a5de694de8db778512d288086700e47f0c1d83216f970f4bac63945

SHA512
bc58dcc82bc0dfe3ba6217e54cfa53e83e17b92c9f5867b467c3742fd5212482f95b20991b0ef78e0684deb906edfbd7a8d132071f4319fd83d7a9b16ecbc78a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6dfb736c68d5eb39_0

Filesize
129KB

MD5
ad334ec9bc8227181898676b3590b462

SHA1
1e9a2cc45c0484692b834034d8804ab6b805add2

SHA256
8f4ae1d5f1a5b50d8ced00babd2a2da868eccb5801ba1d3faccead6d183f3bdc

SHA512
5c0fd7ea12a264d4dac9c86ea2aeffe73ea79e6c056c8e0a57707f0f4e97126875760ea204a5544516628d95544338f6cacf6199edb58e688a0ca4debcdbcf41

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\74d3f1ee6036ac57_0

Filesize
251B

MD5
3f0b6e0225779be40dd601a353ab200f

SHA1
49587524761ccc4b6ef039413d62c942b6adacaf

SHA256
44f038ce51c1702f23db82500c7b418e9c6353561ea52cf8e56cf6e87cbd0b09

SHA512
8eaf690b9700689b7ce30d4418ffbe37b85b52a9f6bcbc77ec3981551b9bfc1d4aab1f7dc504256f18769ccc3415f10c18539492750776cc50a853a64730b966

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7f7e1df2ba6e24ec_0

Filesize
81KB

MD5
745dbacf49123d531c50191c59c35eda

SHA1
bb014a6465f5de2bf68604ab3b174358a672adf8

SHA256
dbc9cf3412c44ceb084ef6dc7e2d20964ac23962adff0abecba57340b6161f2d

SHA512
8eec9b1d11724dd32595aefd3249301c00de040509d1d6d59d2a6bee893ad49571e8091a5462fa785df8cc9f1caa3267060dffde3d66d76e1df567a295f8c298

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\803cc0539a1fa84e_0

Filesize
251B

MD5
d8a74d96d96955154e0c41e6f62ee7b9

SHA1
52e9af61b30a3d04270f409380e9c5ba15831e1c

SHA256
340255efb27ae772491dbf84dd4b34478eb5888a422d8c6f01078827b80106c9

SHA512
ca85c6004cba2598dbcbc0f5bb683c41cf1ef2236a668ce5a685c6bb261f7c3cf64010ba15168abd03db27be2fb16b6e4d0d0e1dc2512ec52083d70760b471eb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\81d7e1c099eaeeb9_0

Filesize
158KB

MD5
824ecbe7ebe219a7d9e0f17f2ae2c36c

SHA1
b12b60d090b116374208c9d9d80fb07975380b7b

SHA256
a4497e5a753260c4f593083eefa0fcfe0e833cbc58305676dfa6fa603ab6f208

SHA512
d395201969b62880bb926aa58f6c078900929ee375916b0db072c8a49d83ae204b0277b1252b7a27152fdf1f0615ab5c5efe3b26bdca4b6e51d85be361005057

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\865039da1c0e1f56_0

Filesize
75KB

MD5
5fe1dff16b7a9cbd3d77d6c48eae3d6b

SHA1
55bcf27c99f4004345d1890a8fa5005d09694c2c

SHA256
a9d8ab199127b5bb770130015f8cddebcabf02880c7e7edbb9f0b0211424b93b

SHA512
d60fe6128d3d0087f54bd8579297c6804a502a08d872f948527d1e3b51502d3200561a36f7390a6f3bd2b62582a38ecf39e161ad8b65bf7551194c5c43f7ff25

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8efd350e7fdc3ea9_0

Filesize
147KB

MD5
2fcf68ad7f31b976f0b44a94e4212179

SHA1
903de26cd779663aa0074d6c82b5934dca41c7f3

SHA256
b75f157e88472e5c8c534a335bbdcf9b84e54f6e1ef8817ea63dd9b1e3a26a8e

SHA512
b9ffd53dc90a632b251a4b16211b3644947fc0045cbba01bc6dcd78351f649ac58c1f4e6ef2a642f3492882934d68086b2de2bccab2f5f573fc13e000510f2f6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8f2ed2e898283da4_0

Filesize
336B

MD5
a0c4df55ab24e3010d7333194b8b0855

SHA1
ca65e22a2ae397c0610dd2068793f4c6ef4dcb1f

SHA256
60890a072391d321c2fb33e7390dbcd908e649915612878098474756a43461c9

SHA512
a30bd09627bd7e22b45ae4fc259ef9317703157febb5f76c217c1898861456ddaf49d63dd2d64939c05d7ba3a04ac1e4a4825d8cd188c74813e999436d8cd9cc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\973674d06da173f4_0

Filesize
262B

MD5
8e3a9069eec58e32bcb59057c4d1e96b

SHA1
b07625493fba3d0af9420c7131d2548a58c9ac48

SHA256
f92ad0634829291e77bead267585f774626b875b59c4b99e37e6339e553893de

SHA512
a65450b743979c8e4b80d1f3f938936822ebe301b3fc601e229203220ffde480fcb1c8296c21723cefbe7abff1e60c56d7f3700e158b19f557853cfb50d1b5eb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a65da716ea06a840_0

Filesize
55KB

MD5
3d3581299325a1569ded80c70d8e2d05

SHA1
6885b83d2909c4edeb5a6da29109bf1594abe459

SHA256
f643b46e942a54cf67c78612ee38f5e2b8c9d7e08765123ed27f3661408504b7

SHA512
e5e4bd34e776e6a83bbd6e3a013c21a7ffaef656f1a76add32a519a9d96b9c549fb440b02cacc643961117d4fcce0bc0c2de9b4ee2c0b8c1bd758c0b09502470

