hxxps://tinyurl[.]com/u3mdn6xz

Analysis

max time kernel
142s
max time network
147s
platform
windows10-2004_x64
resource
win10v2004-20250314-en
resource tags

arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
submitted
16/03/2025, 19:56 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://tinyurl.com/u3mdn6xz

Score

4^/10

discovery

Malware Config

Signatures

Drops file in Program Files directory 12 IoCs

description	ioc	Process
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4808_1263801271\manifest.fingerprint	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4808_1891330442\manifest.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4808_726743354\manifest.fingerprint	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4808_1263801271\manifest.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4808_1263801271\smart_switch_list.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4808_1891330442\manifest.fingerprint	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4808_430549032\manifest.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4808_430549032\protocols.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4808_430549032\manifest.fingerprint	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4808_726743354\manifest.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4808_726743354\nav_config.json	msedge.exe
File created	C:\Program Files\chrome_Unpacker_BeginUnzipping4808_1263801271\office_endpoints_list.json	msedge.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Checks processor information in registry 2 TTPs 4 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	msedge.exe

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe

Modifies data under HKEY_USERS 3 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	msedge.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133866286152937740"	msedge.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	msedge.exe

Modifies registry class 4 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1f3427c8-5c10-4210-aa03-2ee45287d668}\Instance\	msedge.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-805952410-2104024357-1716932545-1000\{9EC228C8-491C-4269-AA85-30E1340F33A1}	msedge.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1f3427c8-5c10-4210-aa03-2ee45287d668}\Instance\	msedge.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-805952410-2104024357-1716932545-1000\{FBD35449-D929-4236-A30D-179FB0F7014F}	msedge.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
4808	msedge.exe
4808	msedge.exe
640	msedge.exe
640	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 6 IoCs

pid	Process
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe

Suspicious use of FindShellTrayWindow 27 IoCs

pid	Process
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe
2348	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2348 wrote to memory of 3400	2348	msedge.exe	86
PID 2348 wrote to memory of 3400	2348	msedge.exe	86
PID 2348 wrote to memory of 4800	2348	msedge.exe	87
PID 2348 wrote to memory of 4800	2348	msedge.exe	87
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 3636	2348	msedge.exe	88
PID 2348 wrote to memory of 4256	2348	msedge.exe	89
PID 2348 wrote to memory of 4256	2348	msedge.exe	89
PID 2348 wrote to memory of 4256	2348	msedge.exe	89
PID 2348 wrote to memory of 4256	2348	msedge.exe	89
PID 2348 wrote to memory of 4256	2348	msedge.exe	89
PID 2348 wrote to memory of 4256	2348	msedge.exe	89
PID 2348 wrote to memory of 4256	2348	msedge.exe	89
PID 2348 wrote to memory of 4256	2348	msedge.exe	89
PID 2348 wrote to memory of 4256	2348	msedge.exe	89

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument https://tinyurl.com/u3mdn6xz
1⤵
- Checks processor information in registry
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Modifies registry class
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2348
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=133.0.6943.99 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=133.0.3065.69 --initial-client-data=0x23c,0x240,0x244,0x238,0x264,0x7ff968e0f208,0x7ff968e0f214,0x7ff968e0f220
  2⤵
  PID:3400
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --string-annotations --always-read-main-dll --field-trial-handle=1824,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=2220 /prefetch:3
  2⤵
  PID:4800
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --string-annotations --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --always-read-main-dll --field-trial-handle=2184,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=2180 /prefetch:2
  2⤵
  PID:3636
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --string-annotations --always-read-main-dll --field-trial-handle=2456,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=2608 /prefetch:8
  2⤵
  PID:4256
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --always-read-main-dll --field-trial-handle=3540,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=3564 /prefetch:1
  2⤵
  PID:5028
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --always-read-main-dll --field-trial-handle=3544,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=3568 /prefetch:1
  2⤵
  PID:1364
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --always-read-main-dll --field-trial-handle=4228,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=4236 /prefetch:1
  2⤵
  PID:5052
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --extension-process --renderer-sub-type=extension --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --always-read-main-dll --field-trial-handle=4252,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=3496 /prefetch:2
  2⤵
  PID:4740
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5216,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=4240 /prefetch:8
  2⤵
  PID:4188
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5328,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=5320 /prefetch:8
  2⤵
  PID:1156
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5452,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=5284 /prefetch:8
  2⤵
  PID:4532
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-US --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4580,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=5396 /prefetch:8
  2⤵
  PID:4856
- C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5896,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=5924 /prefetch:8
  2⤵
  PID:3664
- C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5896,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=5924 /prefetch:8
  2⤵
  PID:3132
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6056,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=6060 /prefetch:8
  2⤵
  PID:392
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6108,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=6120 /prefetch:8
  2⤵
  PID:1348
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6160,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=6212 /prefetch:8
  2⤵
  PID:3492
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6316,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=6384 /prefetch:8
  2⤵
  PID:3664
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6304,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=6524 /prefetch:8
  2⤵
  PID:3500
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6544,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=6692 /prefetch:8
  2⤵
  PID:2276
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6832,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=6844 /prefetch:8
  2⤵
  PID:1524
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=6680,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=6260 /prefetch:8
  2⤵
  PID:4328
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --always-read-main-dll --field-trial-handle=6276,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=6164 /prefetch:1
  2⤵
  PID:5028
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --always-read-main-dll --field-trial-handle=4412,i,926321072222644285,12226065695950485083,262144 --variations-seed-version --mojo-platform-channel-handle=6948 /prefetch:1
  2⤵
  PID:640
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window
  2⤵
  - Drops file in Program Files directory
  - Checks processor information in registry
  - Enumerates system info in registry
  - Modifies data under HKEY_USERS
  - Modifies registry class
  - Suspicious behavior: EnumeratesProcesses
  PID:4808
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=133.0.6943.99 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=133.0.3065.69 --initial-client-data=0x23c,0x240,0x244,0x238,0x264,0x7ff968e0f208,0x7ff968e0f214,0x7ff968e0f220
    3⤵
    PID:5024
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --string-annotations --subproc-heap-profiling --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --always-read-main-dll --field-trial-handle=2296,i,9674197567392085101,10608739122849007648,262144 --variations-seed-version --mojo-platform-channel-handle=2292 /prefetch:2
    3⤵
    PID:4420
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --string-annotations --subproc-heap-profiling --always-read-main-dll --field-trial-handle=1940,i,9674197567392085101,10608739122849007648,262144 --variations-seed-version --mojo-platform-channel-handle=2340 /prefetch:3
    3⤵
    PID:4496
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --string-annotations --subproc-heap-profiling --always-read-main-dll --field-trial-handle=2548,i,9674197567392085101,10608739122849007648,262144 --variations-seed-version --mojo-platform-channel-handle=2696 /prefetch:8
    3⤵
    PID:4448
- - C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --subproc-heap-profiling --always-read-main-dll --field-trial-handle=4204,i,9674197567392085101,10608739122849007648,262144 --variations-seed-version --mojo-platform-channel-handle=4496 /prefetch:8
    3⤵
    PID:1608
- - C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --subproc-heap-profiling --always-read-main-dll --field-trial-handle=4204,i,9674197567392085101,10608739122849007648,262144 --variations-seed-version --mojo-platform-channel-handle=4496 /prefetch:8
    3⤵
    PID:1372
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=PooledProcess2 --lang=en-US --service-sandbox-type=utility --video-capture-use-gpu-memory-buffer --string-annotations --subproc-heap-profiling --always-read-main-dll --field-trial-handle=4588,i,9674197567392085101,10608739122849007648,262144 --variations-seed-version --mojo-platform-channel-handle=4572 /prefetch:8
    3⤵
    PID:3920
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --subproc-heap-profiling --always-read-main-dll --field-trial-handle=4536,i,9674197567392085101,10608739122849007648,262144 --variations-seed-version --mojo-platform-channel-handle=4688 /prefetch:8
    3⤵
    PID:396
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --subproc-heap-profiling --always-read-main-dll --field-trial-handle=4508,i,9674197567392085101,10608739122849007648,262144 --variations-seed-version --mojo-platform-channel-handle=4652 /prefetch:8
    3⤵
    PID:448
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --subproc-heap-profiling --always-read-main-dll --field-trial-handle=4540,i,9674197567392085101,10608739122849007648,262144 --variations-seed-version --mojo-platform-channel-handle=4604 /prefetch:8
    3⤵
    PID:1392
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --subproc-heap-profiling --always-read-main-dll --field-trial-handle=4632,i,9674197567392085101,10608739122849007648,262144 --variations-seed-version --mojo-platform-channel-handle=4348 /prefetch:8
    3⤵
    PID:4344
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --subproc-heap-profiling --always-read-main-dll --field-trial-handle=5012,i,9674197567392085101,10608739122849007648,262144 --variations-seed-version --mojo-platform-channel-handle=3512 /prefetch:8
    3⤵
    PID:4316
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --subproc-heap-profiling --always-read-main-dll --field-trial-handle=5004,i,9674197567392085101,10608739122849007648,262144 --variations-seed-version --mojo-platform-channel-handle=4784 /prefetch:8
    3⤵
    PID:2952
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --subproc-heap-profiling --always-read-main-dll --field-trial-handle=4916,i,9674197567392085101,10608739122849007648,262144 --variations-seed-version --mojo-platform-channel-handle=4960 /prefetch:8
    3⤵
    PID:3108
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --string-annotations --subproc-heap-profiling --gpu-preferences=UAAAAAAAAADoAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAABCAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --always-read-main-dll --field-trial-handle=4900,i,9674197567392085101,10608739122849007648,262144 --variations-seed-version --mojo-platform-channel-handle=4952 /prefetch:8
    3⤵
    - Suspicious behavior: EnumeratesProcesses
    PID:640

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe"
1⤵
PID:1688

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe"
1⤵
PID:1616

Network

DNS

edge.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

edge.microsoft.com

IN A

Response

edge.microsoft.com

IN CNAME

edge-domain.trafficmanager.net

edge-domain.trafficmanager.net

IN CNAME

edge-microsoft-com.dual-a-0036.a-msedge.net

edge-microsoft-com.dual-a-0036.a-msedge.net

IN CNAME

dual-a-0036.a-msedge.net

dual-a-0036.a-msedge.net

IN A

13.107.21.239

dual-a-0036.a-msedge.net

IN A

204.79.197.239
DNS

edge.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

edge.microsoft.com

IN Unknown

Response

edge.microsoft.com

IN CNAME

edge-domain.trafficmanager.net

edge-domain.trafficmanager.net

IN CNAME

edge-microsoft-com.dual-a-0036.a-msedge.net

edge-microsoft-com.dual-a-0036.a-msedge.net

IN CNAME

dual-a-0036.a-msedge.net
DNS

tinyurl.com

msedge.exe

Remote address:

8.8.8.8:53

Request

tinyurl.com

IN A

Response

tinyurl.com

IN A

104.17.112.233

tinyurl.com

IN A

104.18.111.161
DNS

tinyurl.com

msedge.exe

Remote address:

8.8.8.8:53

Request

tinyurl.com

IN Unknown

Response

tinyurl.com

IN Unknown

h3h2hp�ho�GE� A� �H�(��x� .�)��Lx�EJ�w�s'xٌ>cloudflare-ech.com &Ghp�&Gho�
DNS

edge.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

edge.microsoft.com

IN A

Response

edge.microsoft.com

IN CNAME

edge-domain.trafficmanager.net

edge-domain.trafficmanager.net

IN CNAME

edge-microsoft-com.dual-a-0036.a-msedge.net

edge-microsoft-com.dual-a-0036.a-msedge.net

IN CNAME

dual-a-0036.a-msedge.net

dual-a-0036.a-msedge.net

IN A

204.79.197.239

dual-a-0036.a-msedge.net

IN A

13.107.21.239
DNS

edge.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

edge.microsoft.com

IN Unknown

Response

edge.microsoft.com

IN CNAME

edge-domain.trafficmanager.net

edge-domain.trafficmanager.net

IN CNAME

edge-microsoft-com.dual-a-0036.a-msedge.net
DNS

clients2.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

clients2.google.com

IN A

Response

clients2.google.com

IN CNAME

clients.l.google.com

clients.l.google.com

IN A

216.58.204.78
DNS

clients2.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

clients2.google.com

IN Unknown

Response

clients2.google.com

IN CNAME

clients.l.google.com
GET

http://edge.microsoft.com/browsernetworktime/time/1/current?cup2key=2:GA5uErQ13wCqGFOLObCiHwYlVUlodpghbBiSJ-M2_9A&cup2hreq=e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

msedge.exe

Remote address:

13.107.21.239:80

Request

GET /browsernetworktime/time/1/current?cup2key=2:GA5uErQ13wCqGFOLObCiHwYlVUlodpghbBiSJ-M2_9A&cup2hreq=e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP/1.1
Host: edge.microsoft.com
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
Sec-Mesh-Client-Edge-Version: 133.0.3065.69
Sec-Mesh-Client-Edge-Channel: stable
Sec-Mesh-Client-OS: Windows
Sec-Mesh-Client-OS-Version: 10.0.19041
Sec-Mesh-Client-Arch: x86_64
Sec-Mesh-Client-WebView: 0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK

Cache-Control: no-store, must-revalidate, no-cache, max-age=0
Pragma: no-cache
Content-Length: 102
Content-Type: application/json
Content-Encoding: gzip
Expires: Mon, 01 Jan 1990 00:00:00 GMT
X-Frame-Options: sameorigin
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
x-cup-server-proof: 3044022046122C3011A6BD154A54AC57477918240981FF27DD44BCC87691DC5C1EDEF4400220685DA8186FBAA11C0D74E17596D6EDB6CC33FF21FC66707ACEC328E847420EA6:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Content-Disposition: attachment; filename='json.txt'
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: FC72F23C7C9D425FADA55191960A3E26 Ref B: FRA31EDGE0408 Ref C: 2025-03-16T19:56:53Z
Date: Sun, 16 Mar 2025 19:56:53 GMT
DNS

copilot.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

copilot.microsoft.com

IN A

Response

copilot.microsoft.com

IN CNAME

copilot-copilot-msft-com.trafficmanager.net

copilot-copilot-msft-com.trafficmanager.net

IN CNAME

copilot.microsoft.com.edgekey.net

copilot.microsoft.com.edgekey.net

IN CNAME

e107108.dscx.akamaiedge.net

e107108.dscx.akamaiedge.net

IN A

92.123.128.179

e107108.dscx.akamaiedge.net

IN A

92.123.128.185

e107108.dscx.akamaiedge.net

IN A

92.123.128.156

e107108.dscx.akamaiedge.net

IN A

92.123.128.153
DNS

copilot.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

copilot.microsoft.com

IN Unknown

Response

copilot.microsoft.com

IN CNAME

copilot-copilot-msft-com.trafficmanager.net

copilot-copilot-msft-com.trafficmanager.net

IN CNAME

copilot.microsoft.com.edgekey.net

copilot.microsoft.com.edgekey.net

IN CNAME

e107108.dscx.akamaiedge.net
DNS

clients2.googleusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

clients2.googleusercontent.com

IN A

Response

clients2.googleusercontent.com

IN CNAME

googlehosted.l.googleusercontent.com

googlehosted.l.googleusercontent.com

IN A

142.250.178.1
DNS

clients2.googleusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

clients2.googleusercontent.com

IN Unknown

Response

clients2.googleusercontent.com

IN CNAME

googlehosted.l.googleusercontent.com
DNS

www.roblox.com.ni

msedge.exe

Remote address:

8.8.8.8:53

Request

www.roblox.com.ni

IN A

Response

www.roblox.com.ni

IN A

5.252.33.158
DNS

www.roblox.com.ni

msedge.exe

Remote address:

8.8.8.8:53

Request

www.roblox.com.ni

IN Unknown

Response
DNS

games.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

games.roblox.com

IN A

Response

games.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com

edge-term4-ams2.roblox.com

IN A

128.116.21.3
DNS

msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com

IN A

Response

msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com

IN CNAME

star.sf.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.com

star.sf.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.com

IN CNAME

cdp-f-ssl-tlu-net.trafficmanager.net

cdp-f-ssl-tlu-net.trafficmanager.net

IN CNAME

star.sb.tlu.dl.delivery.mp.microsoft.com.edgesuite.net

star.sb.tlu.dl.delivery.mp.microsoft.com.edgesuite.net

IN CNAME

a2033.dscd.akamai.net

a2033.dscd.akamai.net

IN A

95.101.137.17

a2033.dscd.akamai.net

IN A

95.101.137.14
DNS

msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com

IN Unknown

Response

msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com

IN CNAME

star.sf.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.com

star.sf.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.com

IN CNAME

cdp-f-ssl-tlu-net.trafficmanager.net

cdp-f-ssl-tlu-net.trafficmanager.net

IN CNAME

star.sb.tlu.dl.delivery.mp.microsoft.com.edgesuite.net

star.sb.tlu.dl.delivery.mp.microsoft.com.edgesuite.net

IN CNAME

a2033.dscd.akamai.net
DNS

g.bing.com

Remote address:

