hxxps://city-car-driving[.]en[.]softonic[.]com/download

Analysis

max time kernel
149s
max time network
148s
platform
windows11-21h2_x64
resource
win11-20241007-en
resource tags

arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
submitted
20/12/2024, 21:42

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://city-car-driving.en.softonic.com/download

Score

6^/10

steam motw phishing

Malware Config

Signatures

Mark of the Web detected: This indicates that the page was originally saved or cloned. 1 IoCs

phishing motw

flow	ioc
182	https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html

Detected potential entity reuse from brand STEAM.
phishing steam

Checks processor information in registry 2 TTPs 10 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-2410826464-2353372766-2364966905-1000_Classes\Local Settings	firefox.exe

Suspicious use of AdjustPrivilegeToken 5 IoCs

description	pid	Process
Token: SeDebugPrivilege	248	firefox.exe
Token: SeDebugPrivilege	248	firefox.exe
Token: SeDebugPrivilege	248	firefox.exe
Token: SeDebugPrivilege	248	firefox.exe
Token: SeDebugPrivilege	248	firefox.exe

Suspicious use of FindShellTrayWindow 21 IoCs

pid	Process
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe
248	firefox.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
248	firefox.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3368 wrote to memory of 248	3368	firefox.exe	77
PID 3368 wrote to memory of 248	3368	firefox.exe	77
PID 3368 wrote to memory of 248	3368	firefox.exe	77
PID 3368 wrote to memory of 248	3368	firefox.exe	77
PID 3368 wrote to memory of 248	3368	firefox.exe	77
PID 3368 wrote to memory of 248	3368	firefox.exe	77
PID 3368 wrote to memory of 248	3368	firefox.exe	77
PID 3368 wrote to memory of 248	3368	firefox.exe	77
PID 3368 wrote to memory of 248	3368	firefox.exe	77
PID 3368 wrote to memory of 248	3368	firefox.exe	77
PID 3368 wrote to memory of 248	3368	firefox.exe	77
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 808	248	firefox.exe	78
PID 248 wrote to memory of 2456	248	firefox.exe	79
PID 248 wrote to memory of 2456	248	firefox.exe	79
PID 248 wrote to memory of 2456	248	firefox.exe	79
PID 248 wrote to memory of 2456	248	firefox.exe	79
PID 248 wrote to memory of 2456	248	firefox.exe	79
PID 248 wrote to memory of 2456	248	firefox.exe	79
PID 248 wrote to memory of 2456	248	firefox.exe	79
PID 248 wrote to memory of 2456	248	firefox.exe	79

Uses Task Scheduler COM API 1 TTPs
The Task Scheduler COM API can be used to schedule applications to run on boot or at set times.
persistence

