eaf6c1315788497fa7de26ba151de4a3dd3c66f8d7424add7a2c373bca5c71e6

Analysis

max time kernel
149s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
02-12-2024 17:35

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

b963eee948d3e2a6d39c678e4fa2c3e3_JaffaCakes118.html
Size

245KB
MD5

b963eee948d3e2a6d39c678e4fa2c3e3
SHA1

9db5e409a1be3554637e3fd08d96e1b88bedef4c
SHA256

eaf6c1315788497fa7de26ba151de4a3dd3c66f8d7424add7a2c373bca5c71e6
SHA512

448a285dd50211a79a4f401fba1a6aae0391689cb7cba53129cea7242c355d9ed86f95f26700f3faf28171b4877ca96c2a3c60a4419f808e2fbd9e296f26aeb8
SSDEEP

3072:+kcITclgtyOSFjLj2qDO2qDk0zwd72ttuPtuUIOq+IDC7jdR0lod4hWDOc2MzElw:+kZTcXZ0z/kPkUIeL7jdR3E+PNrN

Score

3^/10

discovery

Malware Config

Signatures

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Suspicious behavior: EnumeratesProcesses 8 IoCs

pid	Process
3124	msedge.exe
3124	msedge.exe
2304	msedge.exe
2304	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 6 IoCs

pid	Process
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe

Suspicious use of FindShellTrayWindow 25 IoCs

pid	Process
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe
2304	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2304 wrote to memory of 3176	2304	msedge.exe	82
PID 2304 wrote to memory of 3176	2304	msedge.exe	82
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3028	2304	msedge.exe	83
PID 2304 wrote to memory of 3124	2304	msedge.exe	84
PID 2304 wrote to memory of 3124	2304	msedge.exe	84
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85
PID 2304 wrote to memory of 112	2304	msedge.exe	85

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument C:\Users\Admin\AppData\Local\Temp\b963eee948d3e2a6d39c678e4fa2c3e3_JaffaCakes118.html
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2304
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7fffa65946f8,0x7fffa6594708,0x7fffa6594718
  2⤵
  PID:3176
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2124,6316128739316019153,5400242739442440078,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2168 /prefetch:2
  2⤵
  PID:3028
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2124,6316128739316019153,5400242739442440078,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2236 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3124
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2124,6316128739316019153,5400242739442440078,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2844 /prefetch:8
  2⤵
  PID:112
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,6316128739316019153,5400242739442440078,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3200 /prefetch:1
  2⤵
  PID:1692
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,6316128739316019153,5400242739442440078,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3212 /prefetch:1
  2⤵
  PID:1896
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,6316128739316019153,5400242739442440078,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1764 /prefetch:1
  2⤵
  PID:3424
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,6316128739316019153,5400242739442440078,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1768 /prefetch:1
  2⤵
  PID:5048
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,6316128739316019153,5400242739442440078,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5916 /prefetch:1
  2⤵
  PID:4136
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,6316128739316019153,5400242739442440078,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5632 /prefetch:1
  2⤵
  PID:2164
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2124,6316128739316019153,5400242739442440078,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3688 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3144

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1968

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4052

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4940

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
6960857d16aadfa79d36df8ebbf0e423

SHA1
e1db43bd478274366621a8c6497e270d46c6ed4f

SHA256
f40b812ce44e391423eb66602ac0af138a1e948aa8c4116045fef671ef21cd32

SHA512
6deb2a63055a643759dd0ae125fb2f68ec04a443dbf8b066a812b42352bbcfa4517382ed0910c190c986a864559c3453c772e153ee2e9432fb2de2e1e49ca7fe

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
f426165d1e5f7df1b7a3758c306cd4ae

SHA1
59ef728fbbb5c4197600f61daec48556fec651c1

SHA256
b68dfc21866d0abe5c75d70acc54670421fa9b26baf98af852768676a901b841

SHA512
8d437fcb85acb0705bf080141e7a021740901248985a76299ea8c43e46ad78fb88c738322cf302f6a550caa5e79d85b36827e9b329b1094521b17cf638c015b6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\5e440aab-68e4-4f53-b7e8-1e019737a88e.tmp