8.8.8.8:53

Request

g.bing.com

IN A

Response

g.bing.com

IN CNAME

g-bing-com.ax-0001.ax-msedge.net

g-bing-com.ax-0001.ax-msedge.net

IN CNAME

ax-0001.ax-msedge.net

ax-0001.ax-msedge.net

IN A

150.171.28.10

ax-0001.ax-msedge.net

IN A

150.171.27.10
DNS

edge.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

edge.microsoft.com

IN A

Response

edge.microsoft.com

IN CNAME

edge-domain.trafficmanager.net

edge-domain.trafficmanager.net

IN CNAME

edge-microsoft-com.dual-a-0036.a-msedge.net

edge-microsoft-com.dual-a-0036.a-msedge.net

IN CNAME

dual-a-0036.a-msedge.net

dual-a-0036.a-msedge.net

IN A

204.79.197.239

dual-a-0036.a-msedge.net

IN A

13.107.21.239
DNS

edge.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

edge.microsoft.com

IN Unknown

Response

edge.microsoft.com

IN CNAME

edge-domain.trafficmanager.net

edge-domain.trafficmanager.net

IN CNAME

edge-microsoft-com.dual-a-0036.a-msedge.net
GET

https://g.bing.com/neg/0?action=emptycreativeimpression&adUnitId=11730597&publisherId=251978541&rid=85aadb18768e40d79f1bb20bb922df98&localId=w:BE7EDB75-9ED9-D5CE-569D-3F0F832741AE&deviceId=6896216935938610&anid=

Remote address:

150.171.28.10:443

Request

GET /neg/0?action=emptycreativeimpression&adUnitId=11730597&publisherId=251978541&rid=85aadb18768e40d79f1bb20bb922df98&localId=w:BE7EDB75-9ED9-D5CE-569D-3F0F832741AE&deviceId=6896216935938610&anid= HTTP/2.0
host: g.bing.com
accept-encoding: gzip, deflate
user-agent: WindowsShellClient/9.0.40929.0 (Windows)

Response

HTTP/2.0 204

cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1E6B3AF82A0766953F412F492BAB6733; domain=.bing.com; expires=Fri, 10-Apr-2026 19:56:59 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2EA9FE075FD640B4899251FECDDBC60F Ref B: FRA31EDGE0805 Ref C: 2025-03-16T19:56:59Z
date: Sun, 16 Mar 2025 19:56:59 GMT
GET

https://g.bing.com/neg/0?action=emptycreative&adUnitId=11730597&publisherId=251978541&rid=85aadb18768e40d79f1bb20bb922df98&localId=w:BE7EDB75-9ED9-D5CE-569D-3F0F832741AE&deviceId=6896216935938610&anid=

Remote address:

150.171.28.10:443

Request

GET /neg/0?action=emptycreative&adUnitId=11730597&publisherId=251978541&rid=85aadb18768e40d79f1bb20bb922df98&localId=w:BE7EDB75-9ED9-D5CE-569D-3F0F832741AE&deviceId=6896216935938610&anid= HTTP/2.0
host: g.bing.com
accept-encoding: gzip, deflate
user-agent: WindowsShellClient/9.0.40929.0 (Windows)
cookie: MUID=1E6B3AF82A0766953F412F492BAB6733

Response

HTTP/2.0 204

cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MSPTC=5opJvw5vDf4MLAso7S7oIgDmwcdujWc3Whttyxr7nAE; domain=.bing.com; expires=Fri, 10-Apr-2026 19:56:59 GMT; path=/; Partitioned; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 705FC8E96311436D803C3E52AA1D4027 Ref B: FRA31EDGE0805 Ref C: 2025-03-16T19:56:59Z
date: Sun, 16 Mar 2025 19:56:59 GMT
GET

https://g.bing.com/neg/0?action=emptycreativeimpression&adUnitId=11730597&publisherId=251978541&rid=85aadb18768e40d79f1bb20bb922df98&localId=w:BE7EDB75-9ED9-D5CE-569D-3F0F832741AE&deviceId=6896216935938610&anid=

Remote address:

150.171.28.10:443

Request

GET /neg/0?action=emptycreativeimpression&adUnitId=11730597&publisherId=251978541&rid=85aadb18768e40d79f1bb20bb922df98&localId=w:BE7EDB75-9ED9-D5CE-569D-3F0F832741AE&deviceId=6896216935938610&anid= HTTP/2.0
host: g.bing.com
accept-encoding: gzip, deflate
user-agent: WindowsShellClient/9.0.40929.0 (Windows)
cookie: MUID=1E6B3AF82A0766953F412F492BAB6733; MSPTC=5opJvw5vDf4MLAso7S7oIgDmwcdujWc3Whttyxr7nAE

Response

HTTP/2.0 204

cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 5395D317914346E7A2FAA86DA704CC86 Ref B: FRA31EDGE0805 Ref C: 2025-03-16T19:56:59Z
date: Sun, 16 Mar 2025 19:56:59 GMT
DNS

edgeassetservice.azureedge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

edgeassetservice.azureedge.net

IN A

Response

edgeassetservice.azureedge.net

IN CNAME

edgeassetservice.afd.azureedge.net

edgeassetservice.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net

s-part-0036.t-0009.t-msedge.net

IN A

13.107.246.64
DNS

edgeassetservice.azureedge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

edgeassetservice.azureedge.net

IN Unknown

Response

edgeassetservice.azureedge.net

IN CNAME

edgeassetservice.afd.azureedge.net

edgeassetservice.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net
DNS

css.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

css.rbxcdn.com

IN A

Response

css.rbxcdn.com

IN CNAME

cssns1.rbxcdn.com

cssns1.rbxcdn.com

IN CNAME

cssaws.rbxcdn.com

cssaws.rbxcdn.com

IN CNAME

d1kpbbfl4rco16.cloudfront.net

d1kpbbfl4rco16.cloudfront.net

IN A

18.66.248.112

d1kpbbfl4rco16.cloudfront.net

IN A

18.66.248.17

d1kpbbfl4rco16.cloudfront.net

IN A

18.66.248.8

d1kpbbfl4rco16.cloudfront.net

IN A

18.66.248.89
DNS

css.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

css.rbxcdn.com

IN Unknown

Response

css.rbxcdn.com

IN CNAME

cssns1.rbxcdn.com

cssns1.rbxcdn.com

IN CNAME

cssaws.rbxcdn.com

cssaws.rbxcdn.com

IN CNAME

d1kpbbfl4rco16.cloudfront.net
DNS

static.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

static.rbxcdn.com

IN A

Response

static.rbxcdn.com

IN CNAME

staticns1.rbxcdn.com

staticns1.rbxcdn.com

IN CNAME

staticak.rbxcdn.com

staticak.rbxcdn.com

IN CNAME

static.rbxcdn.edgesuite.net

static.rbxcdn.edgesuite.net

IN CNAME

a1992.w27.akamai.net

a1992.w27.akamai.net

IN A

23.58.84.83

a1992.w27.akamai.net

IN A

23.58.84.41
DNS

static.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

static.rbxcdn.com

IN Unknown

Response

static.rbxcdn.com

IN CNAME

staticns1.rbxcdn.com

staticns1.rbxcdn.com

IN CNAME

staticak.rbxcdn.com

staticak.rbxcdn.com

IN CNAME

static.rbxcdn.edgesuite.net

static.rbxcdn.edgesuite.net

IN CNAME

a1992.w27.akamai.net
DNS

astro.rustyend.net

msedge.exe

Remote address:

8.8.8.8:53

Request

astro.rustyend.net

IN A

Response

astro.rustyend.net

IN A

5.252.33.158
DNS

astro.rustyend.net

msedge.exe

Remote address:

8.8.8.8:53

Request

astro.rustyend.net

IN Unknown

Response
DNS

js.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

js.rbxcdn.com

IN A

Response

js.rbxcdn.com

IN CNAME

jsns1.rbxcdn.com

jsns1.rbxcdn.com

IN CNAME

jsaws.rbxcdn.com

jsaws.rbxcdn.com

IN CNAME

dw04ej0wrfjel.cloudfront.net

dw04ej0wrfjel.cloudfront.net

IN A

18.66.248.11

dw04ej0wrfjel.cloudfront.net

IN A

18.66.248.73

dw04ej0wrfjel.cloudfront.net

IN A

18.66.248.16

dw04ej0wrfjel.cloudfront.net

IN A

18.66.248.6
DNS

js.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

js.rbxcdn.com

IN Unknown

Response

js.rbxcdn.com

IN CNAME

jsns1.rbxcdn.com

jsns1.rbxcdn.com

IN CNAME

jsaws.rbxcdn.com

jsaws.rbxcdn.com

IN CNAME

dw04ej0wrfjel.cloudfront.net
DNS

images.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

images.rbxcdn.com

IN A

Response

images.rbxcdn.com

IN CNAME

imagesns1.rbxcdn.com

imagesns1.rbxcdn.com

IN CNAME

imagesak.rbxcdn.com

imagesak.rbxcdn.com

IN CNAME

images.rbxcdn.edgesuite.net

images.rbxcdn.edgesuite.net

IN CNAME

a1899.dscw27.akamai.net

a1899.dscw27.akamai.net

IN A

23.58.84.8

a1899.dscw27.akamai.net

IN A

23.58.84.23
DNS

images.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

images.rbxcdn.com

IN Unknown

Response

images.rbxcdn.com

IN CNAME

imagesns1.rbxcdn.com

imagesns1.rbxcdn.com

IN CNAME

imagesaws.rbxcdn.com

imagesaws.rbxcdn.com

IN CNAME

dapx4swc8lj69.cloudfront.net
DNS

roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

roblox.com

IN A

Response

roblox.com

IN A

128.116.13.4
DNS

roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

roblox.com

IN Unknown

Response
DNS

metrics.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

metrics.roblox.com

IN A

Response

metrics.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com

edge-term4-ams2.roblox.com

IN A

128.116.21.3
DNS

metrics.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

metrics.roblox.com

IN Unknown

Response

metrics.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com
DNS

api.rustyend.net

msedge.exe

Remote address:

8.8.8.8:53

Request

api.rustyend.net

IN A

Response

api.rustyend.net

IN A

5.252.33.158
DNS

api.rustyend.net

msedge.exe

Remote address:

8.8.8.8:53

Request

api.rustyend.net

IN Unknown

Response
DNS

ecsv2.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ecsv2.roblox.com

IN A
DNS

ecsv2.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ecsv2.roblox.com

IN Unknown
DNS

ncs.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ncs.roblox.com

IN A
DNS

ncs.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ncs.roblox.com

IN Unknown
DNS

lms.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

lms.roblox.com

IN A

Response

lms.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com

edge-term4-ams2.roblox.com

IN A

128.116.21.3
DNS

lms.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

lms.roblox.com

IN Unknown

Response

lms.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com
DNS

voice.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

voice.roblox.com

IN A

Response

voice.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com

edge-term4-ams2.roblox.com

IN A

128.116.21.3
DNS

voice.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

voice.roblox.com

IN Unknown

Response

voice.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com
DNS

ecsv2.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ecsv2.roblox.com

IN A
DNS

ecsv2.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ecsv2.roblox.com

IN Unknown
DNS

ncs.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ncs.roblox.com

IN A

Response

ncs.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com

edge-term4-ams2.roblox.com

IN A

128.116.21.3
DNS

ncs.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ncs.roblox.com

IN Unknown

Response

ncs.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com
DNS

tr.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

tr.rbxcdn.com

IN A

Response

tr.rbxcdn.com

IN CNAME

trns1.rbxcdn.com

trns1.rbxcdn.com

IN CNAME

trak.rbxcdn.com

trak.rbxcdn.com

IN CNAME

tr.rbxcdn.com.edgesuite.net

tr.rbxcdn.com.edgesuite.net

IN CNAME

a1831.dscd.akamai.net

a1831.dscd.akamai.net

IN A

2.18.190.180

a1831.dscd.akamai.net

IN A

2.18.190.100
DNS

tr.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

tr.rbxcdn.com

IN Unknown

Response

tr.rbxcdn.com

IN CNAME

trns1.rbxcdn.com

trns1.rbxcdn.com

IN CNAME

trak.rbxcdn.com

trak.rbxcdn.com

IN CNAME

tr.rbxcdn.com.edgesuite.net

tr.rbxcdn.com.edgesuite.net

IN CNAME

a1831.dscd.akamai.net
GET

https://www.bing.com/th?id=OADD2.10239380885935_17P6PWS0W6YXCC7Y7&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90

Remote address:

92.123.128.193:443

Request

GET /th?id=OADD2.10239380885935_17P6PWS0W6YXCC7Y7&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90 HTTP/2.0
host: www.bing.com
accept: */*
cookie: MUID=1E6B3AF82A0766953F412F492BAB6733; MSPTC=5opJvw5vDf4MLAso7S7oIgDmwcdujWc3Whttyxr7nAE
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2050
date: Sun, 16 Mar 2025 19:57:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.ad777b5c.1742155023.1fe972d1
DNS

ecsv2.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ecsv2.roblox.com

IN A

Response

ecsv2.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com

edge-term4-ams2.roblox.com

IN A

128.116.21.3
DNS

www.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.roblox.com

IN A

Response

www.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com

edge-term4-ams2.roblox.com

IN A

128.116.21.3
DNS

www.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.roblox.com

IN Unknown

Response

www.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com
DNS

css.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

css.rbxcdn.com

IN A

Response

css.rbxcdn.com

IN CNAME

cssns1.rbxcdn.com

cssns1.rbxcdn.com

IN CNAME

cssak.rbxcdn.com

cssak.rbxcdn.com

IN CNAME

css.rbxcdn.edgesuite.net

css.rbxcdn.edgesuite.net

IN CNAME

a1962.dscw27.akamai.net

a1962.dscw27.akamai.net

IN A

23.58.84.80

a1962.dscw27.akamai.net

IN A

23.58.84.77
DNS

css.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

css.rbxcdn.com

IN Unknown

Response

css.rbxcdn.com

IN CNAME

cssns1.rbxcdn.com

cssns1.rbxcdn.com

IN CNAME

cssak.rbxcdn.com

cssak.rbxcdn.com

IN CNAME

css.rbxcdn.edgesuite.net

css.rbxcdn.edgesuite.net

IN CNAME

a1962.dscw27.akamai.net
DNS

static.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

static.rbxcdn.com

IN A

Response

static.rbxcdn.com

IN CNAME

staticns1.rbxcdn.com

staticns1.rbxcdn.com

IN CNAME

staticak.rbxcdn.com

staticak.rbxcdn.com

IN CNAME

static.rbxcdn.edgesuite.net

static.rbxcdn.edgesuite.net

IN CNAME

a1992.w27.akamai.net

a1992.w27.akamai.net

IN A

23.58.84.41

a1992.w27.akamai.net

IN A

23.58.84.83
DNS

static.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

static.rbxcdn.com

IN Unknown

Response

static.rbxcdn.com

IN CNAME

staticns1.rbxcdn.com

staticns1.rbxcdn.com

IN CNAME

staticak.rbxcdn.com

staticak.rbxcdn.com

IN CNAME

static.rbxcdn.edgesuite.net

static.rbxcdn.edgesuite.net

IN CNAME

a1992.w27.akamai.net
DNS

js.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

js.rbxcdn.com

IN A

Response

js.rbxcdn.com

IN CNAME

jsns1.rbxcdn.com

jsns1.rbxcdn.com

IN CNAME

jsaws.rbxcdn.com

jsaws.rbxcdn.com

IN CNAME

dw04ej0wrfjel.cloudfront.net

dw04ej0wrfjel.cloudfront.net

IN A

18.66.248.6

dw04ej0wrfjel.cloudfront.net

IN A

18.66.248.11

dw04ej0wrfjel.cloudfront.net

IN A

18.66.248.16

dw04ej0wrfjel.cloudfront.net

IN A

18.66.248.73
DNS

js.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

js.rbxcdn.com

IN Unknown

Response

js.rbxcdn.com

IN CNAME

jsns1.rbxcdn.com

jsns1.rbxcdn.com

IN CNAME

jsak.rbxcdn.com

jsak.rbxcdn.com

IN CNAME

jsak.rbxcdn.com.edgesuite.net

jsak.rbxcdn.com.edgesuite.net

IN CNAME

a1993.g.akamai.net
DNS

images.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

images.rbxcdn.com

IN A

Response

images.rbxcdn.com

IN CNAME

imagesns1.rbxcdn.com

imagesns1.rbxcdn.com

IN CNAME

imagesaws.rbxcdn.com

imagesaws.rbxcdn.com

IN CNAME

dapx4swc8lj69.cloudfront.net

dapx4swc8lj69.cloudfront.net

IN A

108.157.4.72

dapx4swc8lj69.cloudfront.net

IN A

108.157.4.45

dapx4swc8lj69.cloudfront.net

IN A

108.157.4.49

dapx4swc8lj69.cloudfront.net

IN A

108.157.4.107
DNS

images.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

images.rbxcdn.com

IN Unknown

Response

images.rbxcdn.com

IN CNAME

imagesns1.rbxcdn.com

imagesns1.rbxcdn.com

IN CNAME

imagesak.rbxcdn.com

imagesak.rbxcdn.com

IN CNAME

images.rbxcdn.edgesuite.net

images.rbxcdn.edgesuite.net

IN CNAME

a1899.dscw27.akamai.net
DNS

roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

roblox.com

IN A

Response

roblox.com

IN A

128.116.13.4
DNS

roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

roblox.com

IN Unknown

Response
DNS

metrics.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

metrics.roblox.com

IN A

Response

metrics.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com

edge-term4-ams2.roblox.com

IN A

128.116.21.3
DNS

metrics.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

metrics.roblox.com

IN Unknown

Response

metrics.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com
DNS

apis.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

apis.roblox.com

IN A

Response

apis.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com

edge-term4-ams2.roblox.com

IN A

128.116.21.3
DNS

apis.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

apis.roblox.com

IN Unknown

Response

apis.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com
DNS

apis.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

apis.rbxcdn.com

IN A

Response

apis.rbxcdn.com

IN CNAME

apisns1.rbxcdn.com

apisns1.rbxcdn.com

IN CNAME

apisaws.rbxcdn.com

apisaws.rbxcdn.com

IN CNAME

d3smszjb1gn4q5.cloudfront.net

d3smszjb1gn4q5.cloudfront.net

IN A

18.173.233.102

d3smszjb1gn4q5.cloudfront.net

IN A

18.173.233.23

d3smszjb1gn4q5.cloudfront.net

IN A

18.173.233.44

d3smszjb1gn4q5.cloudfront.net

IN A

18.173.233.58
DNS

apis.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

apis.rbxcdn.com

IN Unknown

Response

apis.rbxcdn.com

IN CNAME

apisns1.rbxcdn.com

apisns1.rbxcdn.com

IN CNAME

apisaws.rbxcdn.com

apisaws.rbxcdn.com

IN CNAME

d3smszjb1gn4q5.cloudfront.net
DNS

ecsv2.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ecsv2.roblox.com

IN A

Response

ecsv2.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com

edge-term4-ams2.roblox.com

IN A

128.116.21.3
DNS

ecsv2.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ecsv2.roblox.com

IN Unknown

Response

ecsv2.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com
DNS

groups.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

groups.roblox.com

IN A

Response

groups.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com

edge-term4-ams2.roblox.com

IN A

128.116.21.3
DNS

groups.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

groups.roblox.com

IN Unknown

Response

groups.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com
DNS

thumbnails.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

thumbnails.roblox.com

IN A

Response

thumbnails.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com

edge-term4-ams2.roblox.com

IN A

128.116.21.3
DNS

thumbnails.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

thumbnails.roblox.com

IN Unknown

Response

thumbnails.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com
DNS

games.roblox.com

msedge.exe

Remote address:

