Analysis Overview
Threat Level: Known bad
The file https://informed.deliveryai.top/l was found to be: Known bad.
Malicious Activity Summary
Browser Information Discovery
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Enumerates system info in registry
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-12-04 20:31
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-12-04 20:31
Reported
2024-12-04 20:34
Platform
win10v2004-20241007-en
Max time kernel
94s
Max time network
144s
Command Line
Signatures
Browser Information Discovery
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument https://informed.deliveryai.top/l
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffcdb7d46f8,0x7ffcdb7d4708,0x7ffcdb7d4718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2256 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2400 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2768 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3340 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3360 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5012 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5012 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5356 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5216 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4092 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3472 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1820 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3624 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6132 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3392 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5968 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6508 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6576 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6036 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6728 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5796 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7144 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5620 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5900 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6632 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5860 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3512 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7076 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=7060 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3408 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6620 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,16044475165976748258,6020926125917522746,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6580 /prefetch:1
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | informed.deliveryai.top | udp |
| US | 172.67.199.114:443 | informed.deliveryai.top | tcp |
| US | 172.67.199.114:443 | informed.deliveryai.top | tcp |
| US | 8.8.8.8:53 | 209.205.72.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.160.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 114.199.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 196.249.167.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.220.183.52.in-addr.arpa | udp |
| US | 172.67.199.114:443 | informed.deliveryai.top | tcp |
| US | 8.8.8.8:53 | 56.163.245.4.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.23.85.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.12.20.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.usps.com | udp |
| SE | 192.229.221.165:443 | www.usps.com | tcp |
| SE | 192.229.221.165:443 | www.usps.com | tcp |
| US | 8.8.8.8:53 | www.googleoptimize.com | udp |
| GB | 172.217.169.46:443 | www.googleoptimize.com | tcp |
| US | 8.8.8.8:53 | 165.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | fast.fonts.net | udp |
