https://nts.softros.com/
This report is generated from a file or URL submitted to this webservice on December 31st 2023 16:37:46 (UTC) and action script Default browser analysis
Guest System: Windows 10 64 bit, Professional, 10.0 (build 16299),
Report generated by
Falcon Sandbox v11.0.3 © Hybrid Analysis
Incident Response
Risk Assessment
- Network Behavior
- Contacts 2 domains and 2 hosts. View all details
MITRE ATT&CK™ Techniques Detection
Indicators
Not all malicious and suspicious indicators are displayed. Get your own cloud service or the full version to view all details.
-
Suspicious Indicators 2
-
General
-
Found a potential E-Mail address in binary/memory
- details
-
Pattern match: "sys@v0.0.0"
Pattern match: "validation@v0.3.1"
Pattern match: "date@v0.3.0"
Pattern match: "appengine@v1.4.0"
Pattern match: "lifesciences@v0.6.0"
Pattern match: "codec@v1.2.7"
Pattern match: "go-windows-terminal-sequences@v1.0.1"
Pattern match: "gkeconnect@v0.6.0"
Pattern match: "uuid@v1.2.0"
Pattern match: "datacatalog@v1.6.0"
Pattern match: "xerrors@v0.0.0"
Pattern match: "privatecatalog@v0.6.0"
Pattern match: "binaryauthorization@v1.2.0"
Pattern match: "genproto@v0.0.0"
Pattern match: "webrisk@v1.5.0"
Pattern match: "asset@v1.8.0"
Pattern match: "lint@v0.0.0"
Pattern match: "dialogflow@v1.17.0"
Pattern match: "grpc-gateway@v1.16.0"
Pattern match: "azure-storage-blob-go@v0.15.0"
Pattern match: "go-spew@v1.1.1"
Pattern match: "pty@v1.1.1"
Pattern match: "v4@v4.4.2"
Pattern match: "language@v1.6.0"
Pattern match: "errors@v0.9.1" - source
- File/Memory
- relevance
- 3/10
- ATT&CK ID
- T1114 (Show technique in the MITRE ATT&CK™ matrix)
-
Found a potential E-Mail address in binary/memory
-
Installation/Persistence
-
The input sample dropped/contains a certificate file
- details
-
File "manifest.cat" is a certificate (Owner: CN=Microsoft Corporation Third Party Marketplace PCA, O=Microsoft Corporation, L=Redmond, ST=Washington, C=US; Issuer: CN=Microsoft Corporation Third Party Marketplace Root, O=Microsoft Corporation, L=Redmond, ST=Washington, C=US; SerialNumber: 61362ca7000000000002; Valid From: 10/08/2010 23:15:35; Until: 10/08/2034 23:25:35; Fingerprints: MD5=84:39:74:8A:4D:2C:09:E9:5E:2B:8A:CD:AB:65:3C:6D; SHA1=15:5D:43:4F:0E:34:F1:40:A7:95:A4:86:4A:25:31:13:3E:52:8F:3A)
File "manifest.cat" is a certificate (Owner: CN=Build Manifest Signing, O=Microsoft Corporation, L=Redmond, ST=Washington, C=US; Issuer: CN=Microsoft Corporation Third Party Marketplace PCA, O=Microsoft Corporation, L=Redmond, ST=Washington, C=US; SerialNumber: 33000001aaec39123508b8eb700000000001aa; Valid From: 05/11/2023 19:44:24; Until: 05/08/2024 19:44:24; Fingerprints: MD5=F3:C0:E3:FC:9F:EC:54:21:31:FB:75:3C:B3:B1:D3:7A; SHA1=BE:78:F7:57:1E:D1:85:2C:36:D9:94:08:8D:CD:BF:EB:44:D8:83:D3) - source
- Binary File
- relevance
- 10/10
- ATT&CK ID
- T1588.004 (Show technique in the MITRE ATT&CK™ matrix)
-
The input sample dropped/contains a certificate file
-
Informative 11
-
External Systems
-
Sample was identified as clean by Antivirus engines
- details
- 0/91 Antivirus vendors marked sample as malicious (0% detection rate)
- source
- External System
- relevance
- 10/10
-
Sample was identified as clean by Antivirus engines
-
General
-
Contacts server
- details
-
"108.61.143.164:443"
"108.61.143.162:443" - source
- Network Traffic
- relevance
- 1/10
- ATT&CK ID
- T1071 (Show technique in the MITRE ATT&CK™ matrix)
-
Creates mutants
- details
-
"SM0:7084:304:WilStaging_02"
"Local\SM0:7084:304:WilStaging_02"
"Local\SM0:7084:120:WilError_01"
"SM0:7084:120:WilError_01"
"InternetShortcutMutex" - source
- Created Mutant
- relevance
- 3/10
-
Drops files marked as clean
- details
- Antivirus vendors marked dropped file "urlref_httpsnts.softros.com" as clean (type is "HTML document UTF-8 Unicode text with CRLF LF line terminators")
- source
- Binary File
- relevance
- 10/10
-
Found a reference to a known community page
- details
-
file/memory contains long string with (Indicator: "facebook.com"; File: "Social")
Found string "zadn.vn/ansira.com/fcmatch.google.com/origo.hu/fcmatch.youtube.com/refersion.com/flocktory.com/vtex.com.br/rqtrk.eu/vocento.com/fingerprinter.msedgedemo.example/" (Indicator: "youtube"; File: "Fingerprinting")
Found string "fcmatch.youtube.com/fcmatch.google.com/other-tracker.msedgedemo.example/" (Indicator: "youtube"; File: "Other")
Found string ""baysidebuddy.com"," (Indicator: "ebuddy.com"; File: "wallet-pre-stable.json")
Found string ""comeherebuddy.com"," (Indicator: "ebuddy.com"; File: "wallet-pre-stable.json")
Found string ""www.facebook.com"," (Indicator: "facebook.com"; File: "wallet-pre-stable.json")
Found string ""linkedin.com"," (Indicator: "linkedin.com"; File: "wallet-pre-stable.json")
Found string ""paypal.com"," (Indicator: "paypal"; File: "wallet-checkout-eligible-sites-pre-stable.json")
Found string ""netflix.com"," (Indicator: "netflix.com"; File: "wallet-checkout-eligible-sites-pre-stable.json") - source
- File/Memory
- relevance
- 2/10
-
Queries DNS server
- details
-
"nts.softros.com"
"www.softros.com" - source
- Network Traffic
- relevance
- 1/10
- ATT&CK ID
- T1071.004 (Show technique in the MITRE ATT&CK™ matrix)
-
Contacts server
-
Installation/Persistence
-
Dropped files
- details
-
"manifest.cat" has type "data"- Location: [%TEMP%\7356_968141400\Tokenized-Card\_manifest\spdx_2.2\manifest.cat]- [targetUID: 00000000-00001480]
"manifest.cat" has type "data"- Location: [%TEMP%\7356_968141400\Notification\_manifest\spdx_2.2\manifest.cat]- [targetUID: 00000000-00001480]
"manifest.cat" has type "data"- Location: [%TEMP%\7356_968141400\_manifest\spdx_2.2\manifest.cat]- [targetUID: 00000000-00001480]
"manifest.cat" has type "data"- Location: [%TEMP%\7356_968141400\Wallet-Checkout\_manifest\spdx_2.2\manifest.cat]- [targetUID: 00000000-00001480]
"manifest.cat" has type "data"- Location: [%TEMP%\7356_968141400\Mini-Wallet\_manifest\spdx_2.2\manifest.cat]- [targetUID: 00000000-00001480]
"urlref_httpsnts.softros.com" has type "HTML document UTF-8 Unicode text with CRLF LF line terminators"- [targetUID: N/A]
"wallet-icon.svg" has type "SVG Scalable Vector Graphics image"- Location: [%TEMP%\7356_968141400\wallet-icon.svg]- [targetUID: 00000000-00001480]
"data_3" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_3]- [targetUID: 00000000-00003928]
"manifest.spdx.json" has type "UTF-8 Unicode text"- Location: [%TEMP%\7356_968141400\Notification\_manifest\spdx_2.2\manifest.spdx.json]- [targetUID: 00000000-00001480]
"manifest.spdx.json" has type "UTF-8 Unicode text"- Location: [%TEMP%\7356_968141400\Tokenized-Card\_manifest\spdx_2.2\manifest.spdx.json]- [targetUID: 00000000-00001480]
"manifest.spdx.json" has type "UTF-8 Unicode text"- Location: [%TEMP%\7356_968141400\Mini-Wallet\_manifest\spdx_2.2\manifest.spdx.json]- [targetUID: 00000000-00001480]
"manifest.spdx.json" has type "UTF-8 Unicode text"- Location: [%TEMP%\7356_968141400\Wallet-Checkout\_manifest\spdx_2.2\manifest.spdx.json]- [targetUID: 00000000-00001480]
"wallet.bundle.js" has type "UTF-8 Unicode text with very long lines with no line terminators"- Location: [%TEMP%\7356_968141400\wallet.bundle.js]- [targetUID: 00000000-00001480]
"data_2" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_2]- [targetUID: 00000000-00003928]
"wallet-pre-stable.json" has type "ASCII text"- Location: [%TEMP%\7356_968141400\json\wallet\wallet-pre-stable.json]- [targetUID: 00000000-00001480]
"wallet-stable.json" has type "ASCII text"- Location: [%TEMP%\7356_968141400\json\wallet\wallet-stable.json]- [targetUID: 00000000-00001480]
"recovery-component-inner.crx" has type "Google Chrome extension version 3"- Location: [%TEMP%\7356_654704401\recovery-component-inner.crx]- [targetUID: 00000000-00007564]
"edge_driver.js" has type "UTF-8 Unicode text with very long lines with no line terminators"- Location: [%TEMP%\7356_968141400\edge_driver.js]- [targetUID: 00000000-00001480]
"vendor.bundle.js" has type "ASCII text with very long lines"- Location: [%TEMP%\7356_968141400\vendor.bundle.js]- [targetUID: 00000000-00001480]
"wallet-drawer.bundle.js" has type "UTF-8 Unicode text with very long lines"- Location: [%TEMP%\7356_968141400\Wallet-Checkout\wallet-drawer.bundle.js]- [targetUID: 00000000-00001480]
"data_1" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_1]- [targetUID: 00000000-00003928]
"000009.log" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\EdgeCoupons\coupons_data.db\000009.log]- [targetUID: 00000000-00007356]
"000013.ldb" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\EdgeCoupons\coupons_data.db\000013.ldb]- [targetUID: 00000000-00007356]
"bnpl.bundle.js" has type "UTF-8 Unicode text with very long lines"- Location: [%TEMP%\7356_968141400\bnpl\bnpl.bundle.js]- [targetUID: 00000000-00001480]
"tokenized-card.bundle.js" has type "UTF-8 Unicode text with very long lines"- Location: [%TEMP%\7356_968141400\Tokenized-Card\tokenized-card.bundle.js]- [targetUID: 00000000-00001480]
"notification.bundle.js" has type "UTF-8 Unicode text with very long lines"- Location: [%TEMP%\7356_968141400\Notification\notification.bundle.js]- [targetUID: 00000000-00001480]
"v1FieldTypes.json" has type "JSON data"- Location: [%TEMP%\7356_795181994\v1FieldTypes.json]- [targetUID: 00000000-00005900]
"000014.ldb" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\EdgeCoupons\coupons_data.db\000014.ldb]- [targetUID: 00000000-00007356]
"000003.log" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Asset Store\assets.db\000003.log]- [targetUID: 00000000-00000496]
"miniwallet.bundle.js" has type "UTF-8 Unicode text with very long lines"- Location: [%TEMP%\7356_968141400\Mini-Wallet\miniwallet.bundle.js]- [targetUID: 00000000-00001480]
"load_statistics.db" has type "SQLite 3.x database last written using SQLite version 3039003"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\load_statistics.db]- [targetUID: 00000000-00007356]
"notification_fast.bundle.js" has type "UTF-8 Unicode text with very long lines"- Location: [%TEMP%\7356_968141400\Notification\notification_fast.bundle.js]- [targetUID: 00000000-00001480]
"data_1" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\GrShaderCache\data_1]- [targetUID: 00000000-00003928]
"data_1" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\DawnCache\data_1]- [targetUID: 00000000-00003928]
"data_1" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\ShaderCache\data_1]- [targetUID: 00000000-00003928]
"data_1" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\GPUCache\data_1]- [targetUID: 00000000-00003928]
"edge_autofill_field_data.json" has type "JSON data"- Location: [%TEMP%\7356_795181994\edge_autofill_field_data.json]- [targetUID: 00000000-00005900]
"manifest.spdx.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\_manifest\spdx_2.2\manifest.spdx.json]- [targetUID: 00000000-00001480]
"History" has type "SQLite 3.x database last written using SQLite version 3039003"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\History]- [targetUID: 00000000-00007084]
"safety_tips.pb" has type "data"- Location: [%TEMP%\7356_473554675\safety_tips.pb]- [targetUID: 00000000-00006092]
"f_0004c4" has type "JPEG image data Exif standard: [TIFF image data little-endian direntries=0] progressive precision 8 1800x989 components 3"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0004c4]- [targetUID: 00000000-00003928]
"wallet-checkout-eligible-sites-pre-stable.json" has type "ASCII text"- Location: [%TEMP%\7356_968141400\json\wallet\wallet-checkout-eligible-sites-pre-stable.json]- [targetUID: 00000000-00001480]
"Web Data" has type "SQLite 3.x database last written using SQLite version 3039003"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Web Data]- [targetUID: 00000000-00007356]
"Visited Links" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Visited Links]- [targetUID: 00000000-00007356]
"data_0" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_0]- [targetUID: 00000000-00003928]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\el\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\ru\strings.json]- [targetUID: 00000000-00001480]
"7b328891-69b9-43ee-a059-7ca744c01723.tmp" has type "JSON data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Ad Blocking\7b328891-69b9-43ee-a059-7ca744c01723.tmp]- [targetUID: 00000000-00007356]
"Tabs_13348514437947997" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Sessions\Tabs_13348514437947997]- [targetUID: 00000000-00007356]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\ar\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\ja\strings.json]- [targetUID: 00000000-00001480]
"Diagnostic Data-wal" has type "SQLite Write-Ahead Log version 3007000"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Diagnostic Data-wal]- [targetUID: 00000000-00007356]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\fr-CA\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\fr\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\de\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\pt-PT\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\ko\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\it\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\es\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\pt-BR\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\nl\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\fi\strings.json]- [targetUID: 00000000-00001480]
"Entities" has type "UTF-8 Unicode text"- Location: [%TEMP%\7356_1044010104\Mu\Entities]- [targetUID: 00000000-00005876]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\sv\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\id\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\en-GB\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\zh-Hant\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-hub\zh-Hans\strings.json]- [targetUID: 00000000-00001480]
"f357865f-ebc7-4ed7-af66-d9d32ab7410a.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\f357865f-ebc7-4ed7-af66-d9d32ab7410a.tmp]- [targetUID: 00000000-00007356]
"a65873de-0026-4147-942c-a6dff572f395.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\a65873de-0026-4147-942c-a6dff572f395.tmp]- [targetUID: 00000000-00007356]
"7e68a37b-2b7d-4e17-adac-1108cf0ca5e1.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\7e68a37b-2b7d-4e17-adac-1108cf0ca5e1.tmp]- [targetUID: 00000000-00007356]
"d297d215-b096-4280-90f3-467939fe04e8.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\d297d215-b096-4280-90f3-467939fe04e8.tmp]- [targetUID: 00000000-00007356]
"b29ab067-2a90-4171-9b48-5339b6a9d552.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\b29ab067-2a90-4171-9b48-5339b6a9d552.tmp]- [targetUID: 00000000-00007356]