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b5b6a49f79ada522_0

Filesize
939KB

MD5
318b6236f806532d056152b4767654ea

SHA1
74b98d326c4850a2967ebb2d96d8cd7703e2be81

SHA256
229bab7827ffa1328e9fafa71623a964e9406a8dac9ab9add6abcab038323b3b

SHA512
5220e65f5f9eeee0ca1db11ca790f051867bb5fd4427ee8cbc779388f7d6daf2df9435ddf4a8d076577b56ce830535b640d4347756b1979a43c45c403c434a73

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b94ea9255c4b3c69_0

Filesize
258B

MD5
20d8a30f8343a00b0e6964d7590c7523

SHA1
98be1b3e4da93fe8cacbdac7e5ddbd318e347dbc

SHA256
0ff6e4bcc71ccb6c6ac3c45827ad14bc87c08006e6a4a3096711f52d2b105157

SHA512
660e169a47ed624d9ef44d0fc73ddc48948d15502b8355dac4333c67d9098e142b50a53e5259613aa07acb2931b22e26f0994d13fbc5040fdb9a75ece72bbd7d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\bc1d6b9dea8519a4_0

Filesize
268B

MD5
7a249050880b7738c411a687cc1691a1

SHA1
53bbab3c976b696b55c51df55709f40eae657552

SHA256
863e7ce6cff05176a047535fcfc745f39dfb556cf7a23815c539f1596fccd110

SHA512
a32cdfac45e59d65892e1b72c9bdcb51f9ad7219a26075b44d159a16e2914b39b0d1788001a77e46ffb0ce73c8a52b8ae14e70e9cd66da9ca2602371aa975839

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\c679fcf109b66629_0

Filesize
160KB

MD5
d3957bda43c31097399827058d7e8e85

SHA1
430afaf904b9bc309310fe61d53bf9fec7395352

SHA256
b5ae165bc61236d577fafb5622e2a96cf94f4f6d52a726048d07b2892f686df7

SHA512
6442d88741b95e79a4de30e16fb68a2d3b58636caf57b68949f436d31520eeb49d4997eab63b993aae2d0d04387e9256cfbaa1ded3dddeebdd4ac55cee275fa2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d01c324eea58b592_0

Filesize
27KB

MD5
376d9e6382f2391ae2599bcea93eb5e9

SHA1
65270eaff6225555a89696a78d39deea7dde306d

SHA256
bb07d042e724c5d3e32953c59b66ee61971f197e9f259eeb93ec9581fd0a00cf

SHA512
c581fca613f7fd706fba331cd01c627797bbc2087302b01075a705d2c28d8edc5284718e4b412268a6ef95bcf01960b278420cddda02b7b770a44bc0e2f30edf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d1182d600d92f9bf_0

Filesize
538KB

MD5
f693d9b5d0f370ed946a53b59206b615

SHA1
e055d9640a0c6061ef54901d4e446e09ef7caa19

SHA256
65ba9753a3a7b3ee932e3c94e88ff8bf7e135ea66f8c0b0ecbea1cc3a0f8abf2

SHA512
ba4c75c2f0a862e98cc454c3f836104c47969be5afb246e0449f1ca78d59890dade8eb2e6dfc913d30ca6964a8e42c83a588d4de53fc726a540e0d6f5acd270c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d2c49371e8d8698e_0

Filesize
346KB

MD5
9575084284ec1f6e017c25f29a171437

SHA1
d27435caddc23c782b472e91744b6dae98a4ee77

SHA256
ad76c08256fc1e6cdcc68829fbfedbf199b65f068761dbb45fb9c7445a15cfa3

SHA512
1d12aa6e187a9b3dedc77d8d8df9ac7e59bb2793a566b89376cd12e4867f1a62f9901b2db0ff4798e2d6ce59d1b5dc10d3411d9b50c7e2030801a148af18d51e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d8b7af3727516429_0

Filesize
302B

MD5
864bf3ad8817c770895c368c20250df3

SHA1
9c6a50487b095bd3d710d8a2c9ff1b6fc078a58c

SHA256
3c7f0f3028f4056ddc626449458f8b958a8644a4f035fa0ced1fa51d3a134c80

SHA512
a7665187abdc3fcb1381fe4f8603b583ccae06078ebb52e8309e578b1ac78ece66e1b2337d558647eba8aa560fad9931829eb4d85f65c7c3a92dba2bb979d54d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\dafe540f6c3c16f4_0

Filesize
130KB

MD5
5e7adea4c1004354b82cd66ca8a323d1

SHA1
aed8fd621e76547d3089e8618abd28d3ff8cb016

SHA256
f342d52b843ca9e1a308404587206af5f729153b52536bec70c79f4607a235ae

SHA512
7782ff2fd0df181628458226d279be1114c3487ee8b2ae9c62f8ecd18f5448749a9997f7d3673d9b248a5bc0c80cac74fa330e7e97fc7ccea177de79fb955464

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\db2cbb8e04032a44_0

Filesize
192KB

MD5
2bd64d8aa420bfb2c20a13ad9d1ba010

SHA1
935f729110571eb42c54e15c78ce923001b3cf14

SHA256
ac195033c57114b0613580d351feeecfc639324ee1b95016cbd7ec4f5bdbb568

SHA512
8c89aacc513516a7b4cb66b4c56e6d1e181e4620d6fe3770307fd705afec5f199fa988e01342ac1f3e2eb6aed0ebdbe39606230f0498d328323ab14d803e968c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e2f7f144a69a9869_0

Filesize
226B

MD5
5325d056b34b4814eaaa35e0c41b9a53

SHA1
95ca8bf1b7a087cbde62aebc6b2f0e34984335bb

SHA256
6d7c738c46076ac95563d809cc58c99dce806d2504fc8e436dfb3aaa133d0d00

SHA512
ffe6fd4351968cf12ae92571e7f24657a6aba4b4b46d28e26e0fd1d18517a5d8399d35ef7f3201eec091f7d2024e6213be25d34bf523f3750f60b0b5d26d535c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e2f7f144a69a9869_0