8.8.8.8:53

Request

games.roblox.com

IN Unknown

Response

games.roblox.com

IN CNAME

titanium.roblox.com

titanium.roblox.com

IN CNAME

edge-term4.roblox.com

edge-term4.roblox.com

IN CNAME

edge-term4-ams2.roblox.com
DNS

tr.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

tr.rbxcdn.com

IN A

Response

tr.rbxcdn.com

IN CNAME

trns1.rbxcdn.com

trns1.rbxcdn.com

IN CNAME

trak.rbxcdn.com

trak.rbxcdn.com

IN CNAME

tr.rbxcdn.com.edgesuite.net

tr.rbxcdn.com.edgesuite.net

IN CNAME

a1831.dscd.akamai.net

a1831.dscd.akamai.net

IN A

2.18.190.180

a1831.dscd.akamai.net

IN A

2.18.190.100
DNS

tr.rbxcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

tr.rbxcdn.com

IN Unknown

Response

tr.rbxcdn.com

IN CNAME

trns1.rbxcdn.com

trns1.rbxcdn.com

IN CNAME

trak.rbxcdn.com

trak.rbxcdn.com

IN CNAME

tr.rbxcdn.com.edgesuite.net

tr.rbxcdn.com.edgesuite.net

IN CNAME

a1831.dscd.akamai.net
DNS

edge.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

edge.microsoft.com

IN A

Response

edge.microsoft.com

IN CNAME

edge-domain.trafficmanager.net

edge-domain.trafficmanager.net

IN CNAME

edge-microsoft-com.dual-a-0036.a-msedge.net

edge-microsoft-com.dual-a-0036.a-msedge.net

IN CNAME

dual-a-0036.a-msedge.net

dual-a-0036.a-msedge.net

IN A

13.107.21.239

dual-a-0036.a-msedge.net

IN A

204.79.197.239
DNS

edge.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

edge.microsoft.com

IN Unknown

Response

edge.microsoft.com

IN CNAME

edge-domain.trafficmanager.net

edge-domain.trafficmanager.net

IN CNAME

edge-microsoft-com.ax-0002.ax-msedge.net
DNS

edge.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

edge.microsoft.com

IN A

Response

edge.microsoft.com

IN CNAME

edge-domain.trafficmanager.net

edge-domain.trafficmanager.net

IN CNAME

edge-microsoft-com.dual-a-0036.a-msedge.net

edge-microsoft-com.dual-a-0036.a-msedge.net

IN CNAME

dual-a-0036.a-msedge.net

dual-a-0036.a-msedge.net

IN A

204.79.197.239

dual-a-0036.a-msedge.net

IN A

13.107.21.239
DNS

edge.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

edge.microsoft.com

IN Unknown

Response

edge.microsoft.com

IN CNAME

edge-domain.trafficmanager.net

edge-domain.trafficmanager.net

IN CNAME

edge-microsoft-com.dual-a-0036.a-msedge.net
DNS

edge-consumer-static.azureedge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

edge-consumer-static.azureedge.net

IN A

Response

edge-consumer-static.azureedge.net

IN CNAME

edge-consumer-static.afd.azureedge.net

edge-consumer-static.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net

s-part-0036.t-0009.t-msedge.net

IN A

13.107.246.64
DNS

edge-consumer-static.azureedge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

edge-consumer-static.azureedge.net

IN Unknown

Response

edge-consumer-static.azureedge.net

IN CNAME

edge-consumer-static.afd.azureedge.net

edge-consumer-static.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net
DNS

c.pki.goog

Remote address:

8.8.8.8:53

Request

c.pki.goog

IN A

Response

c.pki.goog

IN CNAME

pki-goog.l.google.com

pki-goog.l.google.com

IN A

142.250.200.35
GET

http://c.pki.goog/r/r1.crl

Remote address:

142.250.200.35:80

Request

GET /r/r1.crl HTTP/1.1
Cache-Control: max-age = 3000
Connection: Keep-Alive
Accept: */*
If-Modified-Since: Thu, 25 Jul 2024 14:48:00 GMT
User-Agent: Microsoft-CryptoAPI/10.0
Host: c.pki.goog

Response

HTTP/1.1 304 Not Modified

Date: Sun, 16 Mar 2025 19:13:20 GMT
Expires: Sun, 16 Mar 2025 20:03:20 GMT
Age: 2675
Last-Modified: Thu, 25 Jul 2024 14:48:00 GMT
Cache-Control: public, max-age=3000
Vary: Accept-Encoding
DNS

static.edge.microsoftapp.net

msedge.exe

Remote address:

8.8.8.8:53

Request

static.edge.microsoftapp.net

IN A

Response

static.edge.microsoftapp.net

IN CNAME

edge-cloud-resource-static.azureedge.net

edge-cloud-resource-static.azureedge.net

IN CNAME

edge-cloud-resource-static.afd.azureedge.net

edge-cloud-resource-static.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net

s-part-0036.t-0009.t-msedge.net

IN A

13.107.246.64
DNS

static.edge.microsoftapp.net

msedge.exe

Remote address:

8.8.8.8:53

Request

static.edge.microsoftapp.net

IN Unknown

Response

static.edge.microsoftapp.net

IN CNAME

edge-cloud-resource-static.azureedge.net

edge-cloud-resource-static.azureedge.net

IN CNAME

edge-cloud-resource-static.afd.azureedge.net

edge-cloud-resource-static.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net
DNS

edge-mobile-static.azureedge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

edge-mobile-static.azureedge.net

IN A

Response

edge-mobile-static.azureedge.net

IN CNAME

edge-mobile-static.afd.azureedge.net

edge-mobile-static.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net

s-part-0036.t-0009.t-msedge.net

IN A

13.107.246.64
DNS

edge-mobile-static.azureedge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

edge-mobile-static.azureedge.net

IN Unknown

Response

edge-mobile-static.azureedge.net

IN CNAME

edge-mobile-static.afd.azureedge.net

edge-mobile-static.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net
DNS

edge-cloud-resource-static.azureedge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

edge-cloud-resource-static.azureedge.net

IN A

Response

edge-cloud-resource-static.azureedge.net

IN CNAME

edge-cloud-resource-static.afd.azureedge.net

edge-cloud-resource-static.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net

s-part-0036.t-0009.t-msedge.net

IN A

13.107.246.64
DNS

edge-cloud-resource-static.azureedge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

edge-cloud-resource-static.azureedge.net

IN Unknown

Response

edge-cloud-resource-static.azureedge.net

IN CNAME

edge-cloud-resource-static.afd.azureedge.net

edge-cloud-resource-static.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net
DNS

msedge.b.tlu.dl.delivery.mp.microsoft.com

Remote address:

8.8.8.8:53

Request

msedge.b.tlu.dl.delivery.mp.microsoft.com

IN A

Response

msedge.b.tlu.dl.delivery.mp.microsoft.com

IN CNAME

star.b.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.com

star.b.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.com

IN CNAME

cdp-f-tlu-net.trafficmanager.net

cdp-f-tlu-net.trafficmanager.net

IN CNAME

edge.ds-c7114-microsoft.global.dns.qwilted-cds.cqloud.com

edge.ds-c7114-microsoft.global.dns.qwilted-cds.cqloud.com

IN A

91.81.129.182

edge.ds-c7114-microsoft.global.dns.qwilted-cds.cqloud.com

IN A

91.81.130.134

edge.ds-c7114-microsoft.global.dns.qwilted-cds.cqloud.com

IN A

91.80.49.86

edge.ds-c7114-microsoft.global.dns.qwilted-cds.cqloud.com

IN A

91.80.49.21

edge.ds-c7114-microsoft.global.dns.qwilted-cds.cqloud.com

IN A

91.81.129.180
HEAD

http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/fb6dd03b-99d7-4cc8-a878-91c8e655c2d3?P1=1742386152&P2=404&P3=2&P4=lwR46U%2bS1EQwn1NztKuOsP%2bFQobWWVz3aDXFqwTmuxyxxNV1zymkAdMA%2b0%2fW%2fNkxbiC51ct6wSzTQJMwrVjdyQ%3d%3d

Remote address:

91.81.129.182:80

Request

HEAD /filestreamingservice/files/fb6dd03b-99d7-4cc8-a878-91c8e655c2d3?P1=1742386152&P2=404&P3=2&P4=lwR46U%2bS1EQwn1NztKuOsP%2bFQobWWVz3aDXFqwTmuxyxxNV1zymkAdMA%2b0%2fW%2fNkxbiC51ct6wSzTQJMwrVjdyQ%3d%3d HTTP/1.1
Connection: Keep-Alive
Accept: */*
Accept-Encoding: identity
User-Agent: Microsoft BITS/7.8
Host: msedge.b.tlu.dl.delivery.mp.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sun, 16 Mar 2025 19:58:19 GMT
Content-Type: application/x-chrome-extension
Content-Length: 1355
Connection: keep-alive
Age: 0
Cache-Control: public, max-age=17280000
Etag: "OKGCimQvEo/MZEGQ3/m6EKhp248="
Last-Modified: Thu, 07 Nov 2024 20:24:12 GMT
MS-CorrelationId: 80a58dcd-4396-4a6c-882d-39ca47b52e1a
MS-CV: TXVa9jC+aUmqiPqM.0
MS-RequestId: 7f239046-de46-47b7-af31-971f5e54d776
X-AspNet-Version: 4.0.30319
X-AspNetMvc-Version: 5.3
X-Cache: HIT
X-CCC: it
X-CID: 9
X-Powered-By: ASP.NET
X-Powered-By: ARR/3.0
X-Powered-By: ASP.NET
Ocn-Cache-Status: HIT
Ocn-Requestid: 10000008486848f6-4196372402-1
Ocn-Served-By: QLT
Accept-Ranges: bytes
Server: Qwilt
X-OC-Service-Type: lo
GET

http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/fb6dd03b-99d7-4cc8-a878-91c8e655c2d3?P1=1742386152&P2=404&P3=2&P4=lwR46U%2bS1EQwn1NztKuOsP%2bFQobWWVz3aDXFqwTmuxyxxNV1zymkAdMA%2b0%2fW%2fNkxbiC51ct6wSzTQJMwrVjdyQ%3d%3d

Remote address:

91.81.129.182:80

Request

GET /filestreamingservice/files/fb6dd03b-99d7-4cc8-a878-91c8e655c2d3?P1=1742386152&P2=404&P3=2&P4=lwR46U%2bS1EQwn1NztKuOsP%2bFQobWWVz3aDXFqwTmuxyxxNV1zymkAdMA%2b0%2fW%2fNkxbiC51ct6wSzTQJMwrVjdyQ%3d%3d HTTP/1.1
Connection: Keep-Alive
Accept: */*
Accept-Encoding: identity
If-Unmodified-Since: Thu, 07 Nov 2024 20:24:12 GMT
Range: bytes=0-1119
User-Agent: Microsoft BITS/7.8
Host: msedge.b.tlu.dl.delivery.mp.microsoft.com

Response

HTTP/1.1 206 Partial Content

Date: Sun, 16 Mar 2025 19:58:19 GMT
Content-Type: application/x-chrome-extension
Content-Length: 1120
Connection: keep-alive
Age: 0
Cache-Control: public, max-age=17280000
Etag: "OKGCimQvEo/MZEGQ3/m6EKhp248="
Last-Modified: Thu, 07 Nov 2024 20:24:12 GMT
MS-CorrelationId: 80a58dcd-4396-4a6c-882d-39ca47b52e1a
MS-CV: TXVa9jC+aUmqiPqM.0
MS-RequestId: 7f239046-de46-47b7-af31-971f5e54d776
X-AspNet-Version: 4.0.30319
X-AspNetMvc-Version: 5.3
X-Cache: HIT
X-CCC: it
X-CID: 9
X-Powered-By: ASP.NET
X-Powered-By: ARR/3.0
X-Powered-By: ASP.NET
Ocn-Cache-Status: HIT
Ocn-Requestid: 1000000848684af1-4196372402-2
Ocn-Served-By: QLT
Content-Range: bytes 0-1119/1355
Server: Qwilt
X-OC-Service-Type: lo
GET

http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/fb6dd03b-99d7-4cc8-a878-91c8e655c2d3?P1=1742386152&P2=404&P3=2&P4=lwR46U%2bS1EQwn1NztKuOsP%2bFQobWWVz3aDXFqwTmuxyxxNV1zymkAdMA%2b0%2fW%2fNkxbiC51ct6wSzTQJMwrVjdyQ%3d%3d

Remote address:

91.81.129.182:80

Request

GET /filestreamingservice/files/fb6dd03b-99d7-4cc8-a878-91c8e655c2d3?P1=1742386152&P2=404&P3=2&P4=lwR46U%2bS1EQwn1NztKuOsP%2bFQobWWVz3aDXFqwTmuxyxxNV1zymkAdMA%2b0%2fW%2fNkxbiC51ct6wSzTQJMwrVjdyQ%3d%3d HTTP/1.1
Connection: Keep-Alive
Accept: */*
Accept-Encoding: identity
If-Unmodified-Since: Thu, 07 Nov 2024 20:24:12 GMT
Range: bytes=1120-1354
User-Agent: Microsoft BITS/7.8
Host: msedge.b.tlu.dl.delivery.mp.microsoft.com

Response

HTTP/1.1 206 Partial Content

Date: Sun, 16 Mar 2025 19:58:21 GMT
Content-Type: application/x-chrome-extension
Content-Length: 235
Connection: keep-alive
Age: 0
Cache-Control: public, max-age=17280000
Etag: "OKGCimQvEo/MZEGQ3/m6EKhp248="
Last-Modified: Thu, 07 Nov 2024 20:24:12 GMT
MS-CorrelationId: 80a58dcd-4396-4a6c-882d-39ca47b52e1a
MS-CV: TXVa9jC+aUmqiPqM.0
MS-RequestId: 7f239046-de46-47b7-af31-971f5e54d776
X-AspNet-Version: 4.0.30319
X-AspNetMvc-Version: 5.3
X-Cache: HIT
X-CCC: it
X-CID: 9
X-Powered-By: ASP.NET
X-Powered-By: ARR/3.0
X-Powered-By: ASP.NET
Ocn-Cache-Status: HIT
Ocn-Requestid: 1000000848687ac1-4196372402-3
Ocn-Served-By: QLT
Content-Range: bytes 1120-1354/1355
Server: Qwilt
X-OC-Service-Type: lo
HEAD

http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/ef5f792e-9df7-4748-accf-02ec33a4a2c4?P1=1742386152&P2=404&P3=2&P4=hPk0KyBS%2b0kvOXKff226MBMP2hWjk%2fr01w7jGT3SDALTHypiyU9hN%2bJ4rs5Rlo1NdkgAtD6HOcG3VA3dG8%2b7Kw%3d%3d

Remote address:

91.81.129.182:80

Request

HEAD /filestreamingservice/files/ef5f792e-9df7-4748-accf-02ec33a4a2c4?P1=1742386152&P2=404&P3=2&P4=hPk0KyBS%2b0kvOXKff226MBMP2hWjk%2fr01w7jGT3SDALTHypiyU9hN%2bJ4rs5Rlo1NdkgAtD6HOcG3VA3dG8%2b7Kw%3d%3d HTTP/1.1
Connection: Keep-Alive
Accept: */*
Accept-Encoding: identity
User-Agent: Microsoft BITS/7.8
Host: msedge.b.tlu.dl.delivery.mp.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sun, 16 Mar 2025 19:58:31 GMT
Content-Type: application/x-chrome-extension
Content-Length: 1874
Connection: keep-alive
Cache-Control: public, max-age=17280000
Last-Modified: Thu, 23 Jun 2022 22:42:17 GMT
ETag: "vF1ufQ1xrhvKwTMg7iN84K3Ek/M="
X-Cache: TCP_HIT
X-AspNetMvc-Version: 5.3
MS-CorrelationId: 3883493d-9352-4b6b-97a5-5a9135ccafaa
MS-RequestId: 76779cb5-7dee-45bc-b3fb-df133d60a577
MS-CV: tvsHVu2MIE61aRYH.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Powered-By: ARR/3.0
X-Powered-By: ASP.NET
X-CID: 9
X-CCC: it
X-Azure-Ref-OriginShield: Ref A: D46EC0C311094E50A7E38E15069255DE Ref B: AMS231021014005 Ref C: 2024-03-15T01:25:02Z
X-MSEdge-Ref: Ref A: 0F4184A449C6463FA8E8BC579ADDCFF7 Ref B: MIL30EDGE1310 Ref C: 2024-03-15T16:30:31Z
Ocn-Cache-Status: HIT
Ocn-Requestid: 1000000848695f57-4196372402-4
Ocn-Served-By: QLT
Accept-Ranges: bytes
Server: Qwilt
X-OC-Service-Type: lo
GET

http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/ef5f792e-9df7-4748-accf-02ec33a4a2c4?P1=1742386152&P2=404&P3=2&P4=hPk0KyBS%2b0kvOXKff226MBMP2hWjk%2fr01w7jGT3SDALTHypiyU9hN%2bJ4rs5Rlo1NdkgAtD6HOcG3VA3dG8%2b7Kw%3d%3d

Remote address:

91.81.129.182:80

Request

GET /filestreamingservice/files/ef5f792e-9df7-4748-accf-02ec33a4a2c4?P1=1742386152&P2=404&P3=2&P4=hPk0KyBS%2b0kvOXKff226MBMP2hWjk%2fr01w7jGT3SDALTHypiyU9hN%2bJ4rs5Rlo1NdkgAtD6HOcG3VA3dG8%2b7Kw%3d%3d HTTP/1.1
Connection: Keep-Alive
Accept: */*
Accept-Encoding: identity
If-Unmodified-Since: Thu, 23 Jun 2022 22:42:17 GMT
User-Agent: Microsoft BITS/7.8
Host: msedge.b.tlu.dl.delivery.mp.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sun, 16 Mar 2025 19:58:32 GMT
Content-Type: application/x-chrome-extension
Content-Length: 1874
Connection: keep-alive
Cache-Control: public, max-age=17280000
Last-Modified: Thu, 23 Jun 2022 22:42:17 GMT
ETag: "vF1ufQ1xrhvKwTMg7iN84K3Ek/M="
X-Cache: TCP_HIT
X-AspNetMvc-Version: 5.3
MS-CorrelationId: 3883493d-9352-4b6b-97a5-5a9135ccafaa
MS-RequestId: 76779cb5-7dee-45bc-b3fb-df133d60a577
MS-CV: tvsHVu2MIE61aRYH.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Powered-By: ARR/3.0
X-Powered-By: ASP.NET
X-CID: 9
X-CCC: it
X-Azure-Ref-OriginShield: Ref A: D46EC0C311094E50A7E38E15069255DE Ref B: AMS231021014005 Ref C: 2024-03-15T01:25:02Z
X-MSEdge-Ref: Ref A: 0F4184A449C6463FA8E8BC579ADDCFF7 Ref B: MIL30EDGE1310 Ref C: 2024-03-15T16:30:31Z
Ocn-Cache-Status: HIT
Ocn-Requestid: 1000000848696185-4196372402-5
Ocn-Served-By: QLT
Accept-Ranges: bytes
Server: Qwilt
X-OC-Service-Type: lo
HEAD

http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/4643befd-79b8-4e0c-a2fb-c0e3ee78dcd5?P1=1742389758&P2=404&P3=2&P4=UwKsBTtj7Oj0H2IfoYzEH6iHPhfk0uD3Zv1FHER%2fmYumqHYt1crre0bKgk5AlpDBm%2b6NfR1mBNHMNDfK6hutNA%3d%3d

Remote address:

91.81.129.182:80

Request

HEAD /filestreamingservice/files/4643befd-79b8-4e0c-a2fb-c0e3ee78dcd5?P1=1742389758&P2=404&P3=2&P4=UwKsBTtj7Oj0H2IfoYzEH6iHPhfk0uD3Zv1FHER%2fmYumqHYt1crre0bKgk5AlpDBm%2b6NfR1mBNHMNDfK6hutNA%3d%3d HTTP/1.1
Connection: Keep-Alive
Accept: */*
Accept-Encoding: identity
User-Agent: Microsoft BITS/7.8
Host: msedge.b.tlu.dl.delivery.mp.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sun, 16 Mar 2025 19:58:48 GMT
Content-Type: application/x-chrome-extension
Content-Length: 2240
Connection: keep-alive
Age: 3192338
Cache-Control: public, max-age=17280000
Etag: "e55r8q8+2tMBEWK2Axr9R9TCwVE="
Last-Modified: Mon, 21 Aug 2023 21:03:55 GMT
MS-CorrelationId: a9f73f5f-b814-4ed2-87a0-bd6b36a1064d
MS-CV: WUAHQhTC2EqL1OVL.0
MS-RequestId: b7cd27d0-858c-40c3-a384-02e27da1a176
X-AspNet-Version: 4.0.30319
X-AspNetMvc-Version: 5.3
X-Azure-Ref-OriginShield: Ref A: D5B758E2AF25423093FA6B34C6F31EBD Ref B: MNZ221060607021 Ref C: 2024-06-25T23:35:11Z
X-Cache: HIT
X-CCC: it
X-CID: 9
X-MSEdge-Ref: Ref A: 3A9ABC2ACBB74633B51B5845D03797AA Ref B: TEB31EDGE0315 Ref C: 2024-07-02T21:47:08Z
X-Powered-By: ASP.NET
X-Powered-By: ARR/3.0
X-Powered-By: ASP.NET
Ocn-Cache-Status: HIT
Ocn-Requestid: 10000008486aca78-4196372402-6
Ocn-Served-By: QLT
Accept-Ranges: bytes
Server: Qwilt
X-OC-Service-Type: lo
GET

http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/4643befd-79b8-4e0c-a2fb-c0e3ee78dcd5?P1=1742389758&P2=404&P3=2&P4=UwKsBTtj7Oj0H2IfoYzEH6iHPhfk0uD3Zv1FHER%2fmYumqHYt1crre0bKgk5AlpDBm%2b6NfR1mBNHMNDfK6hutNA%3d%3d

Remote address:

91.81.129.182:80

Request

GET /filestreamingservice/files/4643befd-79b8-4e0c-a2fb-c0e3ee78dcd5?P1=1742389758&P2=404&P3=2&P4=UwKsBTtj7Oj0H2IfoYzEH6iHPhfk0uD3Zv1FHER%2fmYumqHYt1crre0bKgk5AlpDBm%2b6NfR1mBNHMNDfK6hutNA%3d%3d HTTP/1.1
Connection: Keep-Alive
Accept: */*
Accept-Encoding: identity
If-Unmodified-Since: Mon, 21 Aug 2023 21:03:55 GMT
User-Agent: Microsoft BITS/7.8
Host: msedge.b.tlu.dl.delivery.mp.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sun, 16 Mar 2025 19:58:48 GMT
Content-Type: application/x-chrome-extension
Content-Length: 2240
Connection: keep-alive
Age: 3192338
Cache-Control: public, max-age=17280000
Etag: "e55r8q8+2tMBEWK2Axr9R9TCwVE="
Last-Modified: Mon, 21 Aug 2023 21:03:55 GMT
MS-CorrelationId: a9f73f5f-b814-4ed2-87a0-bd6b36a1064d
MS-CV: WUAHQhTC2EqL1OVL.0
MS-RequestId: b7cd27d0-858c-40c3-a384-02e27da1a176
X-AspNet-Version: 4.0.30319
X-AspNetMvc-Version: 5.3
X-Azure-Ref-OriginShield: Ref A: D5B758E2AF25423093FA6B34C6F31EBD Ref B: MNZ221060607021 Ref C: 2024-06-25T23:35:11Z
X-Cache: HIT
X-CCC: it
X-CID: 9
X-MSEdge-Ref: Ref A: 3A9ABC2ACBB74633B51B5845D03797AA Ref B: TEB31EDGE0315 Ref C: 2024-07-02T21:47:08Z
X-Powered-By: ASP.NET
X-Powered-By: ARR/3.0
X-Powered-By: ASP.NET
Ocn-Cache-Status: HIT
Ocn-Requestid: 10000008486acc8c-4196372402-7
Ocn-Served-By: QLT
Accept-Ranges: bytes
Server: Qwilt
X-OC-Service-Type: lo
HEAD

http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/4c4fdee0-d69c-42b7-bf5c-3ec046e9dfc9?P1=1742389755&P2=404&P3=2&P4=UOZMAqwwxSV4ywGm1PC18yA2aJ%2fenPvj1XLOt4dzxltQ2zUkPLZJuV%2bvmRq4wrauBac2ePio3pB%2f3GuxQOEvlw%3d%3d

Remote address:

91.81.129.182:80

Request

HEAD /filestreamingservice/files/4c4fdee0-d69c-42b7-bf5c-3ec046e9dfc9?P1=1742389755&P2=404&P3=2&P4=UOZMAqwwxSV4ywGm1PC18yA2aJ%2fenPvj1XLOt4dzxltQ2zUkPLZJuV%2bvmRq4wrauBac2ePio3pB%2f3GuxQOEvlw%3d%3d HTTP/1.1
Connection: Keep-Alive
Accept: */*
Accept-Encoding: identity
User-Agent: Microsoft BITS/7.8
Host: msedge.b.tlu.dl.delivery.mp.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sun, 16 Mar 2025 19:59:09 GMT
Content-Type: application/x-chrome-extension
Content-Length: 3047
Connection: keep-alive
Age: 495
Cache-Control: public, max-age=17280000
Etag: "i0VqozXsQNS8BcbWMNeNY1RQ1L0="
Last-Modified: Mon, 14 Oct 2024 23:36:35 GMT
MS-CorrelationId: 6be972c7-4b34-4979-8298-0f4761ca9a84
MS-CV: 420jz5wkt2l55t04kyt55x.0.1.1.3.1.1.1.0
MS-RequestId: eb269304-833b-4734-bbc8-8664302b9258
X-AspNet-Version: 4.0.30319
X-AspNetMvc-Version: 5.3
X-Cache: HIT
X-CCC: it
X-CID: 9
X-Powered-By: ASP.NET
X-Powered-By: ARR/3.0
X-Powered-By: ASP.NET
Ocn-Cache-Status: HIT
Ocn-Requestid: 10000008486c9ebe-4196372402-8
Ocn-Served-By: QLT
Accept-Ranges: bytes
Server: Qwilt
X-OC-Service-Type: lo
GET

http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/4c4fdee0-d69c-42b7-bf5c-3ec046e9dfc9?P1=1742389755&P2=404&P3=2&P4=UOZMAqwwxSV4ywGm1PC18yA2aJ%2fenPvj1XLOt4dzxltQ2zUkPLZJuV%2bvmRq4wrauBac2ePio3pB%2f3GuxQOEvlw%3d%3d

Remote address:

91.81.129.182:80

Request

GET /filestreamingservice/files/4c4fdee0-d69c-42b7-bf5c-3ec046e9dfc9?P1=1742389755&P2=404&P3=2&P4=UOZMAqwwxSV4ywGm1PC18yA2aJ%2fenPvj1XLOt4dzxltQ2zUkPLZJuV%2bvmRq4wrauBac2ePio3pB%2f3GuxQOEvlw%3d%3d HTTP/1.1
Connection: Keep-Alive
Accept: */*
Accept-Encoding: identity
If-Unmodified-Since: Mon, 14 Oct 2024 23:36:35 GMT
User-Agent: Microsoft BITS/7.8
Host: msedge.b.tlu.dl.delivery.mp.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sun, 16 Mar 2025 19:59:09 GMT
Content-Type: application/x-chrome-extension
Content-Length: 3047
Connection: keep-alive
Age: 495
Cache-Control: public, max-age=17280000
Etag: "i0VqozXsQNS8BcbWMNeNY1RQ1L0="
Last-Modified: Mon, 14 Oct 2024 23:36:35 GMT
MS-CorrelationId: 6be972c7-4b34-4979-8298-0f4761ca9a84
MS-CV: 420jz5wkt2l55t04kyt55x.0.1.1.3.1.1.1.0
MS-RequestId: eb269304-833b-4734-bbc8-8664302b9258
X-AspNet-Version: 4.0.30319
X-AspNetMvc-Version: 5.3
X-Cache: HIT
X-CCC: it
X-CID: 9
X-Powered-By: ASP.NET
X-Powered-By: ARR/3.0
X-Powered-By: ASP.NET
Ocn-Cache-Status: HIT
Ocn-Requestid: 10000008486ca1e4-4196372402-9
Ocn-Served-By: QLT
Accept-Ranges: bytes
Server: Qwilt
X-OC-Service-Type: lo
DNS

edge.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

edge.microsoft.com

IN A

Response

edge.microsoft.com

IN CNAME

edge-domain.trafficmanager.net

edge-domain.trafficmanager.net

IN CNAME

edge-microsoft-com.dual-a-0036.a-msedge.net

edge-microsoft-com.dual-a-0036.a-msedge.net

IN CNAME

dual-a-0036.a-msedge.net

dual-a-0036.a-msedge.net

IN A

204.79.197.239

dual-a-0036.a-msedge.net

IN A

13.107.21.239
DNS

edge.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

edge.microsoft.com

IN Unknown

Response

edge.microsoft.com

IN CNAME

edge-domain.trafficmanager.net

edge-domain.trafficmanager.net

IN CNAME

edge-microsoft-com.dual-a-0036.a-msedge.net
DNS

msedge.b.tlu.dl.delivery.mp.microsoft.com

Remote address:

8.8.8.8:53

Request

msedge.b.tlu.dl.delivery.mp.microsoft.com

IN A

Response

msedge.b.tlu.dl.delivery.mp.microsoft.com

IN CNAME

star.b.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.com

star.b.tlu.dl.delivery.mp.microsoft.com.delivery.microsoft.com

IN CNAME

cdp-f-tlu-net.trafficmanager.net

cdp-f-tlu-net.trafficmanager.net

IN CNAME

wildcard.f.tlu.dl.delivery.mp.microsoft.com.edgesuite.net

wildcard.f.tlu.dl.delivery.mp.microsoft.com.edgesuite.net

IN CNAME

a1847.dscd.akamai.net

a1847.dscd.akamai.net

IN A

2.18.190.173

a1847.dscd.akamai.net

IN A

2.18.190.98

216.58.204.78:443

clients2.google.com

tls

msedge.exe

3.3kB
10.8kB
16
18
204.79.197.239:443

edge.microsoft.com

tls

msedge.exe

3.8kB
9.6kB
17
20
13.107.21.239:80

http://edge.microsoft.com/browsernetworktime/time/1/current?cup2key=2:GA5uErQ13wCqGFOLObCiHwYlVUlodpghbBiSJ-M2_9A&cup2hreq=e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

http

msedge.exe

883 B
1.1kB
5
5

HTTP Request

GET http://edge.microsoft.com/browsernetworktime/time/1/current?cup2key=2:GA5uErQ13wCqGFOLObCiHwYlVUlodpghbBiSJ-M2_9A&cup2hreq=e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Response

200
92.123.128.179:443

copilot.microsoft.com

msedge.exe

144 B
104 B
3
2
92.123.128.179:443

copilot.microsoft.com

msedge.exe

98 B
52 B
2
1
92.123.128.179:443

copilot.microsoft.com

tls

msedge.exe

3.1kB
5.5kB
17
17
142.250.178.1:443

clients2.googleusercontent.com

tls

msedge.exe

6.3kB
174.4kB
84
132
5.252.33.158:443

www.roblox.com.ni

msedge.exe

52 B
1
95.101.137.17:443

msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com

tls

msedge.exe

3.4kB
20.2kB
22
28
5.252.33.158:443

www.roblox.com.ni

msedge.exe

52 B
1
5.252.33.158:443

www.roblox.com.ni

msedge.exe

104 B
2
92.123.128.157:443

www.bing.com

tls

msedge.exe

3.2kB
6.6kB
15
17
204.79.197.239:443

edge.microsoft.com

tls

msedge.exe

3.8kB
2.5kB
15
19
150.171.28.10:443

https://g.bing.com/neg/0?action=emptycreativeimpression&adUnitId=11730597&publisherId=251978541&rid=85aadb18768e40d79f1bb20bb922df98&localId=w:BE7EDB75-9ED9-D5CE-569D-3F0F832741AE&deviceId=6896216935938610&anid=

tls, http2

2.5kB
9.6kB
24
19

HTTP Request

GET https://g.bing.com/neg/0?action=emptycreativeimpression&adUnitId=11730597&publisherId=251978541&rid=85aadb18768e40d79f1bb20bb922df98&localId=w:BE7EDB75-9ED9-D5CE-569D-3F0F832741AE&deviceId=6896216935938610&anid=

HTTP Response

204

HTTP Request

GET https://g.bing.com/neg/0?action=emptycreative&adUnitId=11730597&publisherId=251978541&rid=85aadb18768e40d79f1bb20bb922df98&localId=w:BE7EDB75-9ED9-D5CE-569D-3F0F832741AE&deviceId=6896216935938610&anid=

