hxxps://jontrawolta[.]ct8[.]pl/winAPI[.]exe

Resubmissions

14/03/2025, 19:12

250314-xwvjnsxtex 6

31/07/2024, 14:28

240731-rs7ryaserb 8

31/07/2024, 14:07

240731-re9z5s1hnc 10

Analysis

max time kernel
443s
max time network
905s
platform
windows11-21h2_x64
resource
win11-20250314-en
resource tags

arch:x64arch:x86image:win11-20250314-enlocale:en-usos:windows11-21h2-x64system
submitted
14/03/2025, 19:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://jontrawolta.ct8.pl/winAPI.exe

Score

6^/10

Malware Config

Signatures

Drops desktop.ini file(s) 3 IoCs

description	ioc	Process
File opened for modification	C:\Users\Public\desktop.ini	firefox.exe
File opened for modification	C:\Users\Public\Documents\desktop.ini	firefox.exe
File opened for modification	C:\Users\Admin\Documents\desktop.ini	firefox.exe

Checks processor information in registry 2 TTPs 20 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe

Suspicious use of AdjustPrivilegeToken 6 IoCs

description	pid	Process
Token: SeDebugPrivilege	1404	firefox.exe
Token: SeDebugPrivilege	1404	firefox.exe
Token: SeDebugPrivilege	1404	firefox.exe
Token: SeDebugPrivilege	1404	firefox.exe
Token: SeDebugPrivilege	1404	firefox.exe
Token: SeDebugPrivilege	1404	firefox.exe

Suspicious use of FindShellTrayWindow 22 IoCs

pid	Process
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe

Suspicious use of SetWindowsHookEx 4 IoCs

pid	Process
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe
1404	firefox.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4372 wrote to memory of 1404	4372	firefox.exe	81
PID 4372 wrote to memory of 1404	4372	firefox.exe	81
PID 4372 wrote to memory of 1404	4372	firefox.exe	81
PID 4372 wrote to memory of 1404	4372	firefox.exe	81
PID 4372 wrote to memory of 1404	4372	firefox.exe	81
PID 4372 wrote to memory of 1404	4372	firefox.exe	81
PID 4372 wrote to memory of 1404	4372	firefox.exe	81
PID 4372 wrote to memory of 1404	4372	firefox.exe	81
PID 4372 wrote to memory of 1404	4372	firefox.exe	81
PID 4372 wrote to memory of 1404	4372	firefox.exe	81
PID 4372 wrote to memory of 1404	4372	firefox.exe	81
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 5436	1404	firefox.exe	82
PID 1404 wrote to memory of 4956	1404	firefox.exe	83
PID 1404 wrote to memory of 4956	1404	firefox.exe	83
PID 1404 wrote to memory of 4956	1404	firefox.exe	83
PID 1404 wrote to memory of 4956	1404	firefox.exe	83
PID 1404 wrote to memory of 4956	1404	firefox.exe	83
PID 1404 wrote to memory of 4956	1404	firefox.exe	83
PID 1404 wrote to memory of 4956	1404	firefox.exe	83
PID 1404 wrote to memory of 4956	1404	firefox.exe	83

Uses Task Scheduler COM API 1 TTPs
The Task Scheduler COM API can be used to schedule applications to run on boot or at set times.
persistence

