hxxp://roblox[.]com[.]by/communities/373152542824/TurtleStreak

Analysis

max time kernel
583s
max time network
528s
platform
windows11-21h2_x64
resource
win11-20250314-en
resource tags

arch:x64arch:x86image:win11-20250314-enlocale:en-usos:windows11-21h2-x64system
submitted
16/03/2025, 07:42

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

http://roblox.com.by/communities/373152542824/TurtleStreak

Score

4^/10

discovery

Malware Config

Signatures

Drops file in Windows directory 64 IoCs

description	ioc	Process
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-notification\ko\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-shared-components\pl\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\wallet\wallet-checkout\merchant-site-info.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\wallet-webui-992.268aa821c3090dce03cb.chunk.js	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-ec\fi\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-ec\zh-Hant\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-shared-components\de\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-tokenized-card\pt-BR\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\wallet-webui-792.b1180305c186d50631a2.chunk.js	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-mobile-hub\sv\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-shared-components\th\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\wallet-webui-708.de49febeeb0e9c77883f.chunk.js	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-mobile-hub\fr-CA\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-notification\ja\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-notification\pt-PT\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-notification-shared\el\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-shared-components\es\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-tokenized-card\sv\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\wallet\wallet-checkout-eligible-sites-pre-stable.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_2092317199\manifest.fingerprint	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\wallet\wallet-stable.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\wallet-webui-560.da6c8914bf5007e1044c.chunk.js	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-hub\cs\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-notification\ar\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\wallet\README.md	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\Wallet-BuyNow\wallet-buynow.bundle.js	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-notification\id\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-ec\pt-BR\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-hub\nl\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-shared-components\it\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\wallet\wallet-pre-stable.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1844895517\LICENSE	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-hub\id\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-shared-components\en-GB\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\wallet-webui-227.bb2c3c84778e2589775f.chunk.js	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1844895517\manifest.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-ec\fr\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-hub\ja\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-mobile-hub\ja\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\Tokenized-Card\tokenized-card.html	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-ec\en-GB\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-hub\el\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-notification-shared\ru\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-tokenized-card\de\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\wallet\wallet-checkout-eligible-sites.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\Tokenized-Card\tokenized-card.bundle.js.LICENSE.txt	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-hub\de\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\Notification\notification_fast.html	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_2092317199\edge_confirmation_page_validator.js	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-ec\es\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-ec\ja\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-notification-shared\ja\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\webui-setup.js	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\wallet\wallet-tokenization-config.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-mobile-hub\nl\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-notification-shared\de\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-notification-shared\en-GB\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-tokenized-card\fr-CA\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1844895517\sets.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-shared-components\ru\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-tokenized-card\ar\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-tokenized-card\zh-Hans\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-ec\zh-Hans\strings.json	msedge.exe
File created	C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-notification-shared\fi\strings.json	msedge.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe

Modifies data under HKEY_USERS 3 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	msedge.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133865845856570135"	msedge.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	msedge.exe

Modifies registry class 4 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1f3427c8-5c10-4210-aa03-2ee45287d668}\Instance\	msedge.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1678082226-3994841222-899489560-1000\{8F84F3FC-5B90-4368-A5E9-ED8BEE55122C}	msedge.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1f3427c8-5c10-4210-aa03-2ee45287d668}\Instance\	msedge.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-1678082226-3994841222-899489560-1000\{FA6CB5BE-2993-46BE-981E-648DA703F109}	msedge.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
468	msedge.exe
468	msedge.exe
2432	msedge.exe
2432	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 15 IoCs

pid	Process
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe

Suspicious use of FindShellTrayWindow 26 IoCs

pid	Process
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe

Suspicious use of SendNotifyMessage 12 IoCs

pid	Process
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe
1388	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1388 wrote to memory of 4404	1388	msedge.exe	82
PID 1388 wrote to memory of 4404	1388	msedge.exe	82
PID 1388 wrote to memory of 5080	1388	msedge.exe	83
PID 1388 wrote to memory of 5080	1388	msedge.exe	83
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 924	1388	msedge.exe	84
PID 1388 wrote to memory of 4816	1388	msedge.exe	85
PID 1388 wrote to memory of 4816	1388	msedge.exe	85
PID 1388 wrote to memory of 4816	1388	msedge.exe	85
PID 1388 wrote to memory of 4816	1388	msedge.exe	85
PID 1388 wrote to memory of 4816	1388	msedge.exe	85
PID 1388 wrote to memory of 4816	1388	msedge.exe	85
PID 1388 wrote to memory of 4816	1388	msedge.exe	85
PID 1388 wrote to memory of 4816	1388	msedge.exe	85
PID 1388 wrote to memory of 4816	1388	msedge.exe	85

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument http://roblox.com.by/communities/373152542824/TurtleStreak
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Modifies registry class
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1388
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=133.0.6943.99 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=133.0.3065.69 --initial-client-data=0x240,0x244,0x248,0x23c,0x2b0,0x7ffad303f208,0x7ffad303f214,0x7ffad303f220
  2⤵
  PID:4404
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --string-annotations --always-read-main-dll --field-trial-handle=1880,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=2448 /prefetch:11
  2⤵
  PID:5080
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --string-annotations --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --always-read-main-dll --field-trial-handle=2420,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=2416 /prefetch:2
  2⤵
  PID:924
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --string-annotations --always-read-main-dll --field-trial-handle=2472,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=2148 /prefetch:13
  2⤵
  PID:4816
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --always-read-main-dll --field-trial-handle=3376,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=3408 /prefetch:1
  2⤵
  PID:5004
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --always-read-main-dll --field-trial-handle=3384,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=3416 /prefetch:1
  2⤵
  PID:5096
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --always-read-main-dll --field-trial-handle=4804,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=4816 /prefetch:1
  2⤵
  PID:1768
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4628,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=5060 /prefetch:14
  2⤵
  PID:1628
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-US --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4984,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=3440 /prefetch:14
  2⤵
  PID:784
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.ProfileImport --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5616,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=5628 /prefetch:14
  2⤵
  PID:572
- - C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\cookie_exporter.exe
    cookie_exporter.exe --cookie-json=1128
    3⤵
    PID:2136
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=PooledProcess2 --lang=en-US --service-sandbox-type=utility --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5640,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=5416 /prefetch:14
  2⤵
  PID:1444
- C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5840,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=5816 /prefetch:14
  2⤵
  PID:3164
- C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5840,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=5816 /prefetch:14
  2⤵
  PID:5880
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --always-read-main-dll --field-trial-handle=3456,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=5776 /prefetch:1
  2⤵
  PID:4552
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --instant-process --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --always-read-main-dll --field-trial-handle=6080,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=4928 /prefetch:1
  2⤵
  PID:2352
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=PooledProcess2 --lang=en-US --service-sandbox-type=utility --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6504,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=6460 /prefetch:14
  2⤵
  PID:4052
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6452,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=568 /prefetch:14
  2⤵
  PID:756
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6528,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=5880 /prefetch:14
  2⤵
  PID:6036
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6424,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=6848 /prefetch:14
  2⤵
  PID:488
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --always-read-main-dll --field-trial-handle=4848,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=6828 /prefetch:1
  2⤵
  PID:1720
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --always-read-main-dll --field-trial-handle=7336,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=7332 /prefetch:1
  2⤵
  PID:5920
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6392,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=5124 /prefetch:14
  2⤵
  PID:4384
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --always-read-main-dll --field-trial-handle=6932,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=2956 /prefetch:1
  2⤵
  PID:1784
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --always-read-main-dll --field-trial-handle=5004,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=7536 /prefetch:1
  2⤵
  PID:5396
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6832,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=7028 /prefetch:14
  2⤵
  PID:3952
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --always-read-main-dll --field-trial-handle=7156,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=6308 /prefetch:1
  2⤵
  PID:4264
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --always-read-main-dll --field-trial-handle=7444,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=7396 /prefetch:1
  2⤵
  PID:4600
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --always-read-main-dll --field-trial-handle=7480,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=6544 /prefetch:1
  2⤵
  PID:2692
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --always-read-main-dll --field-trial-handle=7116,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=4872 /prefetch:1
  2⤵
  PID:5408
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --always-read-main-dll --field-trial-handle=7412,i,13905385139353320283,319771256456279981,262144 --variations-seed-version --mojo-platform-channel-handle=6204 /prefetch:1
  2⤵
  PID:1116
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window
  2⤵
  - Drops file in Windows directory
  - Enumerates system info in registry
  - Modifies data under HKEY_USERS
  - Modifies registry class
  - Suspicious behavior: EnumeratesProcesses
  PID:468
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=133.0.6943.99 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=133.0.3065.69 --initial-client-data=0x240,0x244,0x248,0x23c,0x264,0x7ffad303f208,0x7ffad303f214,0x7ffad303f220
    3⤵
    PID:3840
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --string-annotations --always-read-main-dll --field-trial-handle=1772,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=2184 /prefetch:11
    3⤵
    PID:3644
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --string-annotations --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --always-read-main-dll --field-trial-handle=2156,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=2152 /prefetch:2
    3⤵
    PID:4800
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --string-annotations --always-read-main-dll --field-trial-handle=1828,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=2260 /prefetch:13
    3⤵
    PID:4412
- - C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4292,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=4316 /prefetch:14
    3⤵
    PID:2152
- - C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4292,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=4316 /prefetch:14
    3⤵
    PID:4904
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=PooledProcess2 --lang=en-US --service-sandbox-type=utility --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4416,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=4408 /prefetch:14
    3⤵
    PID:2868
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4412,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=4320 /prefetch:14
    3⤵
    PID:4192
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4632,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=4656 /prefetch:14
    3⤵
    PID:1264
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4640,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=4668 /prefetch:14
    3⤵
    PID:4060
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4904,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=4932 /prefetch:14
    3⤵
    PID:1380
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5076,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=4956 /prefetch:14
    3⤵
    PID:3924
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5064,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=4908 /prefetch:14
    3⤵
    PID:1312
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4208,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=5068 /prefetch:14
    3⤵
    PID:4832
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --string-annotations --gpu-preferences=UAAAAAAAAADoAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAABCAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --always-read-main-dll --field-trial-handle=4900,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=4980 /prefetch:10
    3⤵
    - Suspicious behavior: EnumeratesProcesses
    PID:2432
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4624,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=5080 /prefetch:14
    3⤵
    PID:6060
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4404,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=3828 /prefetch:14
    3⤵
    PID:3748
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=3868,i,9214358741268311157,11447134214633067153,262144 --variations-seed-version --mojo-platform-channel-handle=3880 /prefetch:14
    3⤵
    PID:5616

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe"
1⤵
PID:4772

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe"
1⤵
PID:5940

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
280B

MD5
19a88bad99bffbae6102e191cfedd75b

SHA1
df476b325df883b73eda1b2349bab45aa22e808d

SHA256
0d576dfbde1712b7288e4561e3eea75ffdad84dc50a77ceb57a6e9c37d60465a

SHA512
9ec5eb487d8c8fc8e283a94bd43afd740edc4df6a4509d83629416d040586bd42330eb0da6dd41ec1e5550bce9a6643319ff8584f8638a9cde9042fa406825fc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
280B