Query Registry
T1012

C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "https://city-car-driving.en.softonic.com/download"
1⤵
- Suspicious use of WriteProcessMemory
PID:3368
- C:\Program Files\Mozilla Firefox\firefox.exe
  "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url https://city-car-driving.en.softonic.com/download
  2⤵
  - Checks processor information in registry
  - Modifies registry class
  - Suspicious use of AdjustPrivilegeToken
  - Suspicious use of FindShellTrayWindow
  - Suspicious use of SetWindowsHookEx
  - Suspicious use of WriteProcessMemory
  PID:248
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=1744 -parentBuildID 20240401114208 -prefsHandle 1884 -prefMapHandle 1876 -prefsLen 23678 -prefMapSize 244658 -appDir "C:\Program Files\Mozilla Firefox\browser" - {c885f90d-0f73-4f70-9bc6-6d4303c3cc4c} 248 "\\.\pipe\gecko-crash-server-pipe.248" gpu
    3⤵
    PID:808
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2416 -parentBuildID 20240401114208 -prefsHandle 2392 -prefMapHandle 2380 -prefsLen 24598 -prefMapSize 244658 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {54e802ce-8533-41b4-9651-5a8b3d3f522a} 248 "\\.\pipe\gecko-crash-server-pipe.248" socket
    3⤵
    PID:2456
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2628 -childID 1 -isForBrowser -prefsHandle 3120 -prefMapHandle 3308 -prefsLen 22652 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d53dbb9f-bbe1-4016-ba39-666a7a4b5853} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:4988
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=3892 -childID 2 -isForBrowser -prefsHandle 3888 -prefMapHandle 3884 -prefsLen 29088 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {0414ed4d-b69f-465d-b363-e05aef904de3} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:3176
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4768 -parentBuildID 20240401114208 -sandboxingKind 0 -prefsHandle 4848 -prefMapHandle 4388 -prefsLen 29088 -prefMapSize 244658 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {cc279fdc-ec99-4db2-a91d-616c1ff5d17d} 248 "\\.\pipe\gecko-crash-server-pipe.248" utility
    3⤵
    - Checks processor information in registry
    PID:4672
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5316 -childID 3 -isForBrowser -prefsHandle 5348 -prefMapHandle 5344 -prefsLen 27051 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {ed0d376f-bd1e-4278-af78-c1d87e67f94f} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:1772
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5304 -childID 4 -isForBrowser -prefsHandle 5492 -prefMapHandle 5496 -prefsLen 27051 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {fc4dec5b-c230-48e3-bb91-541f72b3738e} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:1012
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5648 -childID 5 -isForBrowser -prefsHandle 5656 -prefMapHandle 5660 -prefsLen 27051 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {467365be-421e-46d7-927c-b3ce00f004df} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:736
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5548 -childID 6 -isForBrowser -prefsHandle 6396 -prefMapHandle 5076 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {4b5663a9-3d7b-4062-beac-e0ade0e78d3b} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:4584
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6652 -childID 7 -isForBrowser -prefsHandle 5540 -prefMapHandle 5544 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {1dce09ac-c614-4740-9878-d69ce5450663} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:3052
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6208 -childID 8 -isForBrowser -prefsHandle 5792 -prefMapHandle 4980 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {efd21206-0450-417c-abc3-aa716da775d8} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:1488
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=7260 -childID 9 -isForBrowser -prefsHandle 7268 -prefMapHandle 7272 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {3f3521a7-c075-4e92-8b22-fce9cdce54ce} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:2772
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=7452 -childID 10 -isForBrowser -prefsHandle 7460 -prefMapHandle 7464 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {08f91c61-f6b8-47f3-8509-1e3be28cd538} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:1516
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6668 -childID 11 -isForBrowser -prefsHandle 6496 -prefMapHandle 5076 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c4603289-d642-48e5-adf9-99f80e2ad39e} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:4268
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6772 -childID 12 -isForBrowser -prefsHandle 6616 -prefMapHandle 6532 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {728f5b3d-f62b-41d5-8905-71acbd041e7a} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:716
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=7852 -childID 13 -isForBrowser -prefsHandle 7824 -prefMapHandle 7196 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {ebb29735-37c4-4575-990b-d512d9787e75} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:1844
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=7992 -childID 14 -isForBrowser -prefsHandle 7828 -prefMapHandle 8004 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {861375df-c88e-4d81-9e26-4bb770d7d702} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:1076
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8160 -childID 15 -isForBrowser -prefsHandle 8168 -prefMapHandle 8000 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c28495bd-965a-4f4e-9803-33be38a11f18} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:4092
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8372 -childID 16 -isForBrowser -prefsHandle 8484 -prefMapHandle 8480 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {bb997c4b-dd76-4643-8a8d-883c951c7c9d} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:5220
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8628 -childID 17 -isForBrowser -prefsHandle 8004 -prefMapHandle 8528 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {6c1e3f41-61bf-4adc-a600-d3b6b370c617} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:5296
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8652 -childID 18 -isForBrowser -prefsHandle 8648 -prefMapHandle 8644 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {209d47d6-7308-4d57-bc00-3cef65c7db59} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:5408
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8636 -childID 19 -isForBrowser -prefsHandle 8832 -prefMapHandle 8992 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {ffcfdfb3-f3f3-4e2d-bca5-cb943383b355} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:5588
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=9212 -childID 20 -isForBrowser -prefsHandle 9204 -prefMapHandle 9056 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {60c3652c-890c-45bc-ae79-a9c6db8779c1} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:5276
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4244 -childID 21 -isForBrowser -prefsHandle 8356 -prefMapHandle 9180 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {e385b388-3a42-4ceb-91d7-c334a3dfd701} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:5284
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5156 -childID 22 -isForBrowser -prefsHandle 8676 -prefMapHandle 5160 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {937c1f9e-e8cd-41d8-a517-c4b44bc0e1d0} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:5292
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4312 -childID 23 -isForBrowser -prefsHandle 3612 -prefMapHandle 3608 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {99bb5d02-6858-4fe7-a72c-9ad89f92d7d1} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:6032
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8356 -parentBuildID 20240401114208 -prefsHandle 9756 -prefMapHandle 9704 -prefsLen 29276 -prefMapSize 244658 -appDir "C:\Program Files\Mozilla Firefox\browser" - {8b80e1a7-d646-49a9-9cf9-2ed2182310b9} 248 "\\.\pipe\gecko-crash-server-pipe.248" rdd
    3⤵
    PID:5984
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6152 -parentBuildID 20240401114208 -sandboxingKind 1 -prefsHandle 9768 -prefMapHandle 9764 -prefsLen 29276 -prefMapSize 244658 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {4b03101a-53e2-4eee-937c-f239906f062f} 248 "\\.\pipe\gecko-crash-server-pipe.248" utility
    3⤵
    - Checks processor information in registry
    PID:5992
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=9984 -childID 24 -isForBrowser -prefsHandle 10124 -prefMapHandle 10120 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f3fa8b51-1057-4c25-a445-7bc593c619e5} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:6368
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=10160 -childID 25 -isForBrowser -prefsHandle 10168 -prefMapHandle 10172 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d1bee3bf-c6b5-4a2d-9712-fa4d91855de9} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:6380
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=10352 -childID 26 -isForBrowser -prefsHandle 10360 -prefMapHandle 10424 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c8c4d06c-28f6-4d55-b6f9-68712482eccd} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:6584
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=10560 -childID 27 -isForBrowser -prefsHandle 10568 -prefMapHandle 10572 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {10b29cc9-1e16-4c15-9a98-fc48823f11fa} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:6936
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=10784 -childID 28 -isForBrowser -prefsHandle 10744 -prefMapHandle 10544 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {4dfbf093-eefa-4090-876d-7af21a3a6d96} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:6072
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=11056 -childID 29 -isForBrowser -prefsHandle 10524 -prefMapHandle 7256 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {347d6fe1-5572-4112-9b31-38c2c104f7c8} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:6800
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=11164 -childID 30 -isForBrowser -prefsHandle 11172 -prefMapHandle 11176 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {860bb1cf-45d0-4cdd-b5c5-958562fe379b} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:6812
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=11360 -childID 31 -isForBrowser -prefsHandle 11368 -prefMapHandle 11372 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c6a72813-9c8b-459d-ac87-b24961d02e1f} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:6824
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=11760 -childID 32 -isForBrowser -prefsHandle 11740 -prefMapHandle 11736 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {e6c04ccf-76da-4799-87f4-bfc86f022302} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:5932
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=11768 -childID 33 -isForBrowser -prefsHandle 11752 -prefMapHandle 11748 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {44c297ac-9d4a-47bc-89b0-73d8aee8dc6c} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:6012
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=11936 -childID 34 -isForBrowser -prefsHandle 11804 -prefMapHandle 11808 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {48db19f6-8cc8-4f1f-a7e9-ae1fd4b1d007} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:6024
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=11864 -childID 35 -isForBrowser -prefsHandle 11612 -prefMapHandle 11608 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {99a2ef3a-b7e1-4081-9a90-b1899921a1ea} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:6500
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=11808 -childID 36 -isForBrowser -prefsHandle 10112 -prefMapHandle 12056 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {88820c1c-b3c3-40b3-a55b-0db0a2f4f4ec} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:6664
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=10956 -childID 37 -isForBrowser -prefsHandle 12436 -prefMapHandle 12440 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {5b774e63-f050-4e6d-98ee-dff51a1f467d} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:7980
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=12548 -childID 38 -isForBrowser -prefsHandle 12556 -prefMapHandle 12560 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f2d28555-e173-4860-8d30-3b4c93519994} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:7996
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=12644 -childID 39 -isForBrowser -prefsHandle 12364 -prefMapHandle 12536 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c3291789-2b90-4655-82ab-60800567859d} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:8004
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=12772 -childID 40 -isForBrowser -prefsHandle 12656 -prefMapHandle 12668 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {a798dd76-9cb4-4e12-8592-d1b6ba208a2b} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:8016
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=12572 -childID 41 -isForBrowser -prefsHandle 11000 -prefMapHandle 13272 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b73a3825-8e99-4bd8-a43f-4eb1a04ce58e} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:8100
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=12956 -childID 42 -isForBrowser -prefsHandle 13116 -prefMapHandle 13112 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f2786a7a-6ee9-4951-8dd0-3a0b38144dc4} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:7900
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=13384 -childID 43 -isForBrowser -prefsHandle 13392 -prefMapHandle 13396 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {9f5b572b-b23b-46b8-9246-5bf5e1f8125e} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:7916
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=13576 -childID 44 -isForBrowser -prefsHandle 13584 -prefMapHandle 13588 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b95f8b6f-6795-4c1b-935c-44afcba48f1e} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:7928
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=13880 -childID 45 -isForBrowser -prefsHandle 13900 -prefMapHandle 13640 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {727ccded-7abe-479b-9525-bb25620a6031} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:7120
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=14092 -childID 46 -isForBrowser -prefsHandle 5508 -prefMapHandle 12368 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d4d4201f-4fa1-4f03-a93d-7bcf064681d4} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:8852
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=14068 -childID 47 -isForBrowser -prefsHandle 14212 -prefMapHandle 6844 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f5848b57-b6da-4b5f-9c0d-17970732aa4f} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:9056
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=13892 -childID 48 -isForBrowser -prefsHandle 13916 -prefMapHandle 11004 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {623a3535-076d-4a85-9418-c80cb59da71f} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:9084
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=14284 -childID 49 -isForBrowser -prefsHandle 13944 -prefMapHandle 13880 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {6cc39837-8100-437d-8d00-cb46f6e3cc25} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:9092
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6476 -childID 50 -isForBrowser -prefsHandle 13588 -prefMapHandle 7444 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d0e8e158-5f56-4c09-97bf-fea7e6ed6c14} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:8556
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5640 -childID 51 -isForBrowser -prefsHandle 14604 -prefMapHandle 14600 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {5f4d41d9-b5ff-4486-914a-3817d0388865} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:8564
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=14916 -childID 52 -isForBrowser -prefsHandle 6464 -prefMapHandle 8172 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f41183f3-c50e-4f4a-991f-bf515058e62b} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:8604
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=15068 -childID 53 -isForBrowser -prefsHandle 12252 -prefMapHandle 12268 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {1bcb27bd-8b26-4a22-a9bb-b5bbe5624506} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:8708
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=15116 -childID 54 -isForBrowser -prefsHandle 15124 -prefMapHandle 15128 -prefsLen 27487 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {528067d9-9f31-4d7f-a779-d0279ecad709} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:8316
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=14876 -childID 55 -isForBrowser -prefsHandle 5240 -prefMapHandle 12256 -prefsLen 27698 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f9152d8c-3242-4e36-b36f-102a43d1bc38} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:9576
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=15124 -childID 56 -isForBrowser -prefsHandle 15464 -prefMapHandle 15468 -prefsLen 27698 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {5a7f57ac-770d-4c29-8369-bea98a35ab5d} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:9588
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=15648 -childID 57 -isForBrowser -prefsHandle 15656 -prefMapHandle 15660 -prefsLen 27698 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f347e759-9fe3-449f-b628-af3fb60cd329} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:9600
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=15476 -childID 58 -isForBrowser -prefsHandle 15932 -prefMapHandle 15928 -prefsLen 30066 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {346b6415-058d-4ea5-98a2-c96dc8cb5f40} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:9740
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8928 -childID 59 -isForBrowser -prefsHandle 8640 -prefMapHandle 8856 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {970efca5-8432-4221-84c9-68b00e58317e} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:9488
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5380 -childID 60 -isForBrowser -prefsHandle 5436 -prefMapHandle 5440 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {7d5b41d4-3bc7-40c2-b3be-d104c5e03764} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:9732
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=13140 -childID 61 -isForBrowser -prefsHandle 14240 -prefMapHandle 14244 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c0796caf-3fcc-4310-b936-7f18066463d5} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:5248
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=10572 -childID 62 -isForBrowser -prefsHandle 6096 -prefMapHandle 6196 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {4b5fb4a0-9f38-44c3-a28d-d85c71a64090} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:908
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=13120 -childID 63 -isForBrowser -prefsHandle 8888 -prefMapHandle 8900 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {31f5c2f9-3784-4a21-b3cd-5405a900601b} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:8388
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=7632 -childID 64 -isForBrowser -prefsHandle 6084 -prefMapHandle 6072 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {53b1f03e-310a-4868-9560-57c3b8af97ab} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:6372
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=11844 -childID 65 -isForBrowser -prefsHandle 11704 -prefMapHandle 10856 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {e41cfde7-0b1c-4a77-b9a2-548b5678398f} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:4584
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=13748 -childID 66 -isForBrowser -prefsHandle 13732 -prefMapHandle 13720 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {55ccf2bf-ef5d-40e3-932f-d6ad84926ca8} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:4832
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=13564 -childID 67 -isForBrowser -prefsHandle 14320 -prefMapHandle 14308 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {cc2f1108-ae17-488b-ada9-2748fa995d7b} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:724
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=9340 -childID 68 -isForBrowser -prefsHandle 12452 -prefMapHandle 12384 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {ed905514-65da-4584-990c-b3cd77a1f728} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:4792
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=9544 -childID 69 -isForBrowser -prefsHandle 11152 -prefMapHandle 11376 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b9f0d1cf-4edd-4117-8beb-27de91485c75} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:8148
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=9200 -childID 70 -isForBrowser -prefsHandle 12948 -prefMapHandle 3280 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1304 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {a7e59168-4549-45f9-bc89-48359acab08c} 248 "\\.\pipe\gecko-crash-server-pipe.248" tab
    3⤵
    PID:3980