| US | 104.16.40.28:443 | fast.fonts.net | tcp |
| US | 8.8.8.8:53 | 40.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 28.40.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dap.digitalgov.gov | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | resources.digital-cloud-gov.medallia.com | udp |
| FR | 3.162.38.40:443 | dap.digitalgov.gov | tcp |
| GB | 172.217.16.228:443 | www.google.com | tcp |
| GB | 104.103.205.121:443 | resources.digital-cloud-gov.medallia.com | tcp |
| US | 8.8.8.8:53 | connect.facebook.net | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | snap.licdn.com | udp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| US | 8.8.8.8:53 | sc-static.net | udp |
| US | 8.8.8.8:53 | www.redditstatic.com | udp |
| US | 8.8.8.8:53 | s.pinimg.com | udp |
| US | 8.8.8.8:53 | ads.nextdoor.com | udp |
| US | 8.8.8.8:53 | js.adsrvr.org | udp |
| NL | 157.240.201.15:443 | connect.facebook.net | tcp |
| US | 150.171.28.10:443 | bat.bing.com | tcp |
| US | 151.101.1.140:443 | www.redditstatic.com | tcp |
| US | 54.188.156.58:443 | ads.nextdoor.com | tcp |
| FR | 3.165.117.226:443 | c.amazon-adsystem.com | tcp |
| FR | 18.244.32.109:443 | js.adsrvr.org | tcp |
| US | 151.101.192.84:443 | s.pinimg.com | tcp |
| US | 3.163.248.4:443 | sc-static.net | tcp |
| US | 8.8.8.8:53 | 40.38.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 121.205.103.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 17.201.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.201.240.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.214.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.28.171.150.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.192.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.117.165.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 109.32.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.248.163.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3976941.fls.doubleclick.net | udp |
| US | 54.188.156.58:443 | ads.nextdoor.com | tcp |
| US | 8.8.8.8:53 | c.tvpixel.com | udp |
| US | 151.101.1.140:443 | www.redditstatic.com | tcp |
| US | 8.8.8.8:53 | pixel-config.reddit.com | udp |
| US | 8.8.8.8:53 | ads-engagement.presage.io | udp |
| US | 151.101.65.140:443 | pixel-config.reddit.com | tcp |
| DE | 54.230.206.90:443 | c.tvpixel.com | tcp |
| US | 8.8.8.8:53 | crt.rootg2.amazontrust.com | udp |
| FR | 3.164.163.87:80 | crt.rootg2.amazontrust.com | tcp |
| FR | 3.165.136.95:443 | ads-engagement.presage.io | tcp |
| FR | 3.164.163.87:80 | crt.rootg2.amazontrust.com | tcp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| US | 151.101.193.108:443 | acdn.adnxs.com | tcp |
| US | 8.8.8.8:53 | storage.cloud.kargo.com | udp |
| US | 8.8.8.8:53 | live.rezync.com | udp |
| US | 8.8.8.8:53 | analytics-sm.com | udp |
| US | 8.8.8.8:53 | alb.reddit.com | udp |
| US | 8.8.8.8:53 | beacon.lynx.cognitivlabs.com | udp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| FR | 3.164.163.74:443 | storage.cloud.kargo.com | tcp |
| US | 52.1.242.241:443 | beacon.lynx.cognitivlabs.com | tcp |
| FR | 52.222.201.6:443 | analytics-sm.com | tcp |
| FR | 52.84.174.30:443 | live.rezync.com | tcp |
| US | 98.82.157.137:443 | s.amazon-adsystem.com | tcp |
| DE | 37.252.171.85:443 | ib.adnxs.com | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | tr.snapchat.com | udp |
| US | 8.8.8.8:53 | ct.pinterest.com | udp |
| US | 35.190.43.134:443 | tr.snapchat.com | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 35.190.43.134:443 | tr.snapchat.com | tcp |
| GB | 104.77.160.210:443 | snap.licdn.com | tcp |
