Analysis Overview
Threat Level: Known bad
The file http://doxbin.com was found to be: Known bad.
Malicious Activity Summary
Detected google phishing page
A potential corporate email address has been identified in the URL: [email protected]
Legitimate hosting services abused for malware hosting/C2
Browser Information Discovery
Enumerates system info in registry
Suspicious use of FindShellTrayWindow
Modifies registry class
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2025-01-09 18:11
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2025-01-09 18:11
Reported
2025-01-09 18:15
Platform
win11-20241023-en
Max time kernel
229s
Max time network
228s
Command Line
Signatures
Detected google phishing page
A potential corporate email address has been identified in the URL: [email protected]
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | discord.com | N/A | N/A |
| N/A | discord.com | N/A | N/A |
| N/A | discord.com | N/A | N/A |
Browser Information Discovery
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Mappings\S-1-15-2-993994543-2095643028-780254397-2751782349-1045596949-3142982554-3368930949 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Mappings\S-1-15-2-993994543-2095643028-780254397-2751782349-1045596949-3142982554-3368930949\DisplayName = "Chrome Sandbox" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Mappings\S-1-15-2-993994543-2095643028-780254397-2751782349-1045596949-3142982554-3368930949\Moniker = "cr.sb.cdmf5200eafd3ad904629cbb0f87a78a3c7211081fe" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Mappings\S-1-15-2-993994543-2095643028-780254397-2751782349-1045596949-3142982554-3368930949\Children | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\cr.sb.cdmf5200eafd3ad904629cbb0f87a78a3c7211081fe | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\cr.sb.cdmf5200eafd3ad904629cbb0f87a78a3c7211081fe\Children | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-4248760313-3670024077-2384670640-1000\{5E888560-1C04-48A3-BC37-77129ACDE1BA} | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument http://doxbin.com
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7fffd3533cb8,0x7fffd3533cc8,0x7fffd3533cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1936 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2072 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2648 /prefetch:8
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3208 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3236 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4624 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4860 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=4832 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5652 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5848 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5272 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3840 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2032 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5588 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6140 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6244 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2540 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6428 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=6640 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5464 