Filesize
23KB

MD5
5c81af0dbd0966c5a08f850f975becd1

SHA1
cb79be091908c91d47b9f87d00f47b72ad389a58

SHA256
87701ccfd44dc78541a16b2762cf3bb8897edf1c82534e53d425026b4d58c006

SHA512
5fc26c9474a5aa7578992b3fa5427cc63d8ce527d99d8b647544f2079fe5a7864379710a2b162763b1691b2994554ab13f42f5e5308cd85a07625e3a654cdb42

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e92565f4905d7502_0

Filesize
251B

MD5
08a14d4dbc284eb7a5251a31e403ac0a

SHA1
d4c3cceb488f5a2460658a5f90d5f8cba89fc8f5

SHA256
2ecfe725e9d9499c5c9b93cb5d065bc151e863ccfd9ade668566d9b909f5b424

SHA512
405f57f22ecf27ffe00e7475d6efb5a7a743985dcf5a16d469059b35effab4e7c310d48d2f030f77192cdaae461377dca4e55426ce9cf7a2a5307305da99652f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ec3e8d8bdeaf53ad_0

Filesize
227B

MD5
2a021fdd149358ad220d790aa7a8f7e0

SHA1
d7dea4df2873f60ec20313e94280652feabdcfc1

SHA256
0aae9332e5ee491d678981dbd8b1945ef1c29de356deea1a8eb2894d17ecf60d

SHA512
1e4bbc9bf7dafb3624aa96c367d9f756458233fd2cfebde611278815d8f6950e9f8adf2da337c44eff7cbd9af677e22badf73b73446d94410db7dc03b3919852

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ec3e8d8bdeaf53ad_0

Filesize
14KB

MD5
ada714fd91c9c7ef89cb426548f10a39

SHA1
76e4e08e38f5975d8774bb6b52b7acfd012f26db

SHA256
bde30be5783cd8d2deabe7b0ac8c03f875d028747464d511788c29c77236d78a

SHA512
436115446dfde25b65805788eae197e90ea51b8fd5811d68dd2ab95381cd94819a412f13c39de5f83064faa693a2c01f02440dc77c910210664b0f234001492b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ecdf68b2c4e2b3aa_0

Filesize
266B

MD5
eb10fd7f3436e3e983b60e8b4f0b89a0

SHA1
06c7f67548dbac5cb6909b8dfd7670cdfbd14aa7

SHA256
2f55e911e91c3316bb5acf19e941cd5e5cecdd3c257c2e7aa44bb1dadae64a1e

SHA512
8f76b350c6414b7b7d9763d4e3071289d294427d972b4204523822386b70a3431d25987eb5f1571a46904cfeb31d951e4fdbae81a35fdb60f37d94587c996e84

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ecdf68b2c4e2b3aa_0

Filesize
218B

MD5
13eea6b2e6dd99245b6d9b3906d8c562

SHA1
4909ad08ad33a9449d3300c168e975160ccbfa8d

SHA256
15ddebd78a1e8b7fb634034bee60bed1fcb9ece3c16a74eaa160d76cbdbfc8d9

SHA512
1f114db6d2f5e259ac5543184d37754af1892a1e3e18b8798520f602735003860c742197c07b59eaeb5e2a0f34a7a2cd284cc89ad5e104c2f1c612cc7139f487

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ef207ef4c86ee152_0

Filesize
613KB

MD5
ba38b897f370e7c00895061282517d1e

SHA1
c6b1634e2fd407d221bbb84e5baaa545d778cdb2

SHA256
cb53d387ca477a66bea109265f416d7237bb91cb245ddd452882dbf578a2370a

SHA512
b9cbfc9dc6c5a2b85d316413c049ac3a7aabad688bb2ea7ac482dd4294df25fea1e528640febb308e06218f99f5f0620cf5c6f25b5cccb258475e2adf20df795

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f4d8a4b5bcc0691c_0

Filesize
248B

MD5
0bd3918e26167e00d62aa33f44b23eb0

SHA1
5c21372e957c343413639f39bf2c6e3d812b0a8a

SHA256
47f742452c9f534ad3217d0705468d2c15860b6ad56efa9751488ac84d2fd8d5

SHA512
f1be5a0f774fb8a90771577a0daa931928df8efff2d19e2085d4369b29af8a239209beb367e268121c67b10f36257181797005647902d89ee821f1536c0dd6c2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f5c235ebf6d6297b_0

Filesize
54KB

MD5
d0f78e0f1f53b62dddf3ee10da6e452b

SHA1
a1fbadce404a7f79cf4b352da6065466f4647a9e

SHA256
ec145067f5a98d058185c6eb0d0d7ccb571da0ff236ef3b4d42319bc50b8eff8

SHA512
c8c6b4cc09b404ce740600208118ba7c034cf4d48d797d28aaa247a2f3454c9170d0141243a53e6502b96c5f9ab70ee1e34b7054d1700c4482168f881226def8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f838ff58f7eb12e2_0

Filesize
751KB

MD5
31dee5e4fa11172190734a194d374828

SHA1
51a5a09d5ae60acbf86bce33dc77df7f15ac36ab

SHA256
24bf6a32258e4211f3f98a0046ecb94879bec070ca36906ca412076144bb2422

SHA512
deda4ddffafdd08488c1f44025329f28dee3124907f4ba5e055b508d62f839235141e40e7b6b7751c1c12f6a2f0d24744facfc66c127933e1e150ac409c54c01

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
4KB

MD5
3d6829cf03fb176b8dda85382e092e2f

SHA1
657420354e6aa5f42dedf6fa1e858f9c9f0a6e6d

SHA256
a9a15a92b3e43b46437eb1556767c730571c26c89241dfda33ef7343d8e07087

SHA512
05083073af52773aa3ccd32f5257c6035be5c4516343db3b6bff4f8f5bc978d36726281179106af85eff93e4cdfd836050000d9fedc0234a269a693c40f3d777

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_www.softonic.pl_0.indexeddb.leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
18KB