| US | 8.8.8.8:53 | 58.156.188.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.65.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.206.230.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.163.164.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.136.165.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.193.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.163.164.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 30.174.84.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.201.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.242.1.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.157.82.98.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.43.190.35.in-addr.arpa | udp |
| GB | 216.58.201.102:443 | 3976941.fls.doubleclick.net | tcp |
| US | 35.190.43.134:443 | tr.snapchat.com | udp |
| US | 8.8.8.8:53 | p.tvpixel.com | udp |
| GB | 216.58.201.102:443 | 3976941.fls.doubleclick.net | udp |
| US | 75.2.57.54:443 | p.tvpixel.com | tcp |
| US | 8.8.8.8:53 | tr6.snapchat.com | udp |
| US | 8.8.8.8:53 | idsync.rlcdn.com | udp |
| US | 35.244.174.68:443 | idsync.rlcdn.com | tcp |
| US | 8.8.8.8:53 | sp.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | insight.adsrvr.org | udp |
| US | 8.8.8.8:53 | kds-pixel.kargo.com | udp |
| IE | 54.171.122.26:443 | sp.analytics.yahoo.com | tcp |
| US | 3.33.220.150:443 | insight.adsrvr.org | tcp |
| US | 34.234.1.248:443 | kds-pixel.kargo.com | tcp |
| US | 34.234.1.248:443 | kds-pixel.kargo.com | tcp |
| GB | 88.221.135.27:443 | www.bing.com | tcp |
| GB | 88.221.135.27:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | urldefense.com | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 52.71.28.102:443 | urldefense.com | tcp |
| NL | 185.89.210.153:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | 210.160.77.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.57.2.75.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.122.171.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.220.33.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 248.1.234.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | r.turn.com | udp |
| NL | 46.228.164.11:443 | r.turn.com | tcp |
| US | 8.8.8.8:53 | 27.135.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.28.71.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | getrockerbox.com | udp |
| US | 104.26.8.177:443 | getrockerbox.com | tcp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| GB | 95.101.143.202:443 | r.bing.com | tcp |
| GB | 95.101.143.202:443 | r.bing.com | tcp |
| GB | 88.221.135.35:443 | th.bing.com | tcp |
| GB | 88.221.135.35:443 | th.bing.com | tcp |
| US | 8.8.8.8:53 | 177.8.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.143.101.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.135.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | login.microsoftonline.com | udp |
| IE | 40.126.31.67:443 | login.microsoftonline.com | tcp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| NL | 157.240.201.35:443 | www.facebook.com | tcp |
| US | 8.8.8.8:53 | 67.31.126.40.in-addr.arpa | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | 35.201.240.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 71.31.126.40.in-addr.arpa | udp |
| GB | 216.58.204.78:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | cdn.boomtrain.com | udp |
| GB | 216.58.204.66:443 | googleads.g.doubleclick.net | tcp |
| FR | 52.222.149.9:443 | cdn.boomtrain.com | tcp |
| GB | 216.58.204.66:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | c1.rfihub.net | udp |
| US | 8.8.8.8:53 | people.api.boomtrain.com | udp |
| FR | 13.32.145.43:443 | c1.rfihub.net | tcp |
| US | 52.201.49.85:443 | people.api.boomtrain.com | tcp |
| US | 8.8.8.8:53 | flask.nextdoor.com | udp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| US | 8.8.8.8:53 | 20864368p.rfihub.com | udp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| GB | 216.58.204.78:443 | www.youtube.com | udp |