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2028 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7060 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5988 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5276 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6244 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4880 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7124 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5860 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6560 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6176 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4956 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3492 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=media.mojom.MediaService --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --service-sandbox-type=mf_cdm --mojo-platform-channel-handle=6256 /prefetch:8
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7116 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5520 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2596 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,17954759780322416345,12576368289544266335,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6648 /prefetch:1
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | doxbin.com | udp |
| NL | 190.115.31.91:80 | doxbin.com | tcp |
| NL | 190.115.31.91:80 | doxbin.com | tcp |
| NL | 190.115.31.91:443 | doxbin.com | tcp |
| US | 8.8.8.8:53 | 60.153.16.2.in-addr.arpa | udp |
| RU | 185.129.100.100:443 | check.ddos-guard.net | tcp |
| GB | 172.165.61.93:443 | nav.smartscreen.microsoft.com | tcp |
| GB | 172.165.61.93:443 | nav.smartscreen.microsoft.com | tcp |
| GB | 172.165.61.93:443 | nav.smartscreen.microsoft.com | tcp |
| US | 104.18.10.207:443 | maxcdn.bootstrapcdn.com | tcp |
| US | 104.18.11.207:443 | maxcdn.bootstrapcdn.com | tcp |
| RU | 95.129.232.35:443 | cdn.doxbin.net | tcp |
| RU | 95.129.232.35:443 | cdn.doxbin.net | tcp |
| US | 8.8.8.8:53 | 35.232.129.95.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 104.18.11.207:443 | maxcdn.bootstrapcdn.com | tcp |
| US | 104.18.94.41:443 | challenges.cloudflare.com | tcp |
| US | 162.159.135.232:443 | discord.com | tcp |
| US | 162.159.135.232:443 | discord.com | tcp |
| US | 162.159.136.234:443 | remote-auth-gateway.discord.gg | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 104.19.229.21:443 | api.hcaptcha.com | tcp |
| US | 104.19.230.21:443 | api.hcaptcha.com | tcp |
| US | 95.100.195.181:443 | th.bing.com | tcp |
| US | 95.100.195.185:443 | th.bing.com | tcp |
| US | 95.100.195.185:443 | th.bing.com | tcp |
| US | 95.100.195.177:443 | th.bing.com | tcp |
| US | 204.79.197.237:443 | www2.bing.com | tcp |
| IE | 20.190.159.68:443 | login.microsoftonline.com | tcp |
| GB | 142.250.180.5:80 | mail.google.com | tcp |
| GB | 142.250.180.5:80 | mail.google.com | tcp |
| GB | 142.250.180.5:443 | mail.google.com | tcp |
| US | 8.8.8.8:53 | 5.180.250.142.in-addr.arpa | udp |
| BE | 66.102.1.84:443 | accounts.google.com | tcp |
| BE | 66.102.1.84:443 | accounts.google.com | udp |
| GB | 172.165.61.93:443 | nav.smartscreen.microsoft.com | tcp |
| GB | 13.87.96.169:443 | x.urs.microsoft.com | tcp |
| GB | 142.250.179.238:443 | play.google.com | tcp |
| GB | 142.250.179.238:443 | play.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.179.238:443 | play.google.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 95.100.195.177:443 | th.bing.com | tcp |