Filesize
5KB

MD5
8b4dfe7c60e1e70cd0106ff995e422e4

SHA1
cf2ad08a5c83a5908c58c80acb90ff9b994965ae

SHA256
3cda9f9f6d1900d2becb92ca0959ce127bf89e18fcee70a8c63686705b3f4f75

SHA512
66f0cf35b6188b13e6aefc3aecb972f7a76724e2aba8976c066944216394d64daacc0d6a705cab92adfb746e96b88583291891a33c17569d50251ceed6b3a3d1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000018

Filesize
49KB

MD5
5b342864b1b7ad05bcb10743edd96dfd

SHA1
6c479e75edcd274ca22e16a7cebd8d9a5ed50970

SHA256
9caa79e893c63b2e33bdf767994e621989fa5244e53ccf12556a011e6498850f

SHA512
564c0e0ea8cb23b2c0b81e2ef6b42d07cb9e56f2613788ee8e5c3c7b579293845b8c2f65b417e8238eaad7f4b03a99ed95da5b1892df39e3b04fbe8e7dc69200

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000019

Filesize
19KB

MD5
b76ed61e750f9716e3193e3056ab0ee8

SHA1
595b7baee1f726451fdb7fea5a9ebfdb2f46cb6d

SHA256
385dc7abfb5b88ac879b74b20f3239ffd84f743b0f730c0384d3e1ef9f25ee61

SHA512
4e59a98f8484503d6a3c3cc92fb686329abed543139d16d97c3c9ec6fa033ca327087e13edb8147a3b1e1db6e677a70de2e36f5591363dfbadc4e213d4a7aaac

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001a

Filesize
98KB

MD5
99fe9bf817c0208340aec3bee39b7a55

SHA1
29f520278969c85c8e33ba64ac961430d6f83f84

SHA256
0f2741eacd769a2b213f902cc78bad9f1d7350fcb483a7a9016809b2e31eff92

SHA512
a3a18e1276e21e84635d97a2a8d0b817230ec11ebca6fac5296fde12cda7168547eb29f5f1d431db22caee18a2fdabbb88431e0f39f106f33c2e0c3991d2f398

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000023

Filesize
33KB

MD5
861d884433b473231b06eafcccffe597

SHA1
ad22a4f4cd14a959171445330605b66028a80fb9

SHA256
4ff8a3471d855fa9b1610b06c0169dbaf4f3207721d16fc4329c5d24a2ae00d1

SHA512
954e3821079c6fbf9d0c16e2190215aaee5c228e6c81cc5322daf666f7d20ff5b10b8380af0ac2925c65bbed42f1d71c57a7eb5c8f609c9e53e634daf15fea4e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000027

Filesize
20KB

MD5
44901cce45f5e1db9f3241c96312709a

SHA1
0628bc8fdeb7bdb86de7a46ff7357a5a378ba0da

SHA256
122d1777ba4d14f06ab08e495e6dd5d23174d7faf7f133c612bdf27fe1a59f94

SHA512
8bfdf8924f3b5c4d54635fbe04ca38ef0eeb9d26eb51a0d80ce39c85a98434736e943ebd7eed95b413579a2ae752dee30378b0fcf12998f86872ea7edd8da056

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\0c56db9dda276895_0

Filesize
345KB

MD5
e7af4057522f955ae65273b5db9a2e7a

SHA1
dec9bb8786059f648d83be40a26f7dae34763e48

SHA256
427d58a4d018e24d3c380b1eac922b50945bbae4fff1c4bc58279147a8ea6ae4

SHA512
40df1f7b99562339f6d6729a2b452d57f084eaaeb9b0ab39bf2acacadc1e67cbb22823b22e8598b32fc4b50c988382432ffc3bd3fef097ecebfa6689df63e210

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\332ebde73d2689b5_0

Filesize
281B

MD5
323b5551785da227cef5222654d57c17

SHA1
f70115bde75a0e14541567f3fc665249a7ef1146

SHA256
4d355f71edfe1ad294b1f6d770c7cdbb529eec4c3c7f28ba3c89d8dd7f9a453c

SHA512
4fc9000393f6e94f721d5f90a459720f313d370070027054061d810e28761a5ae52b3597e124a94da3e17732a5ee37aa89bb481e37468fe5571e88b0b348838d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\48cdc93487158719_0