| NL | 193.0.160.131:443 | 20864368p.rfihub.com | tcp |
| GB | 172.217.16.228:443 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| GB | 142.250.179.227:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | 78.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.149.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 43.145.32.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.49.201.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.21.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| GB | 142.250.179.226:443 | cm.g.doubleclick.net | tcp |
| GB | 142.250.179.226:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| US | 8.8.8.8:53 | events.api.boomtrain.com | udp |
| US | 18.214.86.103:443 | events.api.boomtrain.com | tcp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| US | 8.8.8.8:53 | a.rfihub.com | udp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 8.8.8.8:53 | bpi.rtactivate.com | udp |
| US | 8.8.8.8:53 | i.liadm.com | udp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 35.244.174.68:443 | idsync.rlcdn.com | udp |
| US | 8.8.8.8:53 | partners.tremorhub.com | udp |
| US | 34.98.64.218:443 | us-u.openx.net | tcp |
| US | 3.209.48.121:443 | bpi.rtactivate.com | tcp |
| US | 104.18.26.193:443 | dsum-sec.casalemedia.com | tcp |
| IE | 54.155.160.118:443 | dpm.demdex.net | tcp |
| GB | 185.64.191.210:443 | image2.pubmatic.com | tcp |
| GB | 95.100.244.20:443 | contextual.media.net | tcp |
| US | 54.205.32.236:443 | i.liadm.com | tcp |
| NL | 193.0.160.130:443 | a.rfihub.com | tcp |
| US | 50.16.144.68:443 | partners.tremorhub.com | tcp |
| US | 8.8.8.8:53 | aa.agkn.com | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| IE | 52.16.237.161:443 | aa.agkn.com | tcp |
| US | 8.8.8.8:53 | 227.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 103.86.214.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.244.100.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.26.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.64.98.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 121.48.209.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.160.155.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 236.32.205.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| NL | 35.214.136.108:443 | x.bidswitch.net | tcp |
| US | 151.101.66.49:443 | sync-tm.everesttech.net | tcp |
| US | 8.8.8.8:53 | ps.eyeota.net | udp |
| DE | 3.120.214.218:443 | ps.eyeota.net | tcp |
| US | 8.8.8.8:53 | 68.144.16.50.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 161.237.16.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.136.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.214.120.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.66.101.151.in-addr.arpa | udp |
| US | 172.67.199.114:443 | informed.deliveryai.top | tcp |
| US | 8.8.8.8:53 | w3-reporting-nel.reddit.com | udp |
| US | 151.101.192.84:443 | ct.pinterest.com | tcp |
| GB | 172.217.169.46:443 | www.googleoptimize.com | udp |
| US | 172.67.199.114:443 | informed.deliveryai.top | tcp |
| N/A | 127.0.0.1:9229 | tcp | |
| US | 8.8.8.8:53 | devtools.azureedge.net | udp |
| US | 13.107.246.64:443 | devtools.azureedge.net | tcp |
| US | 8.8.8.8:53 | 64.246.107.13.in-addr.arpa | udp |
| N/A | 127.0.0.1:9229 | tcp | |
| US | 8.8.8.8:53 | 30.243.111.52.in-addr.arpa | udp |
Files
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | d22073dea53e79d9b824f27ac5e9813e |
| SHA1 | 6d8a7281241248431a1571e6ddc55798b01fa961 |
| SHA256 | 86713962c3bb287964678b148ee08ea83fb83483dff8be91c8a6085ca560b2a6 |