"50ff8055-8640-4509-a27a-f86363977de7.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\50ff8055-8640-4509-a27a-f86363977de7.tmp]- [targetUID: 00000000-00007356]
"0e065221-c4eb-49df-84a1-0d8be027c58a.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\0e065221-c4eb-49df-84a1-0d8be027c58a.tmp]- [targetUID: 00000000-00007356]
"0a112382-d589-4a37-b5d3-c4229f3f5022.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\0a112382-d589-4a37-b5d3-c4229f3f5022.tmp]- [targetUID: 00000000-00007356]
"e7334b67-3baa-46c1-b264-dcfbafd6aec8.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\e7334b67-3baa-46c1-b264-dcfbafd6aec8.tmp]- [targetUID: 00000000-00007356]
"799fc906-1abb-4c25-a78e-73f29c555758.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\799fc906-1abb-4c25-a78e-73f29c555758.tmp]- [targetUID: 00000000-00007356]
"Network Action Predictor" has type "SQLite 3.x database last written using SQLite version 3039003"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Network Action Predictor]- [targetUID: 00000000-00007356]
"wallet-checkout-eligible-sites.json" has type "ASCII text"- Location: [%TEMP%\7356_968141400\json\wallet\wallet-checkout-eligible-sites.json]- [targetUID: 00000000-00001480]
"Cookies" has type "SQLite 3.x database last written using SQLite version 3039003"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Network\Cookies]- [targetUID: 00000000-00003928]
"Favicons" has type "SQLite 3.x database last written using SQLite version 3039003"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Favicons]- [targetUID: 00000000-00007356]
"checkoutdata.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\wallet\wallet-checkout\checkoutdata.json]- [targetUID: 00000000-00001480]
"wallet-tokenization-config.json" has type "ASCII text"- Location: [%TEMP%\7356_968141400\json\wallet\wallet-tokenization-config.json]- [targetUID: 00000000-00001480]
"LICENSE" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Mu\LICENSE]- [targetUID: 00000000-00005876]
"f_0004c3" has type "gzip compressed data max speed from FAT filesystem (MS-DOS OS/2 NT) original size modulo 2^32 97162"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0004c3]- [targetUID: 00000000-00003928]
"effa9b89-987a-4bb2-9252-d049edfeb86b.tmp" has type "gzip compressed data from FAT filesystem (MS-DOS OS/2 NT) original size modulo 2^32 97162"- Location: [%TEMP%\effa9b89-987a-4bb2-9252-d049edfeb86b.tmp]- [targetUID: 00000000-00005408]
"f_0004c6" has type "MS Windows icon resource - 4 icons 64x64 32 bits/pixel 32x32 32 bits/pixel"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0004c6]- [targetUID: 00000000-00003928]
"sslkey.txt" has type "ASCII text"- Location: [%TEMP%\sslkey.txt]- [targetUID: 00000000-00003928]
"f_0004c5" has type "JPEG image data baseline precision 8 2528x822 components 3"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_0004c5]- [targetUID: 00000000-00003928]
"shopping_iframe_driver.js" has type "ASCII text with very long lines with no line terminators"- Location: [%TEMP%\7356_968141400\shopping_iframe_driver.js]- [targetUID: 00000000-00001480]
"Vpn Tokens" has type "SQLite 3.x database last written using SQLite version 3039003"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Vpn Tokens]- [targetUID: 00000000-00007356]
"000003.log" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\shared_proto_db\000003.log]- [targetUID: 00000000-00000496]
"Advertising" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Mu\Advertising]- [targetUID: 00000000-00005876]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\el\strings.json]- [targetUID: 00000000-00001480]
"63a7665a-4c2c-4ea4-a6b3-1fe9ea0b75d9.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\63a7665a-4c2c-4ea4-a6b3-1fe9ea0b75d9.tmp]- [targetUID: 00000000-00007356]
"346acb0e-309b-4a3d-accb-41f5a87cb3a4.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\346acb0e-309b-4a3d-accb-41f5a87cb3a4.tmp]- [targetUID: 00000000-00007356]
"e49d1092-dfc5-4705-9545-1b7854536e6e.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\e49d1092-dfc5-4705-9545-1b7854536e6e.tmp]- [targetUID: 00000000-00007356]
"41948b46-6755-47c4-8c18-34beb1564b98.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\41948b46-6755-47c4-8c18-34beb1564b98.tmp]- [targetUID: 00000000-00007356]
"b556a5e5-f913-4e62-a20a-f864dd7885d7.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\b556a5e5-f913-4e62-a20a-f864dd7885d7.tmp]- [targetUID: 00000000-00007356]
"c43eda59-ad45-498f-85ef-def6627bfa26.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\c43eda59-ad45-498f-85ef-def6627bfa26.tmp]- [targetUID: 00000000-00007356]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\ru\strings.json]- [targetUID: 00000000-00001480]
"super_coupon.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\wallet\super_coupon.json]- [targetUID: 00000000-00001480]
"Shortcuts" has type "SQLite 3.x database last written using SQLite version 3039003"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Shortcuts]- [targetUID: 00000000-00007356]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\ar\strings.json]- [targetUID: 00000000-00001480]
"arbitration_service_config.json" has type "ASCII text with very long lines with CRLF line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\arbitration_service_config.json]- [targetUID: 00000000-00007356]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\ja\strings.json]- [targetUID: 00000000-00001480]
"Entities" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Sigma\Entities]- [targetUID: 00000000-00005876]
"driver-signature.txt" has type "ASCII text with very long lines with no line terminators"- Location: [%TEMP%\7356_968141400\driver-signature.txt]- [targetUID: 00000000-00001480]
"load_statistics.db-wal" has type "SQLite Write-Ahead Log version 3007000"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\load_statistics.db-wal]- [targetUID: 00000000-00007356]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\fr-CA\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\fr\strings.json]- [targetUID: 00000000-00001480]
"load-ec-i18n.bundle.js" has type "ASCII text with very long lines with no line terminators"- Location: [%TEMP%\7356_968141400\Wallet-Checkout\load-ec-i18n.bundle.js]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\de\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\pt-PT\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\it\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\es\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\pt-BR\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\nl\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\ru\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\sv\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\id\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\fi\strings.json]- [targetUID: 00000000-00001480]
"WebAssistDatabase" has type "SQLite 3.x database last written using SQLite version 3039003"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\WebAssistDatabase]- [targetUID: 00000000-00007356]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\zh-Hant\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\el\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\en-GB\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\ar\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-ec\zh-Hans\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\ja\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\ru\strings.json]- [targetUID: 00000000-00001480]
"temp-index" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\temp-index]- [targetUID: 00000000-00007356]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\fr\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\fr-CA\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\de\strings.json]- [targetUID: 00000000-00001480]
"bnpl_driver.js" has type "ASCII text with very long lines with no line terminators"- Location: [%TEMP%\7356_968141400\bnpl_driver.js]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\pt-PT\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\ar\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\es\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\nl\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\it\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\el\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\id\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\sv\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\pt-BR\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\ja\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\ru\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\zh-Hant\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\en-GB\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\fr-CA\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\fr\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-mobile-hub\zh-Hans\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\de\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\pt-PT\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\pt-BR\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\es\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\it\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\ko\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\nl\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\ar\strings.json]- [targetUID: 00000000-00001480]
"000003.log" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Service Worker\Database\000003.log]- [targetUID: 00000000-00000496]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\id\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\sv\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\ja\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\fi\strings.json]- [targetUID: 00000000-00001480]
"wallet_checkout_autofill_driver.js" has type "ASCII text with very long lines with no line terminators"- Location: [%TEMP%\7356_968141400\wallet_checkout_autofill_driver.js]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\en-GB\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\fr\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\fr-CA\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-shared-components\zh-Hans\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\de\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\pt-PT\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\ko\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\es\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\it\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\nl\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\pt-BR\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\sv\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\id\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\fi\strings.json]- [targetUID: 00000000-00001480]
"Content" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Mu\Content]- [targetUID: 00000000-00005876]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\en-GB\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\zh-Hant\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-notification-shared\zh-Hans\strings.json]- [targetUID: 00000000-00001480]
"000004.log" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Session Storage\000004.log]- [targetUID: 00000000-00007408]
"Staging" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Sigma\Staging]- [targetUID: 00000000-00005876]
"417dbd1a-4204-402d-a3e3-b0d7ba9d6576.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Network\417dbd1a-4204-402d-a3e3-b0d7ba9d6576.tmp]- [targetUID: 00000000-00003928]
"e4952224-73d1-4cf9-8c13-ce3cf5feff41.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Network\e4952224-73d1-4cf9-8c13-ce3cf5feff41.tmp]- [targetUID: 00000000-00003928]
"f7633561-f40a-44df-a469-e22133bf7da8.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Network\f7633561-f40a-44df-a469-e22133bf7da8.tmp]- [targetUID: 00000000-00003928]
"f0840c6e-7472-4240-8a6b-d45e664896e6.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Network\f0840c6e-7472-4240-8a6b-d45e664896e6.tmp]- [targetUID: 00000000-00003928]
"deny_full_domains.list" has type "data"- Location: [%TEMP%\7356_1861279465\deny_full_domains.list]- [targetUID: 00000000-00002316]
"notification.html" has type "HTML document ASCII text with very long lines"- Location: [%TEMP%\7356_968141400\Notification\notification.html]- [targetUID: 00000000-00001480]
"edge_autofill_global_block_list.json" has type "JSON data"- Location: [%TEMP%\7356_795181994\edge_autofill_global_block_list.json]- [targetUID: 00000000-00005900]
"Analytics" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Mu\Analytics]- [targetUID: 00000000-00005876]
"Social" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Sigma\Social]- [targetUID: 00000000-00005876]
"vendor.bundle.js.LICENSE.txt" has type "ASCII text"- Location: [%TEMP%\7356_968141400\vendor.bundle.js.LICENSE.txt]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\ru\strings.json]- [targetUID: 00000000-00001480]
"typosquatting_list.pb" has type "data"- Location: [%TEMP%\7356_473554675\typosquatting_list.pb]- [targetUID: 00000000-00006092]
"nav_config.json" has type "ASCII text with CRLF line terminators"- Location: [%TEMP%\7356_452581233\nav_config.json]- [targetUID: 00000000-00002624]
"Session_13348514437229094" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Sessions\Session_13348514437229094]- [targetUID: 00000000-00007356]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\ar\strings.json]- [targetUID: 00000000-00001480]
"f6a4f247dbf4d697c26b375e3580d6053baf25f5.tbres" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\TokenBroker\Cache\f6a4f247dbf4d697c26b375e3580d6053baf25f5.tbres]- [targetUID: 00000000-00007356]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\fr\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\ja\strings.json]- [targetUID: 00000000-00001480]
"buynow_driver.js" has type "ASCII text with very long lines with no line terminators"- Location: [%TEMP%\7356_968141400\buynow_driver.js]- [targetUID: 00000000-00001480]
"wallet-drawer.bundle.js.LICENSE.txt" has type "ASCII text"- Location: [%TEMP%\7356_968141400\Wallet-Checkout\wallet-drawer.bundle.js.LICENSE.txt]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\de\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\pt-PT\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\es\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\it\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\pt-BR\strings.json]- [targetUID: 00000000-00001480]