HTTP Response

204

HTTP Request

GET https://g.bing.com/neg/0?action=emptycreativeimpression&adUnitId=11730597&publisherId=251978541&rid=85aadb18768e40d79f1bb20bb922df98&localId=w:BE7EDB75-9ED9-D5CE-569D-3F0F832741AE&deviceId=6896216935938610&anid=

HTTP Response

204
204.79.197.239:443

edge.microsoft.com

tls

msedge.exe

4.0kB
41.4kB
35
41
13.107.246.64:443

edgeassetservice.azureedge.net

tls

msedge.exe

11.6kB
304.5kB
172
229
13.107.246.64:443

edgeassetservice.azureedge.net

tls

msedge.exe

3.1kB
7.7kB
14
12
13.107.246.64:443

edgeassetservice.azureedge.net

tls

msedge.exe

3.0kB
7.6kB
13
10
5.252.33.158:443

www.roblox.com.ni

tls

msedge.exe

5.5kB
29.1kB
43
52
204.79.197.239:443

edge.microsoft.com

tls

msedge.exe

3.2kB
7.8kB
16
18
204.79.197.239:443

edge.microsoft.com

tls

msedge.exe

3.3kB
7.5kB
16
18
18.66.248.112:443

css.rbxcdn.com

tls

msedge.exe

2.4kB
5.5kB
11
11
18.66.248.112:443

css.rbxcdn.com

tls

msedge.exe

2.1kB
1.6kB
8
6
18.66.248.112:443

css.rbxcdn.com

tls

msedge.exe

2.2kB
5.2kB
10
8
18.66.248.112:443

css.rbxcdn.com

tls

msedge.exe

2.3kB
5.5kB
11
11
18.66.248.112:443

css.rbxcdn.com

tls

msedge.exe

2.1kB
5.1kB
9
7
18.66.248.112:443

css.rbxcdn.com

tls

msedge.exe

17.2kB
244.5kB
219
187
23.58.84.83:443

static.rbxcdn.com

tls

msedge.exe

7.0kB
4.0kB
14
8
23.58.84.83:443

static.rbxcdn.com

tls

msedge.exe

3.8kB
20.7kB
27
27
23.58.84.8:443

images.rbxcdn.com

tls

msedge.exe

11.7kB
219.0kB
125
179
18.66.248.11:443

js.rbxcdn.com

tls

msedge.exe

2.4kB
5.4kB
12
10
18.66.248.11:443

js.rbxcdn.com

tls

msedge.exe

2.4kB
5.5kB
12
11
18.66.248.11:443

js.rbxcdn.com

tls

msedge.exe

2.4kB
5.5kB
12
11
18.66.248.11:443

js.rbxcdn.com

tls

msedge.exe

2.3kB
5.4kB
11
10
18.66.248.11:443

js.rbxcdn.com

tls

msedge.exe

72.4kB
1.9MB
1011
1403
18.66.248.11:443

js.rbxcdn.com

tls

msedge.exe

2.4kB
5.4kB
11
10
18.66.248.112:443

css.rbxcdn.com

tls

msedge.exe

8.3kB
228.3kB
120
175
128.116.13.4:443

roblox.com

tls

msedge.exe

3.1kB
7.3kB
16
15
128.116.21.3:443

metrics.roblox.com

tls

msedge.exe

4.9kB
13.0kB
27
29
5.252.33.158:443

api.rustyend.net

tls

msedge.exe

10.7kB
292 B
17
7
5.252.33.158:443

api.rustyend.net

tls

msedge.exe

10.6kB
292 B
17
7
5.252.33.158:443

api.rustyend.net

tls

msedge.exe

9.7kB
4.9kB
31
26
5.252.33.158:443

api.rustyend.net

tls

msedge.exe

11.4kB
3.8kB
24
16
5.252.33.158:443

api.rustyend.net

tls

msedge.exe

5.9kB
132 B
10
3
5.252.33.158:443

api.rustyend.net

tls

msedge.exe

3.4kB
132 B
8
3
128.116.21.3:443

ncs.roblox.com

tls

msedge.exe

8.9kB
8.7kB
26
23
2.18.190.180:443

tr.rbxcdn.com

tls

msedge.exe

2.2kB
3.9kB
10
7
2.18.190.180:443

tr.rbxcdn.com

tls

msedge.exe

18.6kB
392.1kB
266
295
2.18.190.180:443

tr.rbxcdn.com

tls

msedge.exe

2.3kB
3.9kB
10
7
2.18.190.180:443

tr.rbxcdn.com

tls

msedge.exe

2.3kB
4.7kB
11
11
2.18.190.180:443

tr.rbxcdn.com

tls

msedge.exe

2.2kB
3.9kB
10
7
92.123.128.193:443

https://www.bing.com/th?id=OADD2.10239380885935_17P6PWS0W6YXCC7Y7&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90

tls, http2

1.6kB
7.4kB
18
14

HTTP Request

GET https://www.bing.com/th?id=OADD2.10239380885935_17P6PWS0W6YXCC7Y7&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90

HTTP Response

200
128.116.21.3:443

www.roblox.com

tls

msedge.exe

12.3kB
111.2kB
104
130
128.116.21.3:443

www.roblox.com

tls

msedge.exe

2.5kB
8.2kB
15
15
23.58.84.41:443

static.rbxcdn.com

tls

msedge.exe

3.3kB
11.2kB
19
18
18.66.248.6:443

js.rbxcdn.com

tls

msedge.exe

2.3kB
5.6kB
11
12
18.66.248.6:443

js.rbxcdn.com

tls

msedge.exe

2.3kB
5.6kB
11
12
18.66.248.6:443

js.rbxcdn.com

tls

msedge.exe

2.3kB
5.6kB
11
12
18.66.248.6:443

js.rbxcdn.com

tls

msedge.exe

2.3kB
5.6kB
11
12
18.66.248.6:443

js.rbxcdn.com

tls

msedge.exe

60.4kB
1.9MB
999
1394
18.66.248.6:443

js.rbxcdn.com

tls

msedge.exe

2.3kB
5.5kB
11
11
108.157.4.72:443

images.rbxcdn.com

tls

msedge.exe

7.2kB
80.4kB
73
75
23.58.84.80:443

css.rbxcdn.com

tls

msedge.exe

2.3kB
3.9kB
10
7
23.58.84.80:443

css.rbxcdn.com

tls

msedge.exe

2.4kB
4.7kB
11
11
23.58.84.80:443

css.rbxcdn.com

tls

msedge.exe

2.2kB
4.0kB
10
8
23.58.84.80:443

css.rbxcdn.com

tls

msedge.exe

2.1kB
3.9kB
8
7
23.58.84.80:443

css.rbxcdn.com

tls

msedge.exe

2.2kB
3.9kB
10
7
23.58.84.80:443

css.rbxcdn.com

tls

msedge.exe

12.6kB
220.2kB
154
182
128.116.13.4:443

roblox.com

tls

msedge.exe

3.2kB
7.4kB
17
15
23.58.84.80:443

css.rbxcdn.com

tls

msedge.exe

9.6kB
228.0kB
138
180
128.116.21.3:443

apis.roblox.com

tls

msedge.exe

3.9kB
12.1kB
23
23
18.173.233.102:443

apis.rbxcdn.com

tls

msedge.exe

3.1kB
7.5kB
15
16
5.252.33.158:443

api.rustyend.net

tls

msedge.exe

2.9kB
1.4kB
17
12
2.18.190.180:443

tr.rbxcdn.com

msedge.exe

52 B
1
2.18.190.180:443

tr.rbxcdn.com

tls

msedge.exe

3.3kB
12.0kB
17
22
13.107.21.239:443

edge.microsoft.com

tls

msedge.exe

5.2kB
11.2kB
20
21
92.123.128.150:443

www.bing.com

tls

msedge.exe

3.4kB
5.3kB
18
16
204.79.197.239:443

edge.microsoft.com

tls

msedge.exe

3.3kB
8.3kB
16
20
13.107.246.64:443

edge-consumer-static.azureedge.net

tls

msedge.exe

3.6kB
9.3kB
18
21
142.250.200.35:80

http://c.pki.goog/r/r1.crl

http

384 B
355 B
4
3

HTTP Request

GET http://c.pki.goog/r/r1.crl

HTTP Response

304
13.107.246.64:443

static.edge.microsoftapp.net

tls

msedge.exe

3.7kB
9.8kB
17
19
204.79.197.239:443

edge.microsoft.com

tls

msedge.exe

25.1kB
17.9kB
50
52
13.107.246.64:443

edge-cloud-resource-static.azureedge.net

tls

msedge.exe

3.8kB
13.5kB
18
20
13.107.246.64:443

edge-cloud-resource-static.azureedge.net

msedge.exe

52 B
1
13.107.246.64:443

edge-mobile-static.azureedge.net

tls

msedge.exe

3.1kB
8.7kB
14
18
91.81.129.182:80

http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/4c4fdee0-d69c-42b7-bf5c-3ec046e9dfc9?P1=1742389755&P2=404&P3=2&P4=UOZMAqwwxSV4ywGm1PC18yA2aJ%2fenPvj1XLOt4dzxltQ2zUkPLZJuV%2bvmRq4wrauBac2ePio3pB%2f3GuxQOEvlw%3d%3d

http

4.5kB
19.4kB
22
23

HTTP Request

HEAD http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/fb6dd03b-99d7-4cc8-a878-91c8e655c2d3?P1=1742386152&P2=404&P3=2&P4=lwR46U%2bS1EQwn1NztKuOsP%2bFQobWWVz3aDXFqwTmuxyxxNV1zymkAdMA%2b0%2fW%2fNkxbiC51ct6wSzTQJMwrVjdyQ%3d%3d

HTTP Response

200

HTTP Request

GET http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/fb6dd03b-99d7-4cc8-a878-91c8e655c2d3?P1=1742386152&P2=404&P3=2&P4=lwR46U%2bS1EQwn1NztKuOsP%2bFQobWWVz3aDXFqwTmuxyxxNV1zymkAdMA%2b0%2fW%2fNkxbiC51ct6wSzTQJMwrVjdyQ%3d%3d

HTTP Response

206

HTTP Request

GET http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/fb6dd03b-99d7-4cc8-a878-91c8e655c2d3?P1=1742386152&P2=404&P3=2&P4=lwR46U%2bS1EQwn1NztKuOsP%2bFQobWWVz3aDXFqwTmuxyxxNV1zymkAdMA%2b0%2fW%2fNkxbiC51ct6wSzTQJMwrVjdyQ%3d%3d

HTTP Response

206

HTTP Request

HEAD http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/ef5f792e-9df7-4748-accf-02ec33a4a2c4?P1=1742386152&P2=404&P3=2&P4=hPk0KyBS%2b0kvOXKff226MBMP2hWjk%2fr01w7jGT3SDALTHypiyU9hN%2bJ4rs5Rlo1NdkgAtD6HOcG3VA3dG8%2b7Kw%3d%3d

HTTP Response

200

HTTP Request

GET http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/ef5f792e-9df7-4748-accf-02ec33a4a2c4?P1=1742386152&P2=404&P3=2&P4=hPk0KyBS%2b0kvOXKff226MBMP2hWjk%2fr01w7jGT3SDALTHypiyU9hN%2bJ4rs5Rlo1NdkgAtD6HOcG3VA3dG8%2b7Kw%3d%3d

HTTP Response

200

HTTP Request

HEAD http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/4643befd-79b8-4e0c-a2fb-c0e3ee78dcd5?P1=1742389758&P2=404&P3=2&P4=UwKsBTtj7Oj0H2IfoYzEH6iHPhfk0uD3Zv1FHER%2fmYumqHYt1crre0bKgk5AlpDBm%2b6NfR1mBNHMNDfK6hutNA%3d%3d

HTTP Response

200

HTTP Request

GET http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/4643befd-79b8-4e0c-a2fb-c0e3ee78dcd5?P1=1742389758&P2=404&P3=2&P4=UwKsBTtj7Oj0H2IfoYzEH6iHPhfk0uD3Zv1FHER%2fmYumqHYt1crre0bKgk5AlpDBm%2b6NfR1mBNHMNDfK6hutNA%3d%3d

HTTP Response

200

HTTP Request

HEAD http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/4c4fdee0-d69c-42b7-bf5c-3ec046e9dfc9?P1=1742389755&P2=404&P3=2&P4=UOZMAqwwxSV4ywGm1PC18yA2aJ%2fenPvj1XLOt4dzxltQ2zUkPLZJuV%2bvmRq4wrauBac2ePio3pB%2f3GuxQOEvlw%3d%3d

HTTP Response

200

HTTP Request

GET http://msedge.b.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/4c4fdee0-d69c-42b7-bf5c-3ec046e9dfc9?P1=1742389755&P2=404&P3=2&P4=UOZMAqwwxSV4ywGm1PC18yA2aJ%2fenPvj1XLOt4dzxltQ2zUkPLZJuV%2bvmRq4wrauBac2ePio3pB%2f3GuxQOEvlw%3d%3d