Query Registry
T1012

C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "https://jontrawolta.ct8.pl/winAPI.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:4372
- C:\Program Files\Mozilla Firefox\firefox.exe
  "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url https://jontrawolta.ct8.pl/winAPI.exe
  2⤵
  - Drops desktop.ini file(s)
  - Checks processor information in registry
  - Suspicious use of AdjustPrivilegeToken
  - Suspicious use of FindShellTrayWindow
  - Suspicious use of SetWindowsHookEx
  - Suspicious use of WriteProcessMemory
  PID:1404
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc -parentBuildID 20250130195129 -prefsHandle 1972 -prefsLen 27097 -prefMapHandle 1976 -prefMapSize 270331 -ipcHandle 2016 -initialChannelId {359504c3-7a69-424a-b416-4ad2351efcfa} -parentPid 1404 -crashReporter "\\.\pipe\gecko-crash-server-pipe.1404" -appDir "C:\Program Files\Mozilla Firefox\browser" - 1 gpu
    3⤵
    PID:5436
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc -parentBuildID 20250130195129 -prefsHandle 2412 -prefsLen 27133 -prefMapHandle 2416 -prefMapSize 270331 -ipcHandle 2436 -initialChannelId {56fa1013-9c2f-4912-a0e0-a2e619f17245} -parentPid 1404 -crashReporter "\\.\pipe\gecko-crash-server-pipe.1404" -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - 2 socket
    3⤵
    PID:4956
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc -isForBrowser -prefsHandle 3852 -prefsLen 25164 -prefMapHandle 3856 -prefMapSize 270331 -jsInitHandle 3860 -jsInitLen 253512 -parentBuildID 20250130195129 -ipcHandle 3868 -initialChannelId {6d74a294-a12b-4ba1-bbc6-1a8c4b75f058} -parentPid 1404 -crashReporter "\\.\pipe\gecko-crash-server-pipe.1404" -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - 3 tab
    3⤵
    - Checks processor information in registry
    PID:4100
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc -parentBuildID 20250130195129 -prefsHandle 4052 -prefsLen 27274 -prefMapHandle 4056 -prefMapSize 270331 -ipcHandle 4108 -initialChannelId {55e4b842-ad80-45ab-9044-76ee4a424bf1} -parentPid 1404 -crashReporter "\\.\pipe\gecko-crash-server-pipe.1404" -appDir "C:\Program Files\Mozilla Firefox\browser" - 4 rdd
    3⤵
    PID:3700
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc -isForBrowser -prefsHandle 3020 -prefsLen 34773 -prefMapHandle 3128 -prefMapSize 270331 -jsInitHandle 3132 -jsInitLen 253512 -parentBuildID 20250130195129 -ipcHandle 3296 -initialChannelId {3eccf12e-ffec-4dc3-bbd4-79f61de48b64} -parentPid 1404 -crashReporter "\\.\pipe\gecko-crash-server-pipe.1404" -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - 5 tab
    3⤵
    - Checks processor information in registry
    PID:4432
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc -parentBuildID 20250130195129 -sandboxingKind 0 -prefsHandle 5056 -prefsLen 34929 -prefMapHandle 5060 -prefMapSize 270331 -ipcHandle 5068 -initialChannelId {89ff6a02-bbcf-4466-8878-a14541f4175e} -parentPid 1404 -crashReporter "\\.\pipe\gecko-crash-server-pipe.1404" -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - 6 utility
    3⤵
    - Checks processor information in registry
    PID:3316
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc -isForBrowser -prefsHandle 2928 -prefsLen 32913 -prefMapHandle 2852 -prefMapSize 270331 -jsInitHandle 2656 -jsInitLen 253512 -parentBuildID 20250130195129 -ipcHandle 2664 -initialChannelId {8b24b58b-5acb-44a1-ab32-c316325212f5} -parentPid 1404 -crashReporter "\\.\pipe\gecko-crash-server-pipe.1404" -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - 7 tab
    3⤵
    - Checks processor information in registry
    PID:1580
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc -isForBrowser -prefsHandle 5768 -prefsLen 32913 -prefMapHandle 5772 -prefMapSize 270331 -jsInitHandle 5776 -jsInitLen 253512 -parentBuildID 20250130195129 -ipcHandle 5784 -initialChannelId {1b8273fb-ae98-4d2e-bbbc-9ba4bbbcd13f} -parentPid 1404 -crashReporter "\\.\pipe\gecko-crash-server-pipe.1404" -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - 8 tab
    3⤵
    - Checks processor information in registry
    PID:3612
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc -isForBrowser -prefsHandle 5948 -prefsLen 32913 -prefMapHandle 5952 -prefMapSize 270331 -jsInitHandle 5956 -jsInitLen 253512 -parentBuildID 20250130195129 -ipcHandle 5960 -initialChannelId {039d01e9-28a2-49bc-82ad-219e68eff982} -parentPid 1404 -crashReporter "\\.\pipe\gecko-crash-server-pipe.1404" -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - 9 tab
    3⤵
    - Checks processor information in registry
    PID:1012
- - C:\Program Files\Mozilla Firefox\firefox.exe
    "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc -isForBrowser -prefsHandle 3272 -prefsLen 32975 -prefMapHandle 5952 -prefMapSize 270331 -jsInitHandle 5956 -jsInitLen 253512 -parentBuildID 20250130195129 -ipcHandle 908 -initialChannelId {11ba6a3c-99b9-4e56-9368-3c4d9c47304f} -parentPid 1404 -crashReporter "\\.\pipe\gecko-crash-server-pipe.1404" -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - 10 tab
    3⤵
    - Checks processor information in registry
    PID:5664

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\activity-stream.contile.json

Filesize
5KB

MD5
35d33f5fd08d780c35c7f385926add92

SHA1
8653b89915d393a4e28aec2af12c54e6023a6543

SHA256
a533d24ed280da4a85165ad03ee080e71053218fe57fb203ba640c574abdb840

SHA512
f839b53ef7bf9316ec5f3f5e94a7b2f1c1dad4f6e0819c128086724886c600d52946a7466ec7271e9ce416b99a03bb0b14b4dd3efe379afb436e9af4c92b6038

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\activity-stream.discovery_stream.json

Filesize
21KB

MD5
f25f0969a8fab4fa679cba9063af1a71

SHA1
3ba99396f0c8fdf050430a34481f3e71d52e17c6

SHA256
cd8665308c4a2fd441f275aec9491063b54868063d85b3b5f58207e459b9d2e7

SHA512
724564ab01c21f2aa111bf3c153621d6c193544633a7e7d84750ee3b4265e20c1932499e2fc119ee243eb38254253c6774a6cd3457a41d44c2fb6b26fe00c902

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\cache2\entries\2A136D7F6ACFFD4470A5D8E0B5BCDABDEABF4440