Filesize
232B

MD5
2ba239a6db13b0eb033abe4377afd4e8

SHA1
e07565a594ebba51d571895100d116cc2de80ce7

SHA256
7b70a7069e5b97aca0268f07170b66a6c7b3a82da126265d1e26b3bb171c5c16

SHA512
bbf37400e1e5435157900e54fa66103dcd5e579a0ad7c5a41d0adc840eee1be1562c76b8718bf75d8cbd68fa0d49a8c40e23b7358749bf7c9813242a51f73c55

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7bdcad8cc66c415f_0

Filesize
348KB

MD5
81e7fa8f0826c9e53ae14215ebf2b596

SHA1
03b4d560e6b58e2aa089d13f773996f28ca7b45d

SHA256
e6ad1cea448acda460da5c0c624ba6de94de6d2bc9beffbca48fd8094b0aee9b

SHA512
194f9c8cb29a944b0809556991fda98194ac96ca5f1015b95ed83f9db09e9e4339d1bb3ecc75eaf2e2436115707f9b9ea41fa3533ab8e95e0262346cec63735a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\827220ca96a9d872_0

Filesize
101KB

MD5
710134d21c72295cf01d879bbca5281e

SHA1
2eb6bf224793a51fae740c03a227e2a5dfdad292

SHA256
f13b3f35481de81a0e00837013b6101135eb84ec470db1b5cc6c11556ab4c692

SHA512
cfd9cdc1c1c9f624cc39cf8f84cbbbe5b90545ff54eb942cb27f0e0b74bed2d8a1d31d37f16740d389d72b554233cbf8cf7e13b7c207947dc955f984679c6067

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\c09fb6db53107b7c_0

Filesize
243B

MD5
d3b76b6dd5cb5dced95ad22c0cabd840

SHA1
0bd05ba541bbc7ef2cb2b43881e015341c2af61d

SHA256
2a404639ed53b0d5fce6bb6f1800a935f85a5ba60896154f2e0ef457ab5c7079

SHA512
a785c95f18e9e00a0fe32e139b85d65786bd53b2c0bf7a75a2cc1214ae517678e34b237072eb624158018c5edd6eb9c1bb4715720f514053b8b66324dc8a2297

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\c09fb6db53107b7c_0

Filesize
243B

MD5
e9c520efbe56a5325c6e38ad092df598

SHA1
98305f4b37a61aa96ff1e581e64a89eb623a505d

SHA256
8c14c2a7e944d6090270561ed98e1c7c2e8480642cfc29dff24c07fe5cb07c1a

SHA512
2760c215dbf5525fc7ba427f95b9f24c90d726a0c8360c947e2250ab40bece1d21612296790741e5419b788512c29949a62247dbf8a337987f7ad48db8c42996

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\c09fb6db53107b7c_0

Filesize
291B

MD5
1459e4e32032525d2c1c64d530263983

SHA1
52a9b51ed98dd52ebed067bd9430ac571c98b72d

SHA256
a0107212be5e1d58f1172d11a58cf8909f141516833540b4053e19083313ced6

SHA512
771aa5a26748ab2f1cf441cfaf11fee433994d898000452d0b38d9b259cb02c7ccc2094155b2ad0709de1532422c608a161f8e0738d1263090ec4e9f15a39a10

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\c09fb6db53107b7c_0

Filesize
291B

MD5
947cdde911ef1fe245ebde07967f473d

SHA1
59b28f1908e5c4a2f564d282a730c0accb9cfbc8

SHA256
16006de77bf143a199405c36983d4e8769c16620b69983a0eebd11194e322d14

SHA512
1e5b6ad931584f39e46b28925518310eab62a2e63edb44edb6e0a23e8ca45fb4567b09e7fe882b953a929996653986cc94126054e49076b9c6886ec5174a2d93

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e9545717e6d151d2_0

Filesize
212B

MD5
1d2e1c38a8232932381189934e2c9914

SHA1
83c0a6922c54df254006cf4ddd8e1483089b2ade

SHA256
1ffa3b68a92ee5aa4b9f1717012468028cca92c6c18357e69d1722d560f07b8d

SHA512
18319bf68d04aa6cbe04d35680cd0a662b88f5a9ba6f5b3e4b75046ed6a1398cd120d48465827856031e2f1356426abd13710c57fdc8f55c37ecd4d5c74455e4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f30f61a74ca97595_0