MD5
c62e84b316f54b133672087944bed624

SHA1
209599f8942e2c759b816ed2d4e7084cb442656f

SHA256
2a502845efd2d6f4174d0fbbb35e930ede85821d24eddaad1d44520e980e746d

SHA512
f6e8a2da4fdaf3ef06e7030535198f96dd11250b6d3b4585c4ff51c727f098402029d7a9008227d38ceea8dc92ab0887fd1eb5e17a1c1f3e4059198caa98cd1c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Asset Store\assets.db\000007.log

Filesize
21KB

MD5
e317e79db4885aadebbebf81d0151a40

SHA1
f887469ba809006a37927baa6fc0276b57483cb4

SHA256
0174b4950f42e668dba1ad27c947d17300b901fc30ffec5c7b0707dd584534f3

SHA512
46f504e7462cbf87f63175a0708835743a4a533757a25ab2b19e4401d1fb01815b6a682cd0310cb7f7be052b887f2604bd6a86202db2ce68f1712a37e5c0a02d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Asset Store\assets.db\LOG.old

Filesize
334B

MD5
f4de1f770968614ac9e6e0f727a77334

SHA1
c0ca9cc55aeaf6691504c98d913531245b4490e1

SHA256
dce08b9ff21e7c1fd60a6630dbc740111052294988a34507af9a110d05acf0de

SHA512
679ec96aad6b8957cc4505d633041ef5d40071ff839a2b8f574f7502cd7162f8e5f3556ac746b5999ea0452c17d149d2d6b9d2c2fd4e3fd2289a716bd6183c48

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_0

Filesize
80KB

MD5
6c5b4aad8d608910d4c040c8d6908e6a

SHA1
bb4c5495ab8bd4daead915e94047ff397170d26c

SHA256
cd1e4ea64bfc4678b54e850f148a923e2948728727eb61935b33a724f374a3a2

SHA512
4fdd59c16c624057c5f2d6b574f6e2a092ef26425db3ddf99d42cad508b01f1125ae0d5ac9b8c84081d59261c41f5244842902e9608a6292491b5a2a36e3192b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_1

Filesize
776KB

MD5
1a201521efaa838bec344759ddda039e

SHA1
4aac682f0085bb5745ae699f0b23476edca367fe

SHA256
b5c0f66766316ab43dc3313a19d0956661b93be6ad2a8af09b55fc8ba6b31588

SHA512
12c0038394a4138d632ff2ec4bbf5394f9f438ddb676e0b1a60a4c06e6fbc4126b3b791c21297a1ab49cef17b79b904eae2be1311e8183884e571e29eabbf124

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_2

Filesize
3.0MB

MD5
1de1860e197d7f6783594b43148784a4

SHA1
511ed90733c01b9ec9e2c5444a63f062ee83600e

SHA256
748d81cfc7022acedeecfdaa54f3710b2959c5da5f0fbb2a570d1f94e49895a1

SHA512
ddaab76050bea5946077be0459a779f05cf1a2b6b87c85150a2a0dd7440ccaf17769e63d296adfe3f7ccb37460e284aceed5006f00348fdda776ed1ad7b1d032

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_3

Filesize
12.0MB

MD5
fd6ca47c20e219cc92e736ef8c4ed68b

SHA1
326e6e0442a0d079d7319932bd81023131911d7f

SHA256
bed66e49f1c6392439a8beff7bd8862c3aff85e6d62357f2297696ed43a8e75d

SHA512
aea8a0f3ca8ed5af9a9893e22f23ad35afa02c379187aa557bc326570df00746600a2306990de9aae3eefbc5cf98ca8fee0adfe403b954b2f54a30f8460b8252

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000068

Filesize
129KB

MD5
471d6f48a773631edf4531e2c66c43a5

SHA1
9d76c2bb061d43cf773e4b7546852e49a5314e21

SHA256
4af1d8c6420355d8110436b19efc4e4c4162ef5868bc3668f7bad2c785fa3dc2

SHA512
3c996f6f909e7e561292b3abf24545bb3677f6cf053f0e5958aeba60192d356403e51dcc6fbf20bc77a40dc2fc4d43bfe183e11d85fcce11fb1ca06c0ba8efb0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00006a

Filesize
19KB

MD5
5c0594df80077e26802d50818ce1ce99

SHA1
0d34912bde940a447a36ecefd79e9fcbf46fec8c

SHA256
4bb649110ce0b3beb61b23cbdcbe053c2f9d39fa81be3065557fc805a6283a00

SHA512
7246cc924246ad9d1b9fcc9c3e6301b28e0d5e35b21d37954364502fa72ea747261af26ab5c0b585d0588ae67904604947208cce62621394612e00e50ea1675c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000071

Filesize
18KB

MD5
befd9c0fdfa3d8a645d5f95717ed6420

SHA1
c8b43436ab1659f32cc05625389f63e8047f90a8

SHA256
94e5c823e72e71cc20f4bfa29b0434f2260040965d9d066c0e7cb5dc99ffd6c3

SHA512
4d0b790db4323558a9eccadd1df116883b7044e0f7e4dfe120c2c98814e55ceb1bf4cde14e0f6af38541ef723571db0cdf35a2b3ee398af2d3031a9928df1d1f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000078

Filesize
47KB

MD5
d4fe31e6a2aebc06b8d6e558c9141119

SHA1
bcdc4f0b431d4c8065a83bb736c56ff6494d0091

SHA256
c88db2401bef7e1203e0933cc5525a0f81863bfd076756db12acea5596f089ec

SHA512
1cbe7641b8930163ed3ea348f573cad438b646ed64d60c1923e5b8664c3de9c2c21ba97994ec8d886f489e4d090772b010de72a1167547fb4f6a2d242d46aec1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00008e

Filesize
28KB

MD5
24920438cf5ad7cff2da088b2d7160b3

SHA1
788ab8c755cbc7e3088941a2f2f9a756f6fc6651

SHA256
fa4644b2aabb86051066d27373f9a9c32b1e5400aaa09bab752418fddccb68f2

SHA512
d650ec12adbc207dacb22dd7462c1856d3268cbc2f529720f279b225ed20dd1a29811931a868268d70601286c9e501a96c5647f17c434f229d58e938a75f1982

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000090

Filesize
50KB

MD5
0eb73a140cddc2c503bd632b1b357d56

SHA1
6a3fbc40866a8f1716a43d48925c2486da11d39d

SHA256
06b617246c9053884838f175c55fb99a191836059bf66dfd569b5a20cf901632

SHA512
b4e6e4d102d375ccf3de9f03b1dc3611fec746b71749b942a500ce5a3b6be46226283746fc3778baf8b871e14ab3fd2dfa0d912b63fc999083b8e8cc6c3e426b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000091

Filesize
50KB

MD5
382a7606f08976d1b57252be84351dca

SHA1
0e84a334a96d2bcab591ea99cb9a7e2b5a25aedb

SHA256
6c05b5b6ab80149629df9f4d95c7825ae2b3d8d478cdaeab54ae967666d08c25

SHA512
95179bf1188bc5a2849a965b285ca50120973fa0c0579b0f0856ce69c8a9196087b33f52c449ffb909a75b0c04eea453cbfe2e57a6e4dd534b74a0191d1b0c38

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000094

Filesize
36KB

MD5
bd9044cff36b15717a708212ac81dab1

SHA1
66d3b77b0c28c08757f4ed8a0df3defa9dc9002e

SHA256
f63bdd7aa43acc606b0760e4272718343afdc452d875b1f00aed0dc91ad779c3

SHA512
154ef1f106e57b2766ce2ce98d25ff83edf859e26998ef9e756f9aa770be71f3c8953e1d4dd268544c91ac8648a845c629e6f1bb73d01b4e095ee4b57ab14f1e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000095

Filesize
48KB

MD5
5f582f1a2f337a885fa3e47afdf5f262

SHA1
1dfec7d8741474ba46e7cda54019a9d309803b65

SHA256
b34195b8b416382c31146d3941616fd280fcd1268d9ca8bcd36d384c223eae79

SHA512
fcd896fa8a779326cbbe3e98c85e48fd36a466cce48476014ea67a9c87cd591a1ef56f67275b44c2888c8cb65a172bdefa5ba4cae238685c2141ddca42d75503

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000096

Filesize
33KB

MD5
154a01e812eccbb509ec9b0a7effc94c

SHA1
64b1861b06e24b315a023ca87d20db9922bfbf6d

SHA256
19c06a6e035e5dccdff83793f7e98ea4c51e09a467c5723a11f78b1d663cd06f

SHA512
402a52e0858baab5bbb66f045e07538e747e99941ea294b19b29c2e7d4597646a1925606430fa201960cb74a51e8d63bc457326c92ee6bae8af960babcdf631c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000097

Filesize
78KB

MD5
e03d4953e06510b7a5224f5fa403a541

SHA1
e7c3db9623607b728d3d67f9c9cbd8e679160c08

SHA256
bf501dd62ae0b532816711dd9c6322dcd97eaa236ae07dc56dd412eb6c7ee268

SHA512
e45f79bb05c8b4195aee8f566fd0ec04834c126c96c0cccd0b3bdd758553c4b0875884112345a073cb8291276f52fa838cdd65c8298a01f821e2572a928d4483

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000098

Filesize
67KB

MD5
383f4498e1775da4384bb29e6b3a4d07

SHA1
d7afe5cd32e4fe92080cae20890c0c85d73897ab

SHA256
ee48f8f273317f1dbe941d58584f9a2de8d4751e1f0a5ae4d37be578fc62266c

SHA512
e423e39421acfccb60504b29e13b1783305bff8f845df191f5a978b6f4ab35f955c6cb847ded12cff91ba82fe2b1b77f8255eacb70c7f8f719337b069e10be85

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000099

Filesize
116KB

MD5
c116f5d6d3debd2c6e836151f4804c6d

SHA1
c109766b1a8272a3f1ea24e27fb957d6c6baf051

SHA256
4b5fd744d4774488fe9e89f1d2d80b85f5b7f3d8afa64ed03a92ae9a70f80f48

SHA512
f10035cbff79dba3bf5a75633a6cf20d936d6a0119c4a517cb6b8ce5db1e6106422e919f5439f5e2c93ea707aa6cf15b1f70d1e46d5227172840d9f825b417ff

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00009a

Filesize
99KB

MD5
1cc16859fcf439cd02b9a4330343db17

SHA1
7089da046e8153c664530c44e31b9da87229e876

SHA256
81a80f7d776849742dd0af8dc7387b64dc164ffb39d60fdfbbee466d5d114996

SHA512
51ec67593c4be50bc08e1e57028661660b86a3b5cddce6c8a07fa12a55cf1bbb17396977341bfee2376b51daa05913fb97e45fa409263fba1696e41fdd8f3a0c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00009b