HTTP Response

200

8.8.8.8:53

edge.microsoft.com

dns

msedge.exe

64 B
208 B
1
1

DNS Request

edge.microsoft.com

DNS Response

13.107.21.239

204.79.197.239
8.8.8.8:53

edge.microsoft.com

dns

msedge.exe

64 B
223 B
1
1

DNS Request

edge.microsoft.com
8.8.8.8:53

tinyurl.com

dns

msedge.exe

57 B
89 B
1
1

DNS Request

tinyurl.com

DNS Response

104.17.112.233

104.18.111.161
8.8.8.8:53

tinyurl.com

dns

msedge.exe

57 B
205 B
1
1

DNS Request

tinyurl.com
8.8.8.8:53

edge.microsoft.com

dns

msedge.exe

64 B
208 B
1
1

DNS Request

edge.microsoft.com

DNS Response

204.79.197.239

13.107.21.239
8.8.8.8:53

edge.microsoft.com

dns

msedge.exe

64 B
209 B
1
1

DNS Request

edge.microsoft.com
8.8.8.8:53

clients2.google.com

dns

msedge.exe

65 B
105 B
1
1

DNS Request

clients2.google.com

DNS Response

216.58.204.78
8.8.8.8:53

clients2.google.com

dns

msedge.exe

65 B
139 B
1
1

DNS Request

clients2.google.com
104.17.112.233:443

tinyurl.com

https

msedge.exe

5.1kB
9.2kB
13
14
8.8.8.8:53

copilot.microsoft.com

dns

msedge.exe

67 B
270 B
1
1

DNS Request

copilot.microsoft.com

DNS Response

92.123.128.179

92.123.128.185

92.123.128.156

92.123.128.153
8.8.8.8:53

copilot.microsoft.com

dns

msedge.exe

67 B
267 B
1
1

DNS Request

copilot.microsoft.com
8.8.8.8:53

clients2.googleusercontent.com

dns

msedge.exe

76 B
121 B
1
1

DNS Request

clients2.googleusercontent.com

DNS Response

142.250.178.1
8.8.8.8:53

clients2.googleusercontent.com

dns

msedge.exe

76 B
162 B
1
1

DNS Request

clients2.googleusercontent.com
8.8.8.8:53

www.roblox.com.ni

dns

msedge.exe

63 B
79 B
1
1

DNS Request

www.roblox.com.ni

DNS Response

5.252.33.158
8.8.8.8:53

www.roblox.com.ni

dns

msedge.exe

125 B
281 B
2
2

DNS Request

www.roblox.com.ni

DNS Request

games.roblox.com

DNS Response

128.116.21.3
8.8.8.8:53

msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com

dns

msedge.exe

98 B
341 B
1
1

DNS Request

msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com

DNS Response

95.101.137.17

95.101.137.14
8.8.8.8:53

msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com

dns

msedge.exe

98 B
370 B
1
1

DNS Request

msedgeextensions.sf.tlu.dl.delivery.mp.microsoft.com
8.8.8.8:53

g.bing.com

dns

56 B
148 B
1
1

DNS Request

g.bing.com

DNS Response

150.171.28.10

150.171.27.10
8.8.8.8:53

edge.microsoft.com

dns

msedge.exe

64 B
208 B
1
1

DNS Request

edge.microsoft.com

DNS Response

204.79.197.239

13.107.21.239
8.8.8.8:53

edge.microsoft.com

dns

msedge.exe

64 B
209 B
1
1

DNS Request

edge.microsoft.com
8.8.8.8:53

edgeassetservice.azureedge.net

dns

msedge.exe

76 B
243 B
1
1

DNS Request

edgeassetservice.azureedge.net

DNS Response

13.107.246.64
8.8.8.8:53

edgeassetservice.azureedge.net

dns

msedge.exe

76 B
287 B
1
1

DNS Request

edgeassetservice.azureedge.net
224.0.0.251:5353

msedge.exe

204 B
3
92.123.128.157:443

www.bing.com

https

msedge.exe

3.2kB
6.6kB
10
11
5.252.33.158:443

www.roblox.com.ni

https

msedge.exe

59.9kB
328.7kB
186
327
8.8.8.8:53

css.rbxcdn.com

dns

msedge.exe

60 B
209 B
1
1

DNS Request

css.rbxcdn.com

DNS Response

18.66.248.112

18.66.248.17

18.66.248.8

18.66.248.89
8.8.8.8:53

css.rbxcdn.com

dns

msedge.exe

60 B
227 B
1
1

DNS Request

css.rbxcdn.com
8.8.8.8:53

static.rbxcdn.com

dns

msedge.exe

63 B
214 B
1
1

DNS Request

static.rbxcdn.com

DNS Response

23.58.84.83

23.58.84.41
8.8.8.8:53

static.rbxcdn.com

dns

msedge.exe

63 B
242 B
1
1

DNS Request

static.rbxcdn.com
8.8.8.8:53

astro.rustyend.net

dns

msedge.exe

64 B
80 B
1
1

DNS Request

astro.rustyend.net

DNS Response

5.252.33.158
8.8.8.8:53

astro.rustyend.net

dns

msedge.exe

64 B
127 B
1
1

DNS Request

astro.rustyend.net
8.8.8.8:53

js.rbxcdn.com

dns

msedge.exe

59 B
205 B
1
1

DNS Request

js.rbxcdn.com

DNS Response

18.66.248.11

18.66.248.73

18.66.248.16

18.66.248.6
8.8.8.8:53

js.rbxcdn.com

dns

msedge.exe

59 B
223 B
1
1

DNS Request

js.rbxcdn.com
8.8.8.8:53

images.rbxcdn.com

dns

msedge.exe

63 B
217 B
1
1

DNS Request

images.rbxcdn.com

DNS Response

23.58.84.8

23.58.84.23
8.8.8.8:53

images.rbxcdn.com

dns

msedge.exe

63 B
231 B
1
1

DNS Request

images.rbxcdn.com
8.8.8.8:53

roblox.com

dns

msedge.exe

56 B
72 B
1
1

DNS Request

roblox.com

DNS Response

128.116.13.4
8.8.8.8:53

roblox.com

dns

msedge.exe

56 B
121 B
1
1

DNS Request

roblox.com
8.8.8.8:53

metrics.roblox.com

dns

msedge.exe

64 B
158 B
1
1

DNS Request

metrics.roblox.com

DNS Response

128.116.21.3
8.8.8.8:53

metrics.roblox.com

dns

msedge.exe

64 B
207 B
1
1

DNS Request

metrics.roblox.com
8.8.8.8:53

api.rustyend.net

dns

msedge.exe

62 B
78 B
1
1

DNS Request

api.rustyend.net

DNS Response

5.252.33.158
8.8.8.8:53

api.rustyend.net

dns

msedge.exe

62 B
125 B
1
1

DNS Request

api.rustyend.net
8.8.8.8:53

ecsv2.roblox.com

dns

msedge.exe

62 B
1

DNS Request

ecsv2.roblox.com
8.8.8.8:53

ecsv2.roblox.com

dns

msedge.exe

62 B
1

DNS Request

ecsv2.roblox.com
8.8.8.8:53

ncs.roblox.com

dns

msedge.exe

60 B
1

DNS Request

ncs.roblox.com
8.8.8.8:53

ncs.roblox.com

dns

msedge.exe

60 B
1

DNS Request

ncs.roblox.com
5.252.33.158:443

api.rustyend.net

https

msedge.exe

13.9kB
14.3kB
35
28
8.8.8.8:53

lms.roblox.com

dns

msedge.exe

60 B
154 B
1
1

DNS Request

lms.roblox.com

DNS Response

128.116.21.3
8.8.8.8:53

lms.roblox.com

dns

msedge.exe

60 B
203 B
1
1

DNS Request

lms.roblox.com
8.8.8.8:53

voice.roblox.com

dns

msedge.exe

62 B
156 B
1
1

DNS Request

voice.roblox.com

DNS Response

128.116.21.3
8.8.8.8:53

voice.roblox.com

dns

msedge.exe

62 B
205 B
1
1

DNS Request

voice.roblox.com
8.8.8.8:53

ecsv2.roblox.com

dns

msedge.exe

62 B
1

DNS Request

ecsv2.roblox.com
8.8.8.8:53

ecsv2.roblox.com

dns

msedge.exe

62 B
1

DNS Request

ecsv2.roblox.com
8.8.8.8:53

ncs.roblox.com

dns

msedge.exe

60 B
131 B
1
1

DNS Request

ncs.roblox.com

DNS Response

128.116.21.3
8.8.8.8:53

ncs.roblox.com

dns

msedge.exe

60 B
180 B
1
1

DNS Request

ncs.roblox.com
8.8.8.8:53

tr.rbxcdn.com

dns

msedge.exe

59 B
203 B
1
1

DNS Request

tr.rbxcdn.com

DNS Response

2.18.190.180

2.18.190.100
8.8.8.8:53

tr.rbxcdn.com

dns

msedge.exe

59 B
232 B
1
1

DNS Request

tr.rbxcdn.com
8.8.8.8:53

ecsv2.roblox.com

dns

msedge.exe

62 B
156 B
1
1

DNS Request

ecsv2.roblox.com

DNS Response

128.116.21.3
8.8.8.8:53

www.roblox.com

dns

msedge.exe

60 B
154 B
1
1

DNS Request

www.roblox.com

DNS Response

128.116.21.3
8.8.8.8:53

www.roblox.com

dns

msedge.exe

60 B
203 B
1
1

DNS Request

www.roblox.com
8.8.8.8:53

css.rbxcdn.com

dns

msedge.exe

60 B
205 B
1
1

DNS Request

css.rbxcdn.com

DNS Response

23.58.84.80

23.58.84.77
8.8.8.8:53

css.rbxcdn.com

dns

msedge.exe

60 B
236 B
1
1

DNS Request

css.rbxcdn.com
8.8.8.8:53

static.rbxcdn.com

dns

msedge.exe

63 B
214 B
1
1

DNS Request

static.rbxcdn.com

DNS Response

23.58.84.41

23.58.84.83
8.8.8.8:53

static.rbxcdn.com

dns

msedge.exe

63 B
242 B
1
1

DNS Request

static.rbxcdn.com
8.8.8.8:53

js.rbxcdn.com

dns

msedge.exe

59 B
205 B
1
1

DNS Request

js.rbxcdn.com

DNS Response

18.66.248.6

18.66.248.11

18.66.248.16

18.66.248.73
8.8.8.8:53

js.rbxcdn.com

dns

msedge.exe

59 B
228 B
1
1

DNS Request

js.rbxcdn.com
8.8.8.8:53

images.rbxcdn.com

dns

msedge.exe

63 B
217 B
1
1

DNS Request

images.rbxcdn.com

DNS Response

108.157.4.72

108.157.4.45

108.157.4.49

108.157.4.107
8.8.8.8:53

images.rbxcdn.com

dns

msedge.exe

63 B
248 B
1
1

DNS Request

images.rbxcdn.com
8.8.8.8:53

roblox.com

dns

msedge.exe

56 B
72 B
1
1

DNS Request

roblox.com

DNS Response

128.116.13.4
8.8.8.8:53

roblox.com

dns

msedge.exe

56 B
121 B
1
1

DNS Request

roblox.com
8.8.8.8:53

metrics.roblox.com

dns

msedge.exe

64 B
158 B
1
1

DNS Request

metrics.roblox.com

DNS Response

128.116.21.3
8.8.8.8:53

metrics.roblox.com

dns

msedge.exe

64 B
207 B
1
1

DNS Request

metrics.roblox.com
8.8.8.8:53

apis.roblox.com

dns

msedge.exe

61 B
155 B
1
1

DNS Request

apis.roblox.com

DNS Response

128.116.21.3
8.8.8.8:53

apis.roblox.com

dns

msedge.exe

61 B
204 B
1
1

DNS Request

apis.roblox.com
8.8.8.8:53

apis.rbxcdn.com

dns

msedge.exe

61 B
212 B
1
1

DNS Request

apis.rbxcdn.com

DNS Response

18.173.233.102

18.173.233.23

18.173.233.44

18.173.233.58
8.8.8.8:53

apis.rbxcdn.com

dns

msedge.exe

61 B
212 B
1
1

DNS Request

apis.rbxcdn.com
8.8.8.8:53

ecsv2.roblox.com

dns

msedge.exe

62 B
156 B
1
1

DNS Request

ecsv2.roblox.com

DNS Response

128.116.21.3
8.8.8.8:53

ecsv2.roblox.com

dns

msedge.exe

62 B
205 B
1
1

DNS Request

ecsv2.roblox.com
8.8.8.8:53

groups.roblox.com

dns

msedge.exe

63 B
157 B
1
1

DNS Request

groups.roblox.com

DNS Response

128.116.21.3
8.8.8.8:53

groups.roblox.com

dns

msedge.exe

63 B
206 B
1
1

DNS Request

groups.roblox.com
8.8.8.8:53

thumbnails.roblox.com

dns

msedge.exe

67 B
161 B
1
1

DNS Request

thumbnails.roblox.com

DNS Response

128.116.21.3
8.8.8.8:53

thumbnails.roblox.com

dns

msedge.exe

67 B
210 B
1
1

DNS Request

thumbnails.roblox.com
8.8.8.8:53

games.roblox.com

dns

msedge.exe

62 B
205 B
1
1

DNS Request

games.roblox.com
8.8.8.8:53

tr.rbxcdn.com

dns

msedge.exe

59 B
203 B
1
1

DNS Request

tr.rbxcdn.com

DNS Response

2.18.190.180

2.18.190.100
8.8.8.8:53

tr.rbxcdn.com

dns

msedge.exe

59 B
232 B
1
1

DNS Request

tr.rbxcdn.com
8.8.8.8:53

edge.microsoft.com

dns

msedge.exe

64 B
208 B
1
1

DNS Request

edge.microsoft.com

DNS Response

13.107.21.239

204.79.197.239
8.8.8.8:53

edge.microsoft.com

dns

msedge.exe

64 B
206 B
1
1

DNS Request

edge.microsoft.com
92.123.128.150:443

www.bing.com

https

msedge.exe

6.4kB
5.5kB
13
12
8.8.8.8:53

edge.microsoft.com

dns

msedge.exe

64 B
208 B
1
1

DNS Request

edge.microsoft.com

DNS Response

204.79.197.239

13.107.21.239
8.8.8.8:53

edge.microsoft.com

dns

msedge.exe

64 B
209 B
1
1

DNS Request

edge.microsoft.com
8.8.8.8:53

edge-consumer-static.azureedge.net

dns

msedge.exe

80 B
251 B
1
1

DNS Request

edge-consumer-static.azureedge.net

DNS Response

13.107.246.64
8.8.8.8:53

edge-consumer-static.azureedge.net

dns

msedge.exe

80 B
281 B
1
1

DNS Request

edge-consumer-static.azureedge.net
8.8.8.8:53

c.pki.goog

dns

56 B
107 B
1
1

DNS Request

c.pki.goog

DNS Response

142.250.200.35
8.8.8.8:53

static.edge.microsoftapp.net

dns

msedge.exe

74 B
302 B
1
1

DNS Request

static.edge.microsoftapp.net

DNS Response

13.107.246.64
8.8.8.8:53

static.edge.microsoftapp.net

dns

msedge.exe

74 B
346 B
1
1

DNS Request

static.edge.microsoftapp.net
8.8.8.8:53

edge-mobile-static.azureedge.net

dns

msedge.exe

78 B
247 B
1
1

DNS Request

edge-mobile-static.azureedge.net

DNS Response

13.107.246.64
8.8.8.8:53

edge-mobile-static.azureedge.net

dns

msedge.exe

78 B
277 B
1
1

DNS Request

edge-mobile-static.azureedge.net
8.8.8.8:53

edge-cloud-resource-static.azureedge.net

dns

msedge.exe

86 B
263 B
1
1

DNS Request

edge-cloud-resource-static.azureedge.net

DNS Response

13.107.246.64
8.8.8.8:53

edge-cloud-resource-static.azureedge.net

dns

msedge.exe

86 B
307 B
1
1

DNS Request

edge-cloud-resource-static.azureedge.net
8.8.8.8:53

msedge.b.tlu.dl.delivery.mp.microsoft.com

dns

87 B
344 B
1
1

DNS Request

msedge.b.tlu.dl.delivery.mp.microsoft.com

DNS Response

91.81.129.182

91.81.130.134

91.80.49.86

91.80.49.21

91.81.129.180
8.8.8.8:53

edge.microsoft.com

dns

msedge.exe

64 B
208 B
1
1

DNS Request

edge.microsoft.com

DNS Response

204.79.197.239

13.107.21.239
8.8.8.8:53

edge.microsoft.com

dns

msedge.exe

64 B
209 B
1
1

DNS Request

edge.microsoft.com
8.8.8.8:53

msedge.b.tlu.dl.delivery.mp.microsoft.com

dns

87 B
328 B
1
1

DNS Request

msedge.b.tlu.dl.delivery.mp.microsoft.com

DNS Response

2.18.190.173

2.18.190.98

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files\chrome_Unpacker_BeginUnzipping4808_1263801271\manifest.json

Filesize
160B

MD5
a24a1941bbb8d90784f5ef76712002f5

SHA1
5c2b6323c7ed8913b5d0d65a4d21062c96df24eb

SHA256
2a7fe18a087d8e8be847d9569420b6e8907917ff6ca0fa42be15d4e3653c8747

SHA512
fd7dfec3d46b2af0bddb5aaeae79467507e0c29bab814007a39ea61231e76123659f18a453ed3feb25f16652a0c63c33545e2a0d419fafea89f563fca6a07ce2

Download Submit
C:\Program Files\chrome_Unpacker_BeginUnzipping4808_1891330442\manifest.fingerprint

Filesize
66B

MD5
3fb5233616491df0ec229ba9f42efdb8

SHA1
18a8116e2df9805accd7901d2321c3fa92da1af4

SHA256
946f3a9e019b0d80f5671de782f295132341f663f74aebad7628f22e528d6d52

SHA512
e9b17ac626bf6508db9a686825411e90d316a0f1dacbf63dbec5baaaf6b96af4dbc9a7332975b6d5c16c43757d79fddca6b888ea97bc07a8dffb1b3a06366b4d

Download Submit
C:\Program Files\chrome_Unpacker_BeginUnzipping4808_1891330442\manifest.json

Filesize
43B

MD5
af3a9104ca46f35bb5f6123d89c25966

SHA1
1ffb1b0aa9f44bdbc57bdf4b98d26d3be0207ee8

SHA256
81bd82ac27612a58be30a72dd8956b13f883e32ffb54a58076bd6a42b8afaeea

SHA512
6a7a543fa2d1ead3574b4897d2fc714bb218c60a04a70a7e92ecfd2ea59d67028f91b6a2094313f606560087336c619093f1d38d66a3c63a1d1d235ca03d36d1

Download Submit
C:\Program Files\chrome_Unpacker_BeginUnzipping4808_430549032\manifest.json

Filesize
134B

MD5
58d3ca1189df439d0538a75912496bcf

SHA1
99af5b6a006a6929cc08744d1b54e3623fec2f36

SHA256
a946db31a6a985bdb64ea9f403294b479571ca3c22215742bdc26ea1cf123437

SHA512
afd7f140e89472d4827156ec1c48da488b0d06daaa737351c7bec6bc12edfc4443460c4ac169287350934ca66fb2f883347ed8084c62caf9f883a736243194a2

Download Submit
C:\Program Files\chrome_Unpacker_BeginUnzipping4808_726743354\manifest.json

Filesize
160B

MD5
c3911ceb35539db42e5654bdd60ac956

SHA1
71be0751e5fc583b119730dbceb2c723f2389f6c

SHA256
31952875f8bb2e71f49231c95349945ffc0c1dd975f06309a0d138f002cfd23d

SHA512
d8b2c7c5b7105a6f0c4bc9c79c05b1202bc8deb90e60a037fec59429c04fc688a745ee1a0d06a8311466b4d14e2921dfb4476104432178c01df1e99deb48b331

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\AutoLaunchProtocolsComponent\1.0.0.8\protocols.json

Filesize
3KB

MD5
6bbb18bb210b0af189f5d76a65f7ad80

SHA1
87b804075e78af64293611a637504273fadfe718

SHA256
01594d510a1bbc016897ec89402553eca423dfdc8b82bafbc5653bf0c976f57c

SHA512
4788edcfa3911c3bb2be8fc447166c330e8ac389f74e8c44e13238ead2fa45c8538aee325bd0d1cc40d91ad47dea1aa94a92148a62983144fdecff2130ee120d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
280B

MD5
efef8f51b9537f16c65c1ef15538ffba

SHA1
a88f0956ef7c88944aa121986f4662b6b77fb99f

SHA256
609bba6e1f5ec35a1b3d82cd64fd263895deb63cd87ca2fd696873354e6d9cd6

SHA512
859cf2e6fd5d2669f5395c1d688c550a589b8aa63627a647710d44e9952a3ac701dd5fb6c5350b22b2bf50f13ec72aa3de9bff3c7e279ba1ac9187a665f4f4a3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
280B

MD5
51c75b331f7ad87d25d4e56d40a7ad3d

SHA1
332940ccc623ef2443581ab69797f5eca7dd35e8

SHA256
5d3fd0581d418c89ef913a90693068563483ca99aecbdc0d047be27747d4c0ee

SHA512
5af3262eb9bd7d8cb9102405c90360d70202079bd92b16be0f5b34b885005f83eb0e40bb67b79f6494124cdb1eb1678b481766b5132771fd6810b21115ad9d25

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
280B

MD5
0db1d88802048ff847bfcf47035335bd

SHA1
bb54059e5b145da464f6521ae67353889ce00771

SHA256
416525d2bfeaeab0950175c0eab55ad35e84518ef5299f10565023800788cf9a

SHA512
32c5b42febdb38c3a30eb5179b8aa20a5e731b0e83aab16ec73d27b4108bfc89eb6316f71a988388cb5df19267ba823f6d0220fab5584667ba0adb0da1152a30