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\activity-stream.discovery_stream.json

Filesize
19KB

MD5
6632fdd66f43585ef3c31d8eabfe741d

SHA1
ab1433372d089eea31ecc8e9583ec1c914290731

SHA256
81d64e883d5298607ce8c8441b72a58315db29a6c277a51586018373ccfa2589

SHA512
08016f7eef9527f7b58cb1a03a8bb57b92e8423ad7b0a6d3a3084ac0cd3bd8735d79bec4096ce0e3b4a7347bb7c155ce700c578d5cc74905eb8c6b0b4c4712e4

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\04CE2AFE2250448DC1C0475FAFA42BE3B9EAC9B9

Filesize
2.3MB

MD5
e60e80db0b972e9b47b5343ff5d671cf

SHA1
b15a291fb0f288f9a2024bfa163e21f9bd99eb69

SHA256
b513deb6ccb22c0ece89d9a40fe15d1528c5c4d9d0baba8eebc2b46a28db3edc

SHA512
3230c3e6a50cf193c62cb84b33c06b65f0964d71ce1bc155a35f786ce02413f0f176480c865a01007dfd07178f603d0ea531ce9ba1a5fdece5b4909868c645a0

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\11C04DE57428944158D7945EF8ACD2A26D7193D1

Filesize
454KB

MD5
fc794ca3e4c207328ee9c9a6935c9457

SHA1
d3afadbe9b55132f8515f8f8450dd93ba8588754

SHA256
a224c04fd52c5a665fc64fc4b01dec05a13545be09034f6524df15b0b3cc59cc

SHA512
c909b3307636d57f78c60b091c0a4e3b343b97a119bb7b5d243d36a07c523b7eb5f4c8724d3a406eb74b89680ee3b6827c824e928c647ab1521af6b9b40b8f9e

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\280A8948CDC9CB86FC4A25BCD4C0801663D4F5F8