Filesize
80KB

MD5
c61bb22406783bce082fcae3c0ba06b1

SHA1
fa3157b7f9c69d50b9bfcf3c5e6b39c5f4003c9a

SHA256
e635b15fa1a74837571ac6799cdfdaad53d89ba14b2fd6156545907774122a6b

SHA512
fd9c424ed6acc6a9732810165413e140936aa378925c3f064695b5bb0ebd027a8fa4ddf6e72f7eb64256191fb131c30c669b1040ea12694ec386803846da4996

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00009c

Filesize
105KB

MD5
3196caead38ed97d97342b46fd163481

SHA1
eb13c5bc0a7e624e40a1117847d3568330efca01

SHA256
94d81227b8543f983ca7e90e455478e231775e21f6ac63146f5159bcc0e51878

SHA512
884728c783e6f0b3c2460c841ca5242edb198817871421df97ee166b55088667c0a2333a579f78af67f59bbdb44a3cab9882cf5819a64d236af7f52f241302ea

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00009d

Filesize
84KB

MD5
d012e213ac031c54c9c7e1edd97de6bd

SHA1
4490ce7a9f44164e2e1d34d7d0b97680e811b4d0

SHA256
c7a67283ca6ee3ec51e3aa3114bb365700c3d7af0ab53963820704db7ffefbb4

SHA512
b9e1e4c20cb82484a0396ac26fdd7e0040e7a56c760272dc42d670bd06d4d64d6840c531f2a62db0cad3ca545226ef315b3e345efa8f5655582dc24f3033fcee

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00009e

Filesize
23KB

MD5
88194b9659e4a692cc3e6dc74391e4c3

SHA1
02ebee9c02204a3926a2c2c010edd95c09afcb9d

SHA256
ae12f4946fbd0bc218fec67d01bed7971d8b63e357bd92a2cf8f88f55a073941

SHA512
454adb7a81cf2bf322ddca7d1c80a1b4952e5d4afcd676504b870112f60e41d5d1c8f0b1c2c5697becf1f657d697a9bbd2036e4447bdce49c4b83f4a672c7bf2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00009f

Filesize
34KB

MD5
b8514a9108ac2c3944daffae4c8d220c

SHA1
a95b37bc16db29f6cf4d1f1e688365c757f048c7

SHA256
4b6a6be42639067ef890fdb09dc17dd1402ce98cbf27d3be674c8e76b5806717

SHA512
c03002beb677daf296a1a6c9aba51906edc9096fbce215f46f3d0d7aaf02ea1e5cc1ca3a0e7c64e26c2f22ac244afd376bcba63292d7d102025a440d391735a5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0000a0

Filesize
29KB

MD5
a8e5a15146e9b755c94208a3d863ea6a

SHA1
4c967cd3675b998c7186cc13073ab60ca8138bf8

SHA256
f56cda7212ad94926446cb3a820de464125764a26d0bf50003cf7107b26fc879

SHA512
8cc8afbd95f41166bd084670125c34a440f1fde7b31a5ef656a03007c101152a4f8bbc7030987edd78b0704ba0be73d2e7f7d9621ccedb7da4ceb97d61be334b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0000a1

Filesize
475KB

MD5
d4fe2125690757558730124c545bfad0

SHA1
36e7733e9b790b16f405e47774c19e9e2b1b4f6f

SHA256
93e0378581f8d77b018724e76eaf18029acdd77a2fcf7d88c8b3b44bc7b01595

SHA512
211c7493871486c154903c52a65aef2e1f220d6c2fe3d5592283766d08e654c200d14e337f8b990ae2659b51b377eb92fa5d1461622515e04e6bd06293635256

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0000a2

Filesize
82KB

MD5
1afae3fe9bb34ef3e04e018ebb299035

SHA1
97592eaa2574d8e264e9f71dd06001272e2aade5

SHA256
8006b28f8b1cd6c86c67c6e08f471e5690403a4adcf72f4a37b39815d21b5ad4

SHA512
f35ca56dc7f9bf179027f9dd208b2a3a4122d3318287318e3b5ce9c34d2b4a37897462cee19f7844dc8779750436453bcaf5dd06363179c775e85736630ac5d7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0000a3

Filesize
35KB

MD5
198c346d2b90e9675557a3f6b14871fa

SHA1
f3f73161638643198cc2996d149cf6f3f63ac8bc

SHA256
14793b0ca4602cb8182f77f7f4ce250e8bb19d18e56a4e2724c77044deaa921f

SHA512
47d2a4295a18272acf70653175a1bc2c80218d099b6613c75d0d4f63a926b0acc52f8eb2dfee1e36668e1d0332e1f2fa75793f971a8dbed415741f5a10a62146

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0000a4

Filesize
31KB

MD5
5be09c7c686dbba1984fc1a2bacb772c

SHA1
b0626f753ce1f18bd01b5c29d86af92a7152e07f

SHA256
c85491a931fe791cd1b23d54b42bd7abec503842ed5cb76420ab365c4ff45b4a

SHA512
2fb59449fa9a0334e85c0342352037a60378e484ad0e0cc417b9559fa8ef7ac81c972a50dff01d177db0875bf244b3ba90bda0565e269be8e745aa7470e223b7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0000a5

Filesize
42KB

MD5
cc7ad65e0558327d8fbe8ade40ab94e8

SHA1
6c153e9bf971f196db25cb2cb3b62f77f0a1299a

SHA256
956e1fd407995ff1ecca3bf42ca0d01086edc7eb6a965e1d9d4a48f197a8bd30

SHA512
0af63a7bb1151ef7564472b90ddd766857e3fd78973195817aa751d97093558688733876114ea7341063c7f1bc01f90aba1016980ce2c009a0cc399f40614377

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0000a6

Filesize
39KB

MD5
e1f6e032096b2924e561c3928b9dc73d

SHA1
f33a3bb1b04f04ed1b93b13d21b6b3ce529690ad

SHA256
fa802b853572d8a40ee939940d0cd9562ea8f5954c0522b0777e01fcb546c3c8

SHA512
b13f6e1f984d28c5f4cfc4ae2298b321c314892cab1e5ccd6f1f61ec98d8c1a39669078c88ba541c91648963abc6e16e0a1cdb4e9449b4be16927e9bad8d0f37

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0000a7

Filesize
21KB

MD5
60f19b9711ecb4ab361d7da56307b270

SHA1
07078edc70f9509eafd6480e7002f3e1397c5efb

SHA256
1064a2e2b51aff343cc1958ddc5ab09064ccbd92c618542ace6e24df54eba95d

SHA512
5b1ddba12da6af1a55777a41c5b5c9c5ed0a363cb94de299236a04b8ecda89f82194055e1055e64a803c43811b7b01aaa2434146f1d4db5cb951d9b2cd2c7da5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0000a8

Filesize
23KB

MD5
ad9b73b2a973cd99910291e734f4f809

SHA1
a96c668fba5cca9e8b4e16dffddb19d0f88c1893

SHA256
acfa378bd2898859bf6e696ef36489725583afa59f73f2e83db89ef70460d0d6

SHA512
1822c12b02e25bdd132859a7e5e076f87839fb44aaa5f9721ddea9dc822f286e0d6df0a11bc4e83190f69059f6135adb663ccde51f200995626657ed36ea2600

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0000a9

Filesize
22KB

MD5
4c051b81e2d64febbf73cf3878a36162

SHA1
06269e719b527258a137d1468483e3f5baa899cb

SHA256
8faaaa04af0a37b67550902d39daa6a71b0384f500760b99e69199ce11bcf265

SHA512
c916f14873b2d155a887b6636316ccad36b6f0f92c73162f2ffbce004b6fe806f1ebacf40de5158fec7183f70841a9ab1a0f528424fa08496de4d777ff4afe39

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0000ad

Filesize
40KB

MD5
f1cad4800853bba09a023250de102801

SHA1
76e1a6ae10ac4db2a3e4e8bf6b7edd692c4537f6

SHA256
e73ceb9052ea848498daacd8a9fff37846cce47324b38df12e9dcf0bf25d2e3b

SHA512
4e869ccea434e71f03ab513b3aa6212da3326cb9625c467b782df48367cbf5c69fb8a073d68180877cfde2510dbe74670046b897125b55f013fe595bb7d3595f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0000b0

Filesize
57KB

MD5
c37a5314ba360c995451518527cf293c

SHA1
22d1c9ce7d909b3ff70f6ec0c8bcbf999015ba11

SHA256
65beb8051538d1938ec9af6e82affd097e681aca80afcc3893fc7d1081fa23b3

SHA512
51c80c33f1b1756ea187827ef20cc4ba1917a7727759adcb23daff5585ba5e2fce7d98162ce0659ff50fa556e8b0c8d58ad7143e93f74808d6c287b25b2ed3e4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0000b1

Filesize
41KB

MD5
60df02cbc9b6a531c2d3cf32025a4dc8

SHA1
71ce31d6e0f59f98855a01b3eb9a37a86352189f

SHA256
2d73eefd868f115745117f76888a9b0124453918522046796a55c3621ad2c15d

SHA512
cfc2d4bc147bc757054c07a7e347091922d4ff9b7a0f856d0a3c278f5a98fac1a539d05ea5c375868b372f006a530d14558ac7027723f83f3b22087bd12992dd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0000b2

Filesize
42KB

MD5
b715a5dd019d1b8771a3031ff85c972b

SHA1
5768744eb85d3137d094458e4b7842c1c5c526cd

SHA256
e9ca7a8587bb3674824a28a8a80836e3483dc3bbe97c658bf7c984c5b424920a

SHA512
22e09e48a13ced3a3cd95a5f40b5e9ccbbad8abbd0d6af7dd4e411d63c662b09f1ad2453909a6c7a0d0ce34f250f2fbf0d7f076dced281f133ab7f21d2008d1a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000121

Filesize
162KB

MD5
313b302f49d21b1731261636d0a5d027

SHA1
5c3ddebe24dcee412486abd589abadff13165f2d

SHA256
ac7bc57d7cce53673a1ecad23904bf8e7ab4eb15dacaa57b392a87303c6711b7

SHA512
d66ad9355c8cdf2128c897fc52d69158e14f5a14a81e808be2d65693c1c13cae97671d67e43f05741df455c2621ba4c32c3a6753ea52917bd851bc565b795672

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000123

Filesize
107KB

MD5
1d7e0dd28985ed1f79f3da9baf0c25f0

SHA1
6551ab1e517e2652fb142e0b2d52fbcc5f32712c

SHA256
38bd14dafcc9212e329c9a97c24059e49b2180be6bc4a06a388ba7f1437a9843

SHA512
f9bfa37858b30180182089aa5edb7d474edacc46da9cf7d561645205ad90cc29aa731ec5a2fae8c1ff8507e85941cb2db078ba2953129e41fedd28218637d971

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000124

Filesize
65KB

MD5
2b3a50da14baa1b43f0f413a84e34c8b

SHA1
a23f693526a16507733ad96d54423e6ffc2a32be

SHA256
63f8d57468e48e6695b1c9e6eb42b25f113e26c8d6f99e30f2f04e5f82fabeea

SHA512
ce00e74df7d3bba84e631a8086426272b6998ad2583a158d8c2e01e6ce96e0819125546eb8b161eca525540853929b862b0aafc8ca231915a80ef1b51907691a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000126