"runtime.bundle.js" has type "ASCII text with very long lines with no line terminators"- Location: [%TEMP%\7356_968141400\runtime.bundle.js]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\nl\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\id\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\sv\strings.json]- [targetUID: 00000000-00001480]
"wallet-crypto.html" has type "HTML document ASCII text with very long lines"- Location: [%TEMP%\7356_968141400\wallet-crypto.html]- [targetUID: 00000000-00001480]
"wallet.html" has type "HTML document ASCII text with very long lines"- Location: [%TEMP%\7356_968141400\wallet.html]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\zh-Hant\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\en-GB\strings.json]- [targetUID: 00000000-00001480]
"wallet-drawer.html" has type "HTML document ASCII text with very long lines"- Location: [%TEMP%\7356_968141400\Wallet-Checkout\wallet-drawer.html]- [targetUID: 00000000-00001480]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\zh-Hans\strings.json]- [targetUID: 00000000-00001480]
"notification.bundle.js.LICENSE.txt" has type "ASCII text"- Location: [%TEMP%\7356_968141400\Notification\notification.bundle.js.LICENSE.txt]- [targetUID: 00000000-00001480]
"verified_contents.json" has type "JSON data"- Location: [%TEMP%\7356_473554675\_metadata\verified_contents.json]- [targetUID: 00000000-00006092]
"bnpl.bundle.js.LICENSE.txt" has type "ASCII text"- Location: [%TEMP%\7356_968141400\bnpl\bnpl.bundle.js.LICENSE.txt]- [targetUID: 00000000-00001480]
"mini-wallet.html" has type "HTML document ASCII text with very long lines"- Location: [%TEMP%\7356_968141400\Mini-Wallet\mini-wallet.html]- [targetUID: 00000000-00001480]
"notification_fast.html" has type "HTML document ASCII text with very long lines"- Location: [%TEMP%\7356_968141400\Notification\notification_fast.html]- [targetUID: 00000000-00001480]
"Fingerprinting" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Mu\Fingerprinting]- [targetUID: 00000000-00005876]
"deny_etld1_domains.list" has type "data"- Location: [%TEMP%\7356_1861279465\deny_etld1_domains.list]- [targetUID: 00000000-00002316]
"tokenized-card.html" has type "HTML document ASCII text with very long lines"- Location: [%TEMP%\7356_968141400\Tokenized-Card\tokenized-card.html]- [targetUID: 00000000-00001480]
"bnpl.html" has type "HTML document ASCII text with very long lines"- Location: [%TEMP%\7356_968141400\bnpl\bnpl.html]- [targetUID: 00000000-00001480]
"000003.log" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\000003.log]- [targetUID: 00000000-00000496]
"load-hub-i18n.bundle.js" has type "ASCII text with very long lines with no line terminators"- Location: [%TEMP%\7356_968141400\load-hub-i18n.bundle.js]- [targetUID: 00000000-00001480]
"000003.log" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Site Characteristics Database\000003.log]- [targetUID: 00000000-00000496]
"Cryptomining" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Mu\Cryptomining]- [targetUID: 00000000-00005876]
"hub-signature.txt" has type "ASCII text with very long lines with no line terminators"- Location: [%TEMP%\7356_968141400\hub-signature.txt]- [targetUID: 00000000-00001480]
"Advertising" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Sigma\Advertising]- [targetUID: 00000000-00005876]
"LOG" has type "ASCII text"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\EdgeCoupons\coupons_data.db\LOG]- [targetUID: 00000000-00007408]
"wallet_donation_driver.js" has type "ASCII text with very long lines with no line terminators"- Location: [%TEMP%\7356_968141400\wallet_donation_driver.js]- [targetUID: 00000000-00001480]
"wallet-notification-config.json" has type "ASCII text"- Location: [%TEMP%\7356_968141400\json\wallet\wallet-notification-config.json]- [targetUID: 00000000-00001480]
"miniwallet.bundle.js.LICENSE.txt" has type "ASCII text"- Location: [%TEMP%\7356_968141400\Mini-Wallet\miniwallet.bundle.js.LICENSE.txt]- [targetUID: 00000000-00001480]
"bsi.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\_manifest\spdx_2.2\bsi.json]- [targetUID: 00000000-00001480]
"bsi.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\Notification\_manifest\spdx_2.2\bsi.json]- [targetUID: 00000000-00001480]
"bsi.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\Tokenized-Card\_manifest\spdx_2.2\bsi.json]- [targetUID: 00000000-00001480]
"bsi.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\Wallet-Checkout\_manifest\spdx_2.2\bsi.json]- [targetUID: 00000000-00001480]
"CompatExceptions" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Mu\CompatExceptions]- [targetUID: 00000000-00005876]
"MANIFEST-000001" has type "PGP Secret Key -"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\EdgeCoupons\coupons_data.db\MANIFEST-000001]- [targetUID: 00000000-00007356]
"Social" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Mu\Social]- [targetUID: 00000000-00005876]
"LOG" has type "ASCII text"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG]- [targetUID: 00000000-00007408]
"LOG" has type "ASCII text"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOG]- [targetUID: 00000000-00007408]
"LOG" has type "ASCII text"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Service Worker\Database\LOG]- [targetUID: 00000000-00007408]
"LOG" has type "ASCII text"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Platform Notifications\LOG]- [targetUID: 00000000-00007408]
"LOG" has type "ASCII text"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Local Storage\leveldb\LOG]- [targetUID: 00000000-00007408]
"LOG" has type "ASCII text"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Asset Store\assets.db\LOG]- [targetUID: 00000000-00007408]
"LOG" has type "ASCII text"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG]- [targetUID: 00000000-00007408]
"LOG" has type "ASCII text"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Session Storage\LOG]- [targetUID: 00000000-00007408]
"LOG" has type "ASCII text"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\shared_proto_db\LOG]- [targetUID: 00000000-00007408]
"LOG" has type "ASCII text"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Extension State\LOG]- [targetUID: 00000000-00007408]
"manifest.webapp.json" has type "UTF-8 Unicode (with BOM) text"- Location: [%TEMP%\7356_968141400\manifest.webapp.json]- [targetUID: 00000000-00001480]
"LOG" has type "ASCII text"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\AdPlatform\auto_show_data.db\LOG]- [targetUID: 00000000-00007408]
"settings.dat" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Crashpad\settings.dat]- [targetUID: 00000000-00007476]
"app-setup.js" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\app-setup.js]- [targetUID: 00000000-00001480]
"regex_patterns.json" has type "JSON data"- Location: [%TEMP%\7356_795181994\regex_patterns.json]- [targetUID: 00000000-00005900]
"526e396843e1a76f_0" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Code Cache\js\526e396843e1a76f_0]- [targetUID: 00000000-00007356]
"314e799b7ebf93ee_0" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\Code Cache\js\314e799b7ebf93ee_0]- [targetUID: 00000000-00007356]
"manifest.json" has type "JSON data"- Location: [%TEMP%\7356_1861279465\manifest.json]- [targetUID: 00000000-00002624]
"Fingerprinting" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Sigma\Fingerprinting]- [targetUID: 00000000-00005876]
"manifest.json" has type "UTF-8 Unicode (with BOM) text with CRLF line terminators"- Location: [%TEMP%\7356_452581233\manifest.json]- [targetUID: 00000000-00002624]
"manifest.json" has type "UTF-8 Unicode (with BOM) text with CRLF line terminators"- Location: [%TEMP%\7356_654704401\manifest.json]- [targetUID: 00000000-00002624]
"manifest.json" has type "JSON data"- Location: [%TEMP%\7356_1044010104\manifest.json]- [targetUID: 00000000-00002624]
"Analytics" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Sigma\Analytics]- [targetUID: 00000000-00005876]
"manifest.json" has type "UTF-8 Unicode (with BOM) text with CRLF line terminators"- Location: [%TEMP%\7356_968141400\manifest.json]- [targetUID: 00000000-00002624]
"crypto.bundle.js" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\crypto.bundle.js]- [targetUID: 00000000-00001480]
"Last Browser" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Last Browser]- [targetUID: 00000000-00007356]
"manifest.json" has type "UTF-8 Unicode (with BOM) text with CRLF line terminators"- Location: [%TEMP%\7356_795181994\manifest.json]- [targetUID: 00000000-00002624]
"TransparentAdvertisers" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Mu\TransparentAdvertisers]- [targetUID: 00000000-00005876]
"README.md" has type "ASCII text"- Location: [%TEMP%\7356_968141400\json\wallet\README.md]- [targetUID: 00000000-00001480]
"Variations" has type "JSON data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Variations]- [targetUID: 00000000-00007356]
"Other" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Sigma\Other]- [targetUID: 00000000-00005876]
"manifest.json" has type "JSON data"- Location: [%TEMP%\7356_473554675\manifest.json]- [targetUID: 00000000-00002624]
"manifest.fingerprint" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_795181994\manifest.fingerprint]- [targetUID: 00000000-00007356]
"LICENSE" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_1044010104\Sigma\LICENSE]- [targetUID: 00000000-00005876]
"manifest.fingerprint" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_1044010104\manifest.fingerprint]- [targetUID: 00000000-00007356]
"manifest.fingerprint" has type "ASCII text with no line terminators"- [targetUID: 00000000-00007356]
"manifest.fingerprint" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_1861279465\manifest.fingerprint]- [targetUID: 00000000-00007356]
"manifest.fingerprint" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_452581233\manifest.fingerprint]- [targetUID: 00000000-00007356]
"manifest.spdx.json.sha256" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\Notification\_manifest\spdx_2.2\manifest.spdx.json.sha256]- [targetUID: 00000000-00001480]
"manifest.spdx.json.sha256" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\Mini-Wallet\_manifest\spdx_2.2\manifest.spdx.json.sha256]- [targetUID: 00000000-00001480]
"manifest.spdx.json.sha256" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\_manifest\spdx_2.2\manifest.spdx.json.sha256]- [targetUID: 00000000-00001480]
"000012.log" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\EdgeCoupons\coupons_data.db\000012.log]- [targetUID: 00000000-00007356]
"manifest.spdx.json.sha256" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\Wallet-Checkout\_manifest\spdx_2.2\manifest.spdx.json.sha256]- [targetUID: 00000000-00001480]
"manifest.spdx.json.sha256" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\Tokenized-Card\_manifest\spdx_2.2\manifest.spdx.json.sha256]- [targetUID: 00000000-00001480]
".ses" has type "ASCII text with CRLF line terminators"- Location: [%TEMP%\.ses]- [targetUID: 00000000-00007356]
"MANIFEST-000001" has type "PGP Secret Key -"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\AdPlatform\auto_show_data.db\MANIFEST-000001]- [targetUID: 00000000-00007356]
"app-setup.js" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\Wallet-Checkout\app-setup.js]- [targetUID: 00000000-00001480]
"Content" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Sigma\Content]- [targetUID: 00000000-00005876]
"Other" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Mu\Other]- [targetUID: 00000000-00005876]
"000003.log" has type "data"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\AdPlatform\auto_show_data.db\000003.log]- [targetUID: 00000000-00000496]
"Cryptomining" has type "ASCII text"- Location: [%TEMP%\7356_1044010104\Sigma\Cryptomining]- [targetUID: 00000000-00005876]
"000001.dbtmp" has type "ASCII text"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\AdPlatform\auto_show_data.db\000001.dbtmp]- [targetUID: 00000000-00007356]
"Last Version" has type "ASCII text with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Last Version]- [targetUID: 00000000-00007356]
"deny_domains.list" has type "data"- Location: [%TEMP%\7356_1861279465\deny_domains.list]- [targetUID: 00000000-00002316]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\fi\strings.json]- [targetUID: 00000000-00001480]
"2f651776-74b6-4b6f-a9e2-3fe6e9d82f47.tmp" has type "very short file (no magic)"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\Default\2f651776-74b6-4b6f-a9e2-3fe6e9d82f47.tmp]- [targetUID: 00000000-00007356]
"71da9387-c08c-4faf-a019-17922f8ab327.tmp" has type "ASCII text with very long lines with no line terminators"- Location: [%LOCALAPPDATA%\Microsoft\Edge\User Data\71da9387-c08c-4faf-a019-17922f8ab327.tmp]- [targetUID: 00000000-00007356]
"strings.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\json\i18n-tokenized-card\fr-CA\strings.json]- [targetUID: 00000000-00001480]
"tokenized-card.bundle.js.LICENSE.txt" has type "ASCII text"- Location: [%TEMP%\7356_968141400\Tokenized-Card\tokenized-card.bundle.js.LICENSE.txt]- [targetUID: 00000000-00001480]
"notification_fast.bundle.js.LICENSE.txt" has type "ASCII text"- Location: [%TEMP%\7356_968141400\Notification\notification_fast.bundle.js.LICENSE.txt]- [targetUID: 00000000-00001480]
"bsi.json" has type "JSON data"- Location: [%TEMP%\7356_968141400\Mini-Wallet\_manifest\spdx_2.2\bsi.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\pt-PT\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\el\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\ru\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\ko\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\id\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\zh-Hant\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\sv\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\en-GB\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\ja\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\fr-CA\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\de\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\es\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\zh-Hans\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\nl\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\pt-BR\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\fr\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\ar\strings.json]- [targetUID: 00000000-00001480]
"strings.json" has type "ASCII text with no line terminators"- Location: [%TEMP%\7356_968141400\json\i18n-notification\it\strings.json]- [targetUID: 00000000-00001480] - source
- Binary File
- relevance
- 3/10
- ATT&CK ID
- T1105 (Show technique in the MITRE ATT&CK™ matrix)
-
Dropped files
-
Network Related
-
Found mail related domain names