| GB | 128.116.119.4:443 | www.roblox.com | tcp |
| GB | 128.116.119.4:443 | www.roblox.com | tcp |
| GB | 2.18.190.79:443 | css.rbxcdn.com | tcp |
| GB | 2.18.190.79:443 | css.rbxcdn.com | tcp |
| GB | 2.18.190.79:443 | css.rbxcdn.com | tcp |
| GB | 2.18.190.79:443 | css.rbxcdn.com | tcp |
| GB | 2.18.190.79:443 | css.rbxcdn.com | tcp |
| GB | 2.18.190.79:443 | css.rbxcdn.com | tcp |
| GB | 2.18.190.78:443 | static.rbxcdn.com | tcp |
| GB | 2.18.190.77:443 | js.rbxcdn.com | tcp |
| GB | 2.18.190.77:443 | js.rbxcdn.com | tcp |
| GB | 2.18.190.77:443 | js.rbxcdn.com | tcp |
| GB | 2.18.190.77:443 | js.rbxcdn.com | tcp |
| GB | 2.18.190.77:443 | js.rbxcdn.com | tcp |
| GB | 2.18.190.77:443 | js.rbxcdn.com | tcp |
| GB | 2.18.190.79:443 | css.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | roblox.com | udp |
| US | 8.8.8.8:53 | images.rbxcdn.com | udp |
| GB | 2.18.190.79:443 | images.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 79.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | metrics.roblox.com | udp |
| GB | 128.116.119.4:443 | metrics.roblox.com | tcp |
| GB | 128.116.119.4:443 | metrics.roblox.com | tcp |
| IE | 18.66.171.6:443 | apis.rbxcdn.com | tcp |
| IE | 3.162.140.117:80 | crt.rootg2.amazontrust.com | tcp |
| IE | 13.224.68.12:443 | arkoselabs.roblox.com | tcp |
Files
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 7bed1eca5620a49f52232fd55246d09a |
| SHA1 | e429d9d401099a1917a6fb31ab2cf65fcee22030 |
| SHA256 | 49c484f08c5e22ee6bec6d23681b26b0426ee37b54020f823a2908ab7d0d805e |
| SHA512 | afc8f0b5b95d593f863ad32186d1af4ca333710bcfba86416800e79528616e7b15f8813a20c2cfa9d13688c151bf8c85db454a9eb5c956d6e49db84b4b222ee8 |
\??\pipe\LOCAL\crashpad_4684_KOKDOLDGRXPLFMQK
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 5431d6602455a6db6e087223dd47f600 |
| SHA1 | 27255756dfecd4e0afe4f1185e7708a3d07dea6e |
| SHA256 | 7502d9453168c86631fb40ec90567bf80404615d387afc7ec2beb7a075bcc763 |
| SHA512 | 868f6dcf32ef80459f3ea122b0d2c79191193b5885c86934a97bfec7e64250e10c23e4d00f34c6c2387a04a15f3f266af96e571bbe37077fb374d6d30f35b829 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 16a9c7d6a55a72204f0ebceb18c9ce39 |
| SHA1 | d2d3540df64bc51f8f582173853bf39b445e945a |
| SHA256 | 24accb606953209dbbe2fc0ee749e1b59b521e37c6e9b246fd97687efda6a84f |
| SHA512 | 542afaa0da317f94a4bbbc5ca9346411dccfd49f0d5efa1a75f9b2bb05f6e5947b3bc34ce123c1890341db05671db41bb7bf6d7324bce9d16c687d52e90c8c03 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 6348a1c2bd102432a49e4e04b216cba5 |
| SHA1 | 27328f6f9b46621bbe13e5f0d967a4f62803cd70 |
| SHA256 | 6fafb266e90960e31b04a6e7108e056f7a9be9b0c41dfb06ab5a2cdff43dba63 |
| SHA512 | da46059377f90e77550d6345270729eb6ef812b39a6f54b8350d2043c346fb524e32df4f6bac596b005352654752c239183f176768dd50963f246ba0e48d290a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 206702161f94c5cd39fadd03f4014d98 |
| SHA1 | bd8bfc144fb5326d21bd1531523d9fb50e1b600a |
| SHA256 | 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167 |
| SHA512 | 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 082fcf62500a548e06dfe53863f0b349 |
| SHA1 | e0e341c07e39830f357cba07190c687af5121048 |
| SHA256 | b5ecb2580f7aced18fb86e33d5f9698098414b2c5bfb7634db18b037d512575a |