Filesize
2.6MB

MD5
32daf2f15c599aa41f653dff145d5f4e

SHA1
774880ac1cc4b9700a7dd5fc545eda55dd3285de

SHA256
40509344299dd6fbbbd46a4f49ae76b83f74ab2182d6445a9573f74c8d598aae

SHA512
5e784a9d6d42105dbddc30246487e3bff032de52db4be86ad5676a555ada06c26002a9c555f2983a617979c99c51bc1a8620aefbc98078ba2bf2f00146785e54

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\2903090FE89C03C4AC279E5B69E9016978D53190

Filesize
16KB

MD5
a8391f945cbdeba5af52f7962c73193a

SHA1
87453b16f96b3964e051a67f1b2ee9c5cfab29ea

SHA256
6e6afce627e7046668dc750dc45abd52623dc4cd1991387a8d407171cc6135c4

SHA512
6a7634360316c1a4ccee41d58349a420ea543d3caeb7859c1e572899433e7c2d3356eadfeb1fbe81a1a2ed4d6ae71969d0c656626e668f91c8c34641f7618ce8

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\2DC1DF766116DDD7FF36EA01F6BC03D9BF485E17

Filesize
83KB

MD5
d2ecd6f043d84a362fefc5e602bcab3e

SHA1
0db3faa1397f524e8a34e48d42521e4d35035425

SHA256
e56f8667a70673e813343d8e3ef8be9e4ca7c4c3bc645e34d1bbddd4c8deafbd

SHA512
53b2705d7472eeab00a17caceada0d129f581da85828b2f46fce438103c8684d36cd98d7234c1e49b7addc57d8294577a273c45459067615480024e4ace1dfda

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\32E04CDE0514F8D684748D0783565B939893A659

Filesize
489KB

MD5
4911cda73a1a2104709781a3f51a7288

SHA1
bb22978442adbbc3b0689cbf1d81bb1d3a834019

SHA256
378f0abecbd53deee9294fdb7d7db03f1a590a711158ce31300ceb834268bee7

SHA512
892621f952bd1cd0756aa0fc9cc963df4d69656a39e307e0b0f48041789493c353a5648609d06fe9658f796cff80b08b0b9b5e0790d0f2289d87fc331d2d9386

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\382B5B3827B4DDFA378A655D1BD82EE2B5E279A6

Filesize
1.5MB

MD5
070ed0a3da81f66dc3b22fdb20af396e

SHA1
1cf69f14df2f29ef2678ff284eec277557dab6fd

SHA256
5fa57e782d26bb120e5194fddae92a2b82fbdb5811c0ff26acfeda21fb7df6c2

SHA512
911397f507183b8580af709b94d6766260e636a45f303248f91b7d6c73a3ecb35e93249b809691e8510eaaf47c341e18d57cfdceec8e558916883b663b51952a

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\4B48426327E1E2D87F79DBA7D5455266A67BDC3F

Filesize
1.5MB

MD5
6490c5299bc6371a91f315442f00f98a

SHA1
71adf6dd4d950ae1e4dc846d2c0dd5cf118266b8

SHA256
5687ea52d71eb1d790208c6872cb09c18a9cdef0f6803ed3bea86d45c6a9257f

SHA512
feb476811a2e25c925093f26979cfc0a1c7e447776610c4372db31dcce58d08f5d92dbc468e658cb593dca04e4bdd759677bde3fd8d86255ddf05c4fba65da08

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\507BA195BB33C4C3806F5A8A4DBF969084E307B8

Filesize
33KB

MD5
70a7673b90f898010b8e20c4790493b3

SHA1
24ec6edda4333a3da716829cbffe72b3900feda9

SHA256
99e82fd5678b9a706b8c2c429441fddd4ef28533cf46978d358f28109c5e7f2e

SHA512
9548c8241c416039d361dd7ca018285867b2a0f6a1902174051ddec9c2298550b777ad1d7fbf3e2a6c35592f0535ae8f49b93b947e325f07f569e7c95afdc694

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\5F66219FF3F9AB456256516011F005E86272150A

Filesize
224KB

MD5
040e4c463953a4d9a58ae28ff9100129

SHA1
16e55b4af0bd8bba8ff84a521ab2cba0e9b93baa

SHA256
061bf4c73cd694ebe93da5c65c64a07b4bc972165ec4c507140d2184f1b8a903

SHA512
578fc3a2a875f69240e28bea05706080d15e6404ed825df084aead5dba636827e4e43c8cbce2b87b0e84f1a6f76787c184c4e15b3e3c378310eb9ae8f11a5a80

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\633147DE189F48BD24566B5E3BBAB520A33C665B

Filesize
23KB

MD5
1d06dcc550dd58c1f792dc8fcbf3e9f9

SHA1
17e7d4ee3db896a3d4cf0bc8eca889d4ed0d61e8

SHA256
39275a352003a804b2afc324a93eb4af6d0c20b0f64e3d927601ecf238d8663f

SHA512
85e8199de0ba28fa6a8fc2b3507b49c90244f266d0a4ec760a5e41ab593675d848f6c2182074dedb9cf91e9cb10a75f2afc5de5a75d412d0fb9a13546a4f4ee4

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\6D58C908FA4E07C1EDDD653075BF557751ECB7FF

Filesize
120KB

MD5
a1923e8bf19dd6993a0c0435c375ce17

SHA1
b18d4b92a1e0013a3f0130013dd950b369bdfcd8

SHA256
7cfe6faa3f641c7d0c9545e61bd9ef3599a0b6bed02d5097695180f056bf15ce

SHA512
53ebbbf93aa15ea62748f170be5d24f7b575f1ca2aaff0068b4391449dc2128746b85be6c9645bf9a56d70fc20a742ec1b56832b1cfad5181d3795b577ef6adc

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\7A80E441AABF2DC1CCC724C7DE4B91A9F4B2600D

Filesize
14KB

MD5
10b432dc26a8153596a8330b7b489fa7

SHA1
131e6b19ef7a516b598592f6692171a1b9391397

SHA256
d4f8c33ea705cb564ddf6aa60fb2974560eaa36a89b2ea545f01e8e402b806d0

SHA512
48650f818f36af460621d2eb85a843e14ee25aca1b79f55c7ca6f63257d335157c3f5f6ff761aeb898e8ee27e61477667b29e51031322b303040817555ce5469

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\854F085670F1B151E6EB90F7543CB26AB6373911

Filesize
310KB

MD5
86fb019e1eb28f3cfeda7b515bcee2c4

SHA1
83cd467049ac5e4d6fb17c23f904cd3c6728af10

SHA256
04b39d294657eed9ba2d3947aab316038e10d0b0e8618c4ba506534358a003c7

SHA512
0c2af7a6bf2d9c0a1be2f4566413ebf3754b2b4a721e3797786f92af4ef5a23fd68724ccd871c5f22755ab729f3b65c96b4a08f9faef42f60cda84ae4068323e