- details
-
Observed email domain:""supplier": "organization: thorsten lorenz (thlorenz@gmx.de)"" [Source: manifest.spdx.json]
Observed email domain:""colourpop.com"," [Source: wallet-pre-stable.json]
Observed email domain:""aepop.net"," [Source: wallet-pre-stable.json]
Observed email domain:""artpop.com"," [Source: wallet-pre-stable.json]
Observed email domain:""avenuepop.com"," [Source: wallet-pre-stable.json]
Observed email domain:""bassettbmx.com"," [Source: wallet-pre-stable.json]
Observed email domain:""canvasmx.com"," [Source: wallet-pre-stable.json]
Observed email domain:""drinkolipop.com"," [Source: wallet-pre-stable.json]
Observed email domain:""fashionfunpop.com"," [Source: wallet-pre-stable.json]
Observed email domain:""fastandloosebmx.com"," [Source: wallet-pre-stable.json]
Observed email domain:""flitebmx.com"," [Source: wallet-pre-stable.json]
Observed email domain:""fofopop.com"," [Source: wallet-pre-stable.json]
Observed email domain:""gellipop.com"," [Source: wallet-pre-stable.json]
Observed email domain:""gforcemx.com"," [Source: wallet-pre-stable.json]
Observed email domain:""happipop.com"," [Source: wallet-pre-stable.json]
Observed email domain:""hauzofpop.com"," [Source: wallet-pre-stable.json]
Observed email domain:""hiccapop.com"," [Source: wallet-pre-stable.json]
Observed email domain:""hijabipop.com"," [Source: wallet-pre-stable.json]
Observed email domain:""jellypop.la"," [Source: wallet-pre-stable.json]
Observed email domain:""kinkbmx.com"," [Source: wallet-pre-stable.json]
Observed email domain:""kloudkpop.com"," [Source: wallet-pre-stable.json]
Observed email domain:""knitpop.com"," [Source: wallet-pre-stable.json]
Observed email domain:""kpop.exchange"," [Source: wallet-pre-stable.json]
Observed email domain:""laperlamx.com"," [Source: wallet-pre-stable.json]
Observed email domain:""lovepop.com"," [Source: wallet-pre-stable.json] - source
- File/Memory
- relevance
- 1/10
- ATT&CK ID
- T1071.003 (Show technique in the MITRE ATT&CK™ matrix)
-
Found potential IP address in binary/memory
- details
-
Potential IP "3.10.0.0" found in string ""referenceLocator": "pkg:pypi/typing@3.10.0.0""
Potential IP "1.5.75.75" found in string "d="M10 2a8 8 0 110 16 8 8 0 010-16zm0 10.5a.75.75 0 100 1.5.75.75 0 000-1.5zM10 6a.5.5 0 00-.5.41v4.68a.5.5 0 001 0V6.41A.5.5 0 0010 6z"" - source
- File/Memory
- ATT&CK ID
- T1071 (Show technique in the MITRE ATT&CK™ matrix)
-
Found potential URL in binary/memory
- details
-
Pattern match: "https://nts.softros.com/"
Pattern match: "https://nts.softros.com"
Pattern match: "crl.microsoft.com/pki/crl/products/MicCorThiParMarRoo_2010-10-05.crl0`T0R0PDhttp://www.microsoft.com/pki/certs/MicCorThiParMarRoo_2010-10-05.crt0nl%of"
Pattern match: "https://www.softros.com/css/base.css"
Pattern match: "http://www.w3.org/2000/svg"
Pattern match: "nts.softros.com/Network"
Pattern match: "search.yahoo.com/favicon.icohttps://search.yahoo.com/search{google:pathWildcard}?ei={inputEncoding}&fr=crmas_sfp&p={searchTerms}UTF-8https://search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas_sfp&command={searchTerms}485bf7d3-0215-45af-87dc-53886800000"
Pattern match: "https://ntp.msn.com/edge/ntp?locale=en&title=New%20tab&dsp=1&sp=Bing&startpage=1&PC=U531edge://settings/profileskeygjgieestate_{edge://settingsedge://settings/edge://settings/?search=smartkeygr10nmstate_{edge://settingsedge://settings/?search=smartedge"
Pattern match: "www2.bing.comMUIDB/www.bing.comMUIDB/.msn.comUSRLOC/.microsoft.comMUID/.bing.com_RwBf/.bing.comSRCHUID/.bing.comSRCHD/.mediago.io__mguid_/.ups.comAMCV_036784BD57A8BB277F000101%40AdobeOrg/.facebook.com_js_datr/.mgid.commuidn/.ups.comups_language_preference"
Pattern match: "nts.softros.com/9https://ntp.msn.com/edge/ntp?locale=en&title=New+tab&dsp=1&sp=Bing&startpage=1&PC=U531]=https://ntp.msn.com/edge/ntp?locale=en&title=New%20tab&dsp=1&sp=Bing&startpage=1&PC=U531U-https://ntp.msn.com/edge/ntp?locale=en&title=New%20tab&dsp=1&"
Pattern match: "ns.adobe.com/xap/1.0/"
Pattern match: "github.com/notepad-plus-plus/notepad-plus-plus/releases/download/v8.4.7/npp.8.4.7.portable.x64.7zhttps://objects.githubusercontent.com/github-production-release-asset-2e65be/33014811/42d9bc38-89f0-48d8-94ec-d1f3649d2fc3?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-A"
Pattern match: "avocet.io/aprecision.net/adpdealerservices.com/nuffnang.com.my/demdex.net/augur.io/cmmeglobal.com/adrolays.com/atrinsic.com/acuityads.com/wishabi.net/admedia.com/vertamedia.com/adworx.at/2leep.com/globe7.com/awaps.yandex.ru/i-behavior.com/reklamstore.com/m"
Pattern match: "https://img-prod-cms-rt-microsoft-com.akamaized.net/cms/api/am/imageFileData/RE53r3l?ver=5412,PORTRAIT:https://img-prod-cms-rt-microsoft-com.akamaized.net/cms/api/am/imageFileData/RE53bta?ver=2bf3,update_period:86400},creativeId:128000000003595"
Pattern match: "https://www.coupert.com"
Pattern match: "www.amazon.comYwww.amazon.comQrG5of^L6p9/3Qwww.amazon.com,+0www.amazon.com'R^"
Pattern match: "http://www.w3.org/2000/svg,svg"
Pattern match: "https://ntp.msn.com/REG:https://ntp.msn.com/https://ntp.msn.com/edge/ntp.https://ntp.msn.com/edge/ntp/service-worker.js"
Pattern match: "google.as/cambio.com/chrome.google.com/theboombox.com/baynote.com/aolanswers.com/tidaltv.com/disqus.com/heyzap.com/google.com.au/google.co.id/google.kg/google.co.ve/google.nr/yahoo.com/autoblog.com/feedproxy.google.com/s-msn.com/mandatory.com/noisecreep.co"
Pattern match: "https://googleads.g.doubleclick.net/next-map-idQnamespace-3bbc91a6_51d0_4200_9fa7_2e3ec0fddf25-https://tpc.googlesyndication.com/34U"
Pattern match: "cmail26.com/indexww.com/mkt5654.com/snapchat.com/mgid.com/zendable.com/mkt3798.com/adsafety.net/technical-service.net/hybrid.ai/contentsquare.net/mkt32.net/helpscout.net/admanmedia.com/mkt8756.com/dmxleo.com/mkt9430.com/basis.net/mailstat.us/mkt7832.com/bf"
Pattern match: "https://www.clarity.ms,supports_spdy:true},{anonymization:[],server:https://microsoftedgewelcome.microsoft.com,supports_spdy:true},{anonymization:[],server:https://edgefrecdn.azureedge.net,supports_spdy:true},{anonymization:[],server"
Pattern match: "autofill.account.microsoft.com/,type"
Pattern match: "acxiom.com/atinternet.com/hitslink.com/mm7.net/go-mpulse.net/retailautomata.com/free-pagerank.com/amplitude.com/i-stats.com/dl-rms.com/enquisite.com/p.brsrvr.com/onestat.com/lyris.com/alexametrics.com/inboundwriter.com/awio.com/betssonpalantir.com/xiti.com"
Pattern match: "emaillabs.co/open.mkt4477.com/open.mkt10008.com/open.mkt6917.com/open.mkt1946.com/convertkit-mail5.com/social-tracker.msedgedemo.example/open.mkt8062.com/open.mkt8008.com/open.mkt6316.com/m3651.net/open.mkt6793.com/open.mkt3838.com/open.mkt4158.com/eds5.ma"
Pattern match: "jedwatson.github.io/classnames"
Pattern match: "1123movies.la/123moviess.la/3dmmgame.com/4playstation.com/aashingtonpost.com/adultdfriendfinder.com/aircananda.com/aks.ms/alaskaaair.com/alibabaa.com/alibbaba.com/alrecipes.com/ameritraade.com/answwers.com/arketwatch.com/ashshleyfurniture.com/ationalgeogra"
Pattern match: "www.microsoft365.com"
Pattern match: "nts.softros.com/https://nts.softros.com/5gl/https://nts.softros.com/https://nts.softros.com/5gl/5gl/5gl/{55D15839-BC22-4968-B39B-DE23F648277B}https://nts.softros.com/https://nts.softros.com/5gl/5gl/5gl/"
Pattern match: "https://github.com/jsstyles/css-vendor"
Pattern match: "https://github.com/focus-trap/tabbable/blob/master/LICENSE"
Pattern match: "ad-maven.com/appcast.io/leadlander.com/affasi.com/clixtell.com/adgainersolutions.com/franecki.net/pixanalytics.com/wrethicap.info/ismatlab.com/y-track.com/ecsanalytics.com/albacross.com/bgclck.me/lptracker.io/ze-fir.com/eyereturn.com/bitmedia.io/azetklik.s"
Pattern match: "anybest.site/webmine.pro/jsecoin.com/flightzy.bid/nerohut.com/flightsy.bid/coinpot.co/yololike.space/flightzy.win/zymerget.bid/bitcoin-pay.eu/freecontent.stream/authedwebmine.cz/zymerget.faith/hostingcloud.racing/mineralt.io/dinorslick.icu/coinhive.com/bms"
Pattern match: "ufpcdn.com/vdx.tv/ebaystatic.com/ad4m.at/00px.net/warumbistdusoarm.space/ownpage.fr/smct.io/ansira.com/photorank.me/fengkongcloud.com/vtex.com.br/vocento.com/ie8eamus.com/flocktory.com/justpremium.com/dynata.com/stripst.com/adskeeper.com/curalate.com/vptms"
Pattern match: "https://msasg.visualstudio.com/XPay/_git/xpay},Feed:null"
Pattern match: "auth.adobe.com/^/horizonte.browserapps.amazon.com/^/horizonte.browserapps.amazon.de/^/horizonte.browserapps.amazon.ca/^/acrobatservices.adobe.com/^/signin.aws.amazon.com/^/horizonte-browserapps.amazon.com.br/^/zendesk.com/^/my.salesforce.com/^/disqus.com/^"
Pattern match: "mail.google.com/apps.fbsbx.com/fb.com/developers.google.com/friendfeed.com/social-tracker.msedgedemo.example/googlemail.com/facebook.com/plus.google.com/fbsbx.com/voice.google.com/facebook.de/facebook.fr/wave.google.com/twimg.com/orkut.com/twitter.jp/gmail"
Pattern match: "assets.db/MANIFEST-0000012023/12/31-08:40:47.219"
Pattern match: "www.softros.com/scripts/jquery.js"
Pattern match: "www.softros.com/scripts/menu.js"
Pattern match: "zadn.vn/ansira.com/fcmatch.google.com/origo.hu/fcmatch.youtube.com/refersion.com/flocktory.com/vtex.com.br/rqtrk.eu/vocento.com/fingerprinter.msedgedemo.example/"
Pattern match: "gimbal.com/thirdwatch.ai/fndrsp.net/analytics-tracker.msedgedemo.example/cuebiq.com/inrix.com/zoominfo.com/clarity.ms/"
Pattern match: "microsoftedgeinsider.com/Fabrikam^microsoftedgeinsider.com/VanArsdel^microsoftedgeinsider.com/"
Pattern match: "fcmatch.youtube.com/fcmatch.google.com/other-tracker.msedgedemo.example/"
Pattern match: "https://github.com/actions/virtual-environments"
Heuristic match: "nts.softros.com"
Pattern match: "www.softros.com"
Pattern match: "golang.org/x/sys"
Pattern match: "golang.org/x/sys@v0.0.0-20220728004956-3c1f35247d10"
Pattern match: "github.com/Azure/go-autorest/autorest/validation"
Pattern match: "github.com/azure/go-autorest/autorest/validation@v0.3.1"
Pattern match: "github.com/Azure/go-autorest/autorest/date"
Pattern match: "github.com/azure/go-autorest/autorest/date@v0.3.0"
Pattern match: "google.golang.org/appengine"
Pattern match: "google.golang.org/appengine@v1.4.0"
Pattern match: "cloud.google.com/go/lifesciences"
Pattern match: "cloud.google.com/go/lifesciences@v0.6.0"
Pattern match: "github.com/ugorji/go/codec"
Pattern match: "github.com/ugorji/go/codec@v1.2.7"
Pattern match: "github.com/konsorten/go-windows-terminal-sequences"
Pattern match: "github.com/konsorten/go-windows-terminal-sequences@v1.0.1"
Pattern match: "cloud.google.com/go/gkeconnect"
Pattern match: "cloud.google.com/go/gkeconnect@v0.6.0"
Pattern match: "github.com/google/uuid"
Pattern match: "github.com/google/uuid@v1.2.0"
Pattern match: "cloud.google.com/go/datacatalog"
Pattern match: "cloud.google.com/go/datacatalog@v1.6.0"
Pattern match: "golang.org/x/xerrors"
Pattern match: "golang.org/x/xerrors@v0.0.0-20200804184101-5ec99f83aff1"
Pattern match: "cloud.google.com/go/privatecatalog"
Pattern match: "cloud.google.com/go/privatecatalog@v0.6.0"
Pattern match: "cloud.google.com/go/binaryauthorization"
Pattern match: "cloud.google.com/go/binaryauthorization@v1.2.0"
Pattern match: "google.golang.org/genproto"
Pattern match: "google.golang.org/genproto@v0.0.0-20221018160656-63c7b68cfc55"
Pattern match: "cloud.google.com/go/webrisk"
Pattern match: "cloud.google.com/go/webrisk@v1.5.0"
Pattern match: "cloud.google.com/go/asset"
Pattern match: "cloud.google.com/go/asset@v1.8.0"
Pattern match: "golang.org/x/lint"
Pattern match: "golang.org/x/lint@v0.0.0-20190313153728-d0100b6bd8b3"
Pattern match: "cloud.google.com/go/dialogflow"
Pattern match: "cloud.google.com/go/dialogflow@v1.17.0"
Pattern match: "github.com/grpc-ecosystem/grpc-gateway"
Pattern match: "github.com/grpc-ecosystem/grpc-gateway@v1.16.0"
Pattern match: "github.com/Azure/azure-storage-blob-go"
Pattern match: "github.com/azure/azure-storage-blob-go@v0.15.0"
Pattern match: "github.com/davecgh/go-spew"
Pattern match: "github.com/davecgh/go-spew@v1.1.1"
Pattern match: "github.com/kr/pty"
Pattern match: "github.com/kr/pty@v1.1.1"
Pattern match: "github.com/golang-jwt/jwt/v4"
Pattern match: "github.com/golang-jwt/jwt/v4@v4.4.2"
Pattern match: "cloud.google.com/go/language"
Pattern match: "cloud.google.com/go/language@v1.6.0"
Pattern match: "github.com/pkg/errors"
Pattern match: "github.com/pkg/errors@v0.9.1"
Pattern match: "github.com/leodido/go-urn"
Pattern match: "github.com/leodido/go-urn@v1.2.1"
Pattern match: "cloud.google.com/go"
Pattern match: "cloud.google.com/go@v0.34.0"
Pattern match: "github.com/sirupsen/logrus"
Pattern match: "github.com/sirupsen/logrus@v1.2.0"
Pattern match: "github.com/ghodss/yaml"
Pattern match: "github.com/ghodss/yaml@v1.0.0"
Pattern match: "github.com/jpillora/backoff"
Pattern match: "github.com/jpillora/backoff@v1.0.0"
Pattern match: "github.com/modern-go/concurrent"
Pattern match: "github.com/modern-go/concurrent@v0.0.0-20180228061459-e0a39a4cb421"
Pattern match: "golang.org/x/crypto"
Pattern match: "golang.org/x/crypto@v0.0.0-20220722155217-630584e8d5aa"
Pattern match: "cloud.google.com/go/containeranalysis"
Pattern match: "cloud.google.com/go/containeranalysis@v0.6.0"
Pattern match: "github.com/BurntSushi/toml"
Pattern match: "github.com/burntsushi/toml@v0.3.1"
Pattern match: "github.com/Azure/go-autorest/autorest/azure/cli"
Pattern match: "github.com/azure/go-autorest/autorest/azure/cli@v0.3.1"
Pattern match: "cloud.google.com/go/memcache"
Pattern match: "cloud.google.com/go/memcache@v1.5.0"
Pattern match: "cloud.google.com/go/secretmanager"
Pattern match: "cloud.google.com/go/secretmanager@v1.6.0"
Pattern match: "github.com/golang/protobuf"
Pattern match: "github.com/golang/protobuf@v1.5.2"
Pattern match: "cloud.google.com/go/gkehub"
Pattern match: "cloud.google.com/go/gkehub@v0.10.0"
Pattern match: "golang.org/x/mod"
Pattern match: "golang.org/x/mod@v0.6.0-dev.0.20220106191415-9b9b3d81d5e3"
Pattern match: "github.com/kr/pretty"
Pattern match: "github.com/kr/pretty@v0.2.0"
Pattern match: "github.com/google/pprof"
Pattern match: "github.com/google/pprof@v0.0.0-20200708004538-1a94d8640e99"
Pattern match: "github.com/go-openapi/jsonpointer"
Pattern match: "github.com/go-openapi/jsonpointer@v0.19.5"
Pattern match: "google.golang.org/protobuf"
Pattern match: "google.golang.org/protobuf@v1.28.0"
Pattern match: "github.com/gogo/protobuf"
Pattern match: "github.com/gogo/protobuf@v1.3.2"
Pattern match: "github.com/joho/godotenv"
Pattern match: "github.com/joho/godotenv@v1.3.0"
Pattern match: "github.com/golang/snappy"
Pattern match: "github.com/golang/snappy@v0.0.4"
Pattern match: "github.com/Azure/go-autorest/autorest/mocks"
Pattern match: "github.com/azure/go-autorest/autorest/mocks@v0.4.2"
Pattern match: "gopkg.in/yaml.v3"