| SHA512 | 084fc0e1383603428ab9b4ca6946eced93a7fa29133d3e50ee7e91e91d229c18008822ffb0a561af5886a7780a360583cbbc88365fc3e99461e3873d76c45cbc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 35356115f243f40079d838e6ca445eb6 |
| SHA1 | 4f5dc7b9beaf087c3264c4248603a4b855650b35 |
| SHA256 | 486b02025c26f2037e33471c512bb81907823965e03156ee3cb89e437fbf8038 |
| SHA512 | 071f62c594ed9825bfbe4cd974a54186c7b1093e0539a1bc79491271d49a8819acd5baa5da19013a61c5f50e63bc0bc8281fdd8c94c62f43e602b192032a1c23 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | bba8223e2ecb7c5c4f3c3e434f8c61a0 |
| SHA1 | 2cd65535b307486e58e79547d962b8c394fb1526 |
| SHA256 | 35bbb0b25edfc331a2c1bd30ca7b81042bd2b5e011d913323576286143404dda |
| SHA512 | 848f7134ccd500df8ea8d566436001491e380555fec7019fb6ccb2a1d230f68a416720e1ff823f6e407bc59b5e5b7a6fc058c80112ccc509f11bbe550644e7f9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | e22cc8fa9f27a17f19f66774fd7e01b0 |
| SHA1 | 49e2deefb83a50b8334aa4c51e4dfb85b6acf275 |
| SHA256 | 7ed4410aa3eb3134676485e30496dc3cf7dd083d845abcf5cfb97516806c096d |
| SHA512 | 286bdabf3c2997327feafbf04afd5818d024bf241beaffdfbd56105708a90b5724921793a606457ad22180cf77e78178d1f0304c7029ca744c037501e2dc8168 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | ac0cdb411daa2ba0d6b2e7a8cf72882b |
| SHA1 | e561df3363a662412dd9176667a26b54ffca1064 |
| SHA256 | 8d731b48470ebf40ae9303b879cf3389e1fbe0ad45cc860522b5f20c46316789 |
| SHA512 | df8021ebb7732bd6e0be8c3f1f124cd8c2b741434edc3355b1621ebb7997f2455e7d301409abc378865c33c39372efef80b7f5ebb7d41dd2f0b7d8b69c43bb8b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | f060fe0bdfcaf604b4fe566ab1931d67 |
| SHA1 | 12dd6bf978add5f9b6b50eed67b1936a60eae726 |
| SHA256 | 49c5814d6014d15f25e7d41b883e4dd1e216e75da480bb517fe2e6c3b07b3369 |
| SHA512 | 8db223f7bc8e3169c0171905c69777ccbc54ef5735cf6b7bb67b2fa77c9d0eb68fc93e4f4d3f0e3b0716f10d1411c1b353fedc0dc2e8fc6eb66634b614156d13 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5983ad.TMP
| MD5 | 130a2311a9c457ca9062b4eb310a887d |
| SHA1 | 5ceb3e976c68246b7847cdb280f0320d61cf4cb9 |
| SHA256 | 24f62c848f82c8e9a4342939284a136cbb3183edd156420ef4a5acbb800c9aa4 |
| SHA512 | a5734b464b3fc3ef65533c3c03423afeb43e4cff4670b5454097c580d36213d31ed21fcb094a7804e25ae9c7be030b5abde20936dfaf803b3290fb9c52677c05 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 478ef8beaac0b1dbb5f3bfd579a81313 |
| SHA1 | 51cfd0760b3af6c628b82bda0892a832a59012e9 |
| SHA256 | 805279df4390db080db7535d34ddb7f76caf97a03f09ee2bb95b0b661365f994 |
| SHA512 | a66ff07fd6bc4394bb51ab543f77ac6c15e147f623b676580870b383190cff0c6e33c970b7045e0c56e15a6552ae6c34c5c9f5e7aa13f1e7c60021b9d265811b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | dc9578accae45f625d4a2795ba01daa5 |
| SHA1 | 0389c56fa6d889389be8c344885cd445c079f99e |
| SHA256 | feaa05502a9eaa30fed7a4771035816f6f431cbbf51591131fd3d8bc38426532 |
| SHA512 | 4fbfba84d6efd6fe7426fe2de12eada029476920b6474aafccbf2abe989e39335864a06d5c704a787e2b872741ff96efdab1310e76e2870ac663460bdc13fb13 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | e4fcebe98f8ae6fb33ef8a1fae39bade |
| SHA1 | bc2471a7814adaf25b93bda27ee33f10836931e7 |
| SHA256 | db4336771b08f3037c78897e897390668b35f6d5a765e4461ca35f3de6d44238 |
| SHA512 | d4cbccba091a0a1557e6a9014a8bd58b3f7002b15697d93eb131e0923da111a5dda8e9484480c83351c10ffcabad224d2c1182ec0bd092679eec397640c346d2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 36bb67a475cca7416139e9db233af48a |