Filesize
13KB

MD5
4b69539debf368e2f5a4db8d583cc3a1

SHA1
9f7530f42470e1364a0216c218d4b0f5cfbf1099

SHA256
b7a0d91f63b36a8cb4a44153b923ce8139697418d47c947836d9423680f7f10f

SHA512
f006ba6744d12c5422afb3ad48f8ab9eda000a8e4be42d1b01137cbe48b004c2a7f904f40e790dbdc6ebcc5d73f595641a05ffeb254f324b13702ea2b2718ed0

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\cache2\entries\E19316B1CDA62317F9DA2551F9B56E711FCC77AD

Filesize
13KB

MD5
4f617e3697e4aa1f6f04926079f8de7c

SHA1
53f0dc6adda42cc13b48b0725787e6cae2420376

SHA256
718b623983175e7501a4852999be17f8dd7bcc7594f4338a93b459fed08a2734

SHA512
23ef9ac815e45b767d764fd7f9902d5ca3eefb1bc529e5eaac7355d2fc530fb827247031a25e41fdffc25c664ef9412dd3ed9e53db5aa86a8bd818ed3cfd5b8e

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_arts_and_entertainment.json

Filesize
67KB

MD5
6c651609d367b10d1b25ef4c5f2b3318

SHA1
0abcc756ea415abda969cd1e854e7e8ebeb6f2d4

SHA256
960065cc44a09bef89206d28048d3c23719d2f5e9b38cfc718ca864c9e0e91e9

SHA512
3e084452eefe14e58faa9ef0d9fda2d21af2c2ab1071ae23cde60527df8df43f701668ca0aa9d86f56630b0ab0ca8367803c968347880d674ad8217fba5d8915

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_autos_and_vehicles.json

Filesize
44KB

MD5
39b73a66581c5a481a64f4dedf5b4f5c

SHA1
90e4a0883bb3f050dba2fee218450390d46f35e2

SHA256
022f9495f8867fea275ece900cfa7664c68c25073db4748343452dbc0b9eda17

SHA512
cfb697958e020282455ab7fabc6c325447db84ead0100d28b417b6a0e2455c9793fa624c23cb9b92dfea25124f59dcd1d5c1f43bf1703a0ad469106b755a7cdd

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_beauty_and_fitness.json

Filesize
33KB

MD5
0ed0473b23b5a9e7d1116e8d4d5ca567

SHA1
4eb5e948ac28453c4b90607e223f9e7d901301c4

SHA256
eed46e8fe6ff20f89884b4fc68a81e8d521231440301a01bb89beec8ebad296b

SHA512
464508d7992edfa0dfb61b04cfc5909b7daacf094fc81745de4d03214b207224133e48750a710979445ee1a65bb791bf240a2b935aacaf3987e5c67ff2d8ba9c

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_blogging_resources_and_services.json

Filesize
33KB

MD5
c82700fcfcd9b5117176362d25f3e6f6

SHA1
a7ad40b40c7e8e5e11878f4702952a4014c5d22a

SHA256
c9f2a779dba0bc886cc1255816bd776bdc2e8a6a8e0f9380495a92bb66862780

SHA512
d38e65ab55cee8fef538ad96448cd0c6b001563714fc7b37c69a424d0661ec6b7d04892cf4b76b13ddbc7d300c115e87e0134d47c3f38ef51617e5367647b217

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_books_and_literature.json

Filesize
67KB

MD5
df96946198f092c029fd6880e5e6c6ec

SHA1
9aee90b66b8f9656063f9476ff7b87d2d267dcda

SHA256
df23a5b6f583ec3b4dce2aca8ff53cbdfadfd58c4b7aeb2e397eade5ff75c996

SHA512
43a9fc190f4faadef37e01fa8ad320940553b287ed44a95321997a48312142f110b29c79eed7930477bfb29777a5a9913b42bf22ce6bb3e679dda5af54a125ea

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_business_and_industrial.json

Filesize
45KB

MD5
a92a0fffc831e6c20431b070a7d16d5a

SHA1
da5bbe65f10e5385cbe09db3630ae636413b4e39

SHA256
8410809ebac544389cf27a10e2cbd687b7a68753aa50a42f235ac3fc7b60ce2c

SHA512
31a8602e1972900268651cd074950d16ad989b1f15ff3ebbd8e21e0311a619eef4d7d15cdb029ea8b22cf3b8759fa95b3067b4faaadcb90456944dbc3c9806a9

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_computers_and_electronics.json

Filesize
45KB

MD5
6ccd943214682ac8c4ec08b7ec6dbcbd

SHA1
18417647f7c76581d79b537a70bf64f614f60fa2

SHA256
ab20b97406b0d9bf4f695e5ec7db4ebad5efb682311e74ca757d45b87ffc106b

SHA512
e57573d6f494df8aa7e8e6a20427a18f6868e19dc853b441b8506998158b23c7a4393b682c83b3513aae5075a21148dd8ca854a11dabcea6a0a0db8f2e6828b8

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_finance.json

Filesize
33KB

MD5
e95c2d2fc654b87e77b0a8a37aaa7fcf

SHA1
b4b00c9554839cab6a50a7ed8cd43d21fdaf35dc

SHA256
384bf5fcc6928200c7ebb1f03f99bf74f6063e78d3cd044374448f879799318e

SHA512
9696998a8d0e3a85982016ff0a22bb8ae1790410f1f6198bb379c0a192579f24c75c25c7648b76b00d25a32ac204178acaccd744ee78846dfc62ebf70bf7b93a