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\8A029F5EEB3F1699D434FAFDDFDA55CBB5791E57

Filesize
1.6MB

MD5
3e714facecdfc98f19b65f1f2f893211

SHA1
da1f3899483ee954f1e454c5ed28ac1b5eb0020a

SHA256
d399528f888d111aede3ef5233fa0810f6b2fd37a01d7801c773e434bd164680

SHA512
358ac7b52320609b512abf5701556c60c800894d07cc1289590e446efcb4ec8cc6d0cb19b9c3df143b734a8a80619d8a6c72600e619badc9d764a066af871432

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\8C4C3E302E1E6ED47689FE337DB5512F928043FC

Filesize
1.6MB

MD5
afdd6073efaf4a09b16f3d7627e69253

SHA1
cf3c0df4959fa801aa3e5bbec88d0f6c65642f76

SHA256
3fb7fc1e42ce9b688861146d5286db4c2879cd2eae25a1422f5f94fb8498f959

SHA512
f977a583e7100ef3ef7d9713c20239fbf1d5562baa4495cdef1c7d9118cdc3bc3919d535521f532977704c8a814985053470dcf50312d16bd10992cb6aee7ff3

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\9166DFB190D3EC7ED07C8D0A9507C31A88313E9E

Filesize
253KB

MD5
ebe314a62df8ede8ccd6b69fbf71a1c4

SHA1
4d2469927294804a83f004b6d265c235aac33aef

SHA256
71a0f52461595987a332415b3927c0a8b9e65673ec820a026d086ee075018e8a

SHA512
d0460129a9abb84a5878076f024fbe1e56bc4df04fb3b57e4ba77bddfafb51f11d4df71af054d75353aecc5ecc9cc8d1d8f5cae20248935e055559b517c1237f

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\973EBCF993A8C2EBD7E93D1FA8D9237FC88887A1

Filesize
44KB

MD5
981208ac65950369f4343b797d19e3d5

SHA1
c727c14f06a3480209d8bf02407721603a316d89

SHA256
4339cb0868f7f6718a14ff3901df9641115d2703b4e403e7b64e2de8e6f4783b

SHA512
c02e378b8100092bb25ea27a8bba6217a09d6fbfcdc6e710b1dfd341bf2fe0102c2bdefaeb728951e69429a2edfde9abeb3dde3483c064af1b10a72a0add8ebd

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\9A72870FF6DFD706431FCB42A4C59FBE87AAD81A

Filesize
56KB

MD5
518a28f71915b973ba806b489cbf3fa0

SHA1
f5dea6f60dd18f31b6e52bc496e6563c72ccb882

SHA256
6b7a9d0cb6b0407f0cf9248fec7ee41e3796d991df6ea69ded409bdf2bd1d9f8

SHA512
e52227dd2d0258a9ac4600f61ca8dc18d3438b995f98964ac77db66d7fac6c7e058e09fca7b22e9454cd4d2e0ecc485f1a845b0b684ea964fed914402af10c15

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\9E8FDBC30A47E9A5B2AE25FE9FBF2798FE848133

Filesize
22KB

MD5
775606fffef5fdea651655236f59cd34

SHA1
dc59a63bf8159ac25583077d04a21baeb928d2ca

SHA256
a0085a3097af8a3e28393fb355f375f631cd3077062edfcb6d6a99f2c12d8df3

SHA512
2be9cff4ee3b21f6beb4932e38b9d92500fb1e1536f999fab75ee2844fc0a3d4212706fe17c04c13427490aa20c326574fe99cff67f4fd6ce03e4270e289aee6

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\9F72320EFB9CD3E5C8ABD411D06CAA9BCA3ACBE2

Filesize
1.1MB

MD5
fbe157c4f85e1cd221da67312a423e74

SHA1
db7b232ed4e06bde80b58b06b40f482ff05831cb

SHA256
2727519ed5f838f4985d20e03fc583876362ed101b3679477e5dd9df7ac2df30

SHA512
d8efab94e4f43b3401dd6ccde25d98e3e620ef5ac9fdf777415bda11f635d2e9361dd0b13ad125105bf04055f16eb45935c845c028f1a719aa7c3ddf7cd82634

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\A009B44A1B9BCC076D111F06397947E57CA5F58C

Filesize
475KB

MD5
0895e35877d7197f3856ab724a50bcb0

SHA1
ac09190912288e61f7da189874700cc48b611877

SHA256
4277fc7faa0588a7020292690e06231666e85e716ca7432f98c176d2a2572aa5

SHA512
741a14e84a4762bb45f0d033a1706fc3dc633deec9e75ae25d5ad349d4d15d149a64f9eba5c07ef0d3f432f8a307cdfd3a249ae510c93a23bc1bfcc89d1315e1

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\A88BB8B9B001F747757A2A53D8C989B3EDAA7D69

Filesize
258KB

MD5
15d17bad7f1d3639e0d5c7fb0bca3357

SHA1
579ccc257891492d81e9f8a4f5d9f12c29cdb71c

SHA256
8c2f099333ef6ae519831ee2decf142c5277977ee1b5640f385e9f9a58ce5f3d

SHA512
6e1657b191a87506ff5a8de6cb89fb4636ddebc35fd0686eac1ac53ed785c2df2e14a3f88585df71ff34b03bf2cb19048301d118f99d0e872f241f0ddde66c62

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\B99E351A266336AF546CA700915581E550123A1E

Filesize
326KB

MD5
3b10045c814e9d81fef8941d41a6f4be

SHA1
d0a957f0e14921924195185cbfa603e337e90318

SHA256
678d892ada84d0d00ddcd3d696ad02dc80fb7a73faa54e8e6cd95c7b64044dff

SHA512
1ec8cf7de09164a1957c9fdb6b57ac3a0ca6156d1a050810d3671cab14f7e5f795199bb554e871b68526139250d92c82e6b3d851bbc34155486cae9b0b4e1193

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\BD198D866E884B840C0EDAF1495AF329E3B302CB

Filesize
41KB

MD5
44b0d123c09038f0a9e000ccce4a874b

SHA1
7a7909321362a81ff475dc04f6b7261f5e877c20

SHA256
317675c4332e3520494a4496a838e01cc282d1b7e868253393b62c537366d5c0

SHA512
c7daeb60d90d64e4b167fb58e8d62cb573e816481c766b1064025e51facd9cf24a85c685f923a0e608efa025503ff06c15e900eaaed86453a8b8e7d9e7e655cf

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\CF8BF4CF096501B61CBD7F628D8B66396813E894

Filesize
27KB

MD5
d4b990eca6bdd07549e9ea5f51727e4f

SHA1
ac9acf5f9d73914882698a9df1256f220b2a099e

SHA256
f297f0ef4a0e8c171a0f3a1651b34a248012278f18debff72818c98e607560a0

SHA512
a905b1fa7f29071fc79c3dff947c7ccabc29709d6dee3c59075144cf6a77702215dd5edbfc0e8bbacbd795561772c1ca0599ca4111e1844799ea78d2bdd8a324

