Overview

overview

8

Static

static

8

URLScan

urlscan

1

https://thebrickmall...

windows10-2004-x64

7

Analysis

  • max time kernel
    1153s
  • max time network
    1161s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21-11-2024 06:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://thebrickmall.com/ssy/ptsd/KCo3N4RhXkK8PSRouSBrZCk3Xeo/dHJhbnNhY3Rpb25iYW5raW5nc2VydmljZXNAbWV0cm9iYW5rLmNvbS5waA==

Score
7/10
microsoftdiscoveryphishing

Malware Config

Signatures

  • A potential corporate email address has been identified in the URL: [email protected]
    phishing
  • A potential corporate email address has been identified in the URL: [email protected]
    phishing
  • Detected potential entity reuse from brand MICROSOFT.
    phishingmicrosoft
  • Browser Information Discovery 1 TTPs

    Enumerate browser information.

    discovery
  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 10 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 13 IoCs
  • Suspicious use of FindShellTrayWindow 25 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument https://thebrickmall.com/ssy/ptsd/KCo3N4RhXkK8PSRouSBrZCk3Xeo/dHJhbnNhY3Rpb25iYW5raW5nc2VydmljZXNAbWV0cm9iYW5rLmNvbS5waA==
    1⤵
    • Enumerates system info in registry
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:4104
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffe109046f8,0x7ffe10904708,0x7ffe10904718
      2⤵
        PID:2556
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2148 /prefetch:2
        2⤵
          PID:4048
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2320 /prefetch:3
          2⤵
          • Suspicious behavior: EnumeratesProcesses
          PID:3496
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2804 /prefetch:8
          2⤵
            PID:3284
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3352 /prefetch:1
            2⤵
              PID:1696
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3384 /prefetch:1
              2⤵
                PID:2884
              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4752 /prefetch:1
                2⤵
                  PID:4628
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3664 /prefetch:1
                  2⤵
                    PID:2488
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5196 /prefetch:1
                    2⤵
                      PID:880
                    • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5816 /prefetch:8
                      2⤵
                        PID:4764
                      • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5816 /prefetch:8
                        2⤵
                        • Suspicious behavior: EnumeratesProcesses
                        PID:4292
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5088 /prefetch:1
                        2⤵
                          PID:2352
                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4940 /prefetch:1
                          2⤵
                            PID:3732
                          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4012 /prefetch:1
                            2⤵
                              PID:1020
                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5052 /prefetch:1
                              2⤵
                                PID:1532
                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5072 /prefetch:1
                                2⤵
                                  PID:1580
                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3476 /prefetch:2
                                  2⤵
                                  • Suspicious behavior: EnumeratesProcesses
                                  PID:5088
                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3424 /prefetch:1
                                  2⤵
                                    PID:2176
                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4884 /prefetch:1
                                    2⤵
                                      PID:4196
                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,515173035847776882,158277408031680678,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5328 /prefetch:1
                                      2⤵
                                        PID:1208
                                    • C:\Windows\System32\CompPkgSrv.exe
                                      C:\Windows\System32\CompPkgSrv.exe -Embedding
                                      1⤵
                                        PID:5056
                                      • C:\Windows\System32\CompPkgSrv.exe
                                        C:\Windows\System32\CompPkgSrv.exe -Embedding
                                        1⤵
                                          PID:4936

                                        Network

                                        MITRE ATT&CK Enterprise v15

                                        Replay Monitor

                                        Loading Replay Monitor...

                                        Downloads

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
                                          Filesize

                                          152B

                                          MD5

                                          85ba073d7015b6ce7da19235a275f6da

                                          SHA1

                                          a23c8c2125e45a0788bac14423ae1f3eab92cf00

                                          SHA256

                                          5ad04b8c19bf43b550ad725202f79086168ecccabe791100fba203d9aa27e617

                                          SHA512

                                          eb4fd72d7030ea1a25af2b59769b671a5760735fb95d18145f036a8d9e6f42c903b34a7e606046c740c644fab0bb9f5b7335c1869b098f121579e71f10f5a9c3

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
                                          Filesize

                                          152B

                                          MD5

                                          7de1bbdc1f9cf1a58ae1de4951ce8cb9

                                          SHA1

                                          010da169e15457c25bd80ef02d76a940c1210301

                                          SHA256

                                          6e390bbc0d03a652516705775e8e9a7b7936312a8a5bea407f9d7d9fa99d957e

                                          SHA512

                                          e4a33f2128883e71ab41e803e8b55d0ac17cbc51be3bde42bed157df24f10f34ad264f74ef3254dbe30d253aca03158fde21518c2b78aaa05dae8308b1c5f30c