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_food_and_drink.json

Filesize
67KB

MD5
70ba02dedd216430894d29940fc627c2

SHA1
f0c9aa816c6b0e171525a984fd844d3a8cabd505

SHA256
905357002f2eced8bba1be2285a9b83198f60d2f9bb1144b5c119994f2ec6e34

SHA512
3ae60d0bf3c45d28e340d97106790787be2cc80ba579d313b5414084664b86e89879391c99e94b6e33bdc5508ea42a9fd34f48ca9b1e7adfa7b6dd22c783c263

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_games.json

Filesize
44KB

MD5
4182a69a05463f9c388527a7db4201de

SHA1
5a0044aed787086c0b79ff0f51368d78c36f76bc

SHA256
35e67835a5cf82144765dfb1095ebc84ac27d08812507ad0a2d562bf68e13e85

SHA512
40023c9f89e0357fae26c33a023609de96b2a0b439318ef944d3d5b335b0877509f90505d119154eaa81e1097ecfb5aa44dd8bb595497cdecfc3ee711a1fe1d5

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_health.json

Filesize
33KB

MD5
11711337d2acc6c6a10e2fb79ac90187

SHA1
5583047c473c8045324519a4a432d06643de055d

SHA256
150f21c4f60856ab5e22891939d68d062542537b42a7ce1f8a8cec9300e7c565

SHA512
c2301ed72f623b22f05333c5ecc5ebf55d8a2d9593167cc453a66d8f42c05ff7c11e2709b6298912038a8ea6175f050bbc6d1fc4381f385f7ad7a952ad1e856b

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_hobbies_and_leisure.json

Filesize
67KB

MD5
bb45971231bd3501aba1cd07715e4c95

SHA1
ea5bfd43d60a3d30cda1a31a3a5eb8ea0afa142a

SHA256
47db7797297a2a81d28c551117e27144b58627dbac1b1d52672b630d220f025d

SHA512
74767b1badbd32cacd3f996b8172df9c43656b11fea99f5a51fff38c6c6e2120fae8bdd0dd885234a3f173334054f580164fdf8860c27cbcf5fb29c5bcdc060d

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_home_and_garden.json

Filesize
33KB

MD5
250acc54f92176775d6bdd8412432d9f

SHA1
a6ad9ad7519e5c299d4b4ba458742b1b4d64cb65

SHA256
19edd15ebce419b83469d2ab783c0c1377d72a186d1ff08857a82bca842eea54

SHA512
a52c81062f02c15701f13595f4476f0a07735034fcf177b1a65b001394a816020ee791fed5afae81d51de27630b34a85efa717fe80da733556fdda8739030f49

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_internet_and_telecom.json

Filesize
67KB

MD5
36689de6804ca5af92224681ee9ea137

SHA1
729d590068e9c891939fc17921930630cd4938dd

SHA256
e646d43505c9c4e53dbaa474ef85d650a3f309ccf153d106f328d9b6aeb66d52

SHA512
1c4f4aa02a65a9bbdf83dc5321c24cbe49f57108881616b993e274f5705f0466be2dd3389055a725b79f3317c98bdf9f8d47f86d62ebd151e4c57cc4dca2487c

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_jobs_and_education.json

Filesize
33KB

MD5
2d69892acde24ad6383082243efa3d37

SHA1
d8edc1c15739e34232012bb255872991edb72bc7

SHA256
29080288b2130a67414ecb296a53ddd9f0a4771035e3c1b2112e0ce656a7481a

SHA512
da391152e1fbce1f03607b486c5dea9a298a438e58e440ebb7b871bd5c62d7339b540eed115b4001b9840de1ba3898c6504872ff9094ba4d6a47455051c3f1c5

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_law_and_government.json

Filesize
68KB

MD5
80c49b0f2d195f702e5707ba632ae188

SHA1
e65161da245318d1f6fdc001e8b97b4fd0bc50e7

SHA256
257ee9a218a1b7f9c1a6c890f38920eb7e731808e3d9b9fc956f8346c29a3e63

SHA512
972e95de7fe330c61cd22111bd3785999d60e7c02140809122d696a1f1f76f2cd0d63d6d92f657cdec24366d66b681e24f2735a8aabb8bcecec43c74e23fb4f5

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_online_communities.json

Filesize
67KB

MD5
37a74ab20e8447abd6ca918b6b39bb04

SHA1
b50986e6bb542f5eca8b805328be51eaa77e6c39

SHA256
11b6084552e2979b5bc0fd6ffdc61e445d49692c0ae8dffedc07792f8062d13f

SHA512
49c6b96655ba0b5d08425af6815f06237089ec06926f49de1f03bc11db9e579bd125f2b6f3eaf434a2ccf10b262c42af9c35ab27683e8e9f984d5b36ec8f59fd