Filesize
128KB

MD5
bbddab9928f0c4fde4323e780fc9b19c

SHA1
7348035a44802ca7cc939b8c93f31020321503b6

SHA256
0796d1937ed3c63d10670e1fa1cb016b52e522e9323fb0be3aa40a357ff3a74b

SHA512
b94287650343e2d78cbc353875e448b7dc8c1a951677b15966ab0e50e53c011bf511a2a143a63b9411731bbfe3c6c48c0d03f29ac59069e1f2cf2dfc3f9a5c1e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000127

Filesize
53KB

MD5
b5120fd7e64f0159366be263f7aee8ee

SHA1
4a08b208681e5222181c3943d9a66e22803cf204

SHA256
3433a1b80f7ab65846cf4aacaba23ada663d64e5944abf03f66d02e3693de087

SHA512
d353c687287f9da5ed3e08ae454650de6a3129b0fe7704ffd84dd1f5aa7f744cce91ab82ae6565690dcd849b5f50cd20ecae93dcd9e05a59edf208a0045ccf68

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000128

Filesize
53KB

MD5
c842abc1d49610947045561bd20cc2c5

SHA1
f0a7a4b87cc51dcc56d80eb3045cd8450f0294dd

SHA256
10c72542c126884cb9e14417be3391547fcd8ff49d83e35b203f088982e1e085

SHA512
2f4af499bd48c85eed310e6858b49c76961e0e03886a9efc389cf24df04e07a03468393baf1f7e25905766458a4ba78305a7aab83a458ee1b349d12c611057b3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000129

Filesize
19KB

MD5
8c92c48c3348c1423c9cb6b01209efb4

SHA1
12404940d88038617bd4cb6a71b4f069e22e8faa

SHA256
5375a24a147420d5d9e2eb3808208868b52729bf10205cf133c8b14755dc7b1c

SHA512
cae81988eb040245ed253d16c584347d40a9601f7f0a97de08da56d6f65a86b97f6fe23b129f01d1aa0beb450a937e33e59d9ef678a5f32c902507be7d5283ee

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00012a

Filesize
58KB

MD5
ec2ddce00f510e1e53fad24ea4a6b149

SHA1
f750bb4521481142d4fcb10879dac4b67f5b8f0a

SHA256
aaab72412601e9d3162567cf0a3a9d9b4750d4666ab875c65942830a1d0182c5

SHA512
5d8b3fe9cd0617283d8de0da4cbb9b8c141401a7d27e70906363d450b031b92f949351a540e926088943030b479297354783ed15b644e0522e10f3c19cb72ce3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00013f

Filesize
18KB

MD5
3d56a21415762c079e3ad425e74d13de

SHA1
fdd90f714e9fb540e307591f90c9ca113b13bebe

SHA256
d014151152ba2e08c213ac33c5244db59c0aa5fcaaad288774216a9b58d2d569

SHA512
29601c0df385049dd60ebb3c404f44ebcaae81c629ac907b5a370c64647c49b01688f367324ba6e449efebbaa24965536a37118b84c5aea255bb1b067cadd6cc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000146

Filesize
16KB

MD5
7b9375982bde355aacce1fd0af91a509

SHA1
d9d74eea24403716c3fea9c35ab2cf9d74748acb

SHA256
b93cbadf4110a14ac4baab56a036ece1b02cd64ce1609310968d717aa5a92383

SHA512
21e7a0a85339ca038c14de782ec9612aff8f13817bd568b85974ca74892d6edfe302e1360b1dc4d1541c0375bb405213ffc9292352f2a8651c90d34104721fc6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000149

Filesize
29KB

MD5
656a13b894c460504dcd9da92a5a9cf2

SHA1
b141c3d737ce2b1a8b77e3584f6ba3b14da24dce

SHA256
f0943a6c5419dd2307288d45e878f16b9f8569f3b9d8d8c21b103973b9dd150d

SHA512
04e6e23fad77353cddc8d5dfe0e2746793993b37ccfe1b860ef131ccab5858f7fee05205e79fcdab3e587ab26bb5af0f6f6daddc703599df8fdca712f65b7167

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00014f

Filesize
43KB

MD5
bfef1c88c7a2462d08b6930531953552

SHA1
6392a0f160eb73330bebd4c324535445e0783231

SHA256
5bb0ddc5e9112db6992a4eb1252b36b666ca8de22aa5d09b1d083794f2acef4b

SHA512
339ddb4c82a5456623c9ec0bf2574b22d7e98f9b2002d5d9616197dbac6a76742e146ec77e8d3aa8caa3c6178125bea0d9ec57324b28dd52e778055a4eee204f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00015f

Filesize
40KB

MD5
4ad6f5f195bca798c453f433a2a53e14

SHA1
c3e7b09b15e40a77ea6083dca02f7a49fe0e9a27

SHA256
eb2d9eb82ec24b66f9ba64bc0b54533aa5dfc1ae99e58a14251f5b2c6ceff9e4

SHA512
f14e90fed2c87d727d877d4ac224e8fea1b8e8ffdb5c5ac3aa646b436966f2c6133494b4845a90fa8a07b0735a5175c81b98fcd4b450b7962c1a60285b18bb9d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000165

Filesize
51KB

MD5
588ee33c26fe83cb97ca65e3c66b2e87

SHA1
842429b803132c3e7827af42fe4dc7a66e736b37

SHA256
bbc4044fe46acd7ab69d8a4e3db46e7e3ca713b05fa8ecb096ebe9e133bba760

SHA512
6f7500b12fc7a9f57c00711af2bc8a7c62973f9a8e37012b88a0726d06063add02077420bc280e7163302d5f3a005ac8796aee97042c40954144d84c26adbd04

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
9KB

MD5
1bfcd7306ba76aa863663a0ebe8711ac

SHA1
5b6fcdaad6ad5c47b99b1fbaa41e2c228f42073f

SHA256
9a9526b75947a99082c48355bcf8da516034ee464fef4f7b1085668afd2a324b

SHA512
629d9838c801846a70054d8b74d301c9a55a8c584665e4fcaf70af0d5c917e82b3d2e8ff817dd513eb6bc0dcbaa941857dbeb507cc9f4ed62ef58a730bd9601e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index~RFe58ee05.TMP

Filesize
3KB

MD5
3724302bc8a274b7452bedcf125c5034

SHA1
db9266e348fe4f4fa2766a80f43eeed0099c47fa

SHA256
4f8a9adfed3988a00755d081f418dc6772d48edfd6d5f035d0bea2e5c017c7d7

SHA512
f5464784f703611557646ba4b8a437d20ce115abe5a37575dc3b85cee881d3f1c9ac427571f1a59070723b2bd1c121d9bbaa2abf6075245010c7db2b2c6ddf28

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\DawnWebGPUCache\data_1

Filesize
264KB

MD5
9feb184811b2df9cde52780a0777dd27

SHA1
d2b0eee259f3ded0f7847bb0db13885c7441e8be

SHA256
0c3a2a29ec658291d00957163ca068e29496ceb85e2cae2a9ff2a0fe36f384df

SHA512
3e018c25c06c963211817ca20eae838a04a88f95376c5282fe13138e834cfa5458a3e2e51a3896e9bb511bc463f41dd7ffdc3bff8428944dd7942f55629631d5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\DualEngine\SiteList-Enterprise.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Favicons

Filesize
24KB

MD5
098c0251d9068ecc0ed2ef831d800cd9

SHA1
1dcfef76885b7397d131e6cd52bf254bd1bf7eb8

SHA256
cb02871846d5492fd66db7923c084d223f5d32329a6c2fb0a2ed79f844d420bf

SHA512
2143db68ee152f94d571b6d61b305dab1602f55ec754a94ceb63313612f2f4343f5311cea53357633ce34e70893e8d8a53654b4d1bce8ca41bdc7d644433e477

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History

Filesize
192KB

MD5
daa83a2e6f35c6b1833b6113b38c2481

SHA1
64a3bd461582cf4f71509334fd909b4f845e2156

SHA256
44be8b8ebee76d9ae5f1d5b5a0cdd084312a2171ada8bb4c1870300276d64d3e

SHA512
ed704bf5f48a718560f2c59733f705bc544290b1e3af13f7e49e40f63bac132a140f18c35fcfce8ae8ac68241731d4f0417e24526b69d73ebe756bb402424ac6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\HubApps

Filesize
107KB

MD5
40e2018187b61af5be8caf035fb72882

SHA1
72a0b7bcb454b6b727bf90da35879b3e9a70621e

SHA256
b3efd9d75856016510dd0bdb5e22359925cee7f2056b3cde6411c55ae8ae8ee5

SHA512
a21b8f3f7d646909d6aed605ad5823269f52fda1255aa9bb4d4643e165a7b11935572bf9e0a6a324874f99c20a6f3b6d1e457c7ccd30adcac83c15febc063d12

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_ntp.msn.com_0.indexeddb.leveldb\000003.log

Filesize
33KB

MD5
78b97dea0966f6c9dcd45f80baeb2fe9

SHA1
6521bc5467a6ae797899a62d3d90ab68c8d0730d

SHA256
a6fc724cf7a3f4581d5ba2f1abe72ab381f4d63ba2a74ef418cf1fe27475838c

SHA512
7a1707e5d511f98d312b1c1875bae5e36e78a9fec7be2fcf5b401e5631ea054e5b39aff7661731481d864b27514954f064eeacf136badf7384b8e9f580c742aa

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_ntp.msn.com_0.indexeddb.leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_ntp.msn.com_0.indexeddb.leveldb\LOG

Filesize
345B

MD5
37df13144d5a072d0b6310b7a7573963

SHA1
b3840c863a4ea7076b5106e36e8000e6ac8e25f7

SHA256
e83e24ba5b43ebded0e71e6e9914bf29803022c7cd0ccc4eb46b795c9afbbd50

SHA512
6c769d45bb1db84058c076ebe6be8cbf5503d04c8427de8f70abe7b7fe122dc0524ca148a4d7786c44ed1e960fc321cb9f2e16502b0b7cb10e2253401e606023

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_ntp.msn.com_0.indexeddb.leveldb\MANIFEST-000001

Filesize
23B

MD5
3fd11ff447c1ee23538dc4d9724427a3

SHA1
1335e6f71cc4e3cf7025233523b4760f8893e9c9

SHA256
720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed

SHA512
10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\Network Persistent State

Filesize
9KB

MD5
74dc14f24e29ac280dd9f09666a6831a

SHA1
011f155a0fa643f41644ac952cf26a2b39182345

SHA256
deb85a2e4fa964d542b9749a6570f34acf494c8d5fc99124f256d8acdd5c6eb8

SHA512
b3f1d25940ca7ffbc91d6bcef03de94367637f37b7d54f31213ebdfac05084cae006864766a5607c6f0a54d7342f159b89c69e7bc7f77711078b413c1a1534ff