MD5
5b6994a6ac4883efbf40dbdb1fcf5017

SHA1
b19d615afba14a78dca4928f0dce216023c271a1

SHA256
07392d647800e41cd2501b54ea61653ba1a98d677780df3fdbde0ca63f05b995

SHA512
89e16a1b24343299ede37088b25f3cc4f895a229603dd934d956462e0e6751deb3a220381f9f5ec83a71eb7a06a87dbc9ee54c0b81fcf17d333b61d73789964c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
19KB

MD5
ddf60e283639e2ce3be5b74fc7aeb02e

SHA1
caac70276bca45e196e187cc82bf4612581c8a63

SHA256
fd484500125c3507d0fa4c3f47341c7b741ec0243da34d6b4ed0b0980aaa330d

SHA512
5ec30f6c3dfeeca622784c1bae06036bf37c9c25d05cb2ca79f297556ad0ac7749a0bc636cafac830a2af38145b32334fcb5051a4457b6ec9736abb0b79b72f8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
17KB

MD5
79e47ed78d6285df8c8bbd9fe82c7777

SHA1
3c4311da71e017c6c1da68ada304971fef539901

SHA256
58507ef9f83a45a59978652cbee2786a3d1b57b740a1dcfbb10b13ba1458d4ed

SHA512
776b39b1e4ed7115e3011b5c56e9e20650a9409f74f4a7823f96044afb50ffe9196abbe161e9a00149ea6635467452d7a1b6155c981ab630a84487e2f2458326

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
17KB

MD5
3d527319e0e0d72d4ad986d323c91263

SHA1
5f33775cd8faa7f4123102bb768121866bc1eb4d

SHA256
6c320017b9ae5be87e8612ad1dc9e5cbbd9071ac33265afc500cfb48066064bc

SHA512
fbe7d76726e3b6a835c361027fc3f989bc2a1edf79e984308dff962d4b26700bb91f542ed906a6ccdad6be07b3cb089a2f56fa40814af1fa7a48022b26d07cf9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
af0d2f6e7c441ec717e03468bcb412fa

SHA1
4536fec334556ddf033221e6a18c46e37ba7105f

SHA256
b5ca7f5a663e60d69d1a9fc987635fc78fd00d67917d8a32b798d1a50511dc3c

SHA512
57aea71278d2960fea2856f1f6b7302f9ce62ba14985a4a829d9b0ae018e9426e540d705cd2db8b2bd45e5a8712bb228ca5859285ece579846e24828c62ab91f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
14KB

MD5
dae068f963b6aa6f6d73b628a26fdabf

SHA1
553649f6a59af43a2e87329f46997cbb69cd7019

SHA256
682f06b7d475f9a1ac1b2f4dea2f2f07c82965374344ba4c98b8ce3da03897e6

SHA512
84644bddd995b9921468c4fbf3f2fd51cf758deb594c0eab221ea0f2ef9cb86743df9d6801f788e5e033da69a2986116aa040f3eb0fb12d4d39a50eacefef30e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
14KB

MD5
439654de9a6a0bd99a3031084ce59a80

SHA1
5ec7d9e5ed87eedf7320f4b9558e441bd402ca9c

SHA256
809344b032ffd6d6c0c27a9f2ada37a682971190a6dbf8e97465887999033c3c

SHA512
4a1967789a013cdf1cd2be27b4b100d16770cc8c05ed025e1d6d2130990047457c6d7d0224adfcd882a3db03ec2746548a2dbd9e8aa20d89719c88f5ae14100d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
16KB

MD5
382cc359e2e2d580746bd6ddc4fad87a

SHA1
a115783f2cfa6f1f9ef18d49100199f30eecc4ab

SHA256
38cafad74e9a7ca3a04fc080b60845a948753ccdd3b371628462ae91be9d54c7

SHA512
4463489bd718f98590dfcfe033e7987640698517b5ba1eba071c05592daf64d6ce6a6d526259cb6c739aa554ffce10789144c94fc6db30d9e9d9f2a35730e0bd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
17KB

MD5
c5417892067f8c4e4d7ad7179046fce3

SHA1
3850e9a3dd04d7371c4aaf2b27295e69e56e868f

SHA256
9377672b80cc24437746752eda44d8cc06d67b051a0fd2aa97560691df6ca6e2

SHA512
1b0b5234e1cb63c17af7632d80a0c85f65cddba9a9765b5ba42cc942861091ff61f3ec3a57cc8e7ee5a931068e6f033345071841e01eb73576bcc7de8395f7f9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
17KB

MD5
c3749b162eaf0e53d7cfb8dc01a08f04

SHA1
994334e9103c7a7c72ed2e5384a5fcb6f1cb7e57

SHA256
681ef92d59723bb2d143c6d11c6e13e9734129cb26d063664c316e36b97ba99d

SHA512
35182b33687a89ee2d6cb024f2be6271fddd566be5da97dec9d666c55adcb4118e40d4ed5646798c306ee833f706a38aae91cd04c16d375b70e65644b886bd52

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
15KB

MD5
cbcbfd0d3481806d1a03e2298db208aa

SHA1
e121b407b244e06e6e188d12f1f96bf39aabb5a9

SHA256
47c08bb5cb51ce525322f7342c4f1a3483d9f24627a099f296094028c4e5f5e3

SHA512
2c2d7f9c348ef07e2cb7b6caedb5248fc9ff5d1142728b9beaaca36060b9d4ee57a4fd71f419936fcdf9bc0d407c6c0cfa7b115cb2026bfa990282f46f101d74

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
17KB

MD5
3e3a7b0419d57c959fe6194c915c6d9c

SHA1
e6bcafd2cfc06e3cda9b36a00f7a2d48fb4d39f8

SHA256
e0da26f35d046f114fc55eb130d873dfb4de28ca384a3c54ac4c84c925b5bebe

SHA512
0e2bf8072ed81ac495ad1faac4e5ae3e370a1e9a218bf4364215e19aa09c642dac6e1dbf39fe96c3d8974e712794d3875b8b7f75e71189f392a80eef1b375d98