Pattern match: "gopkg.in/yaml.v3@v3.0.0-20210107192922-496545a6307b"
Pattern match: "cloud.google.com/go/servicedirectory"
Pattern match: "cloud.google.com/go/servicedirectory@v1.5.0"
Pattern match: "github.com/goccy/go-json"
Pattern match: "github.com/goccy/go-json@v0.9.7"
Pattern match: "github.com/mitchellh/mapstructure"
Pattern match: "github.com/mitchellh/mapstructure@v1.5.0"
Pattern match: "cloud.google.com/go/documentai"
Pattern match: "cloud.google.com/go/documentai@v1.8.0"
Pattern match: "cloud.google.com/go/bigquery"
Pattern match: "cloud.google.com/go/bigquery@v1.42.0"
Pattern match: "github.com/json-iterator/go"
Pattern match: "github.com/json-iterator/go@v1.1.12"
Pattern match: "google.golang.org/grpc"
Pattern match: "google.golang.org/grpc@v1.50.1"
Pattern match: "cloud.google.com/go/phishingprotection"
Pattern match: "cloud.google.com/go/phishingprotection@v0.6.0"
Pattern match: "sigs.k8s.io/yaml"
Pattern match: "sigs.k8s.io/yaml@v1.2.0"
Pattern match: "github.com/google/gofuzz"
Pattern match: "github.com/google/gofuzz@v1.1.0"
Pattern match: "github.com/chzyer/readline"
Pattern match: "github.com/chzyer/readline@v0.0.0-20180603132655-2972be24d48e"
Pattern match: "k8s.io/api"
Pattern match: "k8s.io/api@v0.25.1"
Pattern match: "github.com/elazarl/goproxy"
Pattern match: "github.com/elazarl/goproxy@v0.0.0-20180725130230-947c36da3153"
Pattern match: "github.com/gregjones/httpcache"
Pattern match: "github.com/gregjones/httpcache@v0.0.0-20180305231024-9cad4c3443a7"
Pattern match: "github.com/envoyproxy/go-control-plane"
Pattern match: "github.com/envoyproxy/go-control-plane@v0.9.4"
Pattern match: "rsc.io/binaryregexp"
Pattern match: "rsc.io/binaryregexp@v0.2.0"
Pattern match: "github.com/mxk/go-flowrate"
Pattern match: "github.com/mxk/go-flowrate@v0.0.0-20140419014527-cca7078d478f"
Pattern match: "golang.org/x/crypto@v0.0.0-20220315160706-3147a52a75dd"
Pattern match: "cloud.google.com/go@v0.97.0"
Pattern match: "github.com/Azure/go-autorest/autorest"
Pattern match: "github.com/azure/go-autorest/autorest@v0.11.27"
Pattern match: "github.com/armon/go-socks5"
Pattern match: "github.com/armon/go-socks5@v0.0.0-20160902184237-e75332964ef5"
Pattern match: "golang.org/x/net"
Pattern match: "golang.org/x/net@v0.4.0"
Pattern match: "github.com/morikuni/aec"
Pattern match: "github.com/morikuni/aec@v1.0.0"
Pattern match: "github.com/stretchr/testify"
Pattern match: "github.com/stretchr/testify@v1.8.1"
Pattern match: "github.com/docker/go-units"
Pattern match: "github.com/docker/go-units@v0.5.0"
Pattern match: "github.com/Azure/azure-sdk-for-go/sdk/azidentity"
Pattern match: "github.com/azure/azure-sdk-for-go/sdk/azidentity@v0.13.2"
Pattern match: "github.com/rivo/uniseg"
Pattern match: "github.com/rivo/uniseg@v0.2.0"
Pattern match: "github.com/AzureAD/microsoft-authentication-library-for-go"
Pattern match: "github.com/azuread/microsoft-authentication-library-for-go@v0.4.0"
Pattern match: "github.com/google/uuid@v1.1.1"
Pattern match: "golang.org/x/sync"
Pattern match: "golang.org/x/sync@v0.0.0-20190911185100-cd5d95a43a6e"
Pattern match: "golang.org/x/sys@v0.0.0-20220702020025-31831981b65f"
Pattern match: "github.com/bos-hieu/mongostore"
Pattern match: "github.com/bos-hieu/mongostore@v0.0.2"
Pattern match: "gorm.io/gorm"
Pattern match: "gorm.io/gorm@v1.24.3"
Pattern match: "golang.org/x/tools"
Pattern match: "golang.org/x/tools@v0.0.0-20190531172133-b3315ee88b7d"
Pattern match: "github.com/lib/pq"
Pattern match: "github.com/lib/pq@v1.10.3"
Pattern match: "google.golang.org/protobuf@v1.28.1"
Pattern match: "github.com/cncf/xds/go"
Pattern match: "github.com/cncf/xds/go@v0.0.0-20211011173535-cb28da3451f1"
Pattern match: "cloud.google.com/go/artifactregistry"
Pattern match: "cloud.google.com/go/artifactregistry@v1.7.0"
Pattern match: "github.com/mattn/go-isatty"
Pattern match: "github.com/mattn/go-isatty@v0.0.14"
Pattern match: "github.com/go-playground/assert/v2"
Pattern match: "github.com/go-playground/assert/v2@v2.0.1"
Pattern match: "cloud.google.com/go/recommendationengine"
Pattern match: "cloud.google.com/go/recommendationengine@v0.6.0"
Pattern match: "github.com/golang/mock"
Pattern match: "github.com/golang/mock@v1.1.1"
Pattern match: "github.com/pelletier/go-toml/v2"
Pattern match: "github.com/pelletier/go-toml/v2@v2.0.1"
Pattern match: "cloud.google.com/go/videointelligence"
Pattern match: "cloud.google.com/go/videointelligence@v1.7.0"
Pattern match: "github.com/stretchr/testify@v1.7.1"
Pattern match: "github.com/Azure/go-autorest/logger"
Pattern match: "github.com/azure/go-autorest/logger@v0.2.1"
Pattern match: "cloud.google.com/go/billing"
Pattern match: "cloud.google.com/go/billing@v1.5.0"
Pattern match: "github.com/golang/glog"
Pattern match: "github.com/golang/glog@v0.0.0-20160126235308-23def4e6c14b"
Pattern match: "github.com/google/go-cmp"
Pattern match: "github.com/google/go-cmp@v0.5.6"
Pattern match: "github.com/fortytw2/leaktest"
Pattern match: "github.com/fortytw2/leaktest@v1.3.0"
Pattern match: "github.com/Azure/azure-event-hubs-go/v3"
Pattern match: "github.com/azure/azure-event-hubs-go/v3@v3.3.19"
Pattern match: "github.com/devigned/tab"
Pattern match: "github.com/devigned/tab@v0.1.1"
Pattern match: "github.com/client9/misspell"
Pattern match: "github.com/client9/misspell@v0.3.4"
Pattern match: "github.com/cncf/udpa/go"
Pattern match: "github.com/cncf/udpa/go@v0.0.0-20210930031921-04548b0d99d4"
Pattern match: "github.com/rogpeppe/go-internal"
Pattern match: "github.com/rogpeppe/go-internal@v1.8.0"
Pattern match: "github.com/googleapis/gax-go/v2"
Pattern match: "github.com/googleapis/gax-go/v2@v2.0.5"
Pattern match: "sigs.k8s.io/structured-merge-diff/v4"
Pattern match: "sigs.k8s.io/structured-merge-diff/v4@v4.2.3"
Pattern match: "github.com/golang-jwt/jwt/v4@v4.2.0"
Pattern match: "github.com/spf13/pflag"
Pattern match: "github.com/spf13/pflag@v1.0.5"
Pattern match: "github.com/google/martian/v3"
Pattern match: "github.com/google/martian/v3@v3.0.0"
Pattern match: "github.com/hashicorp/golang-lru"
Pattern match: "github.com/hashicorp/golang-lru@v0.5.1"
Pattern match: "golang.org/x/exp"
Pattern match: "golang.org/x/exp@v0.0.0-20190121172915-509febef88a4"
Pattern match: "github.com/gin-contrib/pprof"
Pattern match: "github.com/gin-contrib/pprof@v1.4.0"
Pattern match: "github.com/azure/go-autorest/autorest@v0.11.28"
Pattern match: "github.com/Azure/go-amqp"
Pattern match: "github.com/azure/go-amqp@v0.17.0"
Pattern match: "github.com/cespare/xxhash/v2"
Pattern match: "github.com/cespare/xxhash/v2@v2.1.1"
Pattern match: "github.com/mitchellh/go-homedir"
Pattern match: "github.com/mitchellh/go-homedir@v1.1.0"
Pattern match: "cloud.google.com/go/networkconnectivity"
Pattern match: "cloud.google.com/go/networkconnectivity@v1.5.0"
Pattern match: "github.com/ugorji/go"
Pattern match: "github.com/ugorji/go@v1.2.7"
Pattern match: "github.com/rogpeppe/fastuuid"
Pattern match: "github.com/rogpeppe/fastuuid@v1.2.0"
Pattern match: "github.com/creack/pty"
Pattern match: "github.com/creack/pty@v1.1.9"
Pattern match: "github.com/kr/text"
Pattern match: "github.com/kr/text@v0.2.0"
Pattern match: "github.com/go-playground/universal-translator"
Pattern match: "github.com/go-playground/universal-translator@v0.18.0"
Pattern match: "github.com/Azure/go-autorest/autorest/azure/auth"
Pattern match: "github.com/azure/go-autorest/autorest/azure/auth@v0.4.2"
Pattern match: "cloud.google.com/go/dataflow"
Pattern match: "cloud.google.com/go/dataflow@v0.7.0"
Pattern match: "cloud.google.com/go/scheduler"
Pattern match: "cloud.google.com/go/scheduler@v1.5.0"
Pattern match: "cloud.google.com/go/dataqna"
Pattern match: "cloud.google.com/go/dataqna@v0.6.0"
Pattern match: "github.com/antihax/optional"
Pattern match: "github.com/antihax/optional@v1.0.0"
Pattern match: "cloud.google.com/go/speech"
Pattern match: "cloud.google.com/go/speech@v1.7.0"
Pattern match: "cloud.google.com/go/recaptchaenterprise/v2"
Pattern match: "cloud.google.com/go/recaptchaenterprise/v2@v2.3.0"
Pattern match: "cloud.google.com/go/oslogin"
Pattern match: "cloud.google.com/go/oslogin@v1.5.0"
Pattern match: "github.com/go-playground/locales"
Pattern match: "github.com/go-playground/locales@v0.14.0"
Pattern match: "golang.org/x/sync@v0.0.0-20201020160332-67f06af15bc9"
Pattern match: "golang.org/x/text"
Pattern match: "golang.org/x/text@v0.3.7"
Pattern match: "cloud.google.com/go/area120"
Pattern match: "cloud.google.com/go/area120@v0.6.0"
Pattern match: "golang.org/x/term"
Pattern match: "golang.org/x/term@v0.0.0-20210927222741-03fcf44c2211"
Pattern match: "github.com/rogpeppe/go-internal@v1.3.0"
Pattern match: "github.com/stretchr/objx"
Pattern match: "github.com/stretchr/objx@v0.1.0"
Pattern match: "github.com/go-gl/glfw/v3.3/glfw"
Pattern match: "github.com/go-gl/glfw/v3.3/glfw@v0.0.0-20200222043503-6f7a984d4dc4"
Pattern match: "golang.org/x/lint@v0.0.0-20200302205851-738671d3881b"
Pattern match: "github.com/PuerkitoBio/purell"
Pattern match: "github.com/puerkitobio/purell@v1.1.1"
Pattern match: "golang.org/x/mobile"
Pattern match: "golang.org/x/mobile@v0.0.0-20190719004257-d2bd2a29d028"
Pattern match: "k8s.io/gengo"
Pattern match: "k8s.io/gengo@v0.0.0-20210813121822-485abfe95c7c"
Pattern match: "github.com/chzyer/test"
Pattern match: "github.com/chzyer/test@v0.0.0-20180213035817-a1ea475d72b1"
Pattern match: "golang.org/x/time"
Pattern match: "golang.org/x/time@v0.0.0-20220210224613-90d013bbcef8"
Pattern match: "github.com/NYTimes/gziphandler"
Pattern match: "github.com/nytimes/gziphandler@v0.0.0-20170623195520-56545f4a5d46"
Pattern match: "google.golang.org/api"
Pattern match: "google.golang.org/api@v0.30.0"
Pattern match: "github.com/stretchr/testify@v1.7.0"
Pattern match: "cloud.google.com/go/datastore"
Pattern match: "cloud.google.com/go/datastore@v1.1.0"
Pattern match: "github.com/pelletier/go-toml/v2@v2.0.6"
Pattern match: "github.com/docker/go-connections"
Pattern match: "github.com/docker/go-connections@v0.4.0"
Pattern match: "golang.org/x/tools@v0.1.12"
Pattern match: "github.com/google/martian"
Pattern match: "github.com/google/martian@v2.1.0+incompatible"
Pattern match: "honnef.co/go/tools"
Pattern match: "honnef.co/go/tools@v0.0.1-2020.1.4"
Pattern match: "github.com/go-openapi/jsonreference"
Pattern match: "github.com/go-openapi/jsonreference@v0.19.5"
Pattern match: "golang.org/x/net@v0.0.0-20220722155237-a158d28d115b"
Pattern match: "cloud.google.com/go/storage"
Pattern match: "cloud.google.com/go/storage@v1.10.0"
Pattern match: "k8s.io/apimachinery"
Pattern match: "k8s.io/apimachinery@v0.25.1"
Pattern match: "cloud.google.com/go/pubsub"
Pattern match: "cloud.google.com/go/pubsub@v1.3.1"
Pattern match: "github.com/mattn/go-isatty@v0.0.16"
Pattern match: "github.com/opencontainers/image-spec"
Pattern match: "github.com/opencontainers/image-spec@v1.0.2"
Pattern match: "golang.org/x/time@v0.3.0"
Pattern match: "github.com/creack/pty@v1.1.18"
Pattern match: "github.com/VividCortex/ewma"
Pattern match: "github.com/vividcortex/ewma@v1.1.1"
Pattern match: "github.com/Azure/azure-sdk-for-go/sdk/keyvault/internal"
Pattern match: "github.com/azure/azure-sdk-for-go/sdk/keyvault/internal@v0.2.1"
Pattern match: "github.com/golang-jwt/jwt"
Pattern match: "github.com/golang-jwt/jwt@v3.2.1+incompatible"
Pattern match: "golang.org/x/exp@v0.0.0-20220317015231-48e79f11773a"
Pattern match: "github.com/gorilla/sessions"
Pattern match: "github.com/gorilla/sessions@v1.2.1"
Pattern match: "golang.org/x/crypto@v0.0.0-20220622213112-05595931fe9d"
Pattern match: "github.com/jinzhu/inflection"
Pattern match: "github.com/jinzhu/inflection@v1.0.0"
Pattern match: "github.com/gomodule/redigo"
Pattern match: "github.com/gomodule/redigo@v2.0.0+incompatible"
Pattern match: "github.com/youmark/pkcs8"
Pattern match: "github.com/youmark/pkcs8@v0.0.0-20181117223130-1be2e3e5546d"
Pattern match: "github.com/evanphx/json-patch"
Pattern match: "github.com/evanphx/json-patch@v4.12.0+incompatible"
Pattern match: "github.com/go-openapi/swag"
Pattern match: "github.com/go-openapi/swag@v0.19.14"
Pattern match: "rsc.io/quote/v3"
Pattern match: "rsc.io/quote/v3@v3.1.0"
Pattern match: "github.com/imdario/mergo"
Pattern match: "github.com/imdario/mergo@v0.3.6"
Pattern match: "github.com/modern-go/concurrent@v0.0.0-20180306012644-bacd9c7ef1dd"
Pattern match: "gopkg.in/yaml.v3@v3.0.1"
Pattern match: "github.com/go-gl/glfw"
Pattern match: "github.com/go-gl/glfw@v0.0.0-20190409004039-e6da0acd62b1"
Pattern match: "golang.org/x/term@v0.3.0"
Pattern match: "github.com/Azure/go-ansiterm"
Pattern match: "github.com/azure/go-ansiterm@v0.0.0-20210617225240-d185dfc1b5a1"
Pattern match: "github.com/google/go-cmp@v0.5.5"
Pattern match: "github.com/goccy/go-json@v0.9.11"
Pattern match: "golang.org/x/net@v0.0.0-20211112202133-69e39bad7dc2"
Pattern match: "github.com/kylelemons/godebug"
Pattern match: "github.com/kylelemons/godebug@v1.1.0"
Pattern match: "golang.org/x/crypto@v0.0.0-20220131195533-30dcbda58838"
Pattern match: "golang.org/x/mod@v0.6.0-dev.0.20211013180041-c96bc1413d57"
Pattern match: "github.com/antonlindstrom/pgstore"
Pattern match: "github.com/antonlindstrom/pgstore@v0.0.0-20200229204646-b08ebf1105e0"
Pattern match: "github.com/go-sql-driver/mysql"
Pattern match: "github.com/go-sql-driver/mysql@v1.7.0"
Pattern match: "golang.org/x/xerrors@v0.0.0-20191204190536-9bdfabe68543"
Pattern match: "github.com/bradleypeabody/gorilla-sessions-memcache"
Pattern match: "github.com/bradleypeabody/gorilla-sessions-memcache@v0.0.0-20181103040241-659414f458e1"
Pattern match: "github.com/globalsign/mgo"
Pattern match: "github.com/globalsign/mgo@v0.0.0-20181015135952-eeefdecb41b8"
Pattern match: "github.com/bradfitz/gomemcache"
Pattern match: "github.com/bradfitz/gomemcache@v0.0.0-20190913173617-a41fca850d0b"
Pattern match: "https://jasonswearingen.github.io"
Pattern match: "github.com/Azure/go-autorest"
Pattern match: "github.com/azure/go-autorest@v14.2.0+incompatible"
Pattern match: "cloud.google.com/go/networksecurity"
Pattern match: "cloud.google.com/go/networksecurity@v0.6.0"
Pattern match: "cloud.google.com/go/aiplatform"
Pattern match: "cloud.google.com/go/aiplatform@v1.24.0"
Pattern match: "cloud.google.com/go/dataform"
Pattern match: "cloud.google.com/go/dataform@v0.4.0"
Pattern match: "github.com/envoyproxy/protoc-gen-validate"
Pattern match: "github.com/envoyproxy/protoc-gen-validate@v0.1.0"
Pattern match: "cloud.google.com/go/gaming"
Pattern match: "cloud.google.com/go/gaming@v1.6.0"
Pattern match: "github.com/Azure/go-autorest/tracing"
Pattern match: "github.com/azure/go-autorest/tracing@v0.6.0"
Pattern match: "golang.org/x/mod@v0.3.0"
Pattern match: "github.com/envoyproxy/go-control-plane@v0.10.2-0.20220325020618-49ff273808a1"