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\Network Persistent State

Filesize
8KB

MD5
91995a6a33e7fbee15d0e061f88a586c

SHA1
67c282ef5209321ff51d58b0f8d4791f0cfae993

SHA256
f54ae231db5e706cf72629cc0ff97a332ec0191ba9f6ba33f59eb82669d64a5a

SHA512
68843fb621c2c1089e56d8753d07268d928b06c339cd50186a2e3116fb5d3f5760e947fbe79edb68327f72677494b77462312e6ac3924ff5639535a46d1fd54b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\Sdch Dictionaries

Filesize
40B

MD5
20d4b8fa017a12a108c87f540836e250

SHA1
1ac617fac131262b6d3ce1f52f5907e31d5f6f00

SHA256
6028bd681dbf11a0a58dde8a0cd884115c04caa59d080ba51bde1b086ce0079d

SHA512
507b2b8a8a168ff8f2bdafa5d9d341c44501a5f17d9f63f3d43bd586bc9e8ae33221887869fa86f845b7d067cb7d2a7009efd71dda36e03a40a74fee04b86856

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
19KB

MD5
364373e2b81f220deb53eb89b4a7973c

SHA1
537659262e08791045e73eafc3f714ffb3781c1d

SHA256
244afed9a33917f9fa08166ebbaba008d6825804f745e42191e8a808788c72a5

SHA512
1a60b0f5381ec23b856aa9292925f8aa35c5910a70bee1479c701f85fb7ad27a7572fbaf431279a15df493ff9d775204c4c8cede2a911f4815b335273fd452c9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
16KB

MD5
1825340fa9ea67f277767e2cbbfee199

SHA1
d7785e2b1ca6ba0bb7a163b41e143daddf855a0d

SHA256
5ad0e2904572f9cf4ebd0fb0049cc4d94fb5b88a87ab22523d53b7ba7a84e03a

SHA512
6475e382c62372c577e9ffa3102d4b529e3aa491194751514d584b8074dbdc8a663da8a801d298140c31cd05350f954fb68c1da7a208f577c5c5a1cff776ffb8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
18KB

MD5
d846071166fcf84665c9233e8a7bdf1b

SHA1
a8fdabea1524e9678f8955f2d18c92e5c2de57aa

SHA256
f404355ac59490cd9d693164d565241a6784706ea9816c1a36b91d453297c57a

SHA512
2abf9273f5fffe336208e6668b1b104c1c810590fc835529a5f15bfd57f33e401df98bac4bf40d9aea61eb58c9a09398860953f06603e58a87c84803fde9c6e4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
18KB

MD5
fe43b11d43e3a4574d1a612e0c1df902

SHA1
8054fcfe030f85429155008e9a0137da9604621d

SHA256
4c61df7674b8ed8e81ef3b66f08b008e859b1e97527f2a9f8c7294b94665a81c

SHA512
d635fdc89de064cb2e8d918339179b32319d7805f9938624c4bb52a785bc7dbe5dd19fa794f5b783fc3d8cbc101e92fc70f455a470ef01bfa79beedbeabfc0ca

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
19KB

MD5
b0b64d9b40668cf4248e279bea6e22a0

SHA1
4372ff2c225c340e97a433c04dbf3e5f0832a419

SHA256
4b7d552f8b47c962cfc8458b095e48339f127231c3e5d648a29e51969c6b4e31

SHA512
1c66b33697f8c95cb0abf1f3be5ea19f302325091460a46a863a0cbee3afdce5a323d0c6032314a1f89905599a539a27f30dfdd2231b87bd8ca829293394f683

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences

Filesize
37KB

MD5
f540cc5a0c68c470310e3171828681e7

SHA1
62319f12075d2aa0c1e5f9eaead6b718bc572200

SHA256
2824b23cdc82f8dfd5d5a21ab586fe515da64746d11ee63f8f2c79a4bb9b520e

SHA512
fb3473de50362764abfcb2f8aca6250f269e2fa92cdbfc3a73de58b3f08e086243768cc29c1831981ca26fb866719c1b974bff718227b6d038fb4b3f92ddcce3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\13bf7cd5-3f0a-4967-869d-004c84656018\170ce29fd1bcbf73_0

Filesize
57KB

MD5
33187558ef5c9b5a1010b82581e037e2

SHA1
5a569a3968ce01c508d067d601afe0f4dc012196

SHA256
d83099580fe66e7170318b8ba91902432da6d25316b7497946220d21981829c1

SHA512
8ede5c46c78c24b7096c9aa9b1313bc39054334e1a1acc06d30e1711811bb1d2b61e43f2865e77207f169f24b9bed0f456a029b9891406e52b2b2fabffe44705

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\13bf7cd5-3f0a-4967-869d-004c84656018\index-dir\the-real-index

Filesize
72B

MD5
485dc6c1cfd249d4520a7984a707493a

SHA1
69e681771e6ca529e7b3cdea0650055fecd06606

SHA256
14da522a070b8e0862245e56913cb434fb42f5032ecc03fb0bb55e790d40eb2d

SHA512
bbafb708487f2974bf60ed3d3e5f44330709ec3065159b27667f5d1587f1b52b02f276ba6ae3ffd95b85df44f05c3004910337c23fc3343592233dd576d538e8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\13bf7cd5-3f0a-4967-869d-004c84656018\index-dir\the-real-index

Filesize
72B

MD5
55d25d8f560eb0916403e1f2c5498ee4

SHA1
80668251655097dd7874c888a06b93de45a5223a

SHA256
83ac4d75aee157df47d7d127b64d5c3ade11090d42f77624a297c77e9cdd423c

SHA512
4fe8ff9a4ab2ffdfee6babe2ceec5738435c0872510aec40434f0ce5783d41b23d03e141b544c3a683f154bdf27798f7336a5e2a5e8412ca0484e893e9c1b1f6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\18acb72e-05d5-4fb4-a55a-31699faebbd7\index-dir\the-real-index

Filesize
96B

MD5
9978211c1bf75a0da9c223f0cd6763f2

SHA1
a3a04f73de07c63e91db9320f3b8ed437a8fdc19

SHA256
2ce51fc835df3c6ce584719399478af059411eec7c0f6f20eae1d294ed225cfd

SHA512
567af111f05a45dcadbcd61861692914add5f7c9b5fe2b2ddc5d1cf59ff8bf8a1e80c097211ba147edcd5360decf31cb89e74fc762d733d9c7bfaf01599e920e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\18acb72e-05d5-4fb4-a55a-31699faebbd7\index-dir\the-real-index

Filesize
96B

MD5
30ac0a1161b248a92a0bb729a03d56f6

SHA1
60bd518e8850d85d6c307b1f1bff03fa88d979ab

SHA256
d560a458137410b1bf906e9893998103e423b985ec10bf52321d2bbf265f1d57

SHA512
4e409b94b77eed4416f62235645a0fa47ee7eac07a29d95b51208aa63ab36604847536a93030fab95cc84a698812d24869901dc07faaeac5d84aabcba6f6335a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\18acb72e-05d5-4fb4-a55a-31699faebbd7\index-dir\the-real-index~RFe5830df.TMP

Filesize
48B

MD5
4fb67607cfffac856342046343a2e283

SHA1
f9d137fd60cef76bf09b0650a4ece406fe76c8a9

SHA256
ad04e8546b00cb41ee97ec837a05b3a2c589ff92908df86f270ab9690db5f669

SHA512
bbd0a785911f463d749d382698f0b3cb14c2bf90bf5286731fd33adda06c17e1d428a82b808134299ebe692cf2eb5988b1f6b4efa3697f9741c2113567af5e9f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\6de81848-5b24-4103-b044-7a04b1ce3981\131d2d300bbfb48a_0

Filesize
325KB

MD5
a8c9352a8c92c28a2597db50ae007caf

SHA1
ddffafa204f196536f75db6c2199a3b317936c60

SHA256
834318a80fc916ac79bd7ebd6a6c27418cdf239b4c9b5cdd14887ba0bc98ca83

SHA512
0a7d9100bf50c0f242e21c0288ec274a756e7a970d319a98faa80c0ebb1b76585cb0df991e0817695b4e995c4d13fc25b45ad53eea42073d458d545ccffba14b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\6de81848-5b24-4103-b044-7a04b1ce3981\131d2d300bbfb48a_1

Filesize
651KB

MD5
05ff5987e13e5a25cb5c96bd76f38d69

SHA1
3610011a57963f0f7d30119dee79ed80936471ec

SHA256
bf8dd8108604617affc66ac51edaf81b07455430bf7cfdb9cc47a179c24b8ed9

SHA512
7bc25ab3abc1fa2c736cd83f999769396e0d893310d74924ade7c827c895d9f17317bedaa4477281c18f160fec5368154faadd9af87a8e7e831a54b58dde13f4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\6de81848-5b24-4103-b044-7a04b1ce3981\201347f1b0306ac5_0

Filesize
356KB

MD5
486fb2c5a6ee5c62136cfcae41aaee29

SHA1
6d42859937ba25b0fdfa3e73b47176a26904c2b7

SHA256
c685ba8610f53e573899a8405a0e151bde0410e106ae457e09587cc3d8da9425

SHA512
1d8ff4ca270bd44c131a3ff0578ae38542045c38bad785f4edcf52cc8f0f1a5247a7725ea7fd8a5d24e0e54ed80abffff95748414bf50c3846b5a0ccb0f483f7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\6de81848-5b24-4103-b044-7a04b1ce3981\201347f1b0306ac5_1

Filesize
660KB

MD5
af32a41c64d5998da877713845c0a2cd

SHA1
d08a238e4363ce18246b60ecd110c4eeeb9480c1

SHA256
9a4d1255aae4cd5d7ee5b507b4d2530b3fda6d367aa4954ed48e8394b4cc6e93

SHA512
df8b1454fa7983131f928f0bad8f6a5147072955bfd6eb25c6e27e795781260629a181cbdc86b68e25ec631e4e7f597ef001c87c8845d2007880bee7a74b1fe5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\6de81848-5b24-4103-b044-7a04b1ce3981\42fb933176677e91_0

Filesize
7KB

MD5
2af5a2aace70425cf67a890a52258d07

SHA1
416ad98881bd33aff88a1e49f619e4a5ff223cd9

SHA256
681653a31dbf7d289cd1a3ea79d06f433919eaea20cf5fbee66f4f0f2247af11

SHA512
eb78c6c20d3309da7b1f6ea2adb6ac3e395bead16340392d02580f7f4dc242743df36e3d6779457126dabc241d393e0a58ea4bd044e9cbc020fbdc418b99aca2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\6de81848-5b24-4103-b044-7a04b1ce3981\42fb933176677e91_1

Filesize
14KB

MD5
99c404cf036e3a91cd3e3d2741c41d78

SHA1
ebeee257ebaf6cec92c2b1396bf8b9a7bf128859

SHA256
7d41a8b90b0d6e2f82c2f9d6688b8bf4e64d1dd6f4ba1268b9e4c86a6041e631

SHA512
7b952fbdb25f6e6f445e7f5b3f406f86a3a983e28bb37523841db9ccd290f9284f943cd9e43254e2cc0d4f07fb61653f2aa87ad3e7603eecf472a6a03cf81c56