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_people_and_society.json

Filesize
45KB

MD5
b1bd26cf5575ebb7ca511a05ea13fbd2

SHA1
e83d7f64b2884ea73357b4a15d25902517e51da8

SHA256
4990a5d17bea15617624c48a0c7c23d16e95f15e2ec9dd1d82ee949567bbaec0

SHA512
edcede39c17b494474859bc1a9bbf18c9f6abd3f46f832086db3bb1337b01d862452d639f89f9470ca302a6fcb84a1686853ebb4b08003cb248615f0834a1e02

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_pets_and_animals.json

Filesize
44KB

MD5
5b26aca80818dd92509f6a9013c4c662

SHA1
31e322209ba7cc1abd55bbb72a3c15bc2e4a895f

SHA256
dd537bfb1497eb9457c0c8ecbd2846f325e13ddef3988fd293a29e68ab0b2671

SHA512
29038f9f3b9b12259fb42daa93cdefabb9fb32a10f0d20f384a72fe97214eff1864b7fa2674c37224b71309d7d9cea4e36abd24a45a0e65f0c61dc5ca161ec7c

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_real_estate.json

Filesize
67KB

MD5
9899942e9cd28bcb9bf5074800eae2d0

SHA1
15e5071e5ed58001011652befc224aed06ee068f

SHA256
efcf6b2d09e89b8c449ffbcdb5354beaa7178673862ebcdd6593561f2aa7d99a

SHA512
9f7a5fbe6d46c694e8bc9b50e7843e9747ea3229cf4b00b8e95f1a5467bd095d166cbd523b3d9315c62e9603d990b8e56a018ba4a11d30ad607f5281cc42b4cd

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_reference.json

Filesize
56KB

MD5
567eaa19be0963b28b000826e8dd6c77

SHA1
7e4524c36113bbbafee34e38367b919964649583

SHA256
3619daa64036d1f0197cdadf7660e390d4b6e8c1b328ed3b59f828a205a6ea49

SHA512
6766919b06ca209eaed86f99bee20c6dad9cc36520fc84e1c251a668bcfe0afcf720ea6c658268dc3bbaaf602bfdf61eb237c68e08d5252ea6e5d1d2a373b9fe

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_science.json

Filesize
56KB

MD5
7a8fd079bb1aeb4710a285ec909c62b9

SHA1
8429335e5866c7c21d752a11f57f76399e5634b6

SHA256
9606ce3988b2d2a4921b58ac454f54e53a9ea8f358326522a8b1dcc751b50b32

SHA512
8fc1546e509b5386c9e1088e0e3a1b81f288ef67f1989f3e83888057e23769907a2b184d624a4e4c44fcd5b88d719bd4cca94dfb33798804a721b8be022ec0c6

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_shopping.json

Filesize
67KB

MD5
97d4a0fd003e123df601b5fd205e97f8

SHA1
a802a515d04442b6bde60614e3d515d2983d4c00

SHA256
bfd7e68ddca6696c798412402965a0384df0c8c209931bbadabf88ccb45e3bb6

SHA512
111e8a96bc8e07be2d1480a820fc30797d861a48d80622425af00b009512aacb30a2df9052c53bfbf4ee0800b6e6f5b56daa93d33f30fecb52e2f3850dfa9130

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_sports.json

Filesize
56KB

MD5
ce4e75385300f9c03fdd52420e0f822f

SHA1
85c34648c253e4c88161d09dd1e25439b763628c

SHA256
44da98b03350e91e852fe59f0fc05d752fc867a5049ab0363da8bb7b7078ad14

SHA512
d119dc4706bbf3b6369fe72553cfacf1c9b2688e0188a7524b56d3e2ac85582a18bbee66d5594e0fb40767432646c23bf3e282090bd9b4c29f989a374aeae61f

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\nb_model_build_attachment_travel.json

Filesize
67KB

MD5
48139e5ba1c595568f59fe880d6e4e83

SHA1
5e9ea36b9bb109b1ecfc41356cd5c8c9398d4a78

SHA256
4336ac211a822b0a5c3ce5de0d4730665acc351ee1965ea8da1c72477e216dfa

SHA512
57e826f0e1d9b12d11b05d47e2f5ae4f5787537862f26e039918cb14faff4bc854298c0b7de3023e371756a331c0f3ee1aa7cebbbf94ec70cdfc29e00a900ed1

Download Submit
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\90bkg1w0.default-release\personality-provider\recipe_attachment.json

Filesize
1KB

MD5
be3d0f91b7957bbbf8a20859fd32d417

SHA1
fbc0380fe1928d6d0c8ab8b0a793a2bba0722d10

SHA256
fc07d42847eeaf69dcbf1b9a16eb48b141c11feb67aa40724be2aee83cb621b7

SHA512
8da24afcf587fbd4f945201702168e7cfc12434440200d00f09ddcd1d1d358a5e01065ac2a411fdf96a530e94db3697e3530578b392873cf874476b5e65d774a

Download Submit
C:\Users\Admin\AppData\Local\Temp\a79a8352-f5d2-4fe8-ad99-da8b52651392.zip

Filesize
3.6MB

MD5
8cc2f7351b378e8bcabc82e7e5d27dab

SHA1
7d31d948e23251ab772fdcdd398da65559f729d3

SHA256
d7e83df0a901ad537eef1bdac5717da3f9557739a79820e77e4d63cc6575488b

SHA512
0bf1a135c96b8f80e4d65071b816279cfe2f659f72898fa097f6b1e724ace81f400172dc2a87481862806c352cfb9d523ac83ca915d607a9b5bda2b1511ccca9