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\DBD78B5F0DD5928F802E6B4677A914D2D6B73B75

Filesize
1.1MB

MD5
82bd5cfe7ca568ff1d0603b0a3974731

SHA1
14ea3b1285a541817191d18c6c5f32005e5dc1bb

SHA256
7a8be68422df7d523a0422c8c4da70e4c98167314dceafff5f0aaa7fb83083ba

SHA512
ae10a3ea3e63d6bd0a8d211f938c94006e2081de5e379eff0717b35ebb30f436bf1e093d353be9d1b0952ed90c7af8bcc17f6a40243cf2992889f1f59d9cc979

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\DE6410D7D10A034A4B6C7DF000528E7D2955C71E

Filesize
1.9MB

MD5
db308bf65175b04aed335e21aa8d9595

SHA1
9b3821983aa9ec2947ef00b4e03ebd00be08819a

SHA256
1f6a97174a46330c03149df455af219fb40f45634de01679ccba2540f127d942

SHA512
aca16fbadc49aa9de0694f19ce63709f4f6560fdf009ea717c6c991375ba03ed7d19e4ab2342beda79dba23e1cad0d4037b132e797b2b574242d74e58cd31e71

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\DE7538457106A1275B12D3AE0BE2B827293D5368

Filesize
1.1MB

MD5
23bd303d976c721192985606e90f0ec2

SHA1
0884694d32f3bf45ead7692e5863264bdcc38c01

SHA256
a77a11f7389593be7cfd687624a61a96e928819ee58dba59b92b7723d78e6f3e

SHA512
23a03738b8b1b6723ebfdb0c2b96b7b5b713beb856f8aeb56ebe894379ab40e0e52550b30edee8684e51678fa59d1eaab9b54ec10865732593311045ca01e27f

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\F4483A2F5EBDC368F1ACDE57EC9573EB8EC4C0F8

Filesize
57KB

MD5
c5613bfc59d61686bc5b2c503322c9fa

SHA1
17fa781debf0ab534e8f3b51968df14fa67858aa

SHA256
58981e5621ed2ec507ec0b0dfab435ec7f47a3b4b1bfa43ecbd52f2a76c84da7

SHA512
6b3b2469525748d452cdb0e4e30644c7f723c9c617067b958a8ca6b0cf22f451a14b76938b1db6f55fe6cc3918b73b95b61ad038cf445e63ac59e7a7b4fea5ce

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\cache2\entries\F884B417DE2A596726379F94AE3819DBCE9F9B00

Filesize
200KB

MD5
e7ca43e1b00868f16045efad858603c0

SHA1
2a3c6dfa8c9e92dd028da55072c3781bad7e0b18

SHA256
cf4e8cf23570dd0c8bd840505844f77c7c6ab2516923f88a0ece8b05d7f05708

SHA512
1d903a2d9c8c85f9d9908893852b4a2c626375ac6a2d2bea70182eeeeaab886c5599b3e4a063eada5f0a5e3c6f4b3ea8b72ce256a01139010f9f205b463bcd76

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\maevrvll.default-release\settings\main\ms-language-packs\browser\newtab\asrouter.ftl

Filesize
15KB

MD5
96c542dec016d9ec1ecc4dddfcbaac66

SHA1
6199f7648bb744efa58acf7b96fee85d938389e4

SHA256
7f32769d6bb4e875f58ceb9e2fbfdc9bd6b82397eca7a4c5230b0786e68f1798

SHA512
cda2f159c3565bc636e0523c893b293109de2717142871b1ec78f335c12bad96fc3f62bcf56a1a88abdeed2ac3f3e5e9a008b45e24d713e13c23103acc15e658

Download Submit
C:\Users\Admin\AppData\Local\Temp\tmpaddon

Filesize
479KB

MD5
09372174e83dbbf696ee732fd2e875bb

SHA1
ba360186ba650a769f9303f48b7200fb5eaccee1

SHA256
c32efac42faf4b9878fb8917c5e71d89ff40de580c4f52f62e11c6cfab55167f

SHA512
b667086ed49579592d435df2b486fe30ba1b62ddd169f19e700cd079239747dd3e20058c285fa9c10a533e34f22b5198ed9b1f92ae560a3067f3e3feacc724f1

Download Submit
C:\Users\Admin\AppData\Local\Temp\tmpaddon-1

Filesize
13.8MB

MD5
0a8747a2ac9ac08ae9508f36c6d75692

SHA1
b287a96fd6cc12433adb42193dfe06111c38eaf0

SHA256
32d544baf2facc893057a1d97db33207e642f0dacf235d8500a0b5eff934ce03

SHA512
59521f8c61236641b3299ab460c58c8f5f26fa67e828de853c2cf372f9614d58b9f541aae325b1600ec4f3a47953caacb8122b0dfce7481acfec81045735947d

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\AlternateServices.bin

Filesize
6KB

MD5
60c8077c4f167142e41d7b04033b6648

SHA1
60e485621c4c3905777ecac6afc9549556d55082

SHA256
fd6ec5f1dc520f3d356ed12bb1f04570f438561cbfa7fbec69f33e5c5916491d

SHA512
934f731672c85bdf89901f5b3065058d912ad8fc04e458cbf508ea93e325c0a1fd9c624d4a9583001aa2ca036000f3d26cbf8e96dbdf85376690dd2bd44d69ed

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\AlternateServices.bin

Filesize
76KB

MD5
f0b69ff2c369b7c465c5433fc37d6ade

SHA1
0784d0e2aa0c7063e575180eef2894eb3e9437d4

SHA256
a03406602ad7f4a66f55d0e591cc651cb06b6fcd5bc278db2dea2d4bea75e144

SHA512
2a768e2168417d2357cf05c14b86251e49b810ef4bdd8b4679b3c85d6c067f2eeb53f7825bc752369cc1c8e286c2f3a27632475e7fd15205684c121d24537ec0

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\AlternateServices.bin

Filesize
77KB

MD5
31220de63cdf8deee87f267877cb8830

SHA1
2723b0d716ee3cdf05fb1855f7494fd5a4e21b54

SHA256
6159f25c10e07ba7db9789ee704b0cc9bddeb4931e45d447b12714a097b36fee

SHA512
dee4267ff94f467fd416662512442dd680df628de63940b0cd73748222f2fa491174c386a93200710a63b18e952d50c94e05c2340b307cac60e5fd970ec6e88f