Pattern match: "cloud.google.com/go/metastore"
Pattern match: "cloud.google.com/go/metastore@v1.6.0"
Pattern match: "cloud.google.com/go/workflows"
Pattern match: "cloud.google.com/go/workflows@v1.7.0"
Pattern match: "github.com/stretchr/objx@v0.1.1"
Pattern match: "cloud.google.com/go/talent"
Pattern match: "cloud.google.com/go/talent@v1.2.0"
Pattern match: "cloud.google.com/go/datalabeling"
Pattern match: "cloud.google.com/go/datalabeling@v0.6.0"
Pattern match: "github.com/kr/pretty@v0.3.0"
Pattern match: "github.com/modern-go/reflect2"
Pattern match: "github.com/modern-go/reflect2@v1.0.2"
Pattern match: "github.com/dimchansky/utfbom"
Pattern match: "github.com/dimchansky/utfbom@v1.1.0"
Pattern match: "github.com/Azure/go-autorest/autorest/adal"
Pattern match: "github.com/azure/go-autorest/autorest/adal@v0.9.21"
Pattern match: "github.com/gin-contrib/sse"
Pattern match: "github.com/gin-contrib/sse@v0.1.0"
Pattern match: "k8s.io/klog/v2"
Pattern match: "k8s.io/klog/v2@v2.70.1"
Pattern match: "github.com/onsi/ginkgo/v2"
Pattern match: "github.com/onsi/ginkgo/v2@v2.1.6"
Pattern match: "sigs.k8s.io/json"
Pattern match: "sigs.k8s.io/json@v0.0.0-20220713155537-f223a00ba0e2"
Pattern match: "github.com/go-logr/logr"
Pattern match: "github.com/go-logr/logr@v1.2.3"
Pattern match: "github.com/spf13/afero"
Pattern match: "github.com/spf13/afero@v1.2.2"
Pattern match: "k8s.io/utils"
Pattern match: "k8s.io/utils@v0.0.0-20220728103510-ee6ede2d64ed"
Pattern match: "gopkg.in/inf.v0"
Pattern match: "gopkg.in/inf.v0@v0.9.1"
Pattern match: "github.com/golang/mock@v1.4.4"
Pattern match: "gopkg.in/check.v1"
Pattern match: "gopkg.in/check.v1@v1.0.0-20200227125254-8fa46927fb4f"
Pattern match: "github.com/emicklei/go-restful/v3"
Pattern match: "github.com/emicklei/go-restful/v3@v3.8.0"
Pattern match: "github.com/google/renameio"
Pattern match: "github.com/google/renameio@v0.1.0"
Pattern match: "github.com/golang/groupcache"
Pattern match: "github.com/golang/groupcache@v0.0.0-20210331224755-41bb18bfe9da"
Pattern match: "rsc.io/sampler"
Pattern match: "rsc.io/sampler@v1.3.0"
Pattern match: "github.com/gin-gonic/gin"
Pattern match: "github.com/gin-gonic/gin@v1.8.2"
Pattern match: "github.com/golang/protobuf@v1.5.0"
Pattern match: "golang.org/x/crypto@v0.0.0-20211215153901-e495a2d5b3d3"
Pattern match: "github.com/stretchr/objx@v0.5.0"
Pattern match: "github.com/fatih/color"
Pattern match: "github.com/fatih/color@v1.13.0"
Pattern match: "github.com/Azure/azure-sdk-for-go/sdk/azcore"
Pattern match: "github.com/azure/azure-sdk-for-go/sdk/azcore@v0.22.0"
Pattern match: "github.com/pkg/browser"
Pattern match: "github.com/pkg/browser@v0.0.0-20210115035449-ce105d075bb4"
Pattern match: "github.com/mattn/go-colorable"
Pattern match: "github.com/mattn/go-colorable@v0.1.9"
Pattern match: "gorm.io/driver/mysql"
Pattern match: "gorm.io/driver/mysql@v1.4.5"
Pattern match: "github.com/pelletier/go-toml/v2@v2.0.2"
Pattern match: "github.com/gorilla/context"
Pattern match: "github.com/gorilla/context@v1.1.1"
Pattern match: "go.mongodb.org/mongo-driver"
Pattern match: "go.mongodb.org/mongo-driver@v1.9.1"
Pattern match: "github.com/tidwall/pretty"
Pattern match: "github.com/tidwall/pretty@v1.0.0"
Pattern match: "github.com/klauspost/compress"
Pattern match: "github.com/klauspost/compress@v1.13.6"
Pattern match: "github.com/prometheus/prometheus"
Pattern match: "github.com/prometheus/prometheus@v2.5.0+incompatible"
Pattern match: "cloud.google.com/go/edgecontainer"
Pattern match: "cloud.google.com/go/edgecontainer@v0.2.0"
Pattern match: "cloud.google.com/go/osconfig"
Pattern match: "cloud.google.com/go/osconfig@v1.8.0"
Pattern match: "github.com/Azure/azure-pipeline-go"
Pattern match: "github.com/azure/azure-pipeline-go@v0.2.3"
Pattern match: "github.com/gin-gonic/gin@v1.8.1"
Pattern match: "gopkg.in/yaml.v2"
Pattern match: "gopkg.in/yaml.v2@v2.4.0"
Pattern match: "cloud.google.com/go/domains"
Pattern match: "cloud.google.com/go/domains@v0.7.0"
Pattern match: "cloud.google.com/go/security"
Pattern match: "cloud.google.com/go/security@v1.8.0"
Pattern match: "github.com/Azure/azure-amqp-common-go/v3"
Pattern match: "github.com/azure/azure-amqp-common-go/v3@v3.2.3"
Pattern match: "honnef.co/go/tools@v0.0.0-20190523083050-ea95bdfd59fc"
Pattern match: "gopkg.in/check.v1@v1.0.0-20201130134442-10cb98267c6c"
Pattern match: "cloud.google.com/go/datastream"
Pattern match: "cloud.google.com/go/datastream@v1.3.0"
Pattern match: "cloud.google.com/go/vision/v2"
Pattern match: "cloud.google.com/go/vision/v2@v2.3.0"
Pattern match: "github.com/kisielk/errcheck"
Pattern match: "github.com/kisielk/errcheck@v1.5.0"
Pattern match: "github.com/pmezard/go-difflib"
Pattern match: "github.com/pmezard/go-difflib@v1.0.0"
Pattern match: "cloud.google.com/go/functions"
Pattern match: "cloud.google.com/go/functions@v1.7.0"
Pattern match: "gopkg.in/errgo.v2"
Pattern match: "gopkg.in/errgo.v2@v2.1.0"
Pattern match: "github.com/pkg/diff"
Pattern match: "github.com/pkg/diff@v0.0.0-20210226163009-20ebb0f2a09e"
Pattern match: "github.com/josharian/intern"
Pattern match: "github.com/josharian/intern@v1.0.0"
Pattern match: "github.com/google/gnostic"
Pattern match: "github.com/google/gnostic@v0.5.7-v3refs"
Pattern match: "k8s.io/kube-openapi"
Pattern match: "k8s.io/kube-openapi@v0.0.0-20220803162953-67bda5d908f1"
Pattern match: "google.golang.org/appengine@v1.6.7"
Pattern match: "golang.org/x/exp@v0.0.0-20200224162631-6cc2880d07d6"
Pattern match: "golang.org/x/sys@v0.0.0-20220722155257-8c9f86f7a55f"
Pattern match: "google.golang.org/grpc@v1.31.0"
Pattern match: "github.com/google/uuid@v1.1.2"
Pattern match: "github.com/munnerz/goautoneg"
Pattern match: "github.com/munnerz/goautoneg@v0.0.0-20191010083416-a7dc8b61c822"
Pattern match: "google.golang.org/genproto@v0.0.0-20201019141844-1ed22bb0c154"
Pattern match: "github.com/chzyer/logex"
Pattern match: "github.com/chzyer/logex@v1.1.10"
Pattern match: "github.com/google/btree"
Pattern match: "github.com/google/btree@v1.0.1"
Pattern match: "golang.org/x/sys@v0.3.0"
Pattern match: "github.com/Microsoft/go-winio"
Pattern match: "github.com/microsoft/go-winio@v0.6.0"
Pattern match: "github.com/yuin/goldmark"
Pattern match: "github.com/yuin/goldmark@v1.4.13"
Pattern match: "github.com/sirupsen/logrus@v1.7.0"
Pattern match: "gopkg.in/check.v1@v0.0.0-20161208181325-20d25e280405"
Pattern match: "github.com/montanaflynn/stats"
Pattern match: "github.com/montanaflynn/stats@v0.6.6"
Pattern match: "github.com/modocache/gover"
Pattern match: "github.com/modocache/gover@v0.0.0-20171022184752-b58185e213c5"
Pattern match: "golang.org/x/term@v0.0.0-20201126162022-7de9c90e9dd1"
Pattern match: "gorm.io/driver/sqlite"
Pattern match: "gorm.io/driver/sqlite@v1.1.4"
Pattern match: "github.com/xdg-go/stringprep"
Pattern match: "github.com/xdg-go/stringprep@v1.0.2"
Pattern match: "github.com/goccy/go-json@v0.9.8"
Pattern match: "github.com/gorilla/securecookie"
Pattern match: "github.com/gorilla/securecookie@v1.1.1"
Pattern match: "golang.org/x/net@v0.0.0-20220630215102-69896b714898"
Pattern match: "github.com/memcachier/mc"
Pattern match: "github.com/memcachier/mc@v2.0.1+incompatible"
Pattern match: "github.com/form3tech-oss/jwt-go"
Pattern match: "github.com/form3tech-oss/jwt-go@v3.2.2+incompatible"
Pattern match: "golang.org/x/net@v0.0.0-20220909164309-bea034e7d591"
Pattern match: "golang.org/x/tools@v0.0.0-20210106214847-113979e3529a"
Pattern match: "github.com/Azure/azure-sdk-for-go"
Pattern match: "github.com/azure/azure-sdk-for-go@v65.0.0+incompatible"
Pattern match: "golang.org/x/oauth2"
Pattern match: "golang.org/x/oauth2@v0.0.0-20200107190931-bf48bf16ab8d"
Pattern match: "github.com/go-playground/validator/v10"
Pattern match: "github.com/go-playground/validator/v10@v10.10.0"
Pattern match: "github.com/mattn/go-ieproxy"
Pattern match: "github.com/mattn/go-ieproxy@v0.0.1"
Pattern match: "cloud.google.com/go/automl"
Pattern match: "cloud.google.com/go/automl@v1.6.0"
Pattern match: "cloud.google.com/go/mediatranslation"
Pattern match: "cloud.google.com/go/mediatranslation@v0.6.0"
Pattern match: "github.com/google/gofuzz@v1.0.0"
Pattern match: "cloud.google.com/go/securitycenter"
Pattern match: "cloud.google.com/go/securitycenter@v1.14.0"
Pattern match: "github.com/moby/spdystream"
Pattern match: "github.com/moby/spdystream@v0.2.0"
Pattern match: "golang.org/x/tools@v0.1.10"
Pattern match: "github.com/google/go-cmp@v0.5.8"
Pattern match: "github.com/onsi/gomega"
Pattern match: "github.com/onsi/gomega@v1.20.1"
Pattern match: "github.com/mitchellh/mapstructure@v1.1.2"
Pattern match: "github.com/peterbourgon/diskv"
Pattern match: "github.com/peterbourgon/diskv@v2.0.1+incompatible"
Pattern match: "github.com/asaskevich/govalidator"
Pattern match: "github.com/asaskevich/govalidator@v0.0.0-20190424111038-f61b66f89f4a"
Pattern match: "dmitri.shuralyov.com/gpu/mtl"
Pattern match: "dmitri.shuralyov.com/gpu/mtl@v0.0.0-20190408044501-666a987793e9"
Pattern match: "github.com/azure/go-autorest/autorest/adal@v0.9.20"
Pattern match: "github.com/getkin/kin-openapi"
Pattern match: "github.com/getkin/kin-openapi@v0.76.0"
Pattern match: "github.com/docker/docker"
Pattern match: "github.com/docker/docker@v23.0.0+incompatible"
Pattern match: "github.com/Azure/azure-sdk-for-go/sdk/data/aztables"
Pattern match: "github.com/azure/azure-sdk-for-go/sdk/data/aztables@v0.6.0"
Pattern match: "github.com/dnaeon/go-vcr"
Pattern match: "github.com/dnaeon/go-vcr@v1.1.0"
Pattern match: "github.com/inconshreveable/mousetrap"
Pattern match: "github.com/inconshreveable/mousetrap@v1.0.0"
Pattern match: "github.com/Azure/azure-sdk-for-go/sdk/keyvault/azsecrets"
Pattern match: "github.com/azure/azure-sdk-for-go/sdk/keyvault/azsecrets@v0.6.0"
Pattern match: "github.com/go-stack/stack"
Pattern match: "github.com/go-stack/stack@v1.8.0"
Pattern match: "github.com/gorilla/websocket"
Pattern match: "github.com/gorilla/websocket@v1.5.0"
Pattern match: "github.com/golang/snappy@v0.0.1"
Pattern match: "github.com/boj/redistore"
Pattern match: "github.com/boj/redistore@v0.0.0-20180917114910-cd5dcc76aeff"
Pattern match: "github.com/azuread/microsoft-authentication-library-for-go@v0.5.2"
Pattern match: "github.com/xdg-go/scram"
Pattern match: "github.com/xdg-go/scram@v1.0.2"
Pattern match: "github.com/ianlancetaylor/demangle"
Pattern match: "github.com/ianlancetaylor/demangle@v0.0.0-20181102032728-5e5cf60278f6"
Pattern match: "github.com/sirupsen/logrus@v1.9.0"
Pattern match: "github.com/PuerkitoBio/urlesc"
Pattern match: "github.com/puerkitobio/urlesc@v0.0.0-20170810143723-de5bf2ad4578"
Pattern match: "github.com/opencontainers/go-digest"
Pattern match: "github.com/opencontainers/go-digest@v1.0.0"
Pattern match: "github.com/docker/distribution"
Pattern match: "github.com/docker/distribution@v2.8.1+incompatible"
Pattern match: "golang.org/x/sync@v0.0.0-20220722155255-886fb9371eb4"
Pattern match: "golang.org/x/mod@v0.6.0-dev.0.20220419223038-86c51ed26bb4"
Pattern match: "github.com/beevik/etree"
Pattern match: "github.com/beevik/etree@v1.1.0"
Pattern match: "github.com/cheggaaa/pb/v3"
Pattern match: "github.com/cheggaaa/pb/v3@v3.0.8"
Pattern match: "github.com/mattn/go-runewidth"
Pattern match: "github.com/mattn/go-runewidth@v0.0.13"
Pattern match: "github.com/cpuguy83/go-md2man/v2"
Pattern match: "github.com/cpuguy83/go-md2man/v2@v2.0.1"
Pattern match: "github.com/microsoft/azure-devops-go-api/azuredevops/v6"
Pattern match: "github.com/microsoft/azure-devops-go-api/azuredevops/v6@v6.0.1"
Pattern match: "github.com/jinzhu/now"
Pattern match: "github.com/jinzhu/now@v1.1.5"
Pattern match: "github.com/wader/gormstore/v2"
Pattern match: "github.com/wader/gormstore/v2@v2.0.0"
Pattern match: "github.com/stretchr/testify@v1.7.2"
Pattern match: "github.com/quasoft/memstore"
Pattern match: "github.com/quasoft/memstore@v0.0.0-20191010062613-2bce066d2b0b"
Pattern match: "github.com/dgrijalva/jwt-go"
Pattern match: "github.com/dgrijalva/jwt-go@v3.2.0+incompatible"
Pattern match: "cloud.google.com/go/recommender"
Pattern match: "cloud.google.com/go/recommender@v1.6.0"
Pattern match: "github.com/census-instrumentation/opencensus-proto"
Pattern match: "github.com/census-instrumentation/opencensus-proto@v0.2.1"
Pattern match: "github.com/Azure/go-autorest/autorest/to"
Pattern match: "github.com/azure/go-autorest/autorest/to@v0.4.0"
Pattern match: "cloud.google.com/go/notebooks"
Pattern match: "cloud.google.com/go/notebooks@v1.3.0"
Pattern match: "cloud.google.com/go/assuredworkloads"
Pattern match: "cloud.google.com/go/assuredworkloads@v1.7.0"
Pattern match: "github.com/prometheus/client_model"
Pattern match: "github.com/prometheus/client_model@v0.0.0-20190812154241-14fe0d1b01d4"
Pattern match: "github.com/yuin/goldmark@v1.2.1"
Pattern match: "github.com/kisielk/gotool"
Pattern match: "github.com/kisielk/gotool@v1.0.0"
Pattern match: "cloud.google.com/go/analytics"
Pattern match: "cloud.google.com/go/analytics@v0.12.0"
Pattern match: "cloud.google.com/go/redis"
Pattern match: "cloud.google.com/go/redis@v1.8.0"
Pattern match: "cloud.google.com/go/retail"
Pattern match: "cloud.google.com/go/retail@v1.9.0"
Pattern match: "cloud.google.com/go/cloudtasks"
Pattern match: "cloud.google.com/go/cloudtasks@v1.6.0"
Pattern match: "github.com/jstemmer/go-junit-report"
Pattern match: "github.com/jstemmer/go-junit-report@v0.9.1"
Pattern match: "golang.org/x/oauth2@v0.0.0-20211104180415-d3ed0bb246c8"
Pattern match: "github.com/cncf/udpa/go@v0.0.0-20191209042840-269d4d468f6f"
Pattern match: "github.com/stoewer/go-strcase"
Pattern match: "github.com/stoewer/go-strcase@v1.2.0"
Pattern match: "github.com/BurntSushi/xgb"
Pattern match: "github.com/burntsushi/xgb@v0.0.0-20160522181843-27f122750802"
Pattern match: "github.com/niemeyer/pretty"
Pattern match: "github.com/niemeyer/pretty@v0.0.0-20200227124842-a10e7caefd8e"
Pattern match: "k8s.io/client-go"
Pattern match: "k8s.io/client-go@v0.25.1"
Pattern match: "github.com/docopt/docopt-go"
Pattern match: "github.com/docopt/docopt-go@v0.0.0-20180111231733-ee0de3bc6815"
Pattern match: "github.com/mailru/easyjson"
Pattern match: "github.com/mailru/easyjson@v0.7.6"
Pattern match: "golang.org/x/image"
Pattern match: "golang.org/x/image@v0.0.0-20190802002840-cff245a6509b"
Pattern match: "cloud.google.com/go/bigquery@v1.8.0"
Pattern match: "github.com/go-playground/validator/v10@v10.11.1"
Pattern match: "golang.org/x/text@v0.5.0"
Pattern match: "github.com/moby/term"
Pattern match: "github.com/moby/term@v0.0.0-20221205130635-1aeaba878587"
Pattern match: "golang.org/x/tools@v0.1.8-0.20211029000441-d6a9af8af023"
Pattern match: "github.com/Azure/azure-sdk-for-go/sdk/internal"
Pattern match: "github.com/azure/azure-sdk-for-go/sdk/internal@v0.9.1"