| SHA1 | 7dab0ac15bd63633acd247d2ade5327696e149b0 |
| SHA256 | 6e8a9599f9e6a4a32abe23d84f270e50945a5ab7a25e517f1485c196622f7bbe |
| SHA512 | 2ee6527e8c813a45e52de29a7e2048ced00b85026c8f8c0d1625fb2a3c1a7523a64404910649561611055a20c2fd53abeaad6841c6fc26588f167e46b8ef94d2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 13d2397631f570c0386cf441bc46c7ec |
| SHA1 | 831c55d6f415126b5a925c650ade0b3e20c5001d |
| SHA256 | 2dc3e9c9f117e1d37c800544a5211dd959774190b7a568aee3daea0604d81c56 |
| SHA512 | 80d486c1550bc5bdf570d1500a164fac3afaae91b0d9192914ea21a29158698d24e81de5a36f1d941b67a54f9a407635f6cd56c770683c2eebc342a3db16876a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | eb02e50a877975063bb6070bef955d72 |
| SHA1 | 14887ad987cfda6c92e6f3a41f57ec1a8987caf9 |
| SHA256 | 3bbaf8e19836d7d1b80c389cc4d307ab24355d19b2e6e2c3d605dc42228647bd |
| SHA512 | 0379ca11743dc85cf359fb62de8ff294a2e6460fe3047fda034ca811a3cd987343df67e98db1398c9ab16eb9b665590bccdd1affec03ce52e5ff39f03ef7d16a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 32b98e41b613c957d298f7029f2d5e86 |
| SHA1 | 5be0c2e3f5b4a3eea5262b05dbe3ed6629c237ef |
| SHA256 | e63a549f0b1a92ec7d2025d103becb55e87172636c61c3cb3dfa8c423d4fbad7 |
| SHA512 | 489b06dc7fa1a97eff92d39d10c1ed9bc43cfce97d1748feaa6302c2c15a2905cc08d4591662a7b93c08a01fb910104cfbdc11f1e46e596cf36a7b59f335f57a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | e6bcadd0cf1bc73ebae3ce9d7eb8b3dd |
| SHA1 | 93b925ba15f1099713174007d875f3f30e086996 |
| SHA256 | 53b22497455bdb0af28d5fc81398ca35c123ace006f5ca31567206ac98adcb51 |
| SHA512 | 58bfd64a562efc690a139400adc0d2dce84072de15f1956b7df3be514d380efaed34b804fb289913f319856eccbec010a0f5ef7d5ca80b59d3aac4e18985f1f7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | fb90ac2e69ed618ab668995151850374 |
| SHA1 | dc4fa2c70d524fdb8bd1e35e119544fc11a99fbf |
| SHA256 | 8b2b6856be121a48cbdb8b228a9b53b21796e0bf60d25a806379de264f77c9a5 |
| SHA512 | c3d292b9f910c44359548fbc414c964a916c13ed63d3224b1a65aa319bdda398cd82974ea34bc28130986fb1add88e64f1f6bf14c73c61e1744abbc7bc34e31a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000025
| MD5 | 3b06aa689e8bf1aed00d923a55cfdd49 |
| SHA1 | ca186701396ba24d747438e6de95397ed5014361 |
| SHA256 | cd1569510154d7fa83732ccf69e41e833421f4e5ec7f70a5353ad07940ec445c |
| SHA512 | 0422b94ec68439a172281605264dede7b987804b3acfdeeb86ca7b12249e0bd90e8e625f9549a9635165034b089d59861260bedf7676f9fa68c5b332123035ed |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000026
| MD5 | 2e86a72f4e82614cd4842950d2e0a716 |
| SHA1 | d7b4ee0c9af735d098bff474632fc2c0113e0b9c |
| SHA256 | c1334e604dbbffdf38e9e2f359938569afe25f7150d1c39c293469c1ee4f7b6f |
| SHA512 | 7a5fd3e3e89c5f8afca33b2d02e5440934e5186b9fa6367436e8d20ad42b211579225e73e3a685e5e763fa3f907fc4632b9425e8bd6d6f07c5c986b6556d47b1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000024
| MD5 | d6b36c7d4b06f140f860ddc91a4c659c |
| SHA1 | ccf16571637b8d3e4c9423688c5bd06167bfb9e9 |
| SHA256 | 34013d7f3f0186a612bef84f2984e2767b32c9e1940df54b01d5bd6789f59e92 |
| SHA512 | 2a9dd9352298ec7d1b439033b57ee9a390c373eeb8502f7f36d6826e6dd3e447b8ffd4be4f275d51481ef9a6ac2c2d97ef98f3f9d36a5a971275bf6cee48e487 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000027
| MD5 | 226541550a51911c375216f718493f65 |