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
280B

MD5
8734b4a181214bb62f91cfa36c7e2c98

SHA1
9cff323f10778a23d73ac3dcffc038d3bf661b78

SHA256
e06afe980fa56c8dad3e7c6b8d0d8f1e7eb9a4860ac715e966026fb7631c3ba5

SHA512
e8648a54da9aa24b6cba1f0377a0ce33979ea097554bb6347f252cad894ad4134e1fe839abc80eb48e2510061d5c6937e80374d32f95afd4cc8567b57694ac36

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_0

Filesize
44KB

MD5
6faa67d63366564f255e8a808eea7266

SHA1
c75edcef7fee4980c61e5c4a0e9266e969f7d6a6

SHA256
86572430983506269eae1519bb4864cc387cbed2a665dc72891c32f3a12f8e36

SHA512
421dfc941327eed8d332291404d6eb9c4cb74f4f206b3f9d45940ba6a637255ab45ce5aed6c30ea123d1b05a1c071574f9de0029cde7980984112885bd276579

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_1

Filesize
520KB

MD5
6b98f961a7ffaf521c368d85aae51a67

SHA1
137f9b795003fc6ee032176f76588109a30b6eeb

SHA256
778b8fb2a57c1099de0cc4dd8638a015935f0a0063f53f37abac04a789977b2e

SHA512
2e815cd5369ab6d13917c99e24d7e7c4cfb07aec58be8b042eeabeb929dae4b7ef46238c79581b5f82166abc396a76a0d0d5532ed7c393a10060e1ac46046c4c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_2

Filesize
1.0MB

MD5
e9ca323b2382ea88b78af3dc55fe23d6

SHA1
f8bba7b59a5bb32eb86c1430c16eeccc98a642b1

SHA256
98a747655da3dba5818abcd9b80892557c39ccb6f15c541cb45ff20b7314bb6a

SHA512
db61ef4ae9389ed645c5e8708b57efedace6a922eb78a5efab2e3bd3990c8f1f1518841eebad4c1675037901601033852eb221faf6d6a7046b750dae44babc97

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_3

Filesize
8.0MB

MD5
16053f17b656748558931a45dc8c3ab1

SHA1
9e3b1c6e6625316e6d64fa3d33b9552a75117210

SHA256
42fc66b3d3b4b6ac9a28d69f7729cad3e5c68e01bb936f69fc2a28bca3f9c908

SHA512
79f74619fcfb5594febd4fdfcc1981d68831b5747575951f143f868f86f71e708109149e02e1a72f5eec1f5561cd2e2bb76aaa97e13cfed48ca29f286b215ee2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00006a

Filesize
19KB

MD5
5e5ae2374ea57ea153558afd1c2c1372

SHA1
c1bef73c5b67c8866a607e3b8912ffa532d85ccc

SHA256
1ef458d087e95119808d5e5fecbc9604d7805ea4da98170e2c995e967da308f3

SHA512
46059e4a334e0a5295ebcef8401eb94b8fa0971b200f0f9e788ed61edae5018c917efd30b01631cbd6bdadc5240c9fcad2966ea0aa9c94b538bcc369e10bbbaf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00006b

Filesize
67KB

MD5
0e6652994f4dda1b8980a7ebd3b5a7e8

SHA1
1b8e746ba0a37f66b3a18fd8cf62d65d5b0c3168

SHA256
93cc94d9696c6ff0bbe4bf2657654c25a805bf8f9e154035cb1afc9ceaec7561

SHA512
9eb480f1fc2cafe6041997fef61cde572f30835ca2869fea6f981a11a182453a83bbf39e318f21c21cacf3ff2d7d60117e33c48a99d409a2db844f1c0afdd989

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00006c

Filesize
191KB

MD5
23606db6fa65ba28a85340cc164b04bc

SHA1
dd3bb64ab4889b05d3fba67502b4fe9e40a321fd

SHA256
589920797caa7602cdbc50c2e262cf1f80403ac62edd91b0c8151a27228a5df9

SHA512
0b5be4cb8a8d36c778f0fbfe5fc042b66e9de2ccacf89a7e3f08343bfbd0e73ea7f0a35e4c346afc93ab62d1d3a492a5626008f639c130110208999fc2a1064a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00006d

Filesize
17KB

MD5
34ee0e99fa24c38a639a3fc4c4fb1c6d

SHA1
c40fd795951a630addbda16119f250ccaf86d400

SHA256
662736d12cdbff0308a6170f06bfd0b2501e8c8a27e59ef326e3c1c4c6f2eac0

SHA512
0e4c083b243f65b78401e3b2ca8a97e9243bbd232504397c0f2db62e7c4c4a6203b2a6bcc5402c256a484ae279b04d950644a03e169eb9d82c842eb883fe1394

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00006e

Filesize
104KB

MD5
51660898d71f1fd6b1292ef72e278f0b

SHA1
509c414d7062871cb6b527459766ada97a3221b9

SHA256
fd6f5e7528d4b1ef3cc937993493fa0de902d71ab933353c62e5451b1c9fd7c2

SHA512
29b49a39459010feba8ef940b0f14c3edb66bad6f00bb358bfbb6b3ba7353afdea193dc653222c2b607f7ca5cb0cb81fab072db6db3c9b833658bb1241ef1c10

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00006f

Filesize
43KB

MD5
6e626b22cb3df576c3a93fdcb7d577d1

SHA1
b6c43a973b6d9b8c1aefa6aafcd34589b4595ff4

SHA256
7703088e1cb383565157bc1f708994380ed16ee65567110c7dab5d832459830d

SHA512
bd2f5daa730e7a52c2bc22a65ab9b3d475ecd6aba34bd8f10fc057e93ab8aab0b6cd21c5256082980084893f61238caca92a7cb7b6a56292c50ad7d6aa36c553

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000070

Filesize
44KB

MD5
4670305c7a91dd7d819c49e11aaab673

SHA1
c808a80f512a23d3905909941e4cc9eb02efebf0

SHA256
5043a78776a6f0ebdf75562b965cc86893553f30efc120e5647d8b157629447f

SHA512
05bcece1cd9a592e6a6c9e5a80f4f019d1a4d57c9949db4a5b9296767ad8f7e360a5fed197c068b00156bd43daed98e7cc05ab8e62e13e568bd0bb015134c7cd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000071

Filesize
24KB

MD5
f9947e7f9c9be22a61e282e5a6bb89b5

SHA1
9e903857a9bfbb750b0f074f99cff3599093823d

SHA256
d27f2351f46c43b0b37a79cda8bd172c18d3a6064cf8657313501ca0cfe2d00d

SHA512
279d69e35e77238a1e7ff1c0425e35eff0fc3241335bcbccf3386595f353ba7d2448b9a63274b011481f0e1b97bdb5c80f8e8e4b149012031c50e608d87cdb4f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000072

Filesize
29KB

MD5
5e2ec22e3837874c0cc5bb0f641ddaf5

SHA1
709b3b13793e22c7661d473ccb5661a57111ef1f

SHA256
f64bd4b8f50d6d9585efaf8646a0fa25f09de5b3b315a9ae47576b11d1cda75e

SHA512
b02dac49fbb92f3953f6bf87164c041f090bd25bce730a29a2eacf2dc3b2b4ff2f41288a167dba81a40964eb10e9fa08f9f07cf030f5c7825f2acd3e7c8bef4e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000073

Filesize
42KB

MD5
cc7ad65e0558327d8fbe8ade40ab94e8

SHA1
6c153e9bf971f196db25cb2cb3b62f77f0a1299a

SHA256
956e1fd407995ff1ecca3bf42ca0d01086edc7eb6a965e1d9d4a48f197a8bd30

SHA512
0af63a7bb1151ef7564472b90ddd766857e3fd78973195817aa751d97093558688733876114ea7341063c7f1bc01f90aba1016980ce2c009a0cc399f40614377

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000074

Filesize
39KB

MD5
e1f6e032096b2924e561c3928b9dc73d

SHA1
f33a3bb1b04f04ed1b93b13d21b6b3ce529690ad

SHA256
fa802b853572d8a40ee939940d0cd9562ea8f5954c0522b0777e01fcb546c3c8

SHA512
b13f6e1f984d28c5f4cfc4ae2298b321c314892cab1e5ccd6f1f61ec98d8c1a39669078c88ba541c91648963abc6e16e0a1cdb4e9449b4be16927e9bad8d0f37

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000075

Filesize
18KB

MD5
befd9c0fdfa3d8a645d5f95717ed6420

SHA1
c8b43436ab1659f32cc05625389f63e8047f90a8

SHA256
94e5c823e72e71cc20f4bfa29b0434f2260040965d9d066c0e7cb5dc99ffd6c3

SHA512
4d0b790db4323558a9eccadd1df116883b7044e0f7e4dfe120c2c98814e55ceb1bf4cde14e0f6af38541ef723571db0cdf35a2b3ee398af2d3031a9928df1d1f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000076

Filesize
42KB

MD5
b715a5dd019d1b8771a3031ff85c972b

SHA1
5768744eb85d3137d094458e4b7842c1c5c526cd

SHA256
e9ca7a8587bb3674824a28a8a80836e3483dc3bbe97c658bf7c984c5b424920a

SHA512
22e09e48a13ced3a3cd95a5f40b5e9ccbbad8abbd0d6af7dd4e411d63c662b09f1ad2453909a6c7a0d0ce34f250f2fbf0d7f076dced281f133ab7f21d2008d1a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000077

Filesize
66KB

MD5
bfc0dd20fa036be9ec0b9049caa7ac84

SHA1
39b6b7ef29515fc5282185e43a7e39efaace290b

SHA256
f0f071e117c49f9be4f630327c400c329120c145081d42fb2de942e98bd3a238

SHA512
898dd1db18c68f2dd9a308323eead0ead28e76ab1cccb95ac985db343577ee450623178fbb3d7835e0588a62d0067683ac3a4e93a178a3043294149d5a6fbba7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000078

Filesize
21KB

MD5
8b04768b9a67352167b0d250a85cfda5

SHA1
1870a50258cb9e34f573c2dc12195c1e12280a4a

SHA256
dd4af1dbc3946d57288ae915917707e0a51fa1be78482d9a33ca71c540bb41f8

SHA512
88cc68952497918f1a50c5fabbf0d5db383c36ad73258aca844f0376140a64da32a9fa472f62f8885f2fce87c0eee309b651b3bb72b65675b164e39ee70ca116

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000079

Filesize
23KB

MD5
3cbe3bdcbc340437dee05c1a8c0b04bf

SHA1
edf486649f57c5b6bd2f3c69bc96166ceded22e3

SHA256
746a2e17f6b6918d830fe68df4a46a7c48da613cd34fff111da98c451b002f6c

SHA512
22cb7349f29f7a1067b8ebd2e22fb219e4e0dc7dbe1bbd207c97102b739a14e2ce8a00562962705b0700fb476fc145ab68259e75c69a4a1369373b0d6b61744c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00007a

Filesize
47KB

MD5
d4fe31e6a2aebc06b8d6e558c9141119

SHA1
bcdc4f0b431d4c8065a83bb736c56ff6494d0091

SHA256
c88db2401bef7e1203e0933cc5525a0f81863bfd076756db12acea5596f089ec

SHA512
1cbe7641b8930163ed3ea348f573cad438b646ed64d60c1923e5b8664c3de9c2c21ba97994ec8d886f489e4d090772b010de72a1167547fb4f6a2d242d46aec1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00007b

Filesize
31KB

MD5
5be09c7c686dbba1984fc1a2bacb772c

SHA1
b0626f753ce1f18bd01b5c29d86af92a7152e07f

SHA256
c85491a931fe791cd1b23d54b42bd7abec503842ed5cb76420ab365c4ff45b4a

SHA512
2fb59449fa9a0334e85c0342352037a60378e484ad0e0cc417b9559fa8ef7ac81c972a50dff01d177db0875bf244b3ba90bda0565e269be8e745aa7470e223b7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00007c

Filesize
21KB

MD5
280dca08efdee68f40a89256d6f9f25d

SHA1
f5291c5fea73d429f08656f543cd6c563df48053

SHA256
cdea009110a6c67df98dd8244f7e238e47508e77642f4369a246a9d0724109a8

SHA512
c0f2b45e1aff0295b6e73d3c39957aaf1e3d6dfc076b5457612f027f538d6f7be85aad1facca20716704ef94f33cc7c60caaecb42fea1a20b956a26c88af1584

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00007d

Filesize
22KB

MD5
2a5211f13633e621e4e96e3bb4aeb2d7

SHA1
aaec211b9b1aa4340aaea0cf52494e37725e8d89

SHA256
a5b539d625f24613d5224001de32014ed9d77f96f7de7b97a2cf24100d9971b9

SHA512
cd1e9f4c8274ee50757496c160982d345c51477ce1e8140eca44c7af3d36b516a660a28c41651c5321d5213d2c9ed938dcf00a13f4e8d319ba5e47a65d5722e0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00007e

Filesize
29KB

MD5
6890e9120ea58cad4c024e1eeff2ace5

SHA1
475fec88902fee0b4a8f2eedbb9dd1a6513fe003

SHA256
7e459136dd8c08a3c059c34e5a1f5b13d1a4afcce232e3837781be35137c6045

SHA512
11f69a91e67ec58d5c759d0b70ea8ef67deb0970ba859debc9602754b8fb7f8389e5c18f980b8c0e553f68f3af7dcdc479d3c62a9c99ccb1d452728bda5e2fed

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_00007f

Filesize
59KB

MD5
cb95b045f1a2120260b53279d38b0c1c

SHA1
7bbe8bb88a0ee03c899df2857ff46becfa4384a0

SHA256
e9346018af2f4aecda5104f2d7fcb6feff191bbb4c348ec03c6b8cd48d11d5ad

SHA512
677d80cf1689b44a1f3ac36a854cb3f8ec40d9a2259db13ca9ba8ab11c30e73784aeabdf87eb4e667cb4234d325c52bd481c03a33cc0783dbe965f7a8710ba30

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000080

Filesize
88KB

MD5
a1e581b7224dcb394bf139fb0ceaabb3

SHA1
29aa1709a999436898e6118430e264dbb0f1e565

SHA256
15695dd884207aefd5f7520ea59c286bbc962289294710e260b4bb0d31894e11

SHA512
8ca0fa5d965a1fab13d9af23a280d6a3598fa2e50a4549092748c423a42ed4878104c0d0dff3da37e1be3d9f8d98f88d83b4ce5f1d43f5c24082f07fdf66e6fd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000081

Filesize
101KB

MD5
936e7f96ed03959f682aecc20ef64868

SHA1
bae185887bb08c7b02bad0738887ce76fc5065ca

SHA256
463ec953389dc62adff28cfb5b66f20a7b68140112bd00f974c5885f9d4e864c

SHA512
ad8b5994197e552ef88f003794c3a014cfbd085a1bf5e12da012bf0a624e0b8737b1cd1235639756313904015a69151f3657116504ba3ea2d4529d69b266e3e1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000082

Filesize
75KB

MD5
0049e2c4454a1b88d7e5232ce501274e

SHA1
562dff86ef5302b31a35f3335b94f2120f83c3ea

SHA256
97977d6df3ba89444d76c5a05e1923ab4722e3c4a9c8d04cca207493fd2e5532

SHA512
34addbbd3ebc57bf1b6c39d876211d8756bc74decc658c8a64d253414b93ebb7b394837ccd7b2fca7772794f114443548f7b98c8a023cab3a286150bc8fe7ec6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000083

Filesize
68KB

MD5
d0949b90a36d0ab18d4e1b8f3c356fcd

SHA1
dcda078d7fabb0a2df9531b7886819654d6db2b5

SHA256
62439acc271411401062f17d24e50cac8a7c32e27628067f8f1f3e4925dd3424

SHA512
0aa4223fca28f00e7b7415685d3c4bf1755878fd9f62d80e2b4304748e050b2de66ea2d5db4ed4e662f300177190258bb4cf04da7a2794edd928c215b7a69e03

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
7KB

MD5
96b62c1e4016a2e5a8f51b75d60cd833

SHA1
8627de20962a8463ba5c308100eee468409618dd

SHA256
43f9a2134ad7f98872afecf95fd008ae2daf7f7081239fed68c27d0cc1ff1f11

SHA512
37c8d6443eca4f11e6def936891371fe48ef886030843c006c876d0d5f33f43a4fd1df3a239c8be071f8492fa4dd69ddf649a2485d7ef0c44b6393688a7fdc3b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index~RFe57caf1.TMP

Filesize
3KB

MD5
6cbc378966adea5f247763201a2928ca

SHA1
a2eb0505d0a65bf8966297658401dab604080ad5

SHA256
ffb608b039f3aab88731ba9ab1fb46e524a44d2629648c81ebfad04a129d2420

SHA512
f68731e65e850de963df0515ae3462894c265bc0ed2fd161eb00f0b9f9ab44fc03063949388db21d3f57bf03474bf95d20e065b4db71da17071594dc12ec31e0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\DualEngine\56195b72-5cc5-4c7e-a3a8-5176cbec0aba.tmp

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Edge Profile.ico

Filesize
69KB

MD5
164a788f50529fc93a6077e50675c617

SHA1
c53f6cd0531fd98d6abbd2a9e5fbb4319b221f48

SHA256
b305e470fb9f8b69a8cd53b5a8ffb88538c9f6a9c7c2c194a226e8f6c9b53c17

SHA512
ec7d173b55283f3e59a468a0037921dc4e1bf3fab1c693330b9d8e5826273c917b374c4b802f3234bbb5e5e210d55e52351426867e0eb8c9f6fba1a053cb05d4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha\1.2.1_0\content.js