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\6de81848-5b24-4103-b044-7a04b1ce3981\67006a411009bf15_0

Filesize
80KB

MD5
2226689ddb6cdc79d73cca10dda30dc8

SHA1
8d3295d6e9a59688b542182021e1dc117dc01acf

SHA256
038e319e5cd99383546f452a44c655fda47b1302730a8a1b76cfdaa630b9accd

SHA512
d35f3905918ad01d4b21d2d48a4a0e76318f8bba3e3dc9822b5d6b37c74ec1c506ffc82457ef4e0f781b6c6b3bdc66d14949615d6167a72d4fdb5a08e9bd9087

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\6de81848-5b24-4103-b044-7a04b1ce3981\67006a411009bf15_1

Filesize
178KB

MD5
2be1ab75c988c5bba108ec79ac84c46c

SHA1
ad370857b4db2f8a8fa66e8cb7d03b4e4e39f339

SHA256
39494980f11c5ab103415d30da445b406bd489d5d35e01790e4d301b1c3c366c

SHA512
74e8daefb20d8dcb47ab42ee871aff3332453a5b448b51f7d6bdc147f4776361f74e88d4785753707b8b25e19765b731c808508565f9dd1c64787b222703bb2a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\6de81848-5b24-4103-b044-7a04b1ce3981\70e51bd8e7ef93a9_0

Filesize
124KB

MD5
17f7f944a33aa26fd141633b4b580804

SHA1
d442d00ca77cad54e280c1d8682235d0e27d7eea

SHA256
619b860458205c4e4bda54d4bd4b06975b3672541e0344984a61913a9865ac70

SHA512
95dfc6aca54e856ee865cdaccde4035ca3eb9cdebadd1c26b6a7de1f3fab2eee23b52e16c014884b846e2a8e1093a6ff58839abeb89ce614d543ca7bf16f0d44

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\6de81848-5b24-4103-b044-7a04b1ce3981\70e51bd8e7ef93a9_1

Filesize
216KB

MD5
2608ce7b566054e64d9d5e03a84f283f

SHA1
ae62346bfee485e2ac4c39be66e9ed7dff7b930e

SHA256
438ee9deb8c4a79a83f5be6d4cf18f927f87d295d77749aad5f9eff1f499e3e9

SHA512
2ea7c0c6619e0040c67a1247d959bb869a3aadd2fd390fb99a71973c3a8cb3cfe2fab2b9d4b81ac10fd251e47d479cb58f0faa6fb962e82e409ae52f5d5f24e2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\6de81848-5b24-4103-b044-7a04b1ce3981\d9483cfd8d798f6d_0

Filesize
361KB

MD5
6038aa438caa1b963087a5491dded7a1

SHA1
91b1938d5dc73ad65648e751e69e4864e18e3105

SHA256
9f57e8b91c82edfeb22545637d65a3cd12a29fad2cb28d5c7b7d95f0641a760b

SHA512
009493cf3654796697eb26ea2d7abc2b7bae45e1a3627fe12bc18b0abd10bde3d543b45030ad97f965167450ebe206065529341b3842ef654d92db35dd8b0d29

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\6de81848-5b24-4103-b044-7a04b1ce3981\d9483cfd8d798f6d_1

Filesize
812KB

MD5
b33b8eff7d9ce4ef7d9fd17116d01d94

SHA1
dd198c2662388a3874cfe5c74862c6dd3338e392

SHA256
4ac8d65acf53553fb1bf3cd287f8f4211a70b7173b30c8e9dee4e93c8351e2b1

SHA512
7519faca35a6391e0608046ea1c50688a660d5ca30762614c42eae9eda987c021ea2494abaaf117ae3f192c052fd03f8dbcb8dbdaa979187c1cbe54a54f30619

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\6de81848-5b24-4103-b044-7a04b1ce3981\index-dir\the-real-index

Filesize
2KB

MD5
8b8f17b109a8f694752503961ea3845e

SHA1
44f4ea08007c6a657c7ed9034f9de7e3a9fd0fcb

SHA256
3b3304f2554c49252d20931e07bbac5b394ea4b275eea96d870aa6c5b578d9c6

SHA512
1ec7cbaabd96d54e01c600e3cf8c6a5df49e97d9a91f7b93681ee8da34c4e529ff4b023fd238b1d5d555bbe3c354920f7cf508217bf02197c093479a4bdb4d4e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\6de81848-5b24-4103-b044-7a04b1ce3981\index-dir\the-real-index~RFe58273a.TMP

Filesize
2KB

MD5
e10ca9a5c4bd1943fbc584e60a78c657

SHA1
59a77d68a816ff18393588e0a3054d63ff917b48

SHA256
8e1e51e42813b8aa51f704ae603c361c9d10b09a854e61463d5488b04f61fb1c

SHA512
1fca680d4f05ea7d853fa320dc6da2793d2aa57771828492a8bbc31ad3714a80c61cab26ebab8986b1bf278811f885a500eb70b329928379884fe5555baa6e9d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\cc7ad1e6-2a51-4dc0-9579-f8bf6674ff51\ee91b116cc2005be_0

Filesize
57KB

MD5
d7e8664e3fef2b9cec208e31d3466802

SHA1
e3945a2f42f50c591914e199a437df7732d8e300

SHA256
9c7078e2bc080b0feb5f8f2c0d164599483815764f6baa00002f7c4a27e84bc0

SHA512
5f2b992f4c399ad14462a7e42789dbea33f9b00c7b9b24ea00d07ffe52b5759f7938eb83aee4d6402524c9f4b99620f8bfca569fc8ccfbcdff99b63649057889

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\cc7ad1e6-2a51-4dc0-9579-f8bf6674ff51\index-dir\the-real-index

Filesize
72B

MD5
17139b16abebbbeae02e7cddffa1cc23

SHA1
ee740f6faaf66cad03612d1a8a5b14fb72959665

SHA256
a0273320632c2bd57a354f0d94ae15ef22f28a172ca56f5642f10c26a6ae4e9b

SHA512
60eca8295ec578eb4b67f4a7c543ed0a126f4623586a5de4b8df1ca623d50ee20ee44bd03393ede0b10e64c76bf7c67e8cf8f5b1803e189b51bff022f5d63eed

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\cc7ad1e6-2a51-4dc0-9579-f8bf6674ff51\index-dir\the-real-index

Filesize
72B

MD5
dc9f1b7b160337707403f401ba5adce0

SHA1
90d707ce360e5adfcaf50642db211894544db38e

SHA256
b456f20225b6fa0c0c21b5bb0bd3c6394119a47fb1fc9a9326b50062ef1ed40b

SHA512
cc704af1b505564c9b44cb6739b2465ba4a953ee5c7c5c9afb0ea1cd67309bf4167f1c2df36930c80b88877d985d7a3b4fd78c701f961647c7c0bebacea2bc71

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\cc7ad1e6-2a51-4dc0-9579-f8bf6674ff51\index-dir\the-real-index~RFe5815b6.TMP

Filesize
72B

MD5
c82b3bc9b477f1e891ec6e37bb74ca94

SHA1
98a21b033602ab1b7663862836025c435f01cc6a

SHA256
a77881f1287477a06338e3ce7c8d759faf59c4895a13eec37e417ad642f798dd

SHA512
ae6da710b0bf2985a57d8f99047de1d370a4685bcd9c1b7ec91459543d7d844dc8f7a4350653a88d052ee071e22a6f9f48840d4677f9876733c54c51b94bb994

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\index.txt

Filesize
327B

MD5
42b547bbfcd750d1294deeeb2cc56619

SHA1
49d76deb86dff5f6dd204135b8374d1f405b80dc

SHA256
298c20c0402b04259b1a3284e92e61a759707b63e291398e7887867b36feb0ca

SHA512
15cf88d4951b7b96da7bf83a8e24baeebdf93fa0889949e8b93dc8feda86daab4906a4dab27448062b3315d1b1eab368a30d5100648b992c40d0ff9f5e0da42c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\index.txt

Filesize
322B

MD5
749f7e675a177a5df0243a356847c741

SHA1
e489ef8ac0ce68f0202757d9d9bb19f076cbcf4f

SHA256
21c916cf2d8053dcd2261f437fce32e17ba03df1d9db1da65295eb996530f4e8

SHA512
b7d810dfec7a7de9bf0c599b287a123ac351f35e7b0275db3dc94811adcf6792d81db420a6dccc6bd711b7b5b5a47a87baf80d94e9a4a68d3884a0bc9879980d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\index.txt

Filesize
322B

MD5
d8b2aed628f5e31f21826da26e40a0f2

SHA1
8c82409379348ab68dd4c342701de3aad24f1a36

SHA256
62783917553bd383bd78b469751118090a6e866a806763960e32e6142f047f6f

SHA512
c24609d74c71ca58035b3d799b64dc3094f651bff937d1b23a36b1ac5a7f80ff1a1f996fa018115072ed227f0f5f570d63e833487bc7f7b4984039ca7fb47875

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\000003.log

Filesize
10KB

MD5
cd2e907c58a74977cc8a13dc0887acec

SHA1
b287c929bafc5231609440dd552bb07e15ef344b

SHA256
ecb0208a6f1521d5b94859ba8338e87b5a1d6d58c27b0c4e70d3ca188a22e5b3

SHA512
f4d483a91887088e71a86df4aa5e77c63d77cdf93442b0d838d88d1da7980bf830e1c0bb153434b5bb1aa9c3bc82e997a0014eaecb01953abbafc9253cd188e2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\LOG

Filesize
338B

MD5
ad0468cb941fee962001f161603d9ed7

SHA1
0d44a05e8f78c5a58e86131d7d2192564b1e850a

SHA256
9dfb706b579f2f0631a233e936c6b5452ff81f6fb22dd52e1f8f689907ef1147

SHA512
2121d6afd005c78490195b14e1c411f9e45bcf395943544eade36c5eb9f13c3b9906b1707b8b10e70bb37a4f1f343db9373c662eafcc40cebe5e6101df96b27f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\f1cdccba37924bda_0

Filesize
115KB

MD5
ce7d8f46e083be9eaf26d432cc3021d7

SHA1
ef8c50d2f9b613f2cb6aa6b63e7028f11f3beec0

SHA256
75fc6644a223d94124209cd6707a3700083829d22a5c2aeba2b1d86fce2ab668

SHA512
cf6ac26eedb81b4f34e8af122eaf33fe60b93d52369d83f0ba188b951a532d43790a10bb41d8a76ef4d9935deafc0e859f610f7075d8e6a5c03ab78790ad0546

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\f1cdccba37924bda_1

Filesize
202KB

MD5
a28a9e081e59f437f43f97923b36f267

SHA1
62fbded1ed02be2ffb23219f4c5ecbc2e682b7b6

SHA256
f71346a67ae691571e82320502300f83ec5825227e44b13c2750292aadac7a3d

SHA512
cf9dd6e511a6b5efaf2c99b23215f6342f3657a5bf006ebb009a4e5e047e9f4abd2120bf124e8e992a10f9179bc6bdca3e6b3929f66d4b504061c1f3cb67b786