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
11KB

MD5
d2b914af934a1e05a2cf9d9ac18e2748

SHA1
0398ee373b85377279e0cdef749a2a3d92bca044

SHA256
858debff5de6a06092d4282e01c880fcf3461bd84350826f864faf9db55f7ca6

SHA512
8cc25d97dccf9f5749fb7d6db00ff12240b9e1645af51fef05809aca270f06bc40c9cdf7fb9aef4bf256d5b24a256340526a20c7fe076cba2a0cfcd06e66fcbe

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_0

Filesize
25KB

MD5
2e6c14827000bb4b15cecf32601985ad

SHA1
0279677b19702ffabbde504b88defbc93dfb8d35

SHA256
89c1031039c6198122e49c0255b01228eaa9f6128db24aa73c85d900da756f4b

SHA512
b66851950b5e7f8d7b1753add10fd6a0f2e0b28d9c5a88f51dd19f91ab9d4ba5f1a34128175cb52edc2f4ecc44fdcd3705e64c65f7080ca99a2b53afa8924caa

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_1

Filesize
57KB

MD5
7a14f9205b426f89f7db6ed9fac57927

SHA1
529fdd2bacce28aa991f18a3bab2c8d780caa96d

SHA256
dd0b569ba86180dec8d84c225af5ccdf4a6b8575f6a68475d2dd5929f9526d7b

SHA512
7b8699a795f25a47e4959a4bfc7ea75a6740a4f727381a1e790a2dacb8bb612af654556ae22943a1ab670045758df2e1259e96bcc485836a0ad458a9a5b357ca

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
144B

MD5
517f454eb76b388263205642ef69fcb7

SHA1
065895086dc90574d4f612392d79e1e718c4ab5b

SHA256
7e86b01773e53d50257755372b0cccd62cd2c95a6a5e9c5747e1eb59c2d5fa5a

SHA512
956e4a5ffcc5b6588f62ddf4f1bf61f0d5eddac0b50331d2d63b308213cd7f661aa006215df6659b048137a9f42e5dd8bbc6fd03e9684dfb42d057c075fe5a52

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
168B

MD5
048e5c81615931d4c2d9673899aa926f

SHA1
48fb016c6f74cc602623d02f8b73433fa005c00b

SHA256
975a8ba1c6469165a0a7f70f996490dc5fb306d4f973b2c85629921df5050dc0

SHA512
029c88d20119eeec834c1f7b6b4d1b00152aa1f9aa13dad11ec791e183674a7e70b6f99f1d25918467bac63251582332877cd9a8903aef316af21a100709f991

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
120B

MD5
9f1e8138ac064c432bb0bc7ac24947fc

SHA1
82ce6c970b4677f4f7db416fc762d00ccf6d29ea

SHA256
b8c3f5b219e67ef42901910c0079afe40876e35b34a7bd87c694a4b84fb61a15

SHA512
4bcef8ef7568a154081a0cc9d60af8b42650c2536337da57da1d1b503e18e09a78e78e5e31ea96f547fb0d7b96e42f9c95c1769a17d9c756c5828d227c5b4f51

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe58435d.TMP

Filesize
48B

MD5
f8aeab5f74cdc6e49a14807838938474

SHA1
25ec0c4a5928d3b173673ba7c910790a2c48ac3c

SHA256
049d34ff9b8e67cebb412d8da8e0fee37fe7250a755c9f0ea44f15ee128ea594

SHA512
9a41c91d534ec5be243129b8c3126a83084ff032005e7927a0106aa22aa3d39d257f5832104950c9e27b5670fe0da93af24928c2fa946e4b8ba7dda076b3e248

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
5KB

MD5
eb5a2a0a6a2a150be41f4a45a9b9c8ec

SHA1
8ac595069774f287689bb366c03dfb84b9c5d20c

SHA256
9328181c92e222765375d92618de6165822ba35082d9f01e93f07c2d559c2a9f

SHA512
27fa46478d2ea5abd0b21d7010f96943034ee03ea8dd0a38450d18236cd372cca0f81059581cef64ce3c1fccf4b6d034c59bbf0ce64dbbca99033e6cf5715ad8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
75c06b3cb373160d7ead9b08551b8572

SHA1
ccd264ce6ac937534d0220a79439c719222ada7d

SHA256
8ff372c55e39874df8c1b4d3df12c2703b2bdf40d8e1e976b58fa1ff233fee24

SHA512
e252659ef1d700e84591ec38985263b91d562dcf9aa4e45b63d2c93d299785ee2dab7b93a6b0418dbb689aa5aacaf4b70548f44de71fe24df75e6f053166c617

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
0ab4b7e0eff4b00297fe2e131a5e580b

SHA1
b36d0705a7c28a86c21dcf2b9c790ec2fe5a1831

SHA256
37a4285152449acff7f0369b7e0355c72067ed1ca395a26cd649524c0b7d69f2

SHA512
5a4265c4710f5855076055c957e86c3627e2e66c619068ef07efd3149f1ad26b1cef558e4c865aff5493539c10355cbc902e6f04d695003fb92c21ba9a48370c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
3KB

MD5
7e270d9c585c937dc2784168804c14c0

SHA1
553f5a14d5a65853d3789f7d54e02aa530a95d39

SHA256
a43cd9f0cba45853a653040bf0eb1c44e41bbf4c71747d368f5cfa3244ed5fe1

SHA512
4dab8b3fb0ab0f734f5ee54cd9570ab0757676732a1f2f1689c84d63bec058d51c1a78f0285117bb34334ab01fa1349ed2275f405a76443f06d8ccaa2d08df78

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
4KB

MD5
85060202d23a02340e7e8d9cc7b9bfe3

SHA1
b2b21fcd5193d311140164fbd4d9aabe665ada6d

SHA256
14f661fa9dd872820cfcf5979f5ef3e7ea73ca1a94a778ed20ddc48b2306a2f8

SHA512
35a8b29eb9d484337d8dba7fd27ed4a0f0caa5c00bd73a140b656ea60a42dce5fe72af807b8f43e393ae9b3eef7d6cd44a5da1b1c0bb4e5055083a6106606f43