Download Submit
C:\Users\Admin\AppData\Local\Temp\remote-settings-startup-bundle-

Filesize
179KB

MD5
a87449fbeeb701ea22a13952e58b5893

SHA1
0ca561d381c9fb1c3c9f50d8524d1e280e58e0da

SHA256
ab18c5288e7284298c509da57752bb4c9585b62a87db81755ae17a255a839ac9

SHA512
6ef9d94945a72ff2ca433b8a2bed12ba9a283ea23f13cec98b0083e864673dc25e9baa0bbb95389be9b3b1b209f26cd9fd04cc1d9ed091bf9c27bb9e8dc8e576

Download Submit
C:\Users\Admin\AppData\Local\Temp\tmpaddon

Filesize
479KB

MD5
09372174e83dbbf696ee732fd2e875bb

SHA1
ba360186ba650a769f9303f48b7200fb5eaccee1

SHA256
c32efac42faf4b9878fb8917c5e71d89ff40de580c4f52f62e11c6cfab55167f

SHA512
b667086ed49579592d435df2b486fe30ba1b62ddd169f19e700cd079239747dd3e20058c285fa9c10a533e34f22b5198ed9b1f92ae560a3067f3e3feacc724f1

Download Submit
C:\Users\Admin\AppData\Local\Temp\tmpaddon

Filesize
13.8MB

MD5
3db950b4014a955d2142621aaeecd826

SHA1
c2b728b05bc34b43d82379ac4ce6bdae77d27c51

SHA256
567f5df81ea0c9bdcfb7221f0ea091893150f8c16e3012e4f0314ba3d43f1632

SHA512
03105dcf804e4713b6ed7c281ad0343ac6d6eb2aed57a897c6a09515a8c7f3e06b344563e224365dc9159cfd8ed3ef665d6aec18cc07aaad66eed0dc4957dde3

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\JVJT99HGOCPB8LW3XSM5.temp

Filesize
10KB

MD5
3376255a3b0fd33b74cb0e60d6b87d92

SHA1
425df8b764ef52e1002fa9bdb9f4e4ae78a5e899

SHA256
72e11008fe8a32b0e04bd36a2d776d79edad1e79f9a1473aad49ae1e652e2ee6

SHA512
5d20de513204552c1cf1e5d5a0c1b5d8d85aa64e093167bfe973c7fc531d6d1b023fd4dfd7cffecd711063c6096c0733d77c22f19538062f349cad8caa502519

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\bookmarkbackups\bookmarks-2025-03-14_10_3odrvykKn5eKeZbL-IZ1mZuiljY7HltrUZFZ9AygATw=.jsonlz4

Filesize
850B

MD5
b09be764361eb77ee3d6f25aa930832c

SHA1
df5b62374b717c948f44a62db135a7653d4e4806

SHA256
e2e72baf6eee9640353ba73e6418be623209f5b0be065dcb70197e78a735825a

SHA512
137966a7ed3d1dc0762c85a72b044be6c63793e2ad3aefd3316b304b0d3ebb891a5b07d0b3f1e8f4a468b5cfce96d3f03b5624200aac0dd525b66f902fe86028

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\datareporting\glean\db\data.safe.tmp

Filesize
36KB

MD5
6297c23e7ab080601159230c21357f58

SHA1
e343143f9b0e0fb5cca6b22e8a3e8d6c745533b8

SHA256
9b900390dda6cb2a494218771bc7fbf97b33485e009ac87c4e4b6a12192f2b35

SHA512
8c06c53f35a4a89793427936982c1d693763017ff7a95460dace290ccd981285164138d41c3294a29857c82fdab64286150650a26b2b56c744ac4564965dcc15

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\datareporting\glean\db\data.safe.tmp

Filesize
30KB

MD5
928f27de5cdc08e740c2ed819eb49efd

SHA1
b8fc005650c562fc8ce33fcef0bf4830964b86a6

SHA256
e6e293bc3c20471cb43ef24af3a533f3fb011103c89204cb8f92ffd7bde884e0

SHA512
01a6faeb305c5b3128e4b8e4d48e5e4e0071c4ca2e06e87e6871affd58e963ee26d219f7744d888c7786c5fde93d7849c8363305a8693f903b5f8a725ac9136e

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\datareporting\glean\db\data.safe.tmp

Filesize
36KB

MD5
dbf256e619174b3234421e68473a97f7

SHA1
d31bbd7eeb05c74b4b979119c1c3ddc4eb820ddd

SHA256
036d5d46c5894e297cb86b52fa8eb950003e2b14e7761a330cb34af787eef98f

SHA512
97a0ba7b4023c36f4f71bc9daa56cef9b4164d4bfafac8351d5f98d2d16fb3d243d0d75d79cadbe6888edeb5a0d0c0ba2d1f3a661bbc066fe218f6ae794374b5

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\datareporting\glean\db\data.safe.tmp