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
72B

MD5
faa75698fad50c5ac79911616036ec2e

SHA1
823e902adccb5e28dc61124604f93de240914873

SHA256
cef77f43a0d276464c253559f6ef3a9cdf0f4bbff837b705a2ec5515bb92a3a2

SHA512
b3ebdba50e79dcc2e7d4ba992805aa0140ab8491535c6dfc45302e4105f1b5f2bec460a2261ff3fa401c5e15dd1137275b34b186a84c1dc68103db1ac95ef70c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe582333.TMP

Filesize
72B

MD5
2f67b37a3e5b7e68a71f90e6b85402b9

SHA1
d66a8a334c1c08adf48a9b570b81a2cba82273a1

SHA256
3c10bbc611fb7aaf39b385b285a9b1cba000d47c1f915d205b5aa148a6690b89

SHA512
6da0119481af4e352d1fc973b80a3d37de1597fb44380f5908e24ccb757ba6de2ab0b9b632dbd70c6d09bf6d5d460d485d0ac7c419c5d665d98dce15bbae1553

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\000003.log

Filesize
664B

MD5
5f26d33a224b9b46ecb85d59d4bab0dc

SHA1
9480d5167c11e10ceb5bdd2bd34aa44286d0484c

SHA256
7237b765200b65d3dc45cab919723f1eeea38b17eaabc14d87c517bf42a96e87

SHA512
1381133114d1b64d89278840224f3017eaccf22f61108cf08ecd0f642374a02d9e1d24b60d5d40332419cf2763febece336b04d06c317b76453d4afdd5f797a6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG

Filesize
350B

MD5
7fb4731c39cf1bc851eea835ed1d3a77

SHA1
0b4a9c43b62bc6af5dc57063058b2f8c9003936b

SHA256
eb687c3c1a0529924743055b0cf129b54d33efb991523e32c034f592396be78c

SHA512
4ef19b3a2aeb7df4553bb6dc16f9e82aa02fece9e143dc6381c73b3d08e7c4de15d64e1834749fbb9cc3f532abaa18a4944b5ee08c4aa25fed9ca03b830b27b1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG

Filesize
326B

MD5
42d7977087c3fb250ae3b37c9681595d

SHA1
454ff763201ba485b4bbdc93a98eb71cfeb21c5b

SHA256
0f0f55073e565364ebc64ade94c9ea0626087cd43a41f397d4faf6b9766a4afa

SHA512
c00e3592042196cd511abd8cd5473ce9b6fc35b965c08ecefe5b44ee737ded9d7a7c0dcb43b7ccb3f8aa5bb35301614a956ea7cab9417ee5d84b4c1cdc0dc579

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\Logs\sync_diagnostic.log

Filesize
22KB

MD5
8978e4a39e087255d914c7883c803366

SHA1
abb1cd109a6474ae1bb8b9ceb7eb54885049b479

SHA256
9eb0fa5c1617040aff8c5cf8553106a3a93625ecae0896dcbaa870ba15f34155

SHA512
771a5d7ef9ce198281fb745b70994d578815bb1649ba006dc189a7dfc632260f7b704653c442536aee9bc17f053ba4549a4d21bb3259483e4610bf2377037232

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Visited Links

Filesize
128KB

MD5
f665c55a3311442a47a7a6d52aa3fa75

SHA1
4a208b073f29063816001ab1451c3f2bc8e8e031

SHA256
a31a8d5b9fcce81eeb25946620290237e286af04276210eae66f99d44b2ef3a5

SHA512
6eb2dd38156bf8b505eaebffdf99c555f9727ff1dbc4f3cb2ca9f908ee0a9656cb6dbe0d45ee8bb2d69bfb9f2c2d5165a9fc1913108601975066a698053ea516

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Cloud Config\CloudConfigLog

Filesize
462B

MD5
22d06ed4b9364b770c6a9268494f90e7

SHA1
c804c8b62b47464e1c22cf1cd7c1709189f10dfd

SHA256
4478b29f8f154ff65a9162dfbf95b733b63a2f47bd115b1dca81b9dad672f5a3

SHA512
0b951c18e26c0377fe8abcdf5b5702e62e47e53d6681dfc2a97fa8ace56da908231f44d1665207572a0d1fec3a494f82ae3001542997e456b880e5d9c44bba7d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Cloud Config\CloudConfigLog

Filesize
460B

MD5
17173c9b44fcdc5103cac7e3b7f60b9c

SHA1
758b3cbb14ad67c33d28b1dd24f5222f083a89d7

SHA256
f1736cc2cf0ffe81f9a83c2d2a9e47aa24ae641e56305cc78065652d22cb5b12

SHA512
b9861df5af5f645114f6c756085b95524b122f81078315a0e642675f1f577f9d7a14ed45a61b2e6f0bf689c8f36880669e400d5ae0e99ccfc1f7bf30a79ff9f4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Wallet\128.18340.18330.1\json\wallet\wallet-checkout-eligible-sites.json

Filesize
23KB

MD5
16d41ebc643fd34addf3704a3be1acdd

SHA1
b7fadc8afa56fbf4026b8c176112632c63be58a0

SHA256
b962497993e2cd24039474bc84be430f8f6e6ab0f52010e90351dc3ff259336c

SHA512
8d58aa30613a2376ccc729278d166a9b3ec87eca95544b9dec1ee9300e7dd987326ea42d05dca3f1cc08186685f2fdaf53c24fd2b756c1ed9f2b46436689dc74

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Wallet\128.18340.18330.1\json\wallet\wallet-notification-config.json

Filesize
804B

MD5
4cdefd9eb040c2755db20aa8ea5ee8f7

SHA1
f649fcd1c12c26fb90906c4c2ec0a9127af275f4

SHA256
bb26ce6fe9416918e9f92fcc4a6fe8a641eceea54985356637991cf6d768f9fd

SHA512
7e23b91eab88c472eec664f7254c5513fc5de78e2e0151b0bcc86c3cd0bf2cb5d8bb0345d27afdd9f8fcb10be96feaa753f09e301fa92b8d76f4300600577209

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Wallet\128.18340.18330.1\json\wallet\wallet-stable.json

Filesize
81KB

MD5
2e7d07dadfdac9adcabe5600fe21e3be

SHA1
d4601f65c6aa995132f4fce7b3854add5e7996a7

SHA256
56090563e8867339f38c025eafb152ffe40b9cfa53f2560c6f8d455511a2346a

SHA512
5cd1c818253e75cc02fccec46aeb34aeff95ea202aa48d4de527f4558c00e69e4cfd74d5cacfcf1bcd705fe6ff5287a74612ee69b5cc75f9428acfbdb4010593

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Wallet\128.18340.18330.1\json\wallet\wallet-tokenization-config.json

Filesize
34KB

MD5
ae3bd0f89f8a8cdeb1ea6eea1636cbdd

SHA1
1801bc211e260ba8f8099727ea820ecf636c684a

SHA256
0088d5ebd8360ad66bd7bcc80b9754939775d4118cb7605fc1f514c707f0e20d

SHA512
69aff97091813d9d400bb332426c36e6b133a4b571b521e8fb6ad1a2b8124a3c5da8f3a9c52b8840152cf7adbd2ac653102aa2210632aa64b129cf7704d5b4fa

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\FirstPartySetsPreloaded\2024.8.10.0\LICENSE

Filesize
1KB

MD5
ee002cb9e51bb8dfa89640a406a1090a

SHA1
49ee3ad535947d8821ffdeb67ffc9bc37d1ebbb2

SHA256
3dbd2c90050b652d63656481c3e5871c52261575292db77d4ea63419f187a55b

SHA512
d1fdcc436b8ca8c68d4dc7077f84f803a535bf2ce31d9eb5d0c466b62d6567b2c59974995060403ed757e92245db07e70c6bddbf1c3519fed300cc5b9bf9177c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Version

Filesize
13B

MD5
3e45022839c8def44fd96e24f29a9f4b

SHA1
c798352b5a0860f8edfd5c1589cf6e5842c5c226

SHA256
01a3e5d854762d8fdd01b235ce536fde31bf9a6be0596c295e3cea9aaf40f3dd

SHA512
2888982860091421f89f3d7444cacccb1938ef70fc084d3028d8a29021e6e1d83eaef62108eace2f0d590ed41ece0e443d8b564e9c9a860fc48d766edb1dc3d9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
63KB

MD5
c471ca3aecc24dbf90b076dc5220ecdc

SHA1
e71289ed2ab990b561aa5f030523e56ced2166b7

SHA256
9a8a5a9f64f654733edc4fae6f54a1bd0d8a5f2ee11c885def63697584f5bab5

SHA512
b46929abfbfc7a4f8483cb42ca4fdce194a5f7ea724c2ace06e33158fc7bd11656493e70a13b111eeceb62d1f58c3e858c8ce22a928f101f94bbf76aea56a0e0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
63KB

MD5
1771e278ff9a8bbd5bed772860146bf7

SHA1
4a2bc9c33c9e02b878aa2a1de8e7cb1f8e63b114

SHA256
b11dc40fd451713557928683b3e2614fa061fda9f8922e1911b515049fe21a08

SHA512
165ce5a2fb954ee98ce148380e9a04590e276e2442c8a08edb62402aec7ec642348757255efa92fcaa7517ada5a99d32ffef60edd52296377c1af2f66511bcfe

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
55KB

MD5
d714693ac5f17566635d3776b5fa2e0f

SHA1
148e129264d0bf1bd3ca9c47479786deb174a3a6

SHA256
42e7f21b55b1ea5872f01574b3b97f6666cff901086c62cd816939959f2bc49a

SHA512
1235a417c650aaf9d5e4fbc4749fae68e2384f2219fb319c09ba0ef8d76d4529b88f27759ab76fcbd8c7e9fce9be2f5b8ccd0d697d8790cb8033b890a2341843

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
50KB

MD5
fde55a5a3369fa8c29061f202ceccebd

SHA1
14fba41c84b548d5a5ff76e46c6e51c35551578f

SHA256
7b7d10e3acd704c3dd931c60544be8e1ee93847ee286d7e112cbcd9c7b0d4635

SHA512
092a094befe2295126061ede6844550fc2111457c41feb08864b1e5fade2547ebe97980a40e215bacd60eabc006e61e5048a7b5389adf7affbd7a8e0f9f349d8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
41KB

MD5
62eb9e578876871e649c5b522abc83ba

SHA1
a97c09eb6ceda2aa051eeee4cf51c6aae8b7a8ee

SHA256
1e19d6e17d1943d2f7d633e49a6e14a75b1aae51a94d8e22be0bbc7b2a4350e2

SHA512
df38579b23c87c555cd36c4836357145edc15b957428bbc5120712a4b3cd9e05620db9a5742996b282d5acb837851ed6e06ab5d17418814c526342eb652eead7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
55KB