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\AlternateServices.bin

Filesize
12KB

MD5
56d2bc854ee4a58ad4bd0f2d24c5d033

SHA1
33065665423c7268eee97d411d1208399e16f0ac

SHA256
eeb12d73bf0294c5ddda5eafed59cd462332d00590afc8c3daba9fed2b15c7d3

SHA512
92219b51c2a955332a0fcf1b02319ff11e21f19c1db3e3fd655dbc607ff5d58a6e685e5fb91ca56bb7b34688d82eed3528a39db405806535d20f3f9075e9f71f

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\AlternateServices.bin

Filesize
13KB

MD5
e7c43ee80e26a6837abea1e378477839

SHA1
310a7a72d48ff9827df952d03e568bf064df533c

SHA256
6bc1cd48d51b78ee61c5476277bb9a4be0f3123dea62d903060b484d39a18d8c

SHA512
aa70bda9ae4d0dd167f6cb2745e0c7d2d32a5d57ead09a189e2e412f5719646d03466e821255c807732754ad0b724dcfd688fbfa39a469dae63aa33204dcc530

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\datareporting\glean\db\data.safe.tmp

Filesize
5KB

MD5
c1ce87f42094cb5e95207aa4c0ab4cf0

SHA1
d3ab285a3a3abc8643b8f1bf7537b8df11f3f693

SHA256
c5ef5b37b966e52c8f71780e92be90aec6ce98acb548db0c310b3e004864efae

SHA512
fded52a0026f058c5ca9c280b1b7ae3c9388ed6488ae1462b1a23408d4d62b23222fd6233c11eaebaa946f29aa6be59e0d63b8b07bc223a7af92fe418fbd3522

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\datareporting\glean\db\data.safe.tmp

Filesize
6KB

MD5
cc5de040e0a1c9494e2885c60723e193

SHA1
5102f89c281ed1c7e70eec5798bec12ce2fff42b

SHA256
5d4e09c8c69fde0e55c7178aae637b4442006cbc31294f8561fa3f167fdb7d9a

SHA512
ced8a240deb8ce30c004b58ea27c9c1b3282380f0769fe6b86dfabe3923b1c762406e1fde75a1e1d9831c99167ebea2b25b6fbc28b873e679290d5b47d2aee67

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\datareporting\glean\db\data.safe.tmp

Filesize
5KB

MD5
f6dfa86a3b9126e934102d3180d76e6c

SHA1
a47030b7ad9641e6125b132f596f74601104f965

SHA256
872498c0da4d825125bc0811c9f777894bfbf1d07f9fca1ec828c1794d8ab0a4

SHA512
c26a79ecd889cb97e0e5eb64dbd9f6014b4aea5495130e728b499097f5b5b951daa935b14aec174801bc40aaffa50faa9f86e0d4bae2cdf0ef60336d3061e161

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\datareporting\glean\pending_pings\14dc2a16-a0d2-49e8-a2ad-211885b9e95c

Filesize
24KB

MD5
8c3961ab47af5471606287860faf4549

SHA1
4610bf8aef71636a606643e7c14681af919ffb50

SHA256
72e24c3b0ef19c8b615f91e980ac8d52554c2346e24967d7d8f7d23f65620f40

SHA512
5c22a5a2f991271ef4e949b7b5ac895c307d7ace28cbb36652fff1124bc124321e313a453558e6304e31831c41ecc0ef625e30a558708c0ecd58cf2dd1444828

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\datareporting\glean\pending_pings\3e2908c7-eb89-4121-b602-7bd1d41e2544

Filesize
982B

MD5
f72a3fb958828b5cd186aff12bec5617

SHA1
aee27cdcf72542da15b944bbc5ad14d9a7db62ef

SHA256
fe1886b9a4a087946c7f2032eed453640d765930c51bacd833a894d7c49f4eda

SHA512
38dcb96e529c74ad918db3733332d8fcf8d66de943ee1a238ff21313a4f95dd2cc791aa737f3af2739dc9b810f1699f6dd8e4408f4bac8a5821cfa79fc0f536b

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\datareporting\glean\pending_pings\c4bcf22f-8a55-4e34-a578-25886bf41409

Filesize
671B

MD5
5980c8c9c1b9fe9bf3ef1c384656e8e4

SHA1
38e09468d4d1aa4334baa3bc79261120350508d5

SHA256
6c48f48fae19c1c60cc20ecf39e20b280049735a14900e39e9153f857a149645

SHA512
e37caa622ad2f34f9c3fe55f8e06111b47e0ef72203bcadeb444d00fd78a1650467f6d78593e476da1346249d21a8a238b4e175bb7a1392303c281841975c8e2

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\gmp-gmpopenh264\2.3.2\gmpopenh264.dll

Filesize
1.1MB

MD5
842039753bf41fa5e11b3a1383061a87

SHA1
3e8fe1d7b3ad866b06dca6c7ef1e3c50c406e153

SHA256
d88dd3bfc4a558bb943f3caa2e376da3942e48a7948763bf9a38f707c2cd0c1c

SHA512
d3320f7ac46327b7b974e74320c4d853e569061cb89ca849cd5d1706330aca629abeb4a16435c541900d839f46ff72dfde04128c450f3e1ee63c025470c19157

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\gmp-gmpopenh264\2.3.2\gmpopenh264.info

Filesize
116B

MD5
2a461e9eb87fd1955cea740a3444ee7a

SHA1
b10755914c713f5a4677494dbe8a686ed458c3c5

SHA256
4107f76ba1d9424555f4e8ea0acef69357dfff89dfa5f0ec72aa4f2d489b17bc

SHA512
34f73f7bf69d7674907f190f257516e3956f825e35a2f03d58201a5a630310b45df393f2b39669f9369d1ac990505a4b6849a0d34e8c136e1402143b6cedf2d3

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\gmp-widevinecdm\4.10.2710.0\manifest.json

Filesize
372B

MD5
bf957ad58b55f64219ab3f793e374316

SHA1
a11adc9d7f2c28e04d9b35e23b7616d0527118a1

SHA256
bbab6ca07edbed72a966835c7907b3e60c7aa3d48ddea847e5076bd05f4b1eda

SHA512
79c179b56e4893fb729b225818ab4b95a50b69666ac41d17aad0b37ab0ca8cd9f0848cbc3c5d9e69e4640a8b261d7ced592eae9bcb0e0b63c05a56e7c477f44e

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\gmp-widevinecdm\4.10.2710.0\widevinecdm.dll

Filesize
17.8MB

MD5
daf7ef3acccab478aaa7d6dc1c60f865

SHA1
f8246162b97ce4a945feced27b6ea114366ff2ad

SHA256
bc40c7821dcd3fea9923c6912ab1183a942c11b7690cfd79ed148ded0228777e

SHA512
5840a45cfdb12c005e117608b1e5d946e1b2e76443ed39ba940d7f56de4babeab09bee7e64b903eb82bb37624c0a0ef19e9b59fbe2ce2f0e0b1c7a6015a63f75