Pattern match: "golang.org/x/sys@v0.0.0-20220128215802-99c3d69c2c27"
Pattern match: "github.com/spf13/cobra"
Pattern match: "github.com/spf13/cobra@v1.4.0"
Pattern match: "github.com/russross/blackfriday/v2"
Pattern match: "github.com/russross/blackfriday/v2@v2.1.0"
Pattern match: "github.com/mattn/go-sqlite3"
Pattern match: "github.com/mattn/go-sqlite3@v2.0.3+incompatible"
Pattern match: "github.com/go-playground/validator/v10@v10.11.0"
Pattern match: "github.com/kidstuff/mongostore"
Pattern match: "github.com/kidstuff/mongostore@v0.0.0-20181113001930-e650cd85ee4b"
Pattern match: "github.com/gin-contrib/sessions"
Pattern match: "github.com/gin-contrib/sessions@v0.0.5"
Pattern match: "github.com/xdg-go/pbkdf2"
Pattern match: "github.com/xdg-go/pbkdf2@v1.0.0"
Pattern match: "http://jbgutierrez.info"
Pattern match: "http://github.com/janl/mustache.js"
Pattern match: "http://paulmillr.com"
Pattern match: "com.fasterxml.jackson.core/jackson-databind@2.14.0"
Pattern match: "com.fasterxml.jackson.core/jackson-core@2.14.0"
Pattern match: "org.apache.hudi/hudi-flink1.15-bundle@0.12.0"
Pattern match: "com.microsoft.xpay/xpay-flink-common@1.0-SNAPSHOT"
Pattern match: "org.apache.hive/hive-exec@3.1.3"
Pattern match: "com.fasterxml.jackson.core/jackson-annotations@2.14.0"
Pattern match: "com.microsoft.xpay/xpay-logger@1.0-SNAPSHOT"
Pattern match: "com.microsoft.xpay/xpay-common@1.0-SNAPSHOT"
Pattern match: "https://sbom.microsoft/1:QyJCGbkZhU2cpryWGGHShw:jDwRToOBTEup9UIfsi0TBQ/32637:41625522/rGpFbTZxC0amE4BBP-yWcw"
Heuristic match: "!function(){var e={440:function(e,t,n){var r=n(137).default;function o(){use strict;e.exports=o=function(){return t},e.exports.__esModule=!0,e.exports.default=e.exports;var t={},n=Object.prototype,i=n.hasOwnProperty,a=Object.defineProperty||function(e,t,"
Pattern match: "https://sbom.microsoft/1:QyJCGbkZhU2cpryWGGHShw:jDwRToOBTEup9UIfsi0TBQ/32637:42033296/KU4azuEF8EmiRq4FMNDPsA"
Pattern match: "www.softros.com/"
Pattern match: "www.logonexpert.com/"
Pattern match: "messenger.softros.com/purchase/"
Pattern match: "nts.softros.com/purchase/"
Pattern match: "www.logonexpert.com/purchase/"
Pattern match: "messenger.softros.com/downloads/"
Pattern match: "nts.softros.com/downloads/"
Pattern match: "www.logonexpert.com/download/"
Pattern match: "www.softros.com/support/"
Pattern match: "www.softros.com/company/"
Pattern match: "www.softros.com/resellers/"
Pattern match: "www.softros.com/policies/"
Pattern match: "nts.softros.com/server/"
Pattern match: "http://www.w3.org/2000/svg};class"
Pattern match: "www.klarna.com"
Pattern match: "www.google.com"
Pattern match: "www.gstatic.com"
Pattern match: "www.transunion.com"
Pattern match: "www.googletagmanager.com"
Pattern match: "www.facebook.com"
Pattern match: "www.googleadservices.com"
Pattern match: "https://reactjs.org/docs/error-decoder.html?invariant=+e,o=1;o"
Pattern match: "https://aka.ms/EdgeSaveCardFAQ,oh.UseVirtualCardLearnMore=https://aka.ms/EdgeVirtualCardFAQ,oh.WalletSettings=edge://wallet/settings,oh.microsoftRewardsDashboardURL=https://rewards.microsoft.com/,oh.microsoftRewardsRedeemURL=https://rewards.microso"
Pattern match: "www.gap.com"
Pattern match: "www.gapfactory.com"
Pattern match: "www2.hm.com"
Pattern match: "www2.drmartypets.com"
Pattern match: "https://reactjs.org/docs/error-decoder.html?invariant=+e,i=1;i"
Pattern match: "https://sbom.microsoft/1:QyJCGbkZhU2cpryWGGHShw:jDwRToOBTEup9UIfsi0TBQ/32637:42033296/OEE0PWrwBEmV7YqpyJ4uYg"
Pattern match: "www.playstation.com},{applied_policy:block,domain:bing.com},{applied_policy:block,domain:browserbench.org},{applied_policy:block,domain:www.principledtechnologies.com},{applied_policy:block,domain:web.basemark.com},{applie"
Pattern match: "https://sbom.microsoft/1:QyJCGbkZhU2cpryWGGHShw:jDwRToOBTEup9UIfsi0TBQ/32637:42173439/dYfFcKiTAESJrEUPUkk9Qw" - source
- File/Memory
- relevance
- 3/10
- ATT&CK ID
- T1071 (Show technique in the MITRE ATT&CK™ matrix)
-
Found mail related domain names
-
Unusual Characteristics
-
Detected known bank URL artifact
- details
-
""4amscrubs.com"," (Source: wallet-pre-stable.json, Indicator: "ubs.com")
""6whiskey.com"," (Source: wallet-pre-stable.json, Indicator: "key.com")
""99centsubs.com"," (Source: wallet-pre-stable.json, Indicator: "ubs.com")
""allieandmickey.com"," (Source: wallet-pre-stable.json, Indicator: "key.com")
""alteregoscrubs.com"," (Source: wallet-pre-stable.json, Indicator: "ubs.com")
""annabelbleu.com"," (Source: wallet-pre-stable.json, Indicator: "leu.com")
""aspirefashionscrubs.com"," (Source: wallet-pre-stable.json, Indicator: "ubs.com")
""augustbleu.com"," (Source: wallet-pre-stable.json, Indicator: "leu.com")
""bananasmonkey.com"," (Source: wallet-pre-stable.json, Indicator: "key.com")
""baseballmonkey.com"," (Source: wallet-pre-stable.json, Indicator: "key.com")
""beautiiskey.com"," (Source: wallet-pre-stable.json, Indicator: "key.com")
""beautyandwhiskey.com"," (Source: wallet-pre-stable.json, Indicator: "key.com")
""bellagracehealthscrubs.com"," (Source: wallet-pre-stable.json, Indicator: "ubs.com")
""belleandbubs.com"," (Source: wallet-pre-stable.json, Indicator: "ubs.com")
""beyondblessedscrubs.com"," (Source: wallet-pre-stable.json, Indicator: "ubs.com")
""blingbykey.com"," (Source: wallet-pre-stable.json, Indicator: "key.com")
""boosted-luckey.com"," (Source: wallet-pre-stable.json, Indicator: "key.com")
""bowlingmonkey.com"," (Source: wallet-pre-stable.json, Indicator: "key.com")
""burgeonbleu.com"," (Source: wallet-pre-stable.json, Indicator: "leu.com")
""busybeescrubs.com"," (Source: wallet-pre-stable.json, Indicator: "ubs.com")
""cabbagekey.com"," (Source: wallet-pre-stable.json, Indicator: "key.com")
""coatsandscrubs.com"," (Source: wallet-pre-stable.json, Indicator: "ubs.com")
""codenxtscrubs.com"," (Source: wallet-pre-stable.json, Indicator: "ubs.com")
""cognitiontsscrubs.com"," (Source: wallet-pre-stable.json, Indicator: "ubs.com")
""concreterosescrubs.com"," (Source: wallet-pre-stable.json, Indicator: "ubs.com") - source
- File/Memory
- relevance
- 2/10
-
Detected known bank URL artifact
Session Details
No relevant data available.
Screenshots
Loading content, please wait...
Hybrid Analysis
Tip: Click an analysed process below to view more details.
Analysed 24 processes in total.
-
rundll32.exe
"%WINDIR%\system32\ieframe.dll",OpenURL C:\sample.url
(PID: 7084)
-
msedge.exe
--single-argument https://nts.softros.com/
(PID: 7356)
- msedge.exe --type=crashpad-handler "--user-data-dir=%LOCALAPPDATA%\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=%LOCALAPPDATA%\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=107.0.5304.110 "--annotation=exe=%PROGRAMFILES%\(x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=107.0.1418.56 --initial-client-data=0xc8,0xcc,0xd0,0xa4,0x168,0x7fff68b6b208,0x7fff68b6b218,0x7fff68b6b228 (PID: 7476)
- msedge.exe --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1808 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:2 (PID: 4640)
- msedge.exe --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2072 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:3 (PID: 3928)
- msedge.exe --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2184 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 7408)
- msedge.exe --type=renderer --display-capture-permissions-policy-allowed --js-flags=--ms-user-locale= --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=6 --time-ticks-at-unix-epoch=-1704039767495918 --launch-time-ticks=1069073182 --mojo-platform-channel-handle=3168 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:1 (PID: 7352)
- msedge.exe --type=renderer --display-capture-permissions-policy-allowed --js-flags=--ms-user-locale= --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=5 --time-ticks-at-unix-epoch=-1704039767495918 --launch-time-ticks=1070234532 --mojo-platform-channel-handle=3184 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:1 (PID: 5408)
- msedge.exe --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3424 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 6584)
- msedge.exe --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --mojo-platform-channel-handle=4424 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 496)
- msedge.exe --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --mojo-platform-channel-handle=4460 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 472)
- msedge.exe --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5284 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 1820)
- msedge.exe --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5504 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 2608)
- msedge.exe --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2260 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 5900)
- msedge.exe --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1784 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 7564)
- msedge.exe --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2136 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 2624)
- msedge.exe --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=5396 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 5876)
- msedge.exe --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=5140 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.16299.192 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5416 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:2 (PID: 6124)
- msedge.exe --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2592 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 1480)
- msedge.exe --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5644 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 4044)
- msedge.exe --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5592 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 4824)
- msedge.exe --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5556 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 6404)
- msedge.exe --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=5364 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 6092)
- msedge.exe --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2596 --field-trial-handle=1984,i,11494085946610829956,3484735810888912694,131072 /prefetch:8 (PID: 2316)
-
msedge.exe
--single-argument https://nts.softros.com/
(PID: 7356)
Network Analysis
DNS Requests
Domain | Address | Registrar | Country |
---|---|---|---|
nts.softros.com
OSINT |
108.61.143.164
TTL: 3600 |
TurnCommerce, Inc. DBA NameBright.com
Organization: Softros Systems, Inc. Name Server: NS1.SOFTROS.COM Creation Date: 2001-03-18T19:56:46 |
United States |
www.softros.com
OSINT |
108.61.143.162
TTL: 3527 |
TurnCommerce, Inc. DBA NameBright.com
Organization: Softros Systems, Inc. Name Server: NS1.SOFTROS.COM Creation Date: 2001-03-18T19:56:46 |
United States |
Contacted Hosts
IP Address | Port/Protocol | Associated Process | Details |
---|---|---|---|
108.61.143.164 |
443
TCP |
msedge.exe PID: 3928 |
United States |
108.61.143.162 |
443
TCP |
msedge.exe PID: 3928 |
United States |
Contacted Countries
HTTP Traffic
No relevant HTTP requests were made.
Extracted Strings
Extracted Files
Displaying 56 extracted file(s). The remaining 273 file(s) are available in the full version and XML/JSON reports.
-
Clean 1
-
-
urlref_httpsnts.softros.com
- Size
- 7.5KiB (7677 bytes)
- Type
- html
- Description
- HTML document, UTF-8 Unicode text, with CRLF, LF line terminators
- AV Scan Result
- 0/60
- Context
- https://nts.softros.com/
- MD5
- c6096f5a767572b147eb3289f7293a52
- SHA1
- 2dbad84fdcbf01557108cf716aec1d5787290692
- SHA256
- 26a7a32b756df2f1d61cee25803aede6426b7f0f0872784624d71a5b0481e379
-
-
Informative Selection 55
-
-
0a112382-d589-4a37-b5d3-c4229f3f5022.tmp
- Size
- 60KiB (61102 bytes)
- Type
- text
- Description
- ASCII text, with very long lines, with no line terminators
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- 40bdcca4f2a0bd07fa6b65b248e16cb0
- SHA1
- e2c58db03aca5fb4821f05002c41b4a9cfe7bef9
- SHA256
- d01a74b545f75de85574dcfa32f634d8c513a7aa6b9f0efb9cb40beb452dd395
-
0e065221-c4eb-49df-84a1-0d8be027c58a.tmp
- Size
- 60KiB (61195 bytes)
- Type
- text
- Description
- ASCII text, with very long lines, with no line terminators
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- c358035607054a747493d23813cadb54
- SHA1
- 0d92228dd7e9fb5ab684798d4bc670497cd15f6c
- SHA256
- 747d0b1bffd1d6302a3ca5685646648f765110f201223397ccee79d249f3fc9f
-
50ff8055-8640-4509-a27a-f86363977de7.tmp
- Size
- 60KiB (61195 bytes)
- Type
- text
- Description
- ASCII text, with very long lines, with no line terminators
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- 74fd6241e4441a0dc6992d1055c7f7b6
- SHA1
- 90c02573e8dab3cd02c15c5b1d7f7ee4a570e150
- SHA256
- 8a9be3a85b48c23859a51b074c90dd0ba5347d3814c7cce05c0e60a8526b81c2
-
71da9387-c08c-4faf-a019-17922f8ab327.tmp
- Size
- 60KiB (61383 bytes)
- Type
- text
- Description
- ASCII text, with very long lines, with no line terminators
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- 7790c1e50d3b898470ff464cebf82bef
- SHA1
- d6154dfd8852bafb16ba14e01e6139a4f35c04e9
- SHA256
- 23999ee5b5e60affbf92e11694689552829866ddaf2d78bce9e63fcfe98ab1c5
-
799fc906-1abb-4c25-a78e-73f29c555758.tmp
- Size
- 60KiB (61058 bytes)
- Type
- text
- Description
- ASCII text, with very long lines, with no line terminators
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- 659be4b075c1a42228b89809678e9b04
- SHA1
- a8e02a51f3d2b422711f3278a4bb49dbec294518
- SHA256
- 76b45a3db8e10e58802b58882b7f2b6a8cbdf9fe21838c95195a994682849e96
-
7e68a37b-2b7d-4e17-adac-1108cf0ca5e1.tmp
- Size
- 60KiB (61383 bytes)
- Type
- text
- Description
- ASCII text, with very long lines, with no line terminators
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- c02ed21ad588dfd5223fde1b635dcd5a
- SHA1
- 881f7bbb49d71331f40044a613027305fb0d7cf3
- SHA256
- 873a2691324db17e50131e88f4fb0666fbcc05561b8f97885d5a4d60f5f6e96c
-
7b328891-69b9-43ee-a059-7ca744c01723.tmp
- Size
- 96KiB (98677 bytes)
- Type
- data
- Description
- JSON data
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- 461e7e31652bf3aa256997d52a722768
- SHA1
- 1d1f4799514c02505d62396196b79fa13ebc7a05
- SHA256
- 0ebce9da3c3a1dedb5a4f6de5d274be6c61617ac89d7b30e6184a6248b69ea39
-
settings.dat
- Size
- 280B (280 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 7476)
- MD5
- ad0bc7a515cdef716546f1fe7dffce24
- SHA1
- 1211554ababfbadba842f3c900fdd9d76e3186a0
- SHA256
- ff788ad9260235970674c12b2c4faa4c1825b6cbe3b471b8de23ef1ae13b1a56
-
2f651776-74b6-4b6f-a9e2-3fe6e9d82f47.tmp
- Size
- 1B (1 bytes)
- Type
- unknown
- Description
- very short file (no magic)