| SHA512 | 97152091ee24b6e713b8ec8123cb62511f8a7e8a6c6c3f2f6727d0a60497be28814613b476009b853575d4931e5df950e28a41afbf6707cb672206f1219c4413 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | bffcefacce25cd03f3d5c9446ddb903d |
| SHA1 | 8923f84aa86db316d2f5c122fe3874bbe26f3bab |
| SHA256 | 23e7cbbf64c81122c3cb30a0933c10a320e254447771737a326ce37a0694d405 |
| SHA512 | 761dae5315b35ec0b2fe68019881397f5d2eadba3963aba79a89f8953a0cd705012d7faf3a204a5f36008926b9f614980e333351596b06ce7058d744345ce2e7 |
\??\pipe\LOCAL\crashpad_1344_STPPEVPKLJVFZLZO
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 50c9722c7d4b92db76d168ff29f32225 |
| SHA1 | 3082576baabca8b40e61fa0a00e5e76b730100d6 |
| SHA256 | 6bab0b24ce59d8baabcff8137bbc96c43f5f7fee5fb1337c48c4b03df7089118 |
| SHA512 | a3df6b4b3c158df8cb8ec4db034bcbc05ea6d2c8bc1c8d0c559a72883cc90fa4e3a8f4eed0014fe1f127de7985ce64986bd7b00f9d3e271e1c68d08669ae1bc5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 6752a1d65b201c13b62ea44016eb221f |
| SHA1 | 58ecf154d01a62233ed7fb494ace3c3d4ffce08b |
| SHA256 | 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd |
| SHA512 | 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 14b4bb1dc2b1303842d394d327135c8b |
| SHA1 | 3a272bb5528db4a10ddcaa4ca6ca5def1a3dbd77 |
| SHA256 | bdf18df7841d73d57d12098059ea8764802fe67b7d56538dfa57ad687003c334 |
| SHA512 | 62a61e3538db2579685f25ec43d69788d5884f40635ea847fc0b6575a947520a8f857eb9b7ef40061fd08f9300f262e76009cba58936c6d13e6d97b237729dc5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | da75ca542134c0fdc4898fb441dcf170 |
| SHA1 | 760caf1f59f85bbb404054d72ef4a82a699de01c |
| SHA256 | 52636991ab201c561e0a0cb822df21fb8ba43117c759672d75f806ed7dfb1988 |
| SHA512 | e843bf6c734183fd12eaa2919afeea50c4ee84e5d4d45cc6eebcca9c1f3fb745c9c0446d0ce5b6f7a2e9ba0c6a785ed632c3cabfd843947a8aa00a6f98b6816a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 2a86a3cbeb4792717cd93c92b3b5a1b1 |
| SHA1 | c05855a25ce957601f1ab3271450e780d47350d9 |
| SHA256 | e4a12d76b20dbddec11b999dc430592b332db7bb0286d4a26c0863453a640293 |
| SHA512 | 1aac5dbbe371b5254915ca15547a4956496a07b554cf1fe290cda643bb6dda31f4e7196fe58fd576988f5a197d5abba8bfbbdd9c99091ce8181f37c0afe903b1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 807419ca9a4734feaf8d8563a003b048 |
| SHA1 | a723c7d60a65886ffa068711f1e900ccc85922a6 |
| SHA256 | aa10bf07b0d265bed28f2a475f3564d8ddb5e4d4ffee0ab6f3a0cc564907b631 |
| SHA512 | f10d496ae75db5ba412bd9f17bf0c7da7632db92a3fabf7f24071e40f5759c6a875ad8f3a72bad149da58b3da3b816077df125d0d9f3544adba68c66353d206c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 285252a2f6327d41eab203dc2f402c67 |
| SHA1 | acedb7ba5fbc3ce914a8bf386a6f72ca7baa33c6 |
| SHA256 | 5dfc321417fc31359f23320ea68014ebfd793c5bbed55f77dab4180bbd4a2026 |
| SHA512 | 11ce7cb484fee66894e63c31db0d6b7ef66ad0327d4e7e2eb85f3bcc2e836a3a522c68d681e84542e471e54f765e091efe1ee4065641b0299b15613eb32dcc0d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 48f20783e5637268634b4cccc208a907 |
| SHA1 | 4cdad1a310f72d83e852bddd09fd3a643b07762c |
| SHA256 | acacde4893fa5cebc524c1dd2f7420999fdfa5779ec7cfd97a59322b27b1f7b4 |
| SHA512 | 1f417ca8dc89b4dcf8e3ca7741b22bfac97db06bc99890dd46e67dc6b205c0997fe9967e8f161bad1be2045feb74c9d1f183e7cbee5a03916d4fabfb119c4a76 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006
| MD5 | 22ab573e325c944450873345437b0887 |
| SHA1 | 0446e4d20c824d38ef4d427cf7e025c8f034f11a |
| SHA256 | d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed |
| SHA512 | edbba383f9ffb0e645b0371441e1b6fc13b44e525e7519b61cd9cd5f43ae40d5f280cda65758c25742f3bc3a0798d072b57b7bda0c8b7e8b4313bf2e0bc1205a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009
| MD5 | 6311ef7a60f86d77aa48fcc48a675a31 |
| SHA1 | 96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c |