Filesize
231B

MD5
6156728f8d384a33cbe47bd87735baab

SHA1
5e7cc9e4c5523212d33f80a24e22d30853980a6d

SHA256
3569ed20bd125bd085093b71605b54d2ced0346fb8fb2abba3bf17670bcbdb2c

SHA512
200ecd92ce066f02ca39f6126ea7e313d6be7d4dc5e503dee76ba47d435125cb3f0cb7bb57be41f37fe8cb0aab5073b5aa93e056d8446d6caf6f3ffc240bde52

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f30f61a74ca97595_0

Filesize
231B

MD5
cc2558ea105037f4f20e152958acf90e

SHA1
2c7525b65a78f8c0a7558afd7fee7277028d4b38

SHA256
1e80a0e5ec3f7ecd1a9a3db76fe634566427bdd2ceb478b16fe928b5f6433084

SHA512
6c8331864efb79cc68204bf59a20537c3d537b949f49aa23901e07917e2d32eec5dc1282cbdf2bcbc14f661a1ec6391030ac69c753c31af83fa2e238949e0e44

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
696B

MD5
070afcc01ab3c46e152d975859c595bd

SHA1
4cfdd7251ac340f8a5708d6a4d8a54fff346fc3c

SHA256
7ec5c96fc7275287a990e00ed7b11b05e73eac7f23aca8dfa7b85601eba50da8

SHA512
513188b9f3777b4e3d1a359e296edde2325e22578c82cae47538c0cdb43cfb257f17b85464cd1470d765002f31d412a9eeab9801c3b09275370e47dc450999ea

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
d52ca43df2441c975345e8caba72646a

SHA1
c127fe8410d38016945d97db1cbea60c986b298e

SHA256
e1d2e35d6476be2e0395c5892342fc474f3014c2dab9c6097c785ca4a92932eb

SHA512
6469b0c9239e209c28fb340b3c564bc1f3a14ee3d66ee5ebe0e9e25ec33a5f30588d8d5933aae1f6dcc1f3c927420e0800f458d2c7fe9a3a24a6f14e4aafb0cf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
ba3c6c182c2f242d93471a592262511d

SHA1
112a79d8d96d9facde0a254238c359041f965145

SHA256
a34e39226c84dd2e4fb53133ff6e946daab54220ea99502dccb7489d905d29c8

SHA512
be7a94b205f59adec13fc5003932fdfbfa3bc1ad0b249219e208c1ee2e982ec1eb3462db34326a263e9c2fd7e080b58d376895d95804445728d590de7245b26f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
1404dfbea6e2553d2a11adf3651394c9

SHA1
1d32d2cfb87e30c82dcaf260b212b570a518d2a5

SHA256
0876fd808805321776b0f0d6049fc74456a818807e63741d5d0a29fbbb8964dd

SHA512
923d6d2911931564d0442472b543d69f80bf435800489d7b79c8d7062810aa9f98b619f861651254bfd9555fa2b50341125677c812c7b82db145b203628df5e0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
705B

MD5
257bb8bdf282005abb330fba5a2a737c

SHA1
849032a92438869018182763973fdb27c3835e50

SHA256
1e546a623b2e3edbace23ea134e59b7cbe41fe0caf8f91f4778f1f0f27d62c22

SHA512
e48bbc54d94095a4cbfc83cbc5b51d6d0c9abf53f9290bcd29fd0b09f10f06147389322cd769319a20cce5f06b416994076ff28a3b33ac60e1f47b659c35ed05

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe587c30.TMP

Filesize
370B

MD5
be3c8f299147cde5f622f9d668c139f9

SHA1
3290f1691e9c159ae992616f59acb36c4083a549

SHA256
8bfba8f2fcec857ac47f64f85d9713a6c468df082ac3aefc85d968252b224cfc

SHA512
290dba75dd208435782f8de9d55fe23e368bff17f006ee68dff4b4b2939ab3b3e9bbf549a2c592f00f898c40f4aeefcb7cc717ffd6ca1548789947a925a8dfea

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
d5310b00df081fa4cbc875d20881a9d7

SHA1
4ed2f37463e9d300f1ebd5fbb198f7623580ca40

SHA256
540d9a889e11a92987b05048ce8df785831cddb3015e6001e92a1fcf0b56201b

SHA512
a1d882fc254f74dc644b265e5fa062988730abf92900af26b2a6ebb9bbd1c1eeec7060a4e83b24ebb7ab194d4387d05638756ebce83a4314c8aac4d8d1c373fa

Download Submit