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- 5058f1af8388633f609cadb75a75dc9d
- SHA1
- 3a52ce780950d4d969792a2559cd519d7ee8c727
- SHA256
- cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8
-
346acb0e-309b-4a3d-accb-41f5a87cb3a4.tmp
- Size
- 23KiB (23104 bytes)
- Type
- text
- Description
- ASCII text, with very long lines, with no line terminators
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- 0084a369c4e5873eb6ab0503a85632ac
- SHA1
- bb604725f8214a78caf18090f331d89ee4c5f63c
- SHA256
- dac67a7e98883b972dab287d4dbc5bf150df047a9c160e8ad820cc565a725dc2
-
41948b46-6755-47c4-8c18-34beb1564b98.tmp
- Size
- 22KiB (22702 bytes)
- Type
- text
- Description
- ASCII text, with very long lines, with no line terminators
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- b1c7a02314561fb4c2625f66e0e71d61
- SHA1
- db16ac8e739b11eb78c4c976aa7ea8b37966c283
- SHA256
- 1f0dee133903d704668352590e73c6623f493bf89198f8095d1cd2ab3131a18c
-
63a7665a-4c2c-4ea4-a6b3-1fe9ea0b75d9.tmp
- Size
- 23KiB (23104 bytes)
- Type
- text
- Description
- ASCII text, with very long lines, with no line terminators
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- b62bf87cfb43f608559a659b1fb5cf8a
- SHA1
- 122e98eadea0dc48bb7085ed09f4df7069109e89
- SHA256
- 6cbeced1077c8d907a648aea32c9d9fec9f865d5ed70dbeec7536deb8619318f
-
000001.dbtmp
- Size
- 16B (16 bytes)
- Type
- text
- Description
- ASCII text
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- 46295cac801e5d4857d09837238a6394
- SHA1
- 44e0fa1b517dbf802b18faf0785eeea6ac51594b
- SHA256
- 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
-
000003.log
- Size
- 33B (33 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 496)
- MD5
- f27314dd366903bbc6141eae524b0fde
- SHA1
- 4714d4a11c53cf4258c3a0246b98e5f5a01fbc12
- SHA256
- 68c7ad234755b9edb06832a084d092660970c89a7305e0c47d327b6ac50dd898
-
LOG
- Size
- 309B (309 bytes)
- Type
- text
- Description
- ASCII text
- Runtime Process
- msedge.exe (PID: 7408)
- MD5
- 0bec25d85aa8e4b97c5d878c4effcd83
- SHA1
- de767f83fd350aedcc02a69237033c7a74debcee
- SHA256
- 9fb8fbe0cd87e15ac4655f6578c79a3276eb5a85a0a8781a0a756e92f36fddca
-
MANIFEST-000001
- Size
- 41B (41 bytes)
- Type
- unknown
- Description
- PGP Secret Key -
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- 5af87dfd673ba2115e2fcf5cfdb727ab
- SHA1
- d5b5bbf396dc291274584ef71f444f420b6056f1
- SHA256
- f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
-
000003.log
- Size
- 420KiB (429679 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 496)
- MD5
- 282b65d892024cb66e17dbf11a87dc81
- SHA1
- 5569f63061b0a79047b7c7586429cb2353c89127
- SHA256
- d9a197355de08ebb068bf29054ab7b5d6e2928ee2b8f51d25266a9d04d6f7960
-
LOG
- Size
- 335B (335 bytes)
- Type
- text
- Description
- ASCII text
- Runtime Process
- msedge.exe (PID: 7408)
- MD5
- ec4428ab672c88f927ee8297cd811456
- SHA1
- 03e2d84d716dbd0ff52d573733668bb850ed51bc
- SHA256
- 67862793705f2de9144b14a47bfec393cb7acb697b0668a59db441e6cacfafe7
-
data_0
- Size
- 116KiB (118784 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- b916efda4f97a4e0c5cc2d5c5ba1d1fb
- SHA1
- 3cac2b299e4613cb7bd5d43b2072675382fe06a8
- SHA256
- 372c71b0241789519ea64bf65c3c08bc26528da009bb4b35c45cd10dc83fa57d
-
data_1
- Size
- 1.3MiB (1318912 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- d8bcf49a1694565953528834fcb487b0
- SHA1
- e7edbc8743645980a92f5ab549110874bd86fc98
- SHA256
- 57207ab82f95900004c6f1db68b35563199c48f9f06cfd722787f124c9ebdc5b
-
data_2
- Size
- 3MiB (3153920 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- 622f5069bbdb38902a19782b99facd04
- SHA1
- 78887e8beb8e1287ba7110e30f09c09f55232b70
- SHA256
- 7c8ffc8c9d94fdd7dd7255e8638adfa7b73b321902b7612012609bb107c6e644
-
data_3
- Size
- 5MiB (5246976 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- 81b531292f7b4b8e7139145c2384621d
- SHA1
- edb784601e61fcaa7573f07d2304f7f7e47915cd
- SHA256
- b9251b856e4cdcbd6da6491d747d029b659b4745c78bf153ecb8fb1c8f8b1a76
-
f_0004c3
- Size
- 33KiB (33835 bytes)
- Type
- compressed gzip
- Description
- gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 97162
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- ffcd7abf7504f39a54c85a393a8ada1a
- SHA1
- b8e4a8644e30ee9bce41067658a2639efe979433
- SHA256
- 626134cc82097b967155b5a42c9953971c62b4904a77701fa11b21410a403dea
-
f_0004c4
- Size
- 136KiB (138951 bytes)
- Type
- image jpg
- Description
- JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1800x989, components 3
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- 8dcf1d9e59b56c334706e40309581cad
- SHA1
- 432229382a5f18e1fe3121ff8c057c274f8c9a28
- SHA256
- 57d48a36c1b75ce846aaecd203aaccbc7163862f2109e663819f79ed8bc2e029
-
f_0004c5
- Size
- 30KiB (31080 bytes)
- Type
- image jpg
- Description
- JPEG image data, baseline, precision 8, 2528x822, components 3
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- 4a47d4f6d86a6b17522a0e4343ff328b
- SHA1
- 19d1ed829395c56ce5665f2a048db2d5f096beb3
- SHA256
- 126048b528c01aa28e86df6dbab24aab720a33f8b8ed171a94c530ffe8db2604
-
f_0004c6
- Size
- 32KiB (32988 bytes)
- Type
- unknown
- Description
- MS Windows icon resource - 4 icons, 64x64, 32 bits/pixel, 32x32, 32 bits/pixel
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- 665737fd1fb3ed29de21afec0715dd59
- SHA1
- 3c697ca6b3474abac49fae23479653e461e06c33
- SHA256
- f5c3b09d46c9470138ddd44fa104aa54df131eef54cb581259132dce5084db9f
-
314e799b7ebf93ee_0
- Size
- 197B (197 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- 4c32b48c6ffa047e4aacb812a133ac57
- SHA1
- 74d4acf07bb1cbbdde1892b31c98b7fc6a5953fe
- SHA256
- b9bb550c8072d18331b7e442e67aa501af4e91a526128a825e604a4129263dde
-
526e396843e1a76f_0
- Size
- 199B (199 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- fb9b27b234b1a898240edf3ad23cc63b
- SHA1
- e82dfd6af157fed77b0e90d412e78e6d0fa629ea
- SHA256
- 5e1303164a313bbfd8161f13941b03631b783babdee689c5f3ed792962afa0db
-
temp-index
- Size
- 12KiB (12000 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- c308ad7bc9d57923a6204f1c0c5fb369
- SHA1
- c97ce04f8d22b1117a36a5805bc6266443216a86
- SHA256
- 3a8beaf477f9d296d270b87f676079dd43c137282e99e495ca7d416a41bdafc5
-
data_1
- Size
- 264KiB (270336 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- 8b5e9c7b363f6556408dc72874b769e9
- SHA1
- 629ba884464e99a49c55feb1914b28b4e632f943
- SHA256
- 1bbc1c36b4d9f237bc912d2f453d7fe0e7f5e11b5f0b01a60232651a636699a9
-
000009.log
- Size
- 835KiB (855289 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- 287ac62966a0540c0ae219705ee0bb1c
- SHA1
- 3b5f1a0e21f37e1121685533c9abba5c2caba1b8
- SHA256
- a331e11ad9cf13d5d6f805625d548934eba71723bb32eb879f3c25cacb8618d2
-
000012.log
- Size
- 64B (64 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- 4b0b59d4e8f8fc76d064a8193a9e6b6e
- SHA1
- 48b96b83b4d737dfbeedf6bfdd375154f0894edf
- SHA256
- 4d17d529c24c80b8a35876cca0883cb096b90452899267c5c841214be95b8ca1
-
000013.ldb
- Size
- 835KiB (855214 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- fb12a183d328d3bf9b4f3cdc858a15f7
- SHA1
- ce5f88275ebff272bc807fce6d5202ab263fd429
- SHA256
- e408ad7fa840c88f33b4f0cddcc543eaf43fea9936da395fd8aa9a4bc7e04332
-
000014.ldb
- Size
- 446KiB (456792 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- aaac96179dfbe437a66ed45cb8dc7662
- SHA1
- 27f8ddbe80f881f22cebbbbb8350c2f31ce274a9
- SHA256
- f0f88b0a041dacdd5add555be0a051db439bdb8a99b0b7b25a7e6f1bef57ca8a
-
LOG
- Size
- 954B (954 bytes)
- Type
- text
- Description
- ASCII text
- Runtime Process
- msedge.exe (PID: 7408)
- MD5
- 475dc0edf68d851338341c24c177a29b
- SHA1
- b187991b20abba0ccf05871c37ec022e40126ba8
- SHA256
- 1e2a9e897f451a7ead5b93217afd9945e950778bb5020915532bddd3759591fe
-
MANIFEST-000001
- Size
- 429B (429 bytes)
- Type
- unknown
- Description
- PGP Secret Key -
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- 94b4fbb0cae8c5bbaf9a3a79c7072c44
- SHA1
- e916d6d9dced79c3e165ef8c44877dbc97721770
- SHA256
- 9d01b0f4c69357deb251b1fde5491f1099dea350838b44dd492532ffeae11536
-
LOG
- Size
- 323B (323 bytes)
- Type
- text
- Description
- ASCII text
- Runtime Process
- msedge.exe (PID: 7408)
- MD5
- b519fe013da4ac31e26a4dfa2972f2d7
- SHA1
- 97c6de8237664afefc0eb21176b4bc5fb4950d3a
- SHA256
- c77b1c252144158f30416e8ff3c413eabcc21a81e896b357b9ce049a74cbbf08
-
Favicons
- Size
- 40KiB (40960 bytes)
- Type
- data
- Description
- SQLite 3.x database, last written using SQLite version 3039003
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- 9d1f784c4978d51a3755df7a8580f215
- SHA1
- 221b3088b187e1185bb9f2ac7cacb7672165dea6
- SHA256
- 621a181f2e7923ed0c5155ee3e5a6a124332ac34f29ce8f160fa67a82bf5e1bc
-
data_1
- Size
- 264KiB (270336 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- d43bcfba8ff5f2ffc37cc5e25f01b8a4
- SHA1
- b8dd4fd4bd2c83fba94bb1406483cd5e6d515ec5
- SHA256
- ff43ef2e8d342eb9c4d247d1fd7dfc7307b3ff8862e3a6357491bcb9bb5b0770
-
History
- Size
- 160KiB (163840 bytes)
- Type
- data
- Description
- SQLite 3.x database, last written using SQLite version 3039003
- Runtime Process
- rundll32.exe (PID: 7084)
- MD5
- 9661aadd6f1dfbcbeecb14c85fc9389f
- SHA1
- 0becdbb47b24e57f9de0069fe940d82432cd36ee
- SHA256
- 89b5a5d09f60645203b9052610b2a7c2fdb31a162cbf0f99e4d414416d90fbfc
-
LOG
- Size
- 335B (335 bytes)
- Type
- text
- Description
- ASCII text
- Runtime Process
- msedge.exe (PID: 7408)
- MD5
- b109d922db14330a6cdbd4f6f7ddf272
- SHA1
- 5b0bcee0c72dbc52879cd451151e3502a946d364
- SHA256
- b4f5466761a179733cb675797ef2478b66377af80be35ac2bfc47708a5e6db13
-
Network Action Predictor
- Size
- 56KiB (57344 bytes)
- Type
- data
- Description
- SQLite 3.x database, last written using SQLite version 3039003
- Runtime Process
- msedge.exe (PID: 7356)
- MD5
- a53ffd3084f7e468c1af6cd7481ae039
- SHA1
- 2528d3b22fc55370bc70984b5af0139661188d0d
- SHA256
- 06439918e9a7c16bc8cb8d66dcaa32ef80f3d58e2fa4823d43bab19be0edc329
-
417dbd1a-4204-402d-a3e3-b0d7ba9d6576.tmp
- Size
- 5.4KiB (5558 bytes)
- Type
- text
- Description
- ASCII text, with very long lines, with no line terminators
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- c36c32e15857b85d7b8a504cb50606a1
- SHA1
- 0daa6d3c434339fc94a6efe4e6948cef7210767b
- SHA256
- 66cf3fed4ce3809c39f71a4d84fd9e35316f3ba953c74121a68adde93936e830
-
Cookies
- Size
- 44KiB (45056 bytes)
- Type
- data
- Description
- SQLite 3.x database, last written using SQLite version 3039003
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- c9ef90a20c8af228427188a9bacd97af
- SHA1
- 77d75f105afc39a26260a0bfebb0f8591abbb0f0
- SHA256
- 4428902dea523cf4384d067b84e2fe1b5ca9665f2b2646192ccfb208e59ec675
-
e4952224-73d1-4cf9-8c13-ce3cf5feff41.tmp
- Size
- 5.4KiB (5479 bytes)
- Type
- text
- Description
- ASCII text, with very long lines, with no line terminators
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- 560e003c8352dc35cc85d7046ab00a7c
- SHA1
- 3b6987874a72ec8c01ea93ccbbf3746fda41de54
- SHA256
- 65cc35b26c863c022fa0afe1b032d0e929f4f72ba11d9f024f25bc472a43d82b
-
f0840c6e-7472-4240-8a6b-d45e664896e6.tmp
- Size
- 5.3KiB (5449 bytes)
- Type
- text
- Description
- ASCII text, with very long lines, with no line terminators
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- b7710c119ab46b5c7af713a473f207b4
- SHA1
- 7ca67673bf9fbba6e27e68f23ed09a57c52fa2f2
- SHA256
- 29f20a92ff18f557d291c4800daf60a45999200d01f0dc6b7d8a38945e7748ce
-
f7633561-f40a-44df-a469-e22133bf7da8.tmp
- Size
- 5.3KiB (5449 bytes)
- Type
- text
- Description
- ASCII text, with very long lines, with no line terminators
- Runtime Process
- msedge.exe (PID: 3928)
- MD5
- 6a381688ed939b02475a4b2048edffe3
- SHA1
- 6fdb989255a879373e7b560a12393eca5d3f81ae
- SHA256
- f532db4f63cf7f7939b8d322576e7b840bfc7c7cddff475d4b73974cea589bcb
-
LOG
- Size
- 340B (340 bytes)
- Type
- text
- Description
- ASCII text
- Runtime Process
- msedge.exe (PID: 7408)
- MD5
- 58bf8312997e200434c3bbc994d0e5a8
- SHA1
- 163409424e3b051771f5cc2ef51712d0e9ba64dd
- SHA256
- 1124cedeb1404f43d786562fb9482e6325622a5b51ab8094d2338c696345aba5
-
000003.log
- Size
- 8.7KiB (8940 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 496)
- MD5
- 5fb9c71bc37c02216cce928a5279a98a
- SHA1
- f860878714516a8a73835949d30510db91e6bd33
- SHA256
- 6dedb6f2c2a200bff8e8d80cb63be9c68c180d00bafd16079f951f703f28ffa1
-
LOG
- Size
- 342B (342 bytes)
- Type
- text
- Description
- ASCII text
- Runtime Process
- msedge.exe (PID: 7408)
- MD5
- 5020090d02c874583658d6e6d99a9526
- SHA1
- 415f9a0b195368460469727e27c7a6c19aec96d4
- SHA256
- 8451a8d8cd70e4359f818e2cd1ebf195fa130a95ebee78c0f3a8b900a9cdc4f6
-
manifest.cat
- Size
- 11KiB (11150 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 1480)
- MD5
- 5f71c12d8bd2ded6326e9fac82eb569a
- SHA1
- 79d4f4979fa8f98e78a67fc464e39d046a64a0f4
- SHA256
- d2199ff6f74d2468d710b0d5befe54a268e9a140cc7df4f36f18db1251f2ba50
-
manifest.cat
- Size
- 11KiB (11260 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 1480)
- MD5
- c1f121b8f0e9905383f4b4705103c162
- SHA1
- d25db6988a67c2cac080af123e86d8d02301b8b4
- SHA256
- 87d86a8f124063f667ab49b4cf9fdd8833340ea07b17b2aa8738f74a2e42b9b3
-
manifest.cat
- Size
- 11KiB (11260 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 1480)
- MD5
- 15de1096aca737717bc4a403db7e2b9d
- SHA1
- 67f8c0289c71b4e993c12b5cba1d0e5eae21e95d
- SHA256
- d75de32c80b095759a9a7f38de92bf7bcf2c7497d6bfca4d84f2aab5a67e1120
-
manifest.cat
- Size
- 11KiB (11150 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 1480)
- MD5
- 1be225f37b4846c3e91ab8b75ca15499
- SHA1
- 2ee880d6303a6cd4a6def590e8de4fe26bfdcf8c
- SHA256
- 14b714d5b0efce2db717c449dba02432132fdcb2f2f4ed5b22cd0b6e0e9907b1
-
manifest.cat
- Size
- 11KiB (11260 bytes)
- Type
- data
- Runtime Process
- msedge.exe (PID: 1480)
- MD5
- 5e9c31f85c320b54fddb08ddfc61e789
- SHA1
- 0a9b441abf6990ccd312df47939832c785e3f465
- SHA256
- f4ad19b1ce775f66b3bf5a5839c1550521af8ffefbccb7f969918244339e3678
-
Notifications
-
Runtime
- Not all IP/URL string resources were checked online
- Not all created files are visible for msedge.exe (PID: 1480)
- Not all created files are visible for msedge.exe (PID: 3928)
- Not all created files are visible for msedge.exe (PID: 7356)
- Not all file accesses are visible for msedge.exe (PID: 1480)
- Not all file accesses are visible for msedge.exe (PID: 3928)
- Not all file accesses are visible for msedge.exe (PID: 7356)
- Some low-level data is hidden, as this is only a slim report
- This URL analysis has missing honeyclient data
- Not all sources for indicator ID "string-63" are available in the report
- Not all sources for indicator ID "mutant-0" are available in the report
- Not all sources for indicator ID "string-23" are available in the report
- Not all sources for indicator ID "string-169" are available in the report