| SHA256 | 70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251 |
| SHA512 | 2b275d008aabe54f15d005dee130537480bffe8828eb48f314768d789e0e752d3c4e4bac146e22279d60fef076842ae35c2a12b5e097afa7eda68bf5b316a3f6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007
| MD5 | d0dad9004bae0df70b06b75557b1df62 |
| SHA1 | 4a080764de6b97902413f5c836432a30da348517 |
| SHA256 | 2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289 |
| SHA512 | 13c3a4b49ff26bc73faf663def3d2aa764410233163adbd987f20d01c6880d6af84b3a89e254330398f1faee05baa777d8be70fb11c27ddbcec62e24f727f540 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000b
| MD5 | a93e96be336c174933e68ef61d56e0d3 |
| SHA1 | 48f7a75a367904ff4a9a79689a508e29edda462c |
| SHA256 | cc469406025b7ce0913cdefc664007cd0fc46bc66a740dc7aff67cc041bccde0 |
| SHA512 | 3bdd3533a6eb40e0bbe2a3e68e597b6d40969ec18257fdcb2a2cf06668961deac22df830d40de1dc01b5b1ced068d0bd936f7805f1ab47464291f36dcb121876 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a
| MD5 | 3beb1cf49dc702cd4de8618eeb344dd4 |
| SHA1 | 080e1b4dc8b43ddb06961a3490857cdb936a8c2a |
| SHA256 | ffd7af6177837790e2620c429dce0da6dc7d18bbdcf87a7ed2c033a03513e947 |
| SHA512 | 008ee624857f9f7da939719b44e9146177471a9861bea10c1065c134a2af888c5d2e151e04ea0a8949738e2f0901eab33aa5746207f52e6399119e69f4744d63 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000c
| MD5 | a6e2d3921c9ea0fd81897d9ae7a33ba4 |
| SHA1 | bc31969f2fb1926a15cd678b3e573c37a44e5421 |
| SHA256 | f2e2ef638dd9aac863f0f6027ceb784cd4c5a14a676bed909c8f2ac4b088d510 |
| SHA512 | 3f8d647f4f157fe0a3d6bdcc4cb8330bb9a8559dd927c073e9c55c36a7f8847b57dcdab80a310b1a3adbd07a70febb478868e4d5b59eef1ec192a05269ef94c1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe58a39e.TMP
| MD5 | 53eb5777ec6383060df0e71c0d192751 |
| SHA1 | d90c4d1b49a65aa08f754e7cab3863baee8466b6 |
| SHA256 | 629211303c69fdf4f3124f0651404d96d23a12ff1adb0f6743fac4e9a952e59a |
| SHA512 | 6b944d2f010291c9f6b64e27865a6f57166de6ded1bdd47df8e2e4f79c65c0a4565ee6621f3378d5d19acd8e9064191cfc41709acb3905108fd33f99070bff47 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | b2e1a64b29833256e3630b9d915f0163 |
| SHA1 | 8e072da40de91c956dad8cadc82ea0a8fffb6ad3 |
| SHA256 | f11c9dcf9aafa998b2cc256750b08379d0c837eb8577b7d6e52339eb5ba3bc29 |
| SHA512 | 722a6f61e688220bfffea53227e9ed21e1be37f09e0f2263ffb87e012ce7749f13af1bfbda357cbf506c2cc6429f64c91086b5ff0e0355c93d6cbf7e03b88722 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000001
| MD5 | e8f5876236413a4f71f22baec67837c6 |
| SHA1 | ea23f7814cd726fad66663ab1ae9bdabbe668f0f |
| SHA256 | ad8361b3e50b214a75003fedc7f94d9e84dce4eb92ec2d0baf576f30306fa744 |
| SHA512 | 9a9f457d2af3f6f1339ed0fe81b032dbd582f8e88cf242d18d5e6b7279f788dd56eecbb5a49aff0ba212c2b18209707df46d70dc3c1da6ae4fd4b3bb74d28fd0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002
| MD5 | 4e156694015b1dd7b884ed7dd12e4fcb |
| SHA1 | c11dd3d8a2099720d22d692a963c039cb457aedd |
| SHA256 | 6f83abed2b94e42925628926a52e9aa2dafd7818e34a0cb2a5f1f974a2fa4b4b |
| SHA512 | b768628ca60233367dbabda336cc3b6dfc489da27f1e591ae0ffb811d0c97104a74bf7330508421654ab6c6cae94f40e07f1a1c7a96cf73ae85594b50eebdb2f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003
| MD5 | a411f000d7844ccf0ed62a9f37e0e75a |
| SHA1 | bec23ed83dbf3bc0de64a74c9ba64f8fbe3f698a |
| SHA256 | e248cf09f2c5e418379bbce4f2722db3217b20016f8aabcb19429f8573adcb80 |
| SHA512 | fb26f500827367e7aa6a601f8040cf951c407f5c5e6581eac68befac1e5756cb3601be9b94afd769b3c8b10a6c793fb82a344cdb09d57c99c418f22a9ab8033d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004
| MD5 | 5c7509afdc5d6d82471c0d13947bd001 |
| SHA1 | 34ddb16b9016ff2c7893bd4f4083eed664178b5f |
| SHA256 | c8fcc42e93feb8e8eafc7a5bc6f8df7386d25742821f9ee03fde313101781382 |