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
6KB

MD5
139bdb4738bcc09b8d7991c6f7d2ac70

SHA1
0f0b775f7b1e0525c58dccb28713bcd074ec8195

SHA256
bd15de5d6ec15222672180d950f65e8f1de0d5a8ed69dad5b9622bfe096383d9

SHA512
fb767dbe13bd6b6cc78d91b6922a6299719f12cb2d8d9304d086a294740c84c782eae95cbe1a0297cbf63f6e82666ec1c02e7331fee7bea1ebfc1e28d3238b75

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
4KB

MD5
a7b07a4a5d6502d18c8d7c8b9ae29938

SHA1
b5100baa676d2241620f30d96a4b96fa6dce9e49

SHA256
c8938e276c3a2aa8dcaeb6f6c586c49222e4ec96c88e9c8810b8ffa91d7ce605

SHA512
917fd6b47dfca4c5d37775df714d2e0e0fad98cec6f696b34dcfb1c595e61a81646ec420c13eec85b25a2e61034cd42f28d78d50653020e01cc23951b81510de

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
4KB

MD5
ae52dfba38da713f5a08ffe1234ecc10

SHA1
5a062baca76a0363fd82160192b47612494a6218

SHA256
901f7a9e6f44984830053216ecf2ad739a146a6f4e08676fa2f9b8603dbd1e2c

SHA512
60f5f8f7c52e6481ab1c2f05502ec18173750c7419a635df653f3b10f9849b0bc46b75de7428a19dfbc5a7be58b8ab8df177d8e0c01452ddf9d6d23afb0d0669

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe57f126.TMP

Filesize
2KB

MD5
0dd6fbaf5d0c6d90f1847c04f91e6d4a

SHA1
16bb4cb8cad5aa0b27c4f5b27087c0cf5238dca8

SHA256
bc61bcd61cef4bcd5b5e6c492631b31e12ba624f806425545d3418e90942c568

SHA512
7fed2c062936c1dacf508b4972252abb7acf4b97f89e36d33c445912da536f49387b78417371a6fd633d66a9919225875c52857750bb710e6a3bbc75edc440f0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
94f06bc32d54efaef7e2b0ee1dca3821

SHA1
fd57ca9b8664dcea15033ca54991e0049a17b52f

SHA256
d081fb54a91b84f5c464de98124c2b3efdf642d980aff5d4f836f95be35a969f

SHA512
86fd51c871fad47379e4035b46d448b40d19db8d51d5bc30e790a7580aa160059af3beb2e3386159c66430e5d94e0cbd476ffac1efb3d1baf9f0a06e7676d0b3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
1153717f0900af358e0cde69a3c7026e

SHA1
f61cffac63a5c569032f3adc2d2f8c2ca58ba094

SHA256
167bc67170e0f1c6b84fc58be72e1a2c416b1876bea5b0f911cd7971132cb0a5

SHA512
5799a1a08ce4331f767b7ef3d9f75211542db0d5f0a90b38091926d89fea7bfb05a0e7f2650805a9606e4b6a755f9b8fa2e32003070f52ee8fa9f9662617b3ea

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
ef98ea3ead81b071532d589449efabc1

SHA1
6070d445e1ba30899a5bfc72a5b36ed1e17cbc48

SHA256
583c1fb17ff4bfbf929d7d50a8d83333244e45674891348a229d891a78d0bcc7

SHA512
15285ccdfb8a3a8d78f2359a851a31c6afeb9b8b6d15250ce5715cfd1903cccb6da803d60f78874fac6cf0d8907c8463e9e68274670483c79a5bfc18e1bc0fbd

Download Submit
C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\BackgroundTransferApi\f76331b1-de7f-4a2b-8b89-ede306428551.down_data

Filesize
555KB

MD5
5683c0028832cae4ef93ca39c8ac5029

SHA1
248755e4e1db552e0b6f8651b04ca6d1b31a86fb

SHA256
855abd360d8a8d6974eba92b70cbd09ce519bc8773439993f9ab37cb6847309e

SHA512
aba434bd29be191c823b02ea9b639beb10647bbe7759bbffdaa790dfb1ec2c58d74c525ef11aacda209e4effe322d1d3a07b115446c8914b07a3bce4d8a0e2c3

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsb916A.tmp\image.gif

Filesize
997B

MD5
1636218c14c357455b5c872982e2a047

SHA1
21fbd1308af7ad25352667583a8dc340b0847dbc

SHA256
9b8b6285bf65f086e08701eee04e57f2586e973a49c5a38660c9c6502a807045

SHA512
837fa6bcbe69a3728f5cb4c25c35c1d13e84b11232fc5279a91f21341892ad0e36003d86962c8ab1a056d3beeb2652c754d51d6ec7eee0e0ebfe19cd93fb5cb0

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsb916A.tmp\modern-wizard.bmp

Filesize
25KB

MD5
cbe40fd2b1ec96daedc65da172d90022

SHA1
366c216220aa4329dff6c485fd0e9b0f4f0a7944

SHA256
3ad2dc318056d0a2024af1804ea741146cfc18cc404649a44610cbf8b2056cf2

SHA512
62990cb16e37b6b4eff6ab03571c3a82dcaa21a1d393c3cb01d81f62287777fb0b4b27f8852b5fa71bc975feab5baa486d33f2c58660210e115de7e2bd34ea63

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd1843.tmp\Math.dll

Filesize
67KB

MD5
85428cf1f140e5023f4c9d179b704702

SHA1
1b51213ddbaedfffb7e7f098f172f1d4e5c9efba

SHA256
8d9a23dd2004b68c0d2e64e6c6ad330d0c648bffe2b9f619a1e9760ef978207a

SHA512
dfe7f9f3030485caf30ec631424120030c3985df778993342a371bf1724fa84aa885b4e466c6f6b356d99cc24e564b9c702c7bcdd33052172e0794c2fdecce59