Filesize
9KB

MD5
3d20584f7f6c8eac79e17cca4207fb79

SHA1
3c16dcc27ae52431c8cdd92fbaab0341524d3092

SHA256
0d40a5153cb66b5bde64906ca3ae750494098f68ad0b4d091256939eea243643

SHA512
315d1b4cc2e70c72d7eb7d51e0f304f6e64ac13ae301fd2e46d585243a6c936b2ad35a0964745d291ae9b317c316a29760b9b9782c88cc6a68599db531f87d59

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Favicons

Filesize
24KB

MD5
aff637dbd0bb28df9f35dd6cecb36f14

SHA1
9283d51db1d5be28ec2fd42d0e9943b1164cfb7e

SHA256
773addbf92f1c039da62629f0f30fe84caf1c8e20daed24c7c9c29f59b6b31a6

SHA512
fb63f322be805f02746568c8c4508ed4204a3f89dd01be0a56851f7cf140c504693bbd64ffe9ab854cb2552a1ce87fa484091e52dc9ffbf978e8097fcca3ff14

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History

Filesize
192KB

MD5
9816bdee0bbbfdc98a3f3f4da81e1957

SHA1
137130aa47e28c0371022816baee58c5ba2e1136

SHA256
f0d86ca2f22d4ecb3b01568c126e52e8833918ac5166c819449af67f3b39b324

SHA512
ca682abb6410b1db36e8d410738d99f3681ee0a7c75c69ff730ebaba501621f4646dc56311a953993d0435d853c6cfb7425dc6d7edfcf2d1a5504a1dc0515840

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
c6d59eb1a23e943e275c3ff4fbeb1284

SHA1
ad2f74fb640dbc1bff1a6c946485e2098f6aa474

SHA256
bb8f0d783b07ea0c12313c41b4867155849d8b05f796dff2d8a01a1157b04587

SHA512
8d266d78988cf7d6680d24df001c471b9e7a6a8434f1e8d833c5731c6810773410a7609ef62ddbba9e5cadc6c54df872bc4e1b4893999767553c8173f97bf2f5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\Network Persistent State

Filesize
111B

MD5
285252a2f6327d41eab203dc2f402c67

SHA1
acedb7ba5fbc3ce914a8bf386a6f72ca7baa33c6

SHA256
5dfc321417fc31359f23320ea68014ebfd793c5bbed55f77dab4180bbd4a2026

SHA512
11ce7cb484fee66894e63c31db0d6b7ef66ad0327d4e7e2eb85f3bcc2e836a3a522c68d681e84542e471e54f765e091efe1ee4065641b0299b15613eb32dcc0d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\Network Persistent State

Filesize
5KB

MD5
9a4d3426e4298aec00d2cbeddae971c2

SHA1
207a917e3a92454dc58b91084712ae752933f985

SHA256
b352903b16efdff316ab918179e1dbf8b46fcb83a13875916afd609166a7a751

SHA512
ab9676661beb25de8bcd9555a61bad1a185cfeb168ce5324abce60870b07f1f14db3aefde6aa630d97f65bb7a1d4fff9a5802355fd6e8af0e010bda7e6e66156

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\b0efb4fd-fae9-49a4-840c-5d0a4ff28dff.tmp

Filesize
40B

MD5
20d4b8fa017a12a108c87f540836e250

SHA1
1ac617fac131262b6d3ce1f52f5907e31d5f6f00

SHA256
6028bd681dbf11a0a58dde8a0cd884115c04caa59d080ba51bde1b086ce0079d

SHA512
507b2b8a8a168ff8f2bdafa5d9d341c44501a5f17d9f63f3d43bd586bc9e8ae33221887869fa86f845b7d067cb7d2a7009efd71dda36e03a40a74fee04b86856

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
15KB

MD5
5158cf7a3ba79b43c71b7ecd758ab1a8

SHA1
e26200316184e41160a46c5b0510060b8e2a49d8

SHA256
4d84409aa95e69420f5c15ea5557abee94031224871d61ef540ebc78580b04f2

SHA512
4453a9a1f6946437b6fb321c6e7b2baed7d0b719f263111ec80e1d012eaa76b7460390a6bffcde90aea36331193ba8f56d05c7e98b1b297811b8c73d99d3e20d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
14KB

MD5
14bf783ccf7326312dd4c04a21c38d10

SHA1
aecb57656ff13270560c7aadccfa7a19ae9ba2d6

SHA256
3cd787c362aad1ebec10d4e26c72f0073bccef6ce3e2cf635b04175af1274db6

SHA512
d4b33e740b4fe0778096dc78d60291c2c54475d00c4467b1ff3fa775b517074ae7585aa0635b97074e36aa47cddde7e0c7ce0f316a2d89dda9a657bbd1c8f82a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
14KB

MD5
f898db7884deb1db1846908c9b882b40

SHA1
2697025a92aacd76d77d1c04d2caf4f76963d34b

SHA256
80a9296765dfabf31e9a5afec42e200a535c3e3b17ec45861440d92d8ae8bd9d

SHA512
fa3500063aafbcdcc3f6de64c34a26894b015ab5aa69618bb4acce42ff4d9ea73bf8a80980898dd7708e26ec34cb837e792402ae92daaffbe51c1409d891fa38

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences

Filesize
36KB

MD5
fafeeac26a6c1c13d2a5d275e114a35f

SHA1
330afb557a1eff5a5bf40a43c363411546af2504

SHA256
7c4695aa8e8e4a7f9b85d98dfbd6a2bbdb023720e0999bb9f487dc3c5b405ef3

SHA512
375c509775b8ec88cd807c3e1e356f13dca199ae91636381b02924b9866cdf19ec97a29a6197c19ea3ec96dde21d79d3fb6acc8caf34ff3c9278a9a18c7beec5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG

Filesize
347B

MD5
14dd484e57877bb3cc6f3e5d16e4e007

SHA1
9d3f8ca1c54753bf88ef2c899acfb767038f752e

SHA256
a45bf440de7a0486d6377fd7c9426afd953a6e770319cb95eff8b1368c9685c6

SHA512
6feb79b57563c9ad5c40db5e0563e98107b5522b6bd61562e2f607035d5bf9c9d28a95f4974e5778ce00447d2831799b7820351414a038b2ac6801db7ad6ec99

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG

Filesize
326B

MD5
7811acbac3bde9bcba3281edbb4fdb44

SHA1
c014850eb588356201150ba7dde9fe52925d1512

SHA256
5b3d51a8e4cf357e34c4307416bdad8ae7715173b777483a9bc1ef3593c11f60

SHA512
f2317c4041bd9bd668fb211f14cbcbbbae39d69a40f8801c421b24516605334dd8047f9032016cc52f8ebfff07231c2e6920ff3576efc8d6eeb99ae8af521a14

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\Logs\sync_diagnostic.log

Filesize
4KB

MD5
caa20c500f296ba61d353a0449b1084f

SHA1
06bdb09f57f9145fbfca97e4a2d6cab461a46326

SHA256
49aa9fe748c170f2d1e198a7a9138e89654221cafacee37f3a764567f8c00946

SHA512
9384b0dc3ac9be6cdce286433930d35be20aa2cbdd0b9692b554ddf49084c47a543d3203dddb78aeefe7d8cd45d66b2c76c2179ee7c2bafbb80e93f412795989

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Cloud Config\CloudConfigLog

Filesize
880B

MD5
bb46e4a2be914fd21a5f4adf4cf9bb0d

SHA1
690063e8cf00b77694e3e8c88c38fd6462fbde22

SHA256
afdb6a8fc3d2f297c2b532de3d56b205b853f53e5735e690e3aa63ac21e95fb2

SHA512
20ba447fab702d81095a29fbbe5dfefb500041d1f317022c5d99b2d60e9fff98da47f2d95d2434a521ca0139b0f7087f135d70db91219a9ca7c9b44e4d14a5d2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Cloud Config\CloudConfigLog

Filesize
20KB

MD5
cfff25301461f0fa6fb66b672a634c0c

SHA1
4d85d9bb2a5851399fa7c7b2a5cd767ea44a498d

SHA256
745361a6d26ec3853bb296e48e1d32d8c2e3f7519d6fe05d65310057bd94ab4f

SHA512
be8ad140c75efdd073af33f30bb27448753f89f50437f83386c15971da642039126a894d10a66846f9408add76f3f449a6c1903c744d15cd7aa6a8975ed45467

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Cloud Config\CloudConfigLog~RFe58b87d.TMP

Filesize
469B

MD5
e88ad6f395d4ece1aafe4e0dde782ea0

SHA1
52aca2b43f1289fa91d268c4331710cd03142baf

SHA256
ceaa537e740e4998288649d8b9b8f065f79b5f7f257ee48d528f4ff731495b09

SHA512
ccc38bba2a4c7911ada857825c07a22c646196b217ed78e50c62d1c1e3b266a3e0d2eb9352ece7dc2fb6c983580483bbafa9b185160a84f15408ce028a1bc59a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Cloud Config\OperationConfig

Filesize
19KB

MD5
41c1930548d8b99ff1dbb64ba7fecb3d

SHA1
d8acfeaf7c74e2b289be37687f886f50c01d4f2f

SHA256
16cee17a989167242dd7ee2755721e357dd23bcfcb61f5789cc19deafe7ca502

SHA512
a684d61324c71ac15f3a907788ab2150f61e7e2b2bf13ca08c14e9822b22336d0d45d9ff2a2a145aa7321d28d6b71408f9515131f8a1bd9f4927b105e6471b75

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Cloud Config\OperationConfig~RFe58ba04.TMP

Filesize
2KB

MD5
ee334aba4dd4fb9caec2da190449504a

SHA1
83d86913e3555e9a83208a777607a621965e9d77

SHA256
762156ec3519d73a52878b137bd506781d5ce93e10336f2010ec52ea9ab78536

SHA512
5863b59c91b1045cb69c5a8feefc32d579f615c3d1480d13369aff2cdf521e7d991424c4edb61f58b1da763e0bbb98f02cc56b0d9fc01236db2f4acc799b58f9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Data Protection Lists\2.0.0.0\office_endpoints_list.json

Filesize
3KB

MD5
94406cdd51b55c0f006cfea05745effb

SHA1
a15dc50ca0fd54d6f54fbc6e0788f6dcfc876cc9

SHA256
8480f3d58faa017896ba8239f3395e3551325d7a6466497a9a69bf182647b25e

SHA512
d4e621f57454fea7049cffc9cc3adfb0d8016360912e6a580f6fe16677e7dd7aa2ee0671cb3c5092a9435708a817f497c3b2cc7aba237d32dbdaae82f10591c3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GraphiteDawnCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Version

Filesize
13B

MD5
3e45022839c8def44fd96e24f29a9f4b

SHA1
c798352b5a0860f8edfd5c1589cf6e5842c5c226

SHA256
01a3e5d854762d8fdd01b235ce536fde31bf9a6be0596c295e3cea9aaf40f3dd

SHA512
2888982860091421f89f3d7444cacccb1938ef70fc084d3028d8a29021e6e1d83eaef62108eace2f0d590ed41ece0e443d8b564e9c9a860fc48d766edb1dc3d9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
36KB

MD5
b3ae286e93c1ef2d08926ba802fc4b94

SHA1
8f3c18ac120b690267788b178b31ce8613928621

SHA256
7f95d8b1436bf441fae7025170f3220fb280bc6c38944a53ea9080b362b7a4a4

SHA512
a5941adc74f3a124fe6caf4c6be79b90dc834bbe00f4b8c0c65a46f20e0529b6dc02702da9a3e8bd24f1cf808b5ea14b2de12e6c5b03ec6be66cb324c9ab3ba7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
6KB

MD5
ba028b5889fbc6884cf51fcc039fa837

SHA1
7533b59db6294fb3abe69cd53cb99d2499e42838

SHA256
312c6a16d7a80e57a4fb12e81426ad6710028264d1183f1156453065b4018fe7

SHA512
5a050e9bdcb7246c340ea748e20c9f0a455217f50c197104b524adc15df530ec583af8b8535b4e18b705f602dcb1ece58d2c9e0f21aacb6c0ff00ffbf14d0933

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
36KB

MD5
0dd91a43c9e0bf061f9fb84c32e2af0d

SHA1
5e3920d653342b4dd9bdd7da766a59df70c92b57

SHA256
02a1bec2d269bfd5424331c9d5d58b708f1f6313b53d5e7cc3a8302d7cd8f1a0

SHA512
fe06de4f75d6d7c21102762a793a6316ce7dcb3edc1338acd85179f20d991f00d02a9553a984d1dd437188da7ec792a40e7f7d30145f5f20db7d5be5f8661cea

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
48KB

MD5
ede829e4c641b0078913666581eef39b

SHA1
cadaac055600daa6751e56efa9c1508c48a1df77

SHA256
85658b1e50f825b8b96b5a5516805cecc10dc0ff2fc1ae8922e7fd9fcf96e257

SHA512
6e6afa6180b998402a8d01e0decb42bfb18f3c96e33845417f7ad2f38098363627474c48af42beb27de5c47b8766cdc3e67a206eb457c9f95e21f5f0db476325

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
36KB

MD5
f7dfad2decc5c5a17ca892d8afc5de05

SHA1
50ed527a7335988211a6213ec1c5cea138f25c47

SHA256
0bb80c1440d73dc205aae4913ef66cdb2f3bfe6b0f8b7723238b9a371da7c9d2

SHA512
90177bd67c8bab7d187e9f7873c393f6720baa165912c9d21ade69cea192d0778bc73a5fdac449df31da5af92eccd5f3be3200c86f4ca2f02b7576095f42dddd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
30KB

MD5
16b29e99dd59d1e1d6bb6dc90708fb46

SHA1
83833d29c689b0d79df93e6e3c1e5e2551c00fc2

SHA256
0548048668f1bc732cf6c5f93920d3abf78ebce5a56f735c12599abe3526f034

SHA512
8104774b165026a1dff3a5a20a197919f239ea3499d58b65f379cc440dbb6d6bdc33e138f70324519c2c60f90afb6ba5a9793573efefc6c0370e778c15ae8e07

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
7KB

MD5
ad3e1d22c015f3f16c6403d0e0c89323

SHA1
7d93a13396fcc567e334f1e6d3dbbdd1ee0416b6

SHA256
fd021ee24b71e07cd0a3fff9d257c5f0827cfe86cc9bf4d09e4abbe46bd7c975

SHA512
145aef09c15337e7f1d81243bf1e169a00827ae3d4f85b4b06bd15fa559df133fe899035122e40ee3290e7177b04b04c469fee9aca8f861b6f3f459824280010

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Variations

Filesize
86B

MD5
961e3604f228b0d10541ebf921500c86

SHA1
6e00570d9f78d9cfebe67d4da5efe546543949a7

SHA256
f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed

SHA512
535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\WorkspacesNavigationComponent\1.0.0.5\nav_config.json

Filesize
2KB

MD5
499d9e568b96e759959dc69635470211

SHA1
2462a315342e0c09fd6c5fbd7f1e7ff6914c17e6

SHA256
98252dc9f9e81167e893f2c32f08ee60e9a6c43fadb454400ed3bff3a68fbf0d

SHA512
3a5922697b5356fd29ccf8dcc2e5e0e8c1fd955046a5bacf11b8ac5b7c147625d31ade6ff17be86e79c2c613104b2d2aebb11557399084d422e304f287d8b905

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\TokenBroker\Cache\5a2a7058cf8d1e56c20e6b19a7c48eb2386d141b.tbres

Filesize
2KB

MD5
88db0a2d08deee061d664848e7d5e518

SHA1
f1f3a2ebc91203da5d6c0831c2812a2f9751c7dd

SHA256
d82332c34a4db58ac6ddbac1b34b93325084399340b845b1fd72875255986bb4

SHA512
3e577095a36689232701c521cb8ab86f34e892afebf37c6a469a66f60515f75ac5489f28006d8f07c8513f9045b03191e661659781e73092505cc6aeb0a8422e

Download Submit
C:\Users\Admin\AppData\Local\Temp\8bdf97c7-0ffd-48d5-bf43-3aa6eaece25f.tmp

Filesize
1B

MD5
5058f1af8388633f609cadb75a75dc9d

SHA1
3a52ce780950d4d969792a2559cd519d7ee8c727

SHA256
cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8

SHA512
0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

Download Submit
C:\Users\Admin\AppData\Local\Temp\e1447794-21f6-4030-bef4-cb2e8f3b5350.tmp

Filesize
10KB

MD5
78e47dda17341bed7be45dccfd89ac87

SHA1
1afde30e46997452d11e4a2adbbf35cce7a1404f

SHA256
67d161098be68cd24febc0c7b48f515f199dda72f20ae3bbb97fcf2542bb0550

SHA512
9574a66d3756540479dc955c4057144283e09cae11ce11ebce801053bb48e536e67dc823b91895a9e3ee8d3cb27c065d5e9030c39a26cbf3f201348385b418a5

Download Submit
C:\Users\Admin\AppData\Local\Temp\scoped_dir2348_1332323954\ce76260a-7bb6-49a9-b91c-314767a47578.tmp

Filesize
150KB

MD5
eae462c55eba847a1a8b58e58976b253

SHA1
4d7c9d59d6ae64eb852bd60b48c161125c820673

SHA256
ebcda644bcfbd0c9300227bafde696e8923ddb004b4ee619d7873e8a12eae2ad

SHA512
494481a98ab6c83b16b4e8d287d85ba66499501545da45458acc395da89955971cf2a14e83c2da041c79c580714b92b9409aa14017a16d0b80a7ff3d91bad2a3

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request