| SHA512 | 237d005f84ebb04b46d726baf44f9e705628bd4e1f338da13ab552b0a40eb71dfd4db4a43572d5d1c8468a81f08eec285319eb6da05c285a6c98fd00c0c3789d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005
| MD5 | 09b7287d1d47532b780b6f3897ba4866 |
| SHA1 | 030de04fbc6a364b0ef54ba688dc10a9a6d8263e |
| SHA256 | 3037f9a73f1699afccb6e4eaf01676bf209fb984f16b3317af8e283cd3ba0caf |
| SHA512 | e6840ba6385ede0c5f439ccd56562aef90f9dbe3d3a76837fb5f8b5cce72fc89ba545f782091361a96c22d674c7b57d9f5f1fded0d9bff76d5fcd504195643c1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000008
| MD5 | 973974e401a6d2630ee67eaa6d95b797 |
| SHA1 | fa9b5ff2481c916c009b4adbf3fd69625e5a1b1b |
| SHA256 | 39a8ed81691ca6296abf0a7f9a746795f4f7486449e225d792ae98433cf0c355 |
| SHA512 | cda243a7c6f1e5f6c013aa9ec30cdfae1d5792d6aefbb5ebd353811c1bf8e08e0cdbb30a412b5f6e71c18cc2ad79298d19d3415a53a519f374c1ec259b3d4e6b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe58ac48.TMP
| MD5 | b21b2bf52a4622d61352e436a13d32f5 |
| SHA1 | 9fbd5f7b704b1b68a86b92a90b86ee0b85dcffa6 |
| SHA256 | d153f763c7866d084cff2041470e0cc4efd2726676e24b2cb6eeece8eb7635ad |
| SHA512 | 97e1c1518a34f2c5a77e588ad545d28ac26018c7151409e4982caec7129c795a88a5b4bcf230e907096ae30d4d2260e880f959365b59c9a04a7d701d53385429 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 1f13d040e74086b70341fc40abf07051 |
| SHA1 | e1c18d3f2721217e173d3047f0b7876bd90e8b3b |
| SHA256 | 19e2919a88e1477e96fd056d26b5d89469a6b1c3f2b49d570420f74cab82a53c |
| SHA512 | 27fbe1c53a5a8460665a3518de0d843cb0553b51774a6aaf9216771ba4c5c5853b3adb3b6eb47986e449e80349b06da68a8cc24079307c674ac121cf1cfd8a41 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 53e4cfbe5edf30c9f8215f6a44ddd4d5 |
| SHA1 | 9324bd72c40edbe89d8e80fdb8abd5adcd85a1e2 |
| SHA256 | e05dcfd0975fa2e23ffb2eff994a0e2c6e4fba12deb3a0afc6943c129aef09a2 |
| SHA512 | 31c766cc1d9cf7fbd6f163cbf14c3efdb954cf45d4ca98139b64733d547f9f1e360be762344020a7c6a8b9473989bd91c4e26df8283944fa04bdfb9b5bc6c378 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 590048342b96c9e8e9b63afc6bba041d |
| SHA1 | 5df85d6f7c0ee51a06e7098020a47c991c3f89a8 |
| SHA256 | dea461be7bb7f296e7a4e1800395d44e839a879d78c2490a6e657e1470e71a6c |
| SHA512 | 0575436549df1b5cc2b35cccef87696b707cbfe92c0b2fb1ceab03b3de662ec2b20eb102dbd13040701315b293d53c4429e0c06bdfe88d9f0242688a6869519c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 2ac9ad1a39c17a617ddc25e4c5cf5659 |
| SHA1 | f065c49c901283d5e35ba100c0ae0d9d6549f497 |
| SHA256 | 776ebbfe98931b0c8a80fd70610d3df61086986f307c22ef414acd1c1253fd08 |
| SHA512 | e3b374f546c573e9b637c91056bbf99b40673a5d65877d5212cc37d6d46ae1f74f37517475eb35d4f88e6e1b68fb2fc284e2101900d84fd1a83174f8b39efbe5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | fa7b095f2c4199a1362d8409a063044e |
| SHA1 | 67117b916a3b5a63e37302584e77416b6a00a778 |
| SHA256 | 5079f684d4cce337db1526f0328101e8d417dc0296ae628a1e6480b70d5fd8b4 |
| SHA512 | 582e446b0c3786a5b0d580189f47ba9cc70b84cd63e29dc733f287a11a4091389ba51887310633427d9991aea554be5977ef0eba122738a990816b316bcc1813 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 06afa71e5b0368c1dd06a4d8021da09f |
| SHA1 | 50c87e92eb3fb7eb33c2c9ecbac5db7e2ba6a9a0 |
| SHA256 | 5655f058129b31d1e25a7db58350bb5f48a1d0bd975cc089c7d2b8f93dfffb23 |
| SHA512 | cdd06df660ed30674558ef263d633c23889cecdf7d028ed9cc0d8aae7f4198f9bf2b77b7db48261068ae3996eebcc373882bdfa74304759aad0ec2bde2dc3c05 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | f7b4e749d5aeacea4a1f79bced785a05 |
| SHA1 | 65b4491cdac4e11ed50e489dba99ec074b2fdd94 |
| SHA256 | 48a31de349216ceb7d90bc02d13b6d527f17557fffd4575e958948e59af85ca0 |
| SHA512 | d858e070b3d0d79cad95b365cc56351badbe43b618750a929350c7831594665a900139f391c61308d253771aa3fd85ac893439fda2d968a84867ac2adbf57db5 |