| SHA1 | f6e608468401f9384cabdef45ca19e2afacc84bd |
| SHA256 | caecff4179910ce0ff470f9fa9eb4349e8fb717fa1432cf19987450a4e1ef4a5 |
| SHA512 | 2947b309f15e0e321beb9506861883fde8391c6f6140178c7e6ee7750d6418266360c335477cae0b067a6a6d86935ec5f7acdfdacc9edffa8b04ec71be210516 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b797eca479a0b4d5e23893cb89cc35f2 |
| SHA1 | 5ef324d9d920726be638d8160433649e0d76d54e |
| SHA256 | 0193c049c4024b9908a1e450c9b8a0dc2fa8de13a65f59684e6083f04b8e7b75 |
| SHA512 | 2ed6d0af2627cdd1e14752e2a1fbd315bb0646e0babea634a367fd7a08dfa39a42ab1d091104864375e1e8dd3946e86ef7478a74794ea92cd0b5b41a6e155095 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 168f59d3f043da0b9dc3427db2d96009 |
| SHA1 | 00951a32a7c791c50bcc6d765df1966857012626 |
| SHA256 | a077519b6d15cabf184cf09114e56a34e47e86c97c28a1e1c4efc2d22551914b |
| SHA512 | 2747aa99c772f9b579de54cbcfc0f669415811475655a231d4fc4d3d9daf4e7d80a202ba1f0b8d39cb595d3f1d0b054f5bc1826a274aae693127427e714e2b6d |
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
| MD5 | f3b25701fe362ec84616a93a45ce9998 |
| SHA1 | d62636d8caec13f04e28442a0a6fa1afeb024bbb |
| SHA256 | b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209 |
| SHA512 | 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 0c52881a72c1fe6df3eccd4c6e53b3bd |
| SHA1 | 93b185339c2a4e46eaff1fd61ed637f7b025ded3 |
| SHA256 | 2b3d158ebfb590b6dc9e6d51221547afa38a961e53653b3546da330f10b28cb9 |
| SHA512 | 6a121b4eead9779d729a136694417acb6f0f51a82e469426b60d406fa59eb29e8f88840d751dd0fb207fca76e695a1daf8458aa69182161f935f333f121f1fb4 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 876837418d1681030aea9650e6f38814 |
| SHA1 | 46e8acdd9eac7cf817809635c0041394a608f7b1 |
| SHA256 | f5bcfe44375b324466eb71c0a80238b9c83854e98281c06688b641184bb5240c |
| SHA512 | 0853ed4b730bf8201b9ad66e6008eb63707917f2617e3a62c24b4b3299a7c50e62cf1166d6c4c5fe53a572edbe8ce53b1ccc173732359612ce7173983f44d889 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | d111a877905c778b4de12dba1d5cb9fb |
| SHA1 | 73eaa46c7e38bf399dcc56e84f8cebc707a3ef96 |
| SHA256 | 8ffbb1d7dad2e68a3f3c6d35a255e1d2773cf81fc6ccdcb3a9bf3bdebacf958a |
| SHA512 | 5766df06fc1e6c1db96802a56229240e28f3ac0c7326c07bf2727a721ed85d1fab827c57070c4dd141ef08166ed57bf234702149bda3bdab86ce4e27d653864b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | e9289b07d839ce4c2f4550130d63a073 |
| SHA1 | 386a107512f9ce8942c383f8d49518b7a9dd0979 |
| SHA256 | b0d3319748bbf19e5dd8f3b51fd0cf00a3bdb3e64b0996af10639b80fb5e9dcd |
| SHA512 | 85ee67a6cc2bd22b5d74852b81546efa0fc0053b8c00e6837eb7f6b075a43fc6d0687efdc2ecb4af911080a6d30271e51435b7d26967460df9e8187b39eaf162 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 6d864ce0b9845d99ee129640f93bc1a8 |
| SHA1 | 2846aeb3f9eaeeb709b2090d794cb0fffc359977 |
| SHA256 | 733ba9b07219c3f08c85abb7ecad2be93acc1adf7c1ab1822502528d6439563c |
| SHA512 | 1d52f324a1454788e2058787de4ed48acc7bdc709d26698e831818068790a9a9a089bcceb0ef355ecde2bd7bf9fdcbf366e3673f58d28a806455dca520b68c38 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 837849a0ccde47c0846bc773c3010770 |
| SHA1 | cb70954fdc39e230ef14bdd2e86bd357958cdac7 |
| SHA256 | d2a31b46a68a1d2aa857c1726df3ba14ff45adda1286c907a2d68beb5276bb2d |
| SHA512 | de9bba648d8d41a89b95f1c14e2b401afc49c201c9212b0c0f8a1f681e6d65f2bcd18a096f9308d973e1fa8bd9b9bc177c315a342b2a2f75c577135f24316e40 |