Filesize
29KB

MD5
d72fb355a86b25e0c81ee9811aab7f22

SHA1
97e669895b4dced96faadcac42d306f95d60ffc6

SHA256
b0b0392fcc11d12e60e0a242ec2038d154473ad96a86cad421d489bca4c66858

SHA512
aa4d15d0d223787e54dfa49bb0e88a4239e772844fae409b4c81e4b0d064ee1ec00753d05058da85efbd914fc86d320ca124f7053ef8b6663f415db7db04575a

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\datareporting\glean\events\events

Filesize
1KB

MD5
2edaa634e06406c4fb155ca386305305

SHA1
6c1b32d6f8b146a6d314beab0a047e915c2484bb

SHA256
7c42181cfe23d425f79b94d289801a7fcc04c42eda066fdda2611ad424212cf1

SHA512
5050a1efe64f399fdf1eee082bcceaea78404d403b94377bd05b620f63b65d58ab23252e44bca0b4d2fa24714e0c67b692ef8d5ccea1526a7a7bdae310db0f4a

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\datareporting\glean\pending_pings\0fad0ab1-28f3-4bd1-bda7-09527b517fb2

Filesize
235B

MD5
93d5313b57f1b88ae662c8662b8a2ce8

SHA1
896c5e9f4cb675478fb12f8ae2d23bb8317397da

SHA256
1f6c30d5c5351be9650cd2f9a6ededa4319eac7e7a0b911cdf82de14cc48f47c

SHA512
dd30df619e8f8a86ac538da0503c6821ea1047bc4635f2413f92e9277daad90f92ea68637a879558fa1a643c4fc120ac4dd50dbc5f6974c7d53ef01fdd433dad

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\datareporting\glean\pending_pings\5f3333db-7597-48e1-9b51-c3176351014e

Filesize
2KB

MD5
4406470ad72a3f1814f51deea1fcb845

SHA1
4118340a35e3b8f8cdd6ce97e6ed878d14c67d9a

SHA256
70ad2ec3d7b9c09e27a374a7c66c1621a80da22ff7184411057f2e2852cc9849

SHA512
cb8979e260a415f569f20699f16c3df3b4ba28eed2a90b0229a70064a83cbd1fbbdd3a260d5593b3419d08c8c005f1ebdc3b32058042be0875a21c78638bb199

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\datareporting\glean\pending_pings\8e13f3b5-27ae-4e4a-af9b-43e25ba31a7a

Filesize
871B

MD5
6bb91b84dfbd617f22db8b45e20073c4

SHA1
4c89aba401c3dd33baf907a6d7f069f47a853bd4

SHA256
31fe0de79a69c6ad966e29f6b0a7b5d7fa9553bc9975e224f4327513aea6cc53

SHA512
c9e4b471ebbfcdf33af67ccbfa35644edf233ebf6812c7e47ef4f6b25f787ddd1f2b91852797edacff832d1051a38c6361e417a955954808c16e4a281dafda1a

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\datareporting\glean\pending_pings\ad496916-a7c7-4952-9e7a-5ebca3ce5788

Filesize
886B

MD5
6a9d6c4c9ce14bb27b2d19bd4085b641

SHA1
68808901fd12b3cca86162f3aa0282a00742510c

SHA256
fce7553fddbcfb0d29b5b6c33438f5758cbf22d1679be9188db6e06ad1a2d8b3

SHA512
1aa4a7bdba082e43cd1cbc0235ddb73e3a83d022686a1b13ed3b5d08290898df08244cf784717060ae102a565757f71dcc03b22197225018d942f6fc643a30d2

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\datareporting\glean\pending_pings\bae313bd-1abd-4590-911b-0013e1271675

Filesize
235B

MD5
7322d48d729166bac2c45b38034d50b0

SHA1
79452a3a53771f85a062932a5d094d6ae8c48e23

SHA256
0cf9c2b070cab906e0d68eb1157759ed7169393fc411b86710dbf72af8261812

SHA512
5d7ffbf08d593fa41e7b962e3adb5a133957a720eca2fc4c0e9d699e88922034638c8c0765777d82e143686ed5687de72c4a1343615879af9d9c30deb7ae416a

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\extensions.json

Filesize
14KB

MD5
ac2ce2ac2f32aaea7b3ca8580ecbdd2b

SHA1
99905c370ecc7990ff2425291cf0f57398ee9d10

SHA256
2b60024cd376057a580e4e87925cb5af375d5139f60876bffc6c48aa2e1c753e

SHA512
cb3eaf1f31e82402d84c35319f710cd868f5fdb0b15c13219f287fe9d55fdeaf331e8e6a4e6149b76433a7e78bc7361b3efc18dadffc0392233b7c56fa5f9f33

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\gmp-gmpopenh264\2.3.2\gmpopenh264.dll

Filesize
1.1MB

MD5
842039753bf41fa5e11b3a1383061a87

SHA1
3e8fe1d7b3ad866b06dca6c7ef1e3c50c406e153

SHA256
d88dd3bfc4a558bb943f3caa2e376da3942e48a7948763bf9a38f707c2cd0c1c

SHA512
d3320f7ac46327b7b974e74320c4d853e569061cb89ca849cd5d1706330aca629abeb4a16435c541900d839f46ff72dfde04128c450f3e1ee63c025470c19157