MD5
ace0c4d83102862187e2c23e29355d25

SHA1
daaa77fea16aea7ac4aa4710148318eb2c5b1436

SHA256
f1f66326dff12b65b6b44579d1f943cb2c7285066617815ca8b74b7906cb7cce

SHA512
d67972131628aafbb50e7d46a3806ce5a310fbf7e4f10a0e2c096fafb6a2dd74d0586b84900752879f47f69e02345504b032443c9e78935cc712704a35e0e167

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\RevisitationBloomfilter

Filesize
392B

MD5
2addbd00ff09bad1bf7d9c23e37a6cc7

SHA1
0c4193adf62465cb21809524127d5351515f796a

SHA256
59df066b2e16f0ddcd46fe2fe7b5052fe8115d1ca2fdc1aa42c76d620423d453

SHA512
5c49f623ab5dda531361dcc31b1f5c323d951d3fea748231b251490f2a87313e165b8d39bfe1bde288e7ea2dddd0747d0c86332e5865521e2271ab671604c175

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\RevisitationBloomfilter

Filesize
392B

MD5
11a2d63cfdabf0629f61502bfd7dfbe4

SHA1
aed2c5976280593110055ad04ebf927081794564

SHA256
5f98b1e0f08ff7f849c1aae09c088ef84b87789f5935a2be07d810d9017447ad

SHA512
14262054bc6a826a7391e2bb4062d74a410e802f10aaf1ea8250b6533ea37ed0f390a469269698d2ae04a11504ffa3f7494da32ff52692fa69d0d97bd554d074

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\RevisitationBloomfilter

Filesize
392B

MD5
4535ff3eb7b5725d00331fa40732af5b

SHA1
385fe4af560e60e66c0446fba5bc98c84f36482c

SHA256
15e9e00bd674598109708222c83bba77a27aaf6a486f9c07c888f28068e65542

SHA512
124e4b329c3a7dc0630ed9be81fc1784b000cd9079ace41fa8da39d194174d41fb9f9ac2624d90140404da200a4805cf08817eae53199ff9afafaa419348d868

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\RevisitationBloomfilter

Filesize
392B

MD5
5608e7b006b04362992bc706486f7b4c

SHA1
08c145fecfb13569dddf84b3333a4c3297b915dd

SHA256
8e9753d887a06dad8858abc54355c43a7238fc516f361ad01ed9931c12c34b9d

SHA512
6ebb0448a7aad7fb776230e81ad8d3c1e0e8657cf11ef5f159f754ce7b766790051004cc4ceac524322627fc290999eb27c86150cdf07cd75e8df8f4bda77940

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\RevisitationBloomfilter

Filesize
392B

MD5
70064d17aef9540ee1bab6a6160c6b30

SHA1
ef41bd973ef5598e248e6e0dc0a96fa55f92e1df

SHA256
a24cd0f90687d4715e7ddd501be200b4c018a7caf4221a2ef6f9003072d6b8fa

SHA512
4bb4d5553d18f3c6018e7fdfc14cc563262a3776cf3bda1caf79df3ba89ad77069cdfb3fa15fcd92f1ce6f87f7bc00b03a009adea4fc06c24ec5dd3f74b4f555

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\RevisitationBloomfilter~RFe57ecc1.TMP

Filesize
392B

MD5
d4ada3b54bb946db4f4647dd5c324774

SHA1
3447dfe9428681552e8dab65556e056c3ae6f01e

SHA256
134d59b7420ef1c8ca4c41e734feaffe0578bf945133f19468c6f5b1338a13d6

SHA512
503799def5c58bbc9268ef8a18bb734da426c5bcf212d405616c38cfc705f9c3ad5cc91878de1fda62938c48cc291f94b21198f82aac620e10d5f5fe948282e4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Typosquatting\2025.3.15.1\typosquatting_list.pb

Filesize
631KB

MD5
ad013f0723d332e26a9101a81483661e

SHA1
a3db6536228681288dbf39d4a94d2d8f11e77d3f

SHA256
96fb259d4c8d3ed7d7c657b6aecc8ccd2b0730b11244a83499c0d8dab91087d5

SHA512
b2c700ac36657d288cbe0bdbbe7856299d6af24e00fce8f9d78434ac2f10fc82f9399b03cd5995817721a0d252976f99424062e5b79d0281d8163aa5af330f32

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Variations

Filesize
86B

MD5
961e3604f228b0d10541ebf921500c86

SHA1
6e00570d9f78d9cfebe67d4da5efe546543949a7

SHA256
f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed

SHA512
535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

Filesize
7KB

MD5
46e61a4b74a323d8e75780c48bc5169e

SHA1
f9c87b75d6634f1ca8002502fcbd7e5924860bda

SHA256
07b528dbb9ea1ccb9ab1439c0956eace596f627c13e2d969db75278848a21a34

SHA512
f6865428077a76d23998afbea58ad10360c4edec200a2f5d3a9616ab3967dcf7415ac9ccede3b64599ecea46fedbf826f1a9699d57bbb5f07a8539227aaf6420

Download Submit
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\Notification\notification_fast.bundle.js.LICENSE.txt

Filesize
551B

MD5
7bf61e84e614585030a26b0b148f4d79

SHA1
c4ffbc5c6aa599e578d3f5524a59a99228eea400

SHA256
38ed54eb53300fdb6e997c39c9fc83a224a1fd9fa06a0b6d200aa12ea278c179

SHA512
ca5f2d3a4f200371927c265b9fb91b8bcd0fbad711559f796f77b695b9038638f763a040024ed185e67be3a7b58fab22a6f8114e73fdbd1cccdda6ef94ff88f3

Download Submit
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\Tokenized-Card\tokenized-card.bundle.js.LICENSE.txt

Filesize
1KB

MD5
8595bdd96ab7d24cc60eb749ce1b8b82

SHA1
3b612cc3d05e372c5ac91124f3756bbf099b378d

SHA256
363f376ab7893c808866a830fafbcd96ae6be93ec7a85fabf52246273cf56831

SHA512
555c0c384b6fcfc2311b47c0b07f8e34243de528cf1891e74546b6f4cda338d75c2e2392827372dc39e668ed4c2fd1a02112d8136d2364f9cab9ee4fa1bd87f5

Download Submit
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\json\i18n-tokenized-card\fr-CA\strings.json

Filesize
2KB

MD5
cd247582beb274ca64f720aa588ffbc0

SHA1
4aaeef0905e67b490d4a9508ed5d4a406263ed9c

SHA256
c67b555372582b07df86a6ce3329a854e349ba9525d7be0672517bab0ac14db5

SHA512
bf8fa4bd7c84038fae9eddb483ae4a31d847d5d47b408b3ea84d46d564f15dfc2bae6256eac4a852dd1c4ad8e58bc542e3df30396be05f30ed07e489ebe52895

Download Submit
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1210670712\manifest.json

Filesize
121B

MD5
fde1edabd926edaf85bd8dcfd6d26f0d

SHA1
380c447a4df3871885c99d926edd1e689f247b99

SHA256
3bab6a96aa24d25d5f838199dff00837be00480f92a559d30a24f67334e02a2a

SHA512
acc5b7ee98a6652a74477d2a9b295ecdacfd0182b75931653d373fdb15c52d1d869bbe3a41e4a79db36ed91ed55c39c47526268b56b123e9b7f19479bbe8dc13

Download Submit
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1844895517\_metadata\verified_contents.json

Filesize
1KB

MD5
68e6b5733e04ab7bf19699a84d8abbc2

SHA1
1c11f06ca1ad3ed8116d356ab9164fd1d52b5cf0

SHA256
f095f969d6711f53f97747371c83d5d634eaef21c54cb1a6a1cc5b816d633709

SHA512
9dc5d824a55c969820d5d1fbb0ca7773361f044ae0c255e7c48d994e16ce169fceac3de180a3a544ebef32337ea535683115584d592370e5fe7d85c68b86c891

Download Submit
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1844895517\manifest.fingerprint

Filesize
66B

MD5
8294c363a7eb84b4fc2faa7f8608d584

SHA1
00df15e2d5167f81c86bca8930d749ebe2716f55

SHA256
c6602cb5c85369350d8351675f006fc58aea20b8abf922a2c64700070daaa694

SHA512
22ed0211822f6f60fe46184fb6e5e7fcb2b3a9d2e19f25fb6e84e1ca3a5d645183959309549cdb07c999b345cfdd9a1351f3474e03fb8d451b0f093d44844d7c

Download Submit
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1844895517\manifest.json

Filesize
85B

MD5
c3419069a1c30140b77045aba38f12cf

SHA1
11920f0c1e55cadc7d2893d1eebb268b3459762a

SHA256
db9a702209807ba039871e542e8356219f342a8d9c9ca34bcd9a86727f4a3a0f

SHA512
c5e95a4e9f5919cb14f4127539c4353a55c5f68062bf6f95e1843b6690cebed3c93170badb2412b7fb9f109a620385b0ae74783227d6813f26ff8c29074758a1

Download Submit
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1844895517\sets.json

Filesize
9KB

MD5
eea4913a6625beb838b3e4e79999b627

SHA1
1b4966850f1b117041407413b70bfa925fd83703

SHA256
20ef4de871ece3c5f14867c4ae8465999c7a2cc1633525e752320e61f78a373c

SHA512
31b1429a5facd6787f6bb45216a4ab1c724c79438c18ebfa8c19ced83149c17783fd492a03197110a75aaf38486a9f58828ca30b58d41e0fe89dfe8bdfc8a004

Download Submit
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_1993293123\manifest.json

Filesize
1003B

MD5
578c9dbc62724b9d481ec9484a347b37

SHA1
a6f5a3884fd37b7f04f93147f9498c11ed5c2c2d

SHA256
005a2386e5da2e6a5975f1180fe9b325da57c61c0b4f1b853b8bcf66ec98f0a0

SHA512
2060eb35fb0015926915f603c8e1742b448a21c5a794f9ec2bebd04e170184c60a31cee0682f4fd48b65cff6ade70befd77ba0446cc42d6fe1de68d93b8ea640

Download Submit
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_2092317199\manifest.json

Filesize
145B

MD5
0df2306638bd60162686e9c4bafbd505

SHA1
ef9e16bf867f7950d5a30172e1d34d38686b0e72

SHA256
fd7b554588c5e72506a0bfed89bc298911a5649b9f5168ad7c1804d1c75de42e

SHA512
73fca229097631104cf352061d62455b6c5520bf59777520165719d2368b0e77f3ce66f52873fec53ac60e35274bf397ba321bc62610f0b7b172a7c5c4975174

Download Submit
C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping468_529771956\manifest.json

Filesize
118B

MD5
56decbaf515f574521f86e481e880496

SHA1
cf86b7e930bccc9168458b7202ff89b50a41a8e3

SHA256
4aa32c5d74a694c56869211d6ff4a3d61334b9b61659dab631eb6c285416c608

SHA512
669804a28a9e1adde2e259c2a0442f2d8c054908fb1c382db27d6f08353f1d8e3ba495ac18ad4746aac4d19eeac67594f3b2b0789a607ceae70c445d07ba3196

Download Submit