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
                                          Filesize

                                          192B

                                          MD5

                                          bbd719f3dbd2aa5808e9fe1271d37498

                                          SHA1

                                          d947cc70a53576788323e002e1652194e88ec612

                                          SHA256

                                          dde3336d42ae8cb4a39409ebfca3271fd63cbe9cf1e333fa584cadc332345be3

                                          SHA512

                                          d7c1342b0302c3f74158712962ff4dee4c9f8ae88fb3bf48eaabfe482044bd7dd51db7f01ec81a0e0212181b3f8e7126542b8c54da5882ac864247a60d5f540b

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
                                          Filesize

                                          288B

                                          MD5

                                          560363972e1c1f94f6619f9c70018739

                                          SHA1

                                          ad0ee90e74732abf20e459cd10b02ce1031d9faa

                                          SHA256

                                          6643810a84c67d7c52a8d543ed746e3ca2039ac2cf170e638726becdf61d677c

                                          SHA512

                                          0e26ee49611e25d19c0b4960de2e89b885d2a982033f141b4ba7ec098c7111e3fef6100dfa96a4c26c9f6af85c941698df1007f5da1095a6108f5b9015911d6e

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
                                          Filesize

                                          96B

                                          MD5

                                          e541b4ae661c4959430b313d894d7f38

                                          SHA1

                                          9403035ff2798515204edbadd1e87efc9e3fb66f

                                          SHA256

                                          526f28960546d98967cb48deb48e074470c59f60fe0385c01a376fff6c9c5c5e

                                          SHA512

                                          17db927eec50c4c04b87b464f78910bd5169712b1ebdbb7dea3e345ee0e27deb128efd8cb29cff062019785cc6df01f8b65e34c6c7319c0dcc598123b05c7140

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                          Filesize

                                          1KB

                                          MD5

                                          e2bdca7e189d8b6a3fb2c299b84509a8

                                          SHA1

                                          803e6b64070cc220493b1dc43a63b1ea3f835522

                                          SHA256

                                          779e0f70ebea339fa605e00badaae6114ae1713c2f77a56afd2bff7ec6dfe545

                                          SHA512

                                          5967c6db5382f43a58e03c66902b2a24473290fd314110e860812e4fa899b952ce3d26f07fdce247c15c1d55e25469fddf45174ea20c1c9ab083f05ba6341af9

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                          Filesize

                                          296B

                                          MD5

                                          a3102010766d67e27036cbb5b305aea3

                                          SHA1

                                          34ebeffa2054266dc6a6cc122e0895c12a0a9e69

                                          SHA256

                                          f461aa25aa435191f49afbcec9f7d327ec6eac74e707dfdeafe4ec39bc17f0a2

                                          SHA512

                                          7e91d4d4b0019e94573dca34430aaea089fddbb9adf07343448051084c2372e4d3a703e3d9d795b995f86255adef7d53d26e6325c79ff0750afc4ca67ce0a814

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
                                          Filesize

                                          1KB

                                          MD5

                                          1f66a69a4cfc35f91125906964b88c08

                                          SHA1

                                          079d81d9ff2c5b8291d3db38492ffe13052bdd9c

                                          SHA256

                                          5098b72e07a045a7ff1f047ca21782aa0e4cf591510c645b355758613ce6a80b

                                          SHA512

                                          263a29f0a6c6bd625447f14db2f8ecb27c409668bd071f78acf7955d0f51e1f85fbd31820ed240a1ccc06427f6a9b945e42a87fbf6bc583d0d50bab76091a69d

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                          Filesize

                                          7KB

                                          MD5

                                          74336fc5d75074188e4ca8070a9caaa7

                                          SHA1

                                          62d0f46d9b18d88a948f6197dbb0ee8651cd87b9

                                          SHA256

                                          0d9c4f2d350c7d3d1b3a15785445243980368ab334cacb49eca453112e37c5cd

                                          SHA512

                                          33459c3a32f95ec3305aba381770fc06aa76d1d2f54e3bc1ddceb7f2f1efcccb10d84b8b13e01064a96d645953722d9d217dab24c2f6835fb67e983209ee1758

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                          Filesize