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\prefs-1.js

Filesize
10KB

MD5
641c2a9c38eb59fef8dcc9aea41ed86f

SHA1
d46422667f9b7ed59adf7128470dbdffe783cb53

SHA256
681550b1b4b54848c40aa7e3ba9ec19ccd871cd07e92896eac45475b172ff7ca

SHA512
ac3e502f2ea9ed31e604047297cc7056c41c2af14223793cc325292321c2a8edb1ec2b84f36b96d9963cc9e4d1c7fec63b170eb999a5affd83bdc63663c21a17

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\prefs-1.js

Filesize
11KB

MD5
cf766c37b6db7e175fd4fb03eb0c4b0c

SHA1
e9eaae60982d76a3639b80f8efa42cba1b2e7b95

SHA256
e0b8d59f3a8a89d17e7e2ad6d23a45b042b0a37917de2fc38016c994cf7ab5fe

SHA512
d85fe5f3b06ed54aa8c127ed6d1459fc4b53a98569f6e5d4bac839ea09b55f40fc4d14be7c1c351a7bcb66d88e9025a8213fd45ab295b97263cb0dfa18a781e6

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\prefs.js

Filesize
10KB

MD5
7437ca910e09c8d16770c88c5edd7f59

SHA1
44ece7a2e7e566ff415da20af3f4a98dd9a68232

SHA256
a5c970f2f42764133ca214ceb9c1fdd817f2c60700970de0db778f2f0e4e6a20

SHA512
22bcf31480202db6153b11936de5794950e768931b20b5c0bcf484e1f199ee691b0382806b5414b85d6ab94263a995d4484a8e032993ba4794f929e7ee2a5292

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\prefs.js

Filesize
10KB

MD5
b8aec1961f90cce5ea46ebc214785384

SHA1
5a83741f16f151d8793b38c6ac1338e95d5d6359

SHA256
1c5dde1c27e40d8ef56e374e3ff28fdce419b2b24f28a6e704dc8040194feb8a

SHA512
80991f1a71d05833c95b7a7d02311e9a2c1b38557fe45bbcdb8056453d4242543448203f258a86a7dd220d1d76ceeda51107cace730385867dedc220c1ee5f1c

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\sessionstore-backups\recovery.baklz4

Filesize
8KB

MD5
d8f918bf0ce04a2fac2202683233b7ef

SHA1
6beccf20275a91af4e69e6ea05edfc7debdcdbbd

SHA256
2fafbdbb97ed207cb025a877e7e5e249bd30b38c63ce96f7489d870ca7833941

SHA512
b029337ca3ce70d804e5caf4353f28121dd51cc2a07a6c9b992c5e6315beb9a6236d762e0b5e6039ffbfc6e08ce385325739dc8de9477dcfa15d6777382ceee8

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\sessionstore-backups\recovery.baklz4

Filesize
5KB

MD5
a69b2b08da5dd5a6de2a3d15b27c59f5

SHA1
2f902e2b96dd0661abe05b77f5ef200d702e0323

SHA256
06faf0d386cdddb5e7714202ad496d4cf7a05cb6df9efe0d410daaa9c4729072

SHA512
dca60fc88ac0dbf14cfac16c6936ea4a7f5e37f3110d26f3ec8c0fa71ef75de0bf6d27f2238f59289721951a65deb3424714ef5365a5be234ed3842f734c5d1e

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\sessionstore-backups\recovery.baklz4

Filesize
8KB

MD5
cd14f3f8ce150b8b3044f6ad8841e3a9

SHA1
fe79c659ebcae41ad4799d017a90ae44227cb3b8

SHA256
ff5f44d3831f90b39f515cce9242b0501a7f7a17fe71510540fc3ce3316f4701

SHA512
0f16600db03ab77499159b1f0300541c30ff8a43e05df4379ed1ce8b426cc9343a8721d13d019572cd25436145654ba4023c422fc1f426545104fffa2053dee9

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\sessionstore-backups\recovery.baklz4

Filesize
8KB

MD5
2585e43eca28ca3fc35662282a943957

SHA1
703782924efc8969558349fe6698d6b7df02b368

SHA256
cd2de94dbf689e20476e3d9e1a8961e9e38f4dcbff8d33285222a64effc45c6b

SHA512
0827da7b30f2f82c8298965fc257e3b54bba0f7123446e9e4a8734f54ac4c112f0a7769bde93f728566f3b5a75771fe051588b3c7c0b3f422f6cba4478ba7fba

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\sessionstore-backups\recovery.baklz4

Filesize
8KB

MD5
d35eb3ad2a668d34b38aded334227169

SHA1
eafe2134e7c3a96d26f15d002b0a01a14e94944f

SHA256
3040a05a9ecaba7a112d2a98648067b254c4da50a887c30e6201b41632de1cef

SHA512
4c85ee65b80e8f1589bbb430bd6c1ff7c52b52c0ad3f4b1e178aed45309bacd603b9d1f7948329f6374e98a9b2b26979caed88e13601f62c154ca238b17d0bd2

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\sessionstore-backups\recovery.baklz4

Filesize
5KB

MD5
8ddaab9e5b6c2ed3a693084f92eec784

SHA1
8f8a07ffb7dd4be3f84cebbb54c56120de661e0d

SHA256
f57fe110966f10a099f14a09fd98d77a44fadbbc7ac07a29eb8e2eebe82dfc18

SHA512
1df8de9f258bfd478dbf0dabc6b15d7602816d834b660205be663f131943a39eff6a093c8d3f09b93421114d044ca3614295169b21c82749d24e51ec79e5915f

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\storage\default\https+++en.softonic.com\idb\556220133rrae_su.sqlite

Filesize
48KB

MD5
23c4888580ea59a20bddfb02c6daadc8

SHA1
4472b8dc4721315479b418ae1a7ac59613164edb

SHA256
dd4da0cf3e5b133983f3fddd1a689b0d5d1cbbeaac9de8b738b9b0e96b657ef3

SHA512
431e4f560654b3a959775c538541d677b3a6194f35cd3c655c568157269aa8e003a7423af8e82c898e87d1988c81ae5dcbf8e71ad8043083a3203a458941a402

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\maevrvll.default-release\storage\default\https+++www.googletagmanager.com^partitionKey=%28https%2Csoftonic.com%29\cache\morgue\79\{9ce82cd2-215d-4aec-a8b5-115165034b4f}.final

Filesize
10KB

MD5
41540da2f4b17b952c6ffc1a702a7103

SHA1
85898c0b3d091504ec626d06ef015eb53acfdd20

SHA256
ff8417966e5a911093d8d682ba7e7dec2c9d94c6534c33f2ae9af21d2a1656ba

SHA512
d8f229857a797f4f653c3696330e59a9c70c361ed900af65fe7c23bbaf51d09380450287b2d4494b56d148af22c7817ed67443092925e5a352b6fc573c5110c6

Download Submit