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\gmp-gmpopenh264\2.3.2\gmpopenh264.info

Filesize
116B

MD5
2a461e9eb87fd1955cea740a3444ee7a

SHA1
b10755914c713f5a4677494dbe8a686ed458c3c5

SHA256
4107f76ba1d9424555f4e8ea0acef69357dfff89dfa5f0ec72aa4f2d489b17bc

SHA512
34f73f7bf69d7674907f190f257516e3956f825e35a2f03d58201a5a630310b45df393f2b39669f9369d1ac990505a4b6849a0d34e8c136e1402143b6cedf2d3

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\gmp-widevinecdm\4.10.2830.0\manifest.json

Filesize
1001B

MD5
2ff237adbc218a4934a8b361bcd3428e

SHA1
efad279269d9372dcf9c65b8527792e2e9e6ca7d

SHA256
25a702dd5389cc7b077c6b4e06c1fad9bdea74a9c37453388986d093c277d827

SHA512
bafd91699019ab756adf13633b825d9d9bae374ca146e8c05abc70c931d491d421268a6e6549a8d284782898bc6eb99e3017fbe3a98e09cd3dfecad19f95e542

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\gmp-widevinecdm\4.10.2830.0\widevinecdm.dll

Filesize
18.3MB

MD5
9d76604a452d6fdad3cdad64dbdd68a1

SHA1
dc7e98ad3cf8d7be84f6b3074158b7196356675b

SHA256
eb98fa2cfe142976b33fc3e15cf38a391f079e01cf61a82577b15107a98dea02

SHA512
edd0c26c0b1323344eb89f315876e9deb460817fc7c52faedadad34732797dad0d73906f63f832e7c877a37db4b2907c071748edfad81ea4009685385e9e9137

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\prefs-1.js

Filesize
6KB

MD5
602a051222c60cfafabbe2542b7f5951

SHA1
b62bf24edd601fc69a2bf8825852aad2206f1d3d

SHA256
265e8a1b9c5fe973c2f872c10e834978d4ddb6b8b32fd1c827460bee297ca3e9

SHA512
d9744e5cfac33885933b8c0c3b95699f0efd99368569b86d3804dba2177aafb977235dc431f09d555a611d3c6dbec29bfbf7005a2a7cbf6c7b3eb5359209f6cf

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\prefs-1.js

Filesize
7KB

MD5
51a7a193d244dd2222885344ef7c01db

SHA1
f7166c73a05be1a1e4f3e7a54f8265196772215e

SHA256
50088e8b690448991a61224a0bf82f77acbf1a3384e628c872e9a96ee8f01049

SHA512
b5d7d8dc9a880f6089e69eac94fda75e033c4f7c3b925b02d1711bd13deed9b3614a02dae6dadb0736e534733cff886408905ff795075f883e0a18ddcfa7e109

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\prefs-1.js

Filesize
11KB

MD5
c20a2a8aafb8f162ce05cfd118c1b9e9

SHA1
0a40c32661898cd19327833c854dd351a269e1fe

SHA256
a440bc9a63a98945edf9bd953533352e9ab3ddfd30bda3bc19a575db8fb2ea74

SHA512
e6939d6f3d840ffcfe903ac21e66c476cc93fa2a5ac7485698c4b377f2e03b5fb962d3d79c2486c7bcf6ac04bcec64b74ba7ec2e5fb202661f3f625bd9d51c38

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\sessionstore-backups\recovery.baklz4

Filesize
901B

MD5
90fb16525408de242b5adc65d7ce7f3f

SHA1
7bea662baa0ba3ef7e915799b585358f56f96c71

SHA256
0e6e467cc1a8abe23dbd1864a62ba47d63a473411a65791eff7ad88ec862a415

SHA512
150907ba9e9ea7772f54789c9f81135c38a6c8734f54afd47317e91f6f632083f8ebc7197f2421c8a85e5f751b8e74683756bd8c686d29ac86fdcef9f83e3527

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\sessionstore-backups\recovery.jsonlz4

Filesize
1KB

MD5
6296d4b7ba4a4fe6cf76477fba10141d

SHA1
d48ff45073a2450633064e1215c103703a90002e

SHA256
7dd245a1658d1e19bede6b3ba9db72325f3de0f9c87a902faf2df3a0a24e3a5d

SHA512
6406cda9bea46b3eb2af85ba75d209dcce188d0a85eff1c1501cf3181379631b5d6c17b9e880dc804706c1a35205fd271a73a57aa95dccea1a830ff5da81b418

Download Submit
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\90bkg1w0.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite

Filesize
3.5MB

MD5
3b0edba7601dccf5fe73661b1333775b

SHA1
188aa9c388925b279d76336f68519f23fb1ce4f1

SHA256
bb3dea799bae4aa138ae91c0dfd1753b9405828440723ba797e24ff9eb277404

SHA512
b67a631cfa4f3524a3d3086c15f2deed59e74523717f9af00d895ccdb6d420b27cc1426e9e9d495f8d9cca64ff8c0d86bc24e4aee0447a076dc4fe3567c5e99b

Download Submit