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsyD9E1.tmp\NSISFastLib.dll

Filesize
137KB

MD5
9c7a4d75f08d40ad6f5250df6739c1b8

SHA1
793749511c61b00a793d0aea487e366256dd1b95

SHA256
6eb17c527c9e7f7fea1fdb2ea152e957b50a56796e53ce1e5946b165b82deaef

SHA512
e85235307b85ffd3aab76ff6290bee0b3b9fd74c61a812b5355fe7b854d4c6b77bd521e52638d28e249a43d9ec7aa6f2670af2b1c671091492c7fe19d6f9a4e6

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsyD9E1.tmp\System.dll

Filesize
12KB

MD5
cff85c549d536f651d4fb8387f1976f2

SHA1
d41ce3a5ff609df9cf5c7e207d3b59bf8a48530e

SHA256
8dc562cda7217a3a52db898243de3e2ed68b80e62ddcb8619545ed0b4e7f65a8

SHA512
531d6328daf3b86d85556016d299798fa06fefc81604185108a342d000e203094c8c12226a12bd6e1f89b0db501fb66f827b610d460b933bd4ab936ac2fd8a88

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsyD9E1.tmp\inetc.dll

Filesize
38KB

MD5
a35cdc9cf1d17216c0ab8c5282488ead

SHA1
ed8e8091a924343ad8791d85e2733c14839f0d36

SHA256
a793929232afb78b1c5b2f45d82094098bcf01523159fad1032147d8d5f9c4df

SHA512
0f15b00d0bf2aabd194302e599d69962147b4b3ef99e5a5f8d5797a7a56fd75dd9db0a667cfba9c758e6f0dab9ced126a9b43948935fe37fc31d96278a842bdf

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsyD9E1.tmp\nsDialogs.dll

Filesize
9KB

MD5
6c3f8c94d0727894d706940a8a980543

SHA1
0d1bcad901be377f38d579aafc0c41c0ef8dcefd

SHA256
56b96add1978b1abba286f7f8982b0efbe007d4a48b3ded6a4d408e01d753fe2

SHA512
2094f0e4bb7c806a5ff27f83a1d572a5512d979eefda3345baff27d2c89e828f68466d08c3ca250da11b01fc0407a21743037c25e94fbe688566dd7deaebd355

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsyD9E1.tmp\nsJSON.dll

Filesize
23KB

MD5
f4d89d9a2a3e2f164aea3e93864905c9

SHA1
4d4e05ee5e4e77a0631a3dd064c171ba2e227d4a

SHA256
64b3efdf3de54e338d4db96b549a7bdb7237bb88a82a0a63aef570327a78a6fb

SHA512
dbda3fe7ca22c23d2d0f2a5d9d415a96112e2965081582c7a42c139a55c5d861a27f0bd919504de4f82c59cf7d1b97f95ed5a55e87d574635afdb7eb2d8cadf2

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\1f7fef4f-2465-4a9b-8efd-26eabb31407e.tmp

Filesize
1B

MD5
5058f1af8388633f609cadb75a75dc9d

SHA1
3a52ce780950d4d969792a2559cd519d7ee8c727

SHA256
cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8

SHA512
0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
72B

MD5
a23fcaaa516fa37f65d7e610675db2b8

SHA1
7e2b80e405e70c5ee6cecf2d42a7b7d16e08f040

SHA256
7e5ed45ad288e1f980ff6cbac4d4a8679ab4d7ef569976a44be2f6fe4f27db87

SHA512
80ac1bd3787772ce701a6afc6936454331f18040098aeda7b59bcd36700cb6deb18be367ba6df7cddd2f2d7f8cc26dbbabae1f176b0e36530c061ec7f6dd1efb

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Code Cache\js\index-dir\the-real-index~RFe59ab59.TMP

Filesize
48B

MD5
b3656c18f6017b15f073209bbf5c7e78

SHA1
6a506046c1b7e6dc8456d848f36d2935e489430d

SHA256
a78fb29f651b0c8e4e0fc2cd2b812affd05d612d8a50978b52e3869f320f0dce

SHA512
55bf0222b04c0a4a021a1f57f9b1b3533c2b1e161b79e8da48bf7795f0d2ee938a4938954a9c7226ecc6e71c52ae5c2ae81d8ca209a732017ff8fdbf158a9d4d

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Network\4b2bdb7f-24a6-46e9-838d-a62c0ac3ff3d.tmp

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Network\Network Persistent State

Filesize
1KB

MD5
ed2fab4075ccf5bbd48758f1f81ed254

SHA1
92731108eb16358146f10c0fbb9426affb9f42ec

SHA256
080a4a5941d796d91d2cd9069cbde8570d414c0f5bf134c639397c1b41111ce0

SHA512
b863b1146470544191362a8a08d2f53807c918137c2808a6f18dad9cb521338640fe9f3b4976016899d2d03e4217fc2685ab6c51858a377fb9f49cc4eaf654e1

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Network\Network Persistent State~RFe59bef1.TMP

Filesize
59B

MD5
2800881c775077e1c4b6e06bf4676de4

SHA1
2873631068c8b3b9495638c865915be822442c8b

SHA256
226eec4486509917aa336afebd6ff65777b75b65f1fb06891d2a857a9421a974

SHA512
e342407ab65cc68f1b3fd706cd0a37680a0864ffd30a6539730180ede2cdcd732cc97ae0b9ef7db12da5c0f83e429df0840dbf7596aca859a0301665e517377b

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

Filesize
4KB

MD5
5e386be5baf867b6d8f4b47e1347deae

SHA1
fe0d1868aea733dac05020f643bbcb72b0cc05f4

SHA256
05f69674d10d7fa35712815f64e58351852f5a6d8afa77731a3ce78c3d3b1b72

SHA512
10648da2d2ad04ae80faec8a2993782a14cf1280faf9b9260661ff3aac4e9a36f1e69fda1902a3f86e274b548437021f37731cc59f8d912fdcda1b1214a7dc42