                                          5KB

                                          MD5

                                          148f602e4bb0df6c346e30baf01f3f10

                                          SHA1

                                          543d840fc3e9ad24b76ec00e28cf6ee3467818fc

                                          SHA256

                                          f7d2f8912f676ff3f389bad9ec44d3db880f01b640ece54458090f1f04bb7411

                                          SHA512

                                          ef0270508c611233901a51e8f47e514bc306b709aadfaa40710c49aab2518aa70f5e984aef669c3b70e7499e2313873a90813a943a4610842399eee79e0fe9f0

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                          Filesize

                                          6KB

                                          MD5

                                          d8a4dffd513a680cfb7012acdf95fd6f

                                          SHA1

                                          1267ba11adbc6fba73fdba1508ef71b038cda40b

                                          SHA256

                                          14a1addf8b31bd7f62dfd0dc5089b72353d4d8f3b1dea769cb49c07154c7b5ca

                                          SHA512

                                          8f469e650e76e42ba1bfdcd230cd4f835f86fe71556d44052883a5e335fbac8dcb0acd5698e53e35b6750bb69d75e220294042ed7b5682490e98ca48309ca5ee

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
                                          Filesize

                                          7KB

                                          MD5

                                          fca86a9a567301e51f9204a4c52d2961

                                          SHA1

                                          d9840d6d4827a40d9ba8cd34d41cb6273fd83dd4

                                          SHA256

                                          92de69e9dd3862b6b404695f2b03326846f076578f200a273e0f05c658fa6276

                                          SHA512

                                          0bb2329d75a2f7ec3cc07a8b739638e5afda0681f6e6a189154524fa34aa418ee72ccf2276dfdf4727b4bba858b9fc6a6490d46e2e82e5af131fec5438e313b8

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                          Filesize

                                          871B

                                          MD5

                                          a173a92b928aa626feafbca28c4701cf

                                          SHA1

                                          0a81b87c2cc4d2f4c57f5fe8586ee4e9de9f350d

                                          SHA256

                                          f5dc376be35f85fe6877d68f949487b06f1034926f75c372c5ac67ccf8d42b11

                                          SHA512

                                          99130061cdd2dd12218e4f46b71ea3551c683d5ad5e0f08c81bcf1bb261ab50af0e3b06233904d8a3986811e3fe0b898837f0aed7f131d912432fc6a10505dff

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
                                          Filesize

                                          871B

                                          MD5

                                          a9e3c53b94c71895a60e077d95607e01

                                          SHA1

                                          f0f29bcc5e886961e52bef764a3fe7cda1638a0c

                                          SHA256

                                          20d41dc43362dee27feb6c62ff1e75851bb108939b33140166abe0283f8d7ea9

                                          SHA512

                                          e9720f3f12dd34c555a55c4831d29dc3ace30aa3ca0cde43846b3f2c51a2cbac33b4a86a8e3c15dcacfa8f3138b47762611847733c183448b786e1e2fb57f535

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5a006f.TMP
                                          Filesize

                                          703B

                                          MD5

                                          5228f29edaf3cd57d9d465b96a87b342

                                          SHA1

                                          29c0cc549327bd0316d51976fd4b11f9d57ed73d

                                          SHA256

                                          c706eb4023be9236425527669a5fb5434b9a81c12f646700e2c22fd84d5a4027

                                          SHA512

                                          80c4cde2eb5f2bb1a964c09022fb8fcbbfda2e6c940c2c6075b780a018db0785c521cfece61a09cb49bdd15b6cd17c8787f167053d98d28088ab76e5021cf866

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
                                          Filesize

                                          16B

                                          MD5

                                          6752a1d65b201c13b62ea44016eb221f

                                          SHA1

                                          58ecf154d01a62233ed7fb494ace3c3d4ffce08b

                                          SHA256

                                          0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

                                          SHA512

                                          9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

                                          Download Submit

                                        • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
                                          Filesize

                                          10KB

                                          MD5

                                          d5db61765331b314702b119c9cdc7dfa

                                          SHA1

                                          a49d181d49380088da537af1d431758ff1cb682f

                                          SHA256

                                          02c032f804bbbbf217054bd76a4cfd2b1ead3bfacb46a25b76102a1fcede7c90

                                          SHA512

                                          a6bc483759affc7a88b0b905a2b481345b8416ecfcdebaa51b20e64aec15aa541606bf3aa515a5e4fc6e686400ed40f964ad0395e72d18e2d407937b96e3fc4d

                                          Download Submit