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences~RFe599dfb.TMP

Filesize
4KB

MD5
ea229645c40e240156b6454aaaafcae0

SHA1
c8900dd3933ca53e91485df32b09947343bc63cf

SHA256
d62bc666891c120fc66bd8fb41c2fdafb7a0b5c038707e7ecdd28a22dcd43dc4

SHA512
a6fea14cd7321354ef66b9c1a937fc3e20b2e0dcc589b97946d5e87d347e5c38180beb671d326aa7a98c65a04dabb46c568a99656e866762c9746848c70e47ae

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Sync Data\LevelDB\MANIFEST-000001

Filesize
41B

MD5
5af87dfd673ba2115e2fcf5cfdb727ab

SHA1
d5b5bbf396dc291274584ef71f444f420b6056f1

SHA256
f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4

SHA512
de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Web Applications\_nwjs_pcapp.store\pc_app_store.ico.md5

Filesize
16B

MD5
03e9f614a008075733c76883156b568b

SHA1
5f9cb1b06928487c4b836e9dedc688e8a9650b0b

SHA256
b1a6a6fb45ad1e13054c40dc7c09e3098ee830bcf1ebaec27f640ae4c64b8416

SHA512
7e6969c8908a6bf57bd2cb4457a7c78360468383acee589278e49829617e2f3b872dd8213e57a2ed8f512d444c67a2e619deabdc1394d1c39c7759ed3c744f94

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\c65e239d-84a8-43a7-9f66-6a6aaf358f9e.tmp

Filesize
148KB

MD5
728fe78292f104659fea5fc90570cc75

SHA1
11b623f76f31ec773b79cdb74869acb08c4052cb

SHA256
d98e226bea7a9c56bfdfab3c484a8e6a0fb173519c43216d3a1115415b166d20

SHA512
91e81b91b29d613fdde24b010b1724be74f3bae1d2fb4faa2c015178248ed6a0405e2b222f4a557a6b895663c159f0bf0dc6d64d21259299e36f53d95d7067aa

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\GraphiteDawnCache\data_0

Filesize
8KB

MD5
cf89d16bb9107c631daabf0c0ee58efb

SHA1
3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b

SHA256
d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e

SHA512
8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\GraphiteDawnCache\data_1

Filesize
264KB

MD5
d0d388f3865d0523e451d6ba0be34cc4

SHA1
8571c6a52aacc2747c048e3419e5657b74612995

SHA256
902f30c1fb0597d0734bc34b979ec5d131f8f39a4b71b338083821216ec8d61b

SHA512
376011d00de659eb6082a74e862cfac97a9bb508e0b740761505142e2d24ec1c30aa61efbc1c0dd08ff0f34734444de7f77dd90a6ca42b48a4c7fad5f0bddd17

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\GraphiteDawnCache\data_2

Filesize
8KB

MD5
0962291d6d367570bee5454721c17e11

SHA1
59d10a893ef321a706a9255176761366115bedcb

SHA256
ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7

SHA512
f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\GraphiteDawnCache\data_3

Filesize
8KB

MD5
41876349cb12d6db992f1309f22df3f0

SHA1
5cf26b3420fc0302cd0a71e8d029739b8765be27

SHA256
e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c

SHA512
e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\Local State

Filesize
2KB

MD5
03e345c555fcd683434c5a6b89cd0a8d

SHA1
77e4251498a5d00581a7db53808f271d19fd8fae

SHA256
036568eb5ff06001954217e36c768f9850668da22c6eaed1a38ad53448c65e51

SHA512
31f94a70ce30f39d08c7277272c3ee7f30bcd2693a57385e8574c2c0cb2b53d8bc9c8c59fa3ef3b096fb213ed54ad71beb7dbbc065af88c601228bbbb7129cee

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\Local State

Filesize
2KB

MD5
64be89ced3eedc9d075f29aa9023661b

SHA1
35933050eaf950f3a1366ee0c60eab89697bcab7

SHA256
393e8efaba4a2e06305372e9ab2a37f257deb802f12d6df332ed9dc4ccaccc2e

SHA512
76e203c0e1efd3705cbfc9012e07fc0e88c3168bcd2856774503c9f2d2b2512795ee8734fdd36c6e1b82dc8c00f63d588baacf18750ae6de44d57f761951bf92

Download Submit
C:\Users\Admin\AppData\Local\pc_app_store\User Data\Local State~RFe5973a0.TMP

Filesize
922B

MD5
847bb3efafb41478a914b91bf9806bee

SHA1
97f806c9e6bf3a4d41b144a912af510bd225f7f6

SHA256
9b30963f69c62440971c3597fefa78b5d09e415934b8f6b4081a2b6e9027a4c8

SHA512
4fa90a4a88a8e4131b9acf7b8265349e6698728208e7709068f019d3a9ee2eced4cc453952264d38aebc101ef8b864412991570df3c43393593919d83589bbba

Download Submit
C:\Users\Admin\Downloads\Unconfirmed 932920.crdownload

Filesize
185KB

MD5
e674673493fec9189965a081c7a3b311

SHA1
f67e8b3caec486a92cbcb01f20a135829d8e0019

SHA256
8ca742249d8f88ac467f2fe5387f7f637ef8764e459dca7f3d5c6aab1d48673b

SHA512
d595deee045469fbdd9e28eb384e600e57ea7d18403f8cd2a9758e46b80998544e80545fc8b03a8dbe995283904766bd0101509587b13a5a71a2d950dfff03f8

Download Submit
C:\Users\Admin\PCAppStore\nwjs\locales\bg.pak.info

Filesize
1.0MB

MD5
82d7ab0ff6c34db264fd6778818f42b1

SHA1
eb508bd01721ba67f7daad55ba8e7acdb0a096eb

SHA256
e84331e84cd61d8bdacc574d5186fb259c00467513aa3f2090406330f68a45db

SHA512
176458b03cc2b2d3711965cd277531e002ae55d284b6c9178d2353e268f882430235468e5a1e9e45c8427864d109cf30a024a993b4763a75fa2744f6e0a6